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", 0x1000}], 0x2, 0x8) vmsplice(r1, &(0x7f0000b1d000)=[{&(0x7f0000005fe3)}], 0x1, 0x0) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f0000000100)={{{@in6=@ipv4={[], [], @broadcast}, @in6}}, {{@in=@multicast1}, 0x0, @in6=@loopback}}, &(0x7f0000000200)=0xe8) socketpair$ipx(0x4, 0x2, 0x0, &(0x7f0000000080)) 2018/05/26 12:20:58 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000001]}) 2018/05/26 12:20:58 executing program 2: r0 = socket$nl_xfrm(0x11, 0x3, 0x6) sendmsg$key(r0, &(0x7f0000f21000)={0x0, 0x0, &(0x7f0000f21000)={&(0x7f0000406fc8)=ANY=[@ANYBLOB="021108000300000000000700000000"], 0x18}, 0x1}, 0x0) accept4$ipx(0xffffffffffffffff, &(0x7f00000000c0), &(0x7f0000000100)=0x10, 0x800) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x10000000000890e, &(0x7f0000000240)="c626262c8523bf012cf66f") r2 = creat(&(0x7f0000000080)='./file0\x00', 0x0) write$cgroup_type(r2, &(0x7f0000000040)='threaded\x00', 0x9) 2018/05/26 12:20:58 executing program 1: r0 = syz_open_dev$sndmidi(&(0x7f000066cfee)='/dev/snd/midiC#D#\x00', 0x2, 0x8901) write$tun(r0, &(0x7f0000c8f000), 0x1001) r1 = shmget(0x3, 0x4000, 0x2, &(0x7f0000ffb000/0x4000)=nil) shmctl$SHM_LOCK(r1, 0xb) 2018/05/26 12:20:59 executing program 7: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f000065ffa8)={0x26, 'hash\x00', 0x0, 0x0, 'vmac(aes-generic)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000100)='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00', 0x10) getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(r0, 0x84, 0x6c, &(0x7f0000000000)={0x0, 0x41, "c8ceb54ee1cca4f3bcf0b1f8b7ccf459add3d7a3b913e50ccbf9ec20c31563440eb834f26227265e3d73c5a07a9e1db328319a2143a877f8feea29af9b62ff42a4"}, &(0x7f0000000080)=0x49) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f00000008c0)={r2, 0x97, "77e3821f1d47b00022535cd87208cb623ad2b028058e6cee63d4dabeea50d2e127294dd8ec2e4137dfe7db00ce754e5994099ddca1514c2ebe70c896c55fa0a8d049d645e919ce3d24c7e7614d67b38ff5070f50569eaf34d5cc5f22968f74bc4ec07789215d198c148b984a994882ebbefa06c6cf5db501a9730d4a530fcef5e0f858cf8f4d18d1d02a4c296c3ff910f5592ccd0d26e3"}, &(0x7f00000000c0)=0x9f) r3 = accept$alg(r1, 0x0, 0x0) sendmmsg(r3, &(0x7f0000000d40)=[{{&(0x7f0000000140)=@sco={0x1f}, 0x80, &(0x7f00000005c0)=[{&(0x7f0000000280)="3f2a3c71c360c461869a4084871935d86fab0d3c49d64da821d21d4711ebd63c1670ea9086c0b73ecc3a3e5812a7d735c8546c0f21aa69083fb436839b2d50421f351598974f29b63e4ca34475fac838d8f46fb553ccdaa0f8bb51e0e5f521c2c1a628655bff21c78f426f3cf642a881eab0817706f692a3d4134b73c8b68294df6ab8ddc7b4b91c6c7092337d5b1313164cd8fc4d2ce14693314928", 0x9c}, {&(0x7f0000000340)="ad61f7674053c27d4781f34da84bb871385848d00b5859f0f0ca1750abf7da7f91d27e4298c238df5afb1cb926fd402994a38971a5fac2334f662eb78c956e7660b944a28fbf11c7d7c273842911951233463b34e06a18b1cc7ee7edfda2ec26f5ac33515dc052bbc0ee20db87cce76a238aebad8512054696002fcea2b58a58e8e461f99f9d2a1b5037ea53", 0x8c}, {&(0x7f0000000480)="b60cfe8075ca4fefa725cc5a25273f8e432ffffe7afb0dac14290f253f20a83d3250f5df9f2881cf91a09ab5b31b3aeef93d2ea107c48767369ffbdfa3d219d61c94e3ffde65ccbd76c4ad0702fee54889d6f799ce87bfbcfa9ff020788c2336d3f09447c8ca7b6249978ed231d9b162488425365dc943bf2de93b0eea6d3ef04d1f92989c1be595cdee6c3a854d82ebad613291921a30", 0x97}], 0x3, &(0x7f0000000640)=[{0xe0, 0x105, 0x28f4, "7fa2a081b48ee666d7793f68ee3cc87707e47bf9d6018a1f830f06928096983ac050841d6025e16fe892b207c7c06e2709b993c809d5c30a59c456ab5022271b9d2634fb73d940c8aff25f8f47da8bd4cf7050b84aa43abfcabc68e5a94145f646a51f7ff30b2ffa50a63001fb0f50e19e921815ea90bb38c8371b11528167c60a623d9a28f18aeeea00afa37118c8bfce6e3e826039a23ca2f9d35ec37f4cdd3eaba4a795c52eae0a769481c09479ccc6fa9ae8fec581af1815cca48e40fbfdfcd5333d367e3c2a8bbd6baa67"}], 0xe0, 0x8000}, 0x1}, {{&(0x7f00000007c0)=@in={0x2, 0x4e21, @multicast2=0xe0000002}, 0x80, &(0x7f0000000cc0)=[{&(0x7f0000000840)="7274e32ab70f46354d454b4e315739dee96000fa894cef4ba642240fcfdce006696b0732208f47daf3de35dea5a529d9f9edd212208d4636a5dd7d40dc745678156842c35eb1a9fb2168559cc82d9352006a785962008c83f43ad91e3d0dd24fe9bc", 0x62}, {&(0x7f00000009c0)="76a65498886841c75de7f0fe97eef082b8ffa731bf5ebfaa87b9a557c97a1574859618d3c453fc79c93b0192a499deca94560545ee603c3ea09c1227b6fa47bc55f69a158b907708985ea4e2f22c7f2ae5b50dfadefcc3c59772c9c5f03b0ae882e39b88ebb83d7c8ccd0443dddd92cc27e724b7f0b5adc62e01f760d876ed89f8d97c3d68c82e413c52a0cd32e2ec4fda9d6fe0777426e1cb06e1aab80f09e3c4c3a7fdcf0076cd8685cb323314d674c008533db86fc5", 0xb7}, {&(0x7f0000000b00)="b629ad5760d39f4c897a65485c70b29abf5d3409a33342e9619700daa40fc663a5dcd0f7bd2554f703152a4c39e7beee9a71370baf59686e5f30e3ec1b94302562fb1f730e78628a2825a5da88cfa9c006590b860f463f8623481cc5e75990a7b0af77ee88563197df8c59883817b6b10934ba73a0acee83cef37a567fa342f5390eb569435898cc17af074aec242565badba70ce0bdbfbb6ce4527420da623e74d51ade7bb813760bcf", 0xaa}], 0x3, &(0x7f0000001140)=[{0x60, 0x13f, 0x100, "080f7aa8d4dceb8e20e11b3050c66098ecd32341faba60302bbb92f9776b4e0a1ac8d58509a482562e35aa42af2bc2e422105e0697b9349f440f13a59f5907e1f5a51a1c180b04d0cab040"}, {0x1010, 0x0, 0x7, "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"}, {0x98, 0x88, 0x264d1a71, "fd4887996abfef993dc9b2f8720b7c060fc11bcadb49a3b61c123cfbfe43fa8676287087c73d19e70f8c7d999c1c6150ef0abdd279fded7d145b52c95bea854da015fb29b72cd83f4e10233366ac367fa861d24ace6360b50d3f12df04bbca861f0d530919385b0138945c29b2d46a3ac1d604d87a93501cf84328ce5e0534b15b"}], 0x1108, 0x20000000}, 0x9}], 0x2, 0x0) 2018/05/26 12:20:59 executing program 1: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0xffffffffffffffff) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ppp\x00', 0x2000, 0x0) inotify_add_watch(r0, &(0x7f0000000180)='./file0\x00', 0x8) ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffffff, 0xc0206434, &(0x7f00000000c0)={0x6, 0x0, 0x1, 0x800}) ioctl$DRM_IOCTL_AGP_UNBIND(r0, 0x40106437, &(0x7f0000000140)={r1, 0x882}) getsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r0, 0x84, 0x8, &(0x7f0000000200), &(0x7f0000000240)=0x4) setxattr(&(0x7f0000000000)='./file0\x00', &(0x7f00000001c0)=@known='trusted.syz\x00', &(0x7f0000000100)='/vmnet0\x00', 0x8, 0x0) 2018/05/26 12:20:59 executing program 4: sched_setaffinity(0x0, 0x8, &(0x7f0000d81ff8)=0x101) mkdir(&(0x7f000082f000)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r1 = shmat(0xffffffffffffffff, &(0x7f0000ffc000/0x1000)=nil, 0x7000) shmdt(r1) r2 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX(r2, 0x84, 0x6e, &(0x7f0000000280)=[@in={0x2, 0x4e24, @multicast2=0xe0000002}, @in6={0xa, 0x4e24, 0x1, @ipv4={[], [0xff, 0xff], @dev={0xac, 0x14, 0x14, 0x11}}, 0x893}], 0x2c) write$sndseq(r2, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000000c0)='./control/file0\x00') rename(&(0x7f0000000040)='./control/file0\x00', &(0x7f0000000080)='./control\x00') mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) stat(&(0x7f0000000180)='./control/file0\x00', &(0x7f0000000200)) r3 = open(&(0x7f0000000080)='./file0\x00', 0x200000, 0x0) ioctl$TUNSETTXFILTER(r3, 0x400454d1, &(0x7f00000002c0)=ANY=[@ANYBLOB="010005005c12721251820180c200000faaaaaaaaaa14aa8ce9aaaa0a0180c2000003ba4c46710cf2f76835d50ca0bb52d7622d23bd2857d829aaedd1ff3e06cdae2c93098b24f3e93e6548b43d953b1340245b3ab034706e5de1fcf2f77cb40ecacf7a90fd1ae378db7a5333676cdca7dc338afa1ac1ae5457d0e9bcf0bf401c6b5aaa820c7012135c8bb5cd8e90f22d883ba60f16463dd49dc4825e253154e6642a6db5"]) ioctl$sock_SIOCINQ(r2, 0x541b, &(0x7f0000000140)) unlink(&(0x7f00000001c0)='./control\x00') close(r0) socket(0xd, 0x800, 0x8) 2018/05/26 12:20:59 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x8, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:20:59 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0xc1]}) 2018/05/26 12:20:59 executing program 3: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000d28000)={0xaa}) socket$inet6_tcp(0xa, 0x1, 0x0) r1 = epoll_create1(0x0) r2 = socket(0xa, 0x1, 0x0) ioctl(r2, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ppp\x00', 0x400000, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r3, 0xc0a85320, &(0x7f0000000040)={{0x1000, 0xffffffff}, 'port1\x00', 0x21, 0x4, 0x7fff, 0x8b0f, 0x8, 0x0, 0x139f8867, 0x0, 0x4, 0x1}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) r4 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r4, 0xc0145401, &(0x7f0000013000)) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r4, 0x54a3) readv(r4, &(0x7f000042bff8)=[{&(0x7f0000e3b000)=""/61, 0x3d}], 0x1) dup3(r1, r0, 0x0) 2018/05/26 12:20:59 executing program 2: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) socketpair$inet(0x2, 0x7, 0x1, &(0x7f0000000000)) getpeername$unix(r1, &(0x7f00000000c0), &(0x7f0000000140)=0x6e) write$cgroup_type(r1, &(0x7f0000000040)='threaded\x00', 0x9) 2018/05/26 12:20:59 executing program 0: execve(&(0x7f0000000140)='./file0\x00', &(0x7f00000002c0)=[&(0x7f0000000180)='vboxnet0^selinux(systemGPLlo\x00', &(0x7f0000000240)="b865746831766d6e657430287d00", &(0x7f0000000280)='bdevkeyring,GPLppp1cpuseteth1vboxnet1-.#trusted\\\x00'], &(0x7f0000000540)=[&(0x7f0000000300)='\x00', &(0x7f0000000340)='selfuser+selflo\x00', &(0x7f0000000380)='self/eth0{!keyring+.nodev,\x00', &(0x7f00000003c0)='\x00', &(0x7f0000000400)='ppp0cpuset/#self#-vmnet0!)\x00', &(0x7f0000000440)='\x00', &(0x7f0000000480)='++keyring`\'\x00', &(0x7f00000004c0)='\x00', &(0x7f0000000500)=',lo%[\x00']) mkdir(&(0x7f000082f000)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0xfff7fffffffffff6) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r1 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r1, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000000c0)='./control/file0\x00') rename(&(0x7f0000000040)='./control/file0\x00', &(0x7f0000000080)='./control\x00') mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) r2 = open(&(0x7f00000005c0)='./control\x00', 0x200000, 0x1) unlink(&(0x7f00000001c0)='./control\x00') ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000000100)={0xaa, 0x24}) close(r0) 2018/05/26 12:20:59 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x1de]}) 2018/05/26 12:20:59 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x10, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:20:59 executing program 2: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") lremovexattr(&(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)=@random={'osx.', '\x00'}) r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) write$cgroup_type(r1, &(0x7f0000000040)='threaded\x00', 0x9) 2018/05/26 12:20:59 executing program 1: r0 = dup2(0xffffffffffffffff, 0xffffffffffffff9c) setsockopt$ipx_IPX_TYPE(r0, 0x100, 0x1, &(0x7f0000000000)=0x4, 0x4) fcntl$addseals(r0, 0x409, 0x8) ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f00000001c0)) r1 = syz_fuseblk_mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', 0xe002, 0xffffffffffffffff, 0xffffffffffffffff, 0x1, 0x5, 0x80000) socket$l2tp(0x18, 0x1, 0x1) mmap(&(0x7f0000470000/0x2000)=nil, 0x2000, 0x5, 0x32, r1, 0x0) fsetxattr(r1, &(0x7f0000000280)=@known='system.sockprotoname\x00', &(0x7f00000002c0)='/dev/net/tun\x00', 0xd, 0x1) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000300)={0x0}, &(0x7f0000000140)=0xc) fcntl$setownex(r1, 0xf, &(0x7f0000000180)={0x2, r2}) r3 = socket$inet6_udp(0xa, 0x2, 0x0) bind$inet6(r3, &(0x7f0000000100)={0xa, 0x4e23, 0x30d, @remote={0xfe, 0x80, [], 0xbb}, 0x8}, 0x1c) connect$inet6(r3, &(0x7f0000000240)={0xa, 0x4e23, 0x407, @ipv4={[], [0xff, 0xff], @multicast1=0xe0000001}, 0x8000000000001001}, 0x1c) r4 = socket$l2tp(0x18, 0x1, 0x1) r5 = syz_open_dev$tun(&(0x7f0000000100)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000040)={"79616d300001178b00", 0x4012}) close(r5) connect$l2tp(r4, &(0x7f00005fafd2)=@pppol2tpv3={0x18, 0x1, {0x0, r3, {0x2, 0x4e21, @multicast2=0xe0000002}, 0x4, 0x0, 0x2}}, 0x2e) clock_gettime(0x0, &(0x7f0000000340)={0x0, 0x0}) ppoll(&(0x7f00000000c0)=[{r1, 0x201}, {r0}, {r5, 0x91e110d78129d64f}, {r3, 0xc021}], 0x4, &(0x7f0000000380)={r6, r7+30000000}, &(0x7f00000003c0)={0x2}, 0x8) sendmsg$nl_crypto(r4, &(0x7f0000000200)={&(0x7f00009dd000)={0x10}, 0xc, &(0x7f00002ceff0)={&(0x7f000097b000)=@delrng={0x10, 0x14, 0x200, 0x1, 0x3}, 0x10}, 0x1, 0x0, 0x0, 0x20000001}, 0x81) 2018/05/26 12:20:59 executing program 7: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_open_dev$evdev(&(0x7f0000000040)='/dev/input/event#\x00', 0xfffffffffffffffc, 0x0) ioctl$ASHMEM_GET_NAME(0xffffffffffffffff, 0x81007702, &(0x7f0000000200)=""/3) bpf$OBJ_GET_PROG(0x7, &(0x7f0000000080)={&(0x7f0000000000)='./file0\x00', 0x0, 0x18}, 0x10) socket$inet(0x10, 0x3, 0xc) r0 = socket(0x2, 0x0, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a40)=@broute={'broute\x00', 0x20, 0x3, 0x150, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000440], 0x0, &(0x7f0000000400), &(0x7f0000000440)=[{0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x0, 0x0, 0x0, 'sit0\x00', 'team_slave_1\x00', 'sit0\x00', 'bridge_slave_0\x00', @random="72b5ff2e2396", [], @random="1479c2ae1bc7", [], 0x70, 0x70, 0xc0}}, @common=@log={'log\x00', 0x28, {{0x0, "228464134b28b4e8b9bc7186668787a1ee5cc11fd241d8a5fb7ac05c4a5e"}}}}]}, {0x0, '\x00', 0x2}, {0x0, '\x00', 0x2}]}, 0x1c8) sendmsg(0xffffffffffffffff, &(0x7f0000011fc8)={0x0, 0x0, &(0x7f0000000140)}, 0x0) r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_IO(r1, 0x2285, &(0x7f0000001640)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x384c8, &(0x7f00000004c0)}, &(0x7f0000000500)="abc0b501df7e", &(0x7f0000000600)=""/4096, 0x0, 0x0, 0x0, &(0x7f0000001600)}) 2018/05/26 12:20:59 executing program 0: mkdir(&(0x7f0000000240)='./file0\x00', 0x100) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r1 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r1, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000000c0)='./control/file0\x00') rename(&(0x7f0000000040)='./control/file0\x00', &(0x7f0000000080)='./control\x00') mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) write$binfmt_aout(r1, &(0x7f0000000280)={{0xcc, 0x9, 0x2, 0x3cd, 0x2a5, 0x800, 0x135, 0xffff}, "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", [[], [], [], [], [], [], [], [], []]}, 0xa1a) open(&(0x7f0000000080)='./file0\x00', 0x200000, 0x0) unlink(&(0x7f00000001c0)='./control\x00') close(r1) 2018/05/26 12:20:59 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x2a]}) 2018/05/26 12:20:59 executing program 7: r0 = socket$inet6(0xa, 0x2, 0x0) getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x23, &(0x7f0000000140)={@multicast1, @loopback, 0x0}, &(0x7f0000000180)=0xc) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000001c0)={0x0, 0x0}, &(0x7f0000000200)=0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000240)={{{@in=@dev={0xac, 0x14, 0x14, 0x12}, @in=@rand_addr=0x80000000, 0x4e24, 0xfffffffffffffffd, 0x4e20, 0x2, 0xa, 0x20, 0xa0, 0x37, r1, r2}, {0x3, 0x4, 0x0, 0x194, 0x8, 0x2e, 0x3f, 0xa61}, {0x3, 0xfffffffffffffffa, 0x2, 0x7}, 0x7, 0x6e6bbb, 0x2, 0x0, 0x2, 0x3}, {{@in6=@mcast1={0xff, 0x1, [], 0x1}, 0x4d5, 0x2b}, 0xa, @in6=@loopback={0x0, 0x1}, 0x3501, 0x3, 0x1, 0x10001, 0xffffffffffffff90, 0xc7, 0x9}}, 0xe8) connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @remote={0xfe, 0x80, [], 0xbb}, 0x4}, 0x1c) sendmmsg(r0, &(0x7f000000ac80)=[{{&(0x7f0000001240)=@un=@file={0x0, './file0\x00'}, 0x80, &(0x7f0000001600), 0x0, &(0x7f0000001640)}}, {{0x0, 0x0, &(0x7f00000004c0), 0x0, &(0x7f0000000040)=[{0x10, 0x29, 0x3b}], 0x10}}], 0x2, 0x0) 2018/05/26 12:20:59 executing program 0: r0 = socket(0xa, 0x7, 0x8) setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x30, &(0x7f0000000200)={0x5, {{0xa, 0x4e23, 0x2, @empty, 0xffb6}}, 0x1, 0x1, [{{0xa, 0x4e23, 0x6, @mcast2={0xff, 0x2, [], 0x1}, 0x1}}]}, 0x110) mkdir(&(0x7f000082f000)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r2 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r2, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000000c0)='./control/file0\x00') rename(&(0x7f0000000040)='./control/file0\x00', &(0x7f0000000080)='./control\x00') mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snapshot\x00', 0x280080, 0x0) r3 = open(&(0x7f0000000080)='./file0\x00', 0x200000, 0x0) ioctl$KVM_HAS_DEVICE_ATTR(r3, 0x4018aee3, &(0x7f0000000140)={0x0, 0x7, 0xff, &(0x7f0000000100)=0x2}) unlink(&(0x7f00000001c0)='./control\x00') close(r1) 2018/05/26 12:21:01 executing program 0: mkdir(&(0x7f000082f000)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r1 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r1, &(0x7f0000011fd2), 0x0) unlink(&(0x7f00000000c0)='./control/file0\x00') r2 = getpgid(0x0) ioctl$sock_FIOSETOWN(r1, 0x8901, &(0x7f0000000140)=r2) rename(&(0x7f0000000040)='./control/file0\x00', &(0x7f0000000080)='./control\x00') mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) open(&(0x7f0000000100)='./file0\x00', 0x200008, 0x0) unlink(&(0x7f00000001c0)='./control\x00') close(r0) 2018/05/26 12:21:01 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0xce]}) 2018/05/26 12:21:01 executing program 7: r0 = socket$inet_udp(0x2, 0x2, 0x0) mremap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x3000, 0x0, &(0x7f0000ffa000/0x3000)=nil) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@broute={'broute\x00', 0x20, 0x4, 0x8d0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000b40], 0x0, &(0x7f00000001c0), &(0x7f0000000b80)=ANY=[@ANYBLOB="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"]}, 0x9c0) r1 = syz_open_dev$amidi(&(0x7f0000000000)='/dev/amidi#\x00', 0x8, 0x8000) getsockopt$inet_sctp_SCTP_FRAGMENT_INTERLEAVE(r1, 0x84, 0x12, &(0x7f0000000040), &(0x7f0000000100)=0x4) 2018/05/26 12:21:01 executing program 3: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000d28000)={0xaa}) r1 = epoll_create1(0x0) r2 = socket(0xa, 0x1, 0x0) ioctl(r2, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) r3 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r3, 0xc0145401, &(0x7f0000013000)) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r3, 0x54a3) readv(r3, &(0x7f000042bff8)=[{&(0x7f0000e3b000)=""/61, 0x3d}], 0x1) dup3(r1, r0, 0x0) ioctl$SNDRV_TIMER_IOCTL_START(r3, 0x54a0) 2018/05/26 12:21:01 executing program 4: sched_setaffinity(0x0, 0x8, &(0x7f0000d81ff8)=0x101) mkdir(&(0x7f000082f000)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r1 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r1, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000000c0)='./control/file0\x00') fstatfs(r0, &(0x7f0000000200)=""/253) ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000000100)=0x0) mknod$loop(&(0x7f0000000300)='./control\x00', 0xc020, 0x0) ptrace$peekuser(0x3, r2, 0x200) rename(&(0x7f0000000040)='./control/file0\x00', &(0x7f0000000080)='./control\x00') mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) r3 = open(&(0x7f0000000080)='./file0\x00', 0x200000, 0x0) unlink(&(0x7f00000001c0)='./control\x00') close(r0) getsockopt$inet_tcp_TCP_REPAIR_WINDOW(r3, 0x6, 0x1d, &(0x7f0000000140), &(0x7f0000000180)=0x14) 2018/05/26 12:21:01 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x2000000000000000, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:01 executing program 1: r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_int(r0, 0x107, 0x13, &(0x7f00000000c0)=0xfffffffffffffffe, 0xfffffffffffffe2a) r1 = socket$inet(0x2, 0x1, 0x6) getsockopt$ARPT_SO_GET_REVISION_TARGET(r1, 0x0, 0x63, &(0x7f0000000000)={'ah\x00'}, &(0x7f0000000040)=0x1e) 2018/05/26 12:21:01 executing program 2: r0 = socket(0xa, 0x1, 0x0) r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000002c40)='/proc/self/net/pfkey\x00', 0x4001, 0x0) ioctl$TIOCGPGRP(r1, 0x540f, &(0x7f0000000500)=0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000540)={0x0, 0x0}, &(0x7f0000000580)=0xc) getgroups(0x9, &(0x7f00000005c0)=[0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff]) r5 = fcntl$getown(r0, 0x9) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000000600)={{{@in6=@dev, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@dev}, 0x0, @in6=@mcast2}}, &(0x7f0000000700)=0xe8) r7 = getgid() ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000002380)=0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000052c0)={0x0, 0x0}, &(0x7f0000002400)=0xfffffd08) fstat(r0, &(0x7f0000002440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f00000024c0)=0x0) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000002500)={{{@in6=@local, @in=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@remote}, 0x0, @in6=@loopback}}, &(0x7f0000002600)=0xe8) getresgid(&(0x7f0000002640), &(0x7f0000002680), &(0x7f00000026c0)=0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000002980)={0x0}, &(0x7f00000029c0)=0xc) stat(&(0x7f0000002a00)='./file0\x00', &(0x7f0000002a40)={0x0, 0x0, 0x0, 0x0, 0x0}) r16 = getgid() sendmmsg$unix(r0, &(0x7f0000005140)=[{&(0x7f00000000c0)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000000)=[{&(0x7f0000000140)="4737cf8a0b51f0a7a1ecbf4d8bafa661042ccf64bb2050dc411557ea886ed767a81bade5fb0a64b7cbee13a804eab16f2e5e8204227248cb9bb258d0277c5da6e9590cb96ab0a8bd364bca76f6dc2c20af34e3753ef953821a487c98626bcf77c526fd603fd311b8fd4b3e9d0807963c981a6e1b33131698e0da6d4bf5490d6dffd347e708442624f8f37eaf6b69e00df7ca3f114b3e076ac8b3fed019392266eadb410518eb1428ff69025a376060f4d1944c2ee21f3cda9cc29655736e3f536240bc2a53f6ac00", 0xc8}, {&(0x7f0000000280)="3dc26fe30d3d7234a23306da7cc3e1b6f9c750fa136e860116e0143e3474d9dbcf1337b9e517285a9d3dadf3d6144da3c3a024ecadeee84a51ec6f6846c316c183692b7f527f4c8c6e13b64df2ac32ac990a71ba25129b859bceb15900220a906ac992306276bf8e8bc72f4a3a25453ed8e59ca8316e244ab8cc256c48a04772c80cecb4313e0fa58f93bd38b01baed5f0a3a637aa735e4aef52b70e00f62155ead531db8da944541953182824091bf125cbffc823d0ec2c8d40833fabb28940163b83e1c2fef47159f498cb8255c969730d87e4fbb4928eabf7d07103d167a3ef164195fc201a5819", 0xe9}, {&(0x7f0000000380)="71896f57c88a9c1f6a50f1b03754d70b56be563e29868afa6588b894df6db8a6b7a767fdb52cddefe617d30f96cf7c31c8dd22f1136f507d91be8779318ca7ad18eeb448ef2b6cec1e62af0e3085275593b16071609590b2bb748e1637d6d273eca9276ebc680c0c24ec5cc5419198ab1d0cb499572b85c7596c3e6d5816ca966dae21a7f509be8836ab9a9749c48e9d70774a5441ea308e043a688123e6d6c4f32d6482fe4ea786e57c7876de2f9be4addf52076e237b524c99ae9f2dafaa7208eb410c78407244084336c5f13a145d7ce0f0f82f9a2ab6b1", 0xd9}, {&(0x7f0000000480)="2e6e31afb2cb0a4764e2103db8e188ac57012bc4a54189b9a094df6ae9b305abe87504eaf023f31e1ae43b5282100dc14617b95924eb2987ba956693a3b6a7e90c1e5388ea21ef9f31ac757cd308d3888c", 0x51}], 0x4, &(0x7f0000000740)=[@cred={0x20, 0x1, 0x2, r2, r3, r4}, @rights={0x18, 0x1, 0x1, [r0, r0]}, @rights={0x30, 0x1, 0x1, [r0, r0, r0, r0, r0, r0, r0]}, @cred={0x20, 0x1, 0x2, r5, r6, r7}, @rights={0x28, 0x1, 0x1, [r0, r0, r0, r0, r0]}, @rights={0x18, 0x1, 0x1, [r0]}], 0xc8, 0x8811}, {&(0x7f0000000840)=@abs={0x1, 0x0, 0x4e24}, 0x6e, &(0x7f0000001cc0)=[{&(0x7f00000008c0)="5912ffa1789435785f34343bfc6003732bf5d27641d2a3a77e02c451b96a5f98a1262ed01437d2e7205d9be63b561cfa6c51ba2ceefdf1e9209751e795e9fc555c378f913786a2942663f5d7c7bbf8f11a157404ba6c2e10ba5116606bd18248f54579e060665bc6869315995ed6c796d478df47e8f85e9606c8fae5d15e418022a509ce8aec7c4283869c4946788bbe0a9a49c406261d86c012017d0a10161c3097b6a8e76acd1d3fc36b99326abf04e7ac77a892b06e87aaa4b63c8c08e27187eb603e8a6ebe07ed71f55fe4a65f5049d201dae39d0d", 0xd7}, {&(0x7f00000009c0)="4024cc2ce642f77f2b7628e3f55fda1e5d047a5cdc0534d4f62683a893ca92c90a5989a58342e73326ff8d12749e1334290a967d9d03f48cf36a2a263feea2b6cd8d4a0592cdb194d2ebdc35ca094e41154c89df57dad6e2f6671801a23c0d50a1", 0x61}, {&(0x7f0000000a40)="bcff4a495fef4f08d474e26e62977581827997dca864a5b20c89d33b42c691a48239c3e333268db477ff75714680435174c94d6238ed74130b16179417b402464911a2d1dd385bf084a0dae6425eca26a976a0ca39c33ae938749f82ed6cfca134379c7fdd257f841689372a47072abad62ffc40a3eb2d1c3b8a2074064ce2bf21", 0x81}, {&(0x7f0000000b00)="aea31958ec2565b8420f36807cb189d5be11e168c5d6d13eb2158bc09d7a9fde92f61ec2e6626d3e05e6c5fb5b71bfa783e59d75c18bb043720f62b964e2a26d7282f6fedd8ca786d96998ddbbb46ea32f9245d27f65028f0072c5917e2ef0c4e4e2f78789a6a51ab596f652c5750e5db0389149f41dad385822364ad3fb62cb5f9cd00e48271ede2f300373", 0x8c}, {&(0x7f0000000bc0)="fb0b028c85f5b882fc4d4637677c67666a50f1eea7051e474202327077028e0585adeed9059dcf871aa6f3740bd1fcbbd361ef8867be884addfe37f2b39b3d9d650c0e23986549ed768afb7d94465f0fa6ccfd01c8547170da08c6e6e344c45c2c28b794512a3af14499f27b5e67958b5878f1851ccc8e829751a6071ce54195e8b36027836040e583fbbf0a0a1c52dbf209f7641baff2b15314c239b2d50616055de92d3fe3c90d7ff3ff17e742056c88dbd81b9b465d2b59cd82357bfceccea1a7551efa9f908dfa2e307d1fd469c497e02a1bf2835c", 0xd7}, {&(0x7f0000000cc0)="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", 0x1000}], 0x6, &(0x7f0000001d40), 0x0, 0x5}, {&(0x7f0000001d80)=@abs={0x1, 0x0, 0x1e2a}, 0x6e, &(0x7f0000002300)=[{&(0x7f0000001e00)="5ca10203ba624bfd318596127ceb6659c246963ae6d29c076582f68efe3d5c407dd6c4014e7c6fe04d8f14c9393a8875ae7be64dec55e51d6ce97373c910c63960515cf5c14adf41f8ae640ecf8e10b186cb78c8994c1d98e8c662b5701a519e5b114a110855865c37c451eec7cda0fe1cb0cf27a0b568a69a868713a70b99da691e7855e9508d719dba241cb507537243", 0x91}, {&(0x7f0000001ec0)="7da611457b7b64723feeb46a06937bbb662d4409d9041eb9dd21e6c40ed3130d0b90a9d489bc04974f03d8e6048eb25371938cef869be4c44e23d3c555bb8c41f6d3de155543b33fe6559b8e4ece2d328bac8755ddff65ea903270287dfdcd73f38a10cbbeafc77d5bbc41af4666d20aa228f0acf9c6a4bd96e7d3aed2e0a8a7e04c4d95d7", 0x85}, {&(0x7f0000001f80)="11eba063f3a807ac08c3182c4df572c58d85611c476cdd0fd03f35ba2b578a88eb0e9a48274deb44bce4110d0d26697eaa1b017ceb329c88e14b8155491c5b46b510500f48704bb8185924431d2e12dce1ef4f1b5d72ff219f5ea31cbe9e883b1465a780d33d93738c495bc673429030d112f41817a71c51e34674492e28a98e65c0537275f70e3263d0f031b1d1a3e902086be9333b26ea332f63ebfc6b32e50b10159d8c5758af31f7e74d7112da1be54422e93952c670aca94d", 0xbb}, {&(0x7f0000002040)="6f218b340b43a7b0d9da0ae9cf0791b1bbe350f1fd15afcdd627dd46e5aec86f8fb3149824d7ca1fe12195850256f3b7338a94d2d0ed81c202c500d0558ec2d230242ff378f960023ad8c64bb8698c987cff6ff7684637e7f60f8b8205d40617cc7fa94d5bb38d0c2d3651b18df8254e8e27945b415f83ce26c94561c101901bbfb79fe6e193cc0d47d49e8c9badcc537aa2f15831fcb7690bb6e2f2fe2bc14a83b0086adf2cac5bda48c422eeda13fd0c2e9c044d9f2ff582b979c0789f40e4e02c04a39b23bb5278f97947a590548a27d70e9c344f6424fbc387fafc1c0dca9998069e7222bc88", 0xe8}, {&(0x7f0000002140)="71fb3c85ea48332f84d3d2ddb59ca80828d7d1ad4ff30c99622f8c4fbcc3a2703fc695f9dad7862945a8ea139619f48360878fe14c0d2c1f5590dfb280b56051e3437329b8a274ad6cf2ba0b", 0x4c}, {&(0x7f00000021c0)="f3f42fa016ac2a7d743822e3d5a9d38551b5197264e17e496e14e87d174bbeb6bec719bd1f977fe1db303f554d03d585b52342162f8c29e417326a3a7fcbdb0a0afba9443c9ec3e4fd55a4ef17820fc935f9d3e78ab2ad8ae1647535cdb5429eeeef7b7ed8e943a36d36b3dcf995ef6070b8bea50b2b79b6bd483e8eccfc741939ea190458a9066a889419ab9f96c67de1c6765dd186ac664d5ed61fa4170eedee01dbc4c8fad970e56d8c1eed4498d570b4dbe01f3f393cdc7579f5ee8e802e88b0ebcf9e594388d06e44e97b53b0f3301c947132982191", 0xd8}, {&(0x7f00000022c0)="6b7523a56763e0f453853bde270380148f05fc5c888e2826e73078c0921eb016225dfbc9e5bbdc4a8512a75e2623d45ab87c075897f331a325278763", 0x3c}], 0x7, &(0x7f0000002700)=[@rights={0x28, 0x1, 0x1, [r0, r0, r0, r0, r0, r0]}, @rights={0x28, 0x1, 0x1, [r0, r0, r0, r0, r0]}, @rights={0x28, 0x1, 0x1, [r0, r0, r0, r0, r0, r0]}, @cred={0x20, 0x1, 0x2, r8, r9, r10}, @rights={0x30, 0x1, 0x1, [r0, r0, r0, r0, r0, r0, r0]}, @rights={0x28, 0x1, 0x1, [r0, r0, r0, r0, r0, r0]}, @rights={0x20, 0x1, 0x1, [r0, r0, r0]}, @cred={0x20, 0x1, 0x2, r11, r12, r13}], 0x130, 0x1}, {&(0x7f0000002840)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000002940)=[{&(0x7f00000028c0)="1eed45b8b3712555c28d8d7772944d5412d7c6be1aa5ada38b52a6da0be08abcede5e059229be95a774cd3d9aab1564fb76d739288ab4833aca9dc0c11727c01bd88e00798dff7df5d593bf9158f694fdb8fb1c45460808452af21e34d868a2cb6b6b59580b75174084d46c2", 0x6c}], 0x1, &(0x7f0000002ac0)=[@cred={0x20, 0x1, 0x2, r14, r15, r16}, @rights={0x20, 0x1, 0x1, [r0, r0, r0, r0]}], 0x40, 0x8000}, {&(0x7f0000002b00)=@abs={0x0, 0x0, 0x4e23}, 0x6e, &(0x7f0000003e00)=[{&(0x7f0000002b80)="755b1bbc00efebb232fc90d6dc517e9a7065041e859aad23deb25c409659c5adca2f9176fd1eb01e96c7a7a72e0bf496f2f2978e6f39ede5764490725bcb68465cf0e3337a20f8b63209b2126a50a3f65a78a0a115641d64129df8cfd846c062f5ea350b07dd1beb99e61b0eb2e90dec82d19323126ef50f14453d0b6660b538bb8bc6b3bf530a051e5b4af7b205849747052b73ac5596b4234591502b82b11cdee4d01812284f2929f92207ae93bdd9ca6094a8851ea7cde6e0381d03f3", 0xbe}, {&(0x7f0000002c40)}, {&(0x7f0000002c80)="67ad9f08ed35f0382d90412287c267a12faca32300e6d924f31de41bdb1a77c89742aade0ab1245c90cbad8ff669db674130e3501d266279ea10c3d5e39c2265a6b69f9090e600170320c8ff5d2e6f8c7d79b7c9d4a78f7d81a37d3b77a26fca1e8126dd32a15482d783c8fa7803055a4df87cbc00d66a58296966f9d6e101ed3c8b4f2e3686753ef479360d14a30b8812209e77f1a463c572dad8624c5c8e864330b45f4fda91b21da56a089db7d28811aae89f222d79cfb14484006e", 0xbd}, {&(0x7f0000002d40)="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", 0x1000}, {&(0x7f0000003d40)="5f292ca3aafd6217af3b5dfbab3d6c1d44fd8d4ac611acb6b6bc5ba30e92bbf5d71e6958bcdde03f57ffdb8de883fae1be21785065f506438c9c88b1ee7101252d4e8f80b844e39217d41208cac4d8", 0x4f}, {&(0x7f0000003dc0)="f9490414e6d2272a6b3f769709c1e5289e370ff8", 0x14}], 0x6, &(0x7f0000003e80)=[@rights={0x18, 0x1, 0x1, [r0, r0]}, @rights={0x20, 0x1, 0x1, [r0, r0, r0]}, @rights={0x30, 0x1, 0x1, [r0, r0, r0, r0, r0, r0, r0, r0]}, @rights={0x30, 0x1, 0x1, [r0, r0, r0, r0, r0, r0, r0]}], 0x98, 0x10}, {&(0x7f0000003f40)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f00000050c0)=[{&(0x7f0000003fc0)="4d02ac2e8da025861bd219a45364bcbe376226df754ca434cc3b9c9d75fc06930ae6d967986fb357ce1485e629ebeb858056f4f3e0562d4562772dc54cc67673b87f47a16842e508ed4210514ec6e51421397c1583f82d3f0f1e58a4fd361a72237c0a274031c3fea6ff174f9c663716e717be693745da1d6fb6807709967e47fb6bc6a4abb5fc50678f1c2b9e61eaf6b03343beeabc18af43486e3e1d89207371b349a425b2c7f480e1d47efb207fa47cc79419d6d3e4296b524a2dfae465b76ccb349aac3834f562e99eb4a624b3540fd86e54310c", 0xd6}, {&(0x7f00000040c0)="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", 0x1000}], 0x2, &(0x7f0000005100)=[@rights={0x20, 0x1, 0x1, [r0, r0, r0, r0]}], 0x20, 0x10}], 0x6, 0x20000040) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") openat$ptmx(0xffffffffffffff9c, &(0x7f0000001d40)='/dev/ptmx\x00', 0x200, 0x0) r17 = creat(&(0x7f0000000080)='./file0\x00', 0x0) connect$vsock_dgram(r17, &(0x7f00000023c0)={0x28, 0x0, 0x2710, @any=0xffffffff}, 0x10) write$cgroup_type(r17, &(0x7f0000000040)='threaded\x00', 0x9) [ 431.462925] kernel msg: ebtables bug: please report to author: Wrong len argument [ 431.487222] kernel msg: ebtables bug: please report to author: Wrong len argument 2018/05/26 12:21:01 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x3000000, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:01 executing program 7: r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) getsockopt$bt_BT_SECURITY(r0, 0x112, 0x4, &(0x7f0000000000), 0xfffffffffffffcf3) r1 = syz_open_dev$vcsa(&(0x7f0000000040)='/dev/vcsa#\x00', 0x8, 0x2) getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(0xffffffffffffff9c, 0x84, 0x70, &(0x7f0000000080)={0x0, @in={{0x2, 0x4e23}}, [0x10001, 0x1000, 0x0, 0xe7, 0x32, 0x8, 0x5, 0xfffffffffffffff9, 0x7, 0x8000, 0xf8, 0x5, 0x1d3, 0x76, 0x3]}, &(0x7f0000000180)=0x100) getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r1, 0x84, 0x1a, &(0x7f00000001c0)={r2, 0xe8, "8ab81d89e989ec94a01cd65441814fcab77a4e70e3e549e1c81498599f55bb0baf54f046cd96a8d57f5f0cea20f5326c72c33c8bc7dd976ec944b40dea087232eab1f39012a7316f6c3967ea9da773a495c17f8f216919ddd92c1f8e8fdc192f58b82ab385b965ab696cc1bf0ec9aede2c53e0e22f644d367a2182daa031b645ac941532362fcad78348fa73c8d9482e482bfdb7a1c04e67c315f3bef94b6b546ac20449162d9834bdb1058706b62699209fe5b28df31c006176a3d5cf5897aa63cecb3fe7092a76049d2faa4cc02f40bf11c9949d6a993e300f2c738c3622e58a2e40d1f753675f"}, &(0x7f00000002c0)=0xf0) 2018/05/26 12:21:01 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x491]}) 2018/05/26 12:21:01 executing program 1: mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1000000) getresuid(&(0x7f0000000200), &(0x7f0000000240), &(0x7f00000002c0)) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f00000000c0)='reno\x00', 0x5) ioctl$KDSKBLED(r1, 0x4b65, 0x8000) ioctl$VHOST_SET_VRING_NUM(r0, 0x4008af10, &(0x7f0000000040)={0x2, 0x7ff}) pipe2(&(0x7f00000001c0), 0x800) ioctl$TIOCMSET(r0, 0x5418, &(0x7f0000000080)=0x5) clock_adjtime(0x0, &(0x7f0000000300)={0xfffffffffffffff7, 0x884b, 0x200, 0x7f, 0x3, 0x100000001, 0x2, 0xc16, 0x0, 0x8, 0x7851, 0x2, 0x8, 0x2, 0x9, 0x200, 0x6aae, 0x8, 0x8, 0x100, 0x2, 0xfff, 0xffffffffffffff00, 0xffff, 0xfff, 0x8}) 2018/05/26 12:21:01 executing program 2: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") io_setup(0x5, &(0x7f0000000000)=0x0) r2 = dup3(r0, r0, 0x80000) r3 = openat$cuse(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/cuse\x00', 0x10000, 0x0) r4 = syz_open_dev$amidi(&(0x7f0000000440)='/dev/amidi#\x00', 0x4, 0xc801) r5 = openat$urandom(0xffffffffffffff9c, &(0x7f00000014c0)='/dev/urandom\x00', 0x80, 0x0) r6 = syz_open_dev$vcsn(&(0x7f0000001580)='/dev/vcs#\x00', 0x6, 0x40000) r7 = openat$vcs(0xffffffffffffff9c, &(0x7f0000001700)='/dev/vcs\x00', 0x8000, 0x0) io_submit(r1, 0x6, &(0x7f0000001780)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x6, r0, &(0x7f00000000c0)="3b3b9659569d6a6b5f4e948ddf4b8dea58d6d20eada3cda29af72c21a01d07ed1f27c90c2629b2bd1f43909bb1eb365c6b8269e2fa6d64e9512c5f827a1a6997c73dacd1a4b560381425c55fc5663e9c317d0613f21613a83370e7481623dc2315245dd198aec2a8b8458879d3bee1532e49c28a8c75e4a1983430d563505da9992aaa00b54ec24e4aac7c4ab35e01f23c8e2c25e4c4eef25105ea7b6fd1c31df2b88bffb4f78e2607a5f7b2", 0xac, 0xffff, 0x0, 0x0, r2}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0xf, 0x9, r0, &(0x7f0000000280)="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", 0xfe, 0x9, 0x0, 0x0, r3}, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x7, 0x4000000000, r0, &(0x7f0000000380)="2f9e6c4b45ddc8419405dbde06f270e4e52fe1d68e0b6bec1c5e131e93df5ee673b0934853596d934f39882ab71072249d6669f6b9ab0d6fd823bbf8311a8c16e41948660b37f80780c8400a5d7085a85fa84a8328071a7b8b15bc8b9f43d206c460e45b6821e614d61a3dad27bbd78a842e4497a75344f419c94b17e237933e554ced2b0c8ea1d2b0dd3c4fbe58d42f337c2a18902e3f24b4c68c856d13ed3140e193a15b8d6748f1df0a13f76b6299d60cb5a72cd130622b5404ba0e", 0xbd, 0xfffffffffffff001, 0x0, 0x0, r4}, &(0x7f0000001500)={0x0, 0x0, 0x0, 0xf, 0xfff, r0, &(0x7f00000004c0)="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", 0x1000, 0x6, 0x0, 0x1, r5}, &(0x7f00000015c0)={0x0, 0x0, 0x0, 0x8, 0x858e, r0, &(0x7f0000001540)="8a59071acdb9fb8ccad832a337ea5fd4090afea1a9fb39949f547a9829b6ff5d6cf5d2fb683a562a34bf", 0x2a, 0x5, 0x0, 0x1, r6}, &(0x7f0000001740)={0x0, 0x0, 0x0, 0xe, 0x1, r0, &(0x7f0000001600)="b8a21945a0cc7791edea0895279fdd41555dd90597cb9b51fb798a3091c14fabd8ff0e4abdefca6752d19b71317610cd03c39955b77f564f8a06221a9ff556f071638dd2cf4f0b862472adb8ea78521766901d5e1730495cb78088eecc045671ccd3ab9113eb59a46e73ebfd3455b83a45b0d7a5a4f8bfd25257c870b42e9a0ec2c499b15e58ebffccfe873aaa667c3b415d691327a3ef6cb2fd6836914226b7633bf4edd5984b956277c7b93d23922aadd5f5d3213aa8042df9395222a9178516ec6aaf3d81e5e7c0d4e2f5398e60d943a68c802ebaf88f2a65f118534f865cc8", 0xe1, 0x6, 0x0, 0x0, r7}]) r8 = creat(&(0x7f0000000080)='./file0\x00', 0x0) write$cgroup_type(r8, &(0x7f0000000040)='threaded\x00', 0x9) 2018/05/26 12:21:01 executing program 0: mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = syz_open_dev$mouse(&(0x7f0000000100)='/dev/input/mouse#\x00', 0x7, 0x400) ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r0, 0xc0505510, &(0x7f0000001380)={0x3, 0x1, 0x1, 0x5, &(0x7f0000000180)=[{}]}) ioctl$KVM_SET_GSI_ROUTING(r0, 0x4008ae6a, &(0x7f0000000200)=ANY=[@ANYBLOB="07000000000000005fe900000100000000000000000000000000000000000000ed05000000000000d9ed00000000000001fefffffdffffff000000000300000000000000000000000000000020000000000000000000000000000000000000000000000000000000010000000200000000000000000000000500000009000000000000000000000000000000000000000000000000000000830c000007000000000000000000000009000000000000000400000000000000ff0000000000000001000000ffffffff06000000070000000000000000000000060000000000000005000000000000000400000000000000040000005f070000750100000700000000000000000000000200000001000100000000000000000000000000000000000000000000000000ff7f00000700000000000000000000000000000008000000000000000000000000000000000000000036000000000000"]) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000012000/0x1000)=nil, 0x1000}, 0x1}) r2 = creat(&(0x7f0000000140)='./control/file0\x00', 0xffffffffffffffff) write$sndseq(r2, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000000c0)='./control/file0\x00') rename(&(0x7f0000000040)='./control/file0\x00', &(0x7f0000000080)='./control\x00') mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) write(r0, &(0x7f0000000380)="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", 0x1000) open(&(0x7f0000000080)='./file0\x00', 0x85, 0x0) unlink(&(0x7f00000001c0)='./control\x00') close(r1) syz_open_dev$sndpcmc(&(0x7f0000001400)='/dev/snd/pcmC#D#c\x00', 0x8, 0x40000) 2018/05/26 12:21:18 executing program 7: mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = syz_open_dev$mouse(&(0x7f0000000100)='/dev/input/mouse#\x00', 0x7, 0x400) ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r0, 0xc0505510, &(0x7f0000001380)={0x3, 0x1, 0x1, 0x5, &(0x7f0000000180)=[{}]}) ioctl$KVM_SET_GSI_ROUTING(r0, 0x4008ae6a, &(0x7f0000000200)=ANY=[@ANYBLOB="07000000000000005fe900000100000000000000000000000000000000000000ed05000000000000d9ed00000000000001fefffffdffffff000000000300000000000000000000000000000020000000000000000000000000000000000000000000000000000000010000000200000000000000000000000500000009000000000000000000000000000000000000000000000000000000830c000007000000000000000000000009000000000000000400000000000000ff0000000000000001000000ffffffff06000000070000000000000000000000060000000000000005000000000000000400000000000000040000005f070000750100000700000000000000000000000200000001000100000000000000000000000000000000000000000000000000ff7f00000700000000000000000000000000000008000000000000000000000000000000000000000036000000000000"]) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000012000/0x1000)=nil, 0x1000}, 0x1}) r2 = creat(&(0x7f0000000140)='./control/file0\x00', 0xffffffffffffffff) write$sndseq(r2, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000000c0)='./control/file0\x00') rename(&(0x7f0000000040)='./control/file0\x00', &(0x7f0000000080)='./control\x00') mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) write(r0, &(0x7f0000000380)="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", 0x1000) open(&(0x7f0000000080)='./file0\x00', 0x85, 0x0) unlink(&(0x7f00000001c0)='./control\x00') close(r1) syz_open_dev$sndpcmc(&(0x7f0000001400)='/dev/snd/pcmC#D#c\x00', 0x8, 0x40000) 2018/05/26 12:21:18 executing program 1: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") futex(&(0x7f000000cffc)=0x4, 0x9, 0x4, &(0x7f0000000000)={0x77359400}, &(0x7f0000048000), 0x7fff) futex(&(0x7f000000cffc), 0xa, 0x0, &(0x7f00006f7000)={0xfffffffffffffffc, 0x100000000000000}, &(0x7f0000000080), 0x20) r1 = memfd_create(&(0x7f0000000040)='systemcgroupsecurity\x00', 0x3) ioctl$KIOCSOUND(r1, 0x4b2f, 0x5) 2018/05/26 12:21:18 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x40000, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:18 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x1a0]}) 2018/05/26 12:21:18 executing program 2: r0 = socket(0xa, 0x1, 0x0) openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x4000, 0x0) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) write$cgroup_type(r1, &(0x7f0000000040)='threaded\x00', 0x9) 2018/05/26 12:21:18 executing program 0: mkdir(&(0x7f000082f000)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r1 = syz_genetlink_get_family_id$fou(&(0x7f0000000480)='fou\x00') sendmsg$FOU_CMD_DEL(r0, &(0x7f0000000540)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000500)={&(0x7f00000004c0)={0x1c, r1, 0xd525e514de4654aa, 0x70bd2b, 0x25dfdbff, {0x2}, [@FOU_ATTR_PORT={0x8, 0x1, 0x4e21}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000005}, 0x80) r2 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r2, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000000c0)='./control/file0\x00') openat$full(0xffffffffffffff9c, &(0x7f0000000100)='/dev/full\x00', 0x200000, 0x0) rename(&(0x7f0000000040)='./control/file0\x00', &(0x7f0000000080)='./control\x00') mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) open(&(0x7f0000000080)='./file0\x00', 0x200000, 0x0) unlink(&(0x7f0000000140)='./file0\x00') setxattr(&(0x7f0000000180)='./file0/file0\x00', &(0x7f00000001c0)=@random={'btrfs.', '/dev/full\x00'}, &(0x7f0000000200)='/dev/full\x00', 0xa, 0x2) close(r0) syz_mount_image$btrfs(&(0x7f0000000240)='btrfs\x00', &(0x7f0000000280)='./file0/file0\x00', 0x8000, 0x1, &(0x7f00000003c0)=[{&(0x7f00000002c0)="72c1b381676710aaa7a262a1cc2ce9dc9693b90090bde48eb1cc36f1c6ec336dbc94184ff5e173f8b44525b045df5f04d088633d17579a49dcb32a3242a5231da57d5129594f2c708c4a93512ae443ebfc66fe4a8ccd5a7eb18e6db66067f63b7002bf52eda4c4340529e4c8f897d77adc11bd8d28264cd945c90754a5af7d2eca25395990abf3009043ca0b06e9e30f8d0da5add2cbc70cbbe53ced8e5aaef198ce3ebdb14d2d748870e9f2de85ba0fb152767d9bf370b9772bf3385d5452a642d687366b997b2b04cf9af13a7b5cdf293fb5e123e48af8466be2d556ed2a48ca", 0xe1, 0x7}], 0x6000, &(0x7f0000000400)={[{@nodiscard='nodiscard', 0x2c}, {@datacow='datacow', 0x2c}]}) 2018/05/26 12:21:18 executing program 4: sched_setaffinity(0x0, 0x8, &(0x7f0000d81ff8)=0x101) mkdir(&(0x7f000082f000)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) r1 = socket$inet6_dccp(0xa, 0x6, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in=@broadcast}}, {{@in6=@remote}, 0x0, @in6}}, &(0x7f0000000100)=0xe8) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) mkdir(&(0x7f00000003c0)='./file0\x00', 0x104) r2 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r2, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @tick, {0x80, 0xfffffffffffffffc}, {0x5}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000000c0)='./control/file0\x00') r3 = ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3) rename(&(0x7f0000000040)='./control/file0\x00', &(0x7f0000000080)='./control\x00') mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) r4 = open(&(0x7f0000000080)='./file0\x00', 0x200000, 0x0) unlink(&(0x7f00000001c0)='./control\x00') close(r0) ioctl$DRM_IOCTL_RES_CTX(r4, 0xc0106426, &(0x7f0000000180)={0x1, &(0x7f0000000140)=[{0x0}]}) ioctl$DRM_IOCTL_SET_SAREA_CTX(r4, 0x4010641c, &(0x7f0000000380)={r5, &(0x7f0000000300)=""/80}) 2018/05/26 12:21:18 executing program 3: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000d28000)={0xaa}) socketpair(0xa, 0x4, 0x100, &(0x7f0000000100)={0xffffffffffffffff}) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x402c5342, &(0x7f00000001c0)={0x3, 0x345, 0x1fc000, {0x77359400}, 0x10000, 0x8}) syz_mount_image$gfs2(&(0x7f0000000000)='gfs2\x00', &(0x7f0000000040)='./file0\x00', 0x8001, 0x2, &(0x7f0000000140)=[{&(0x7f0000000080)="d2f280b1a66eae9b0d76cc08f9acd446ad59718cb7596a8802208ea87a8dfa0b34b949241947ba45f6063cc9621ca973f78fb3cbe937d2b91664f81fd54be137ae187cde7a56ebae8ff470e67ecb46086e5f3088fb48e79dcc7dfaa1c3c7f8d5367d7cb6be89a126fa6c9dde8848e261d839bbce074be394744b8000a9dbce4f", 0x80, 0x2}, {&(0x7f0000000100), 0x0, 0x6}], 0x90, &(0x7f0000000180)={[{@data_ordered='data=ordered', 0x2c}]}) r2 = epoll_create1(0x80000) r3 = socket(0xa, 0x1, 0x0) syz_open_dev$adsp(&(0x7f0000000280)='/dev/adsp#\x00', 0x5e, 0x80) ioctl(r3, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) r4 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r4, 0xc0145401, &(0x7f0000013000)) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r4, 0x54a3) readv(r4, &(0x7f000042bff8)=[{&(0x7f0000e3b000)=""/61, 0x3d}], 0x1) dup3(r2, r0, 0x0) [ 432.895836] attempt to access beyond end of device [ 432.900878] loop3: rw=4096, want=136, limit=64 [ 432.905532] gfs2: error 10 reading superblock 2018/05/26 12:21:18 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/ip_tables_targets\x00') write$cgroup_type(r0, &(0x7f0000000140)='threaded\x00', 0x9) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") getsockname$ipx(r1, &(0x7f0000000000), &(0x7f00000000c0)=0x10) r2 = creat(&(0x7f0000000080)='./file0\x00', 0x0) write$cgroup_type(r2, &(0x7f0000000040)='threaded\x00', 0x9) 2018/05/26 12:21:18 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x6e0]}) 2018/05/26 12:21:18 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0xff0f0000, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:18 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x2ff]}) 2018/05/26 12:21:18 executing program 2: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") write$cgroup_type(0xffffffffffffffff, &(0x7f0000000000)='threaded\x00', 0x9) setsockopt$inet_group_source_req(r0, 0x0, 0x2f, &(0x7f0000000040)={0x100, {{0x2, 0x4e23, @multicast2=0xe0000002}}, {{0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x13}}}}, 0x108) 2018/05/26 12:21:18 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0xe4ffffff00000000, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:19 executing program 2: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") getsockopt$inet_mtu(r0, 0x0, 0xa, &(0x7f0000000000), &(0x7f00000000c0)=0x4) r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) write$cgroup_type(r1, &(0x7f0000000040)='threaded\x00', 0x9) [ 433.850901] attempt to access beyond end of device [ 433.855981] loop3: rw=4096, want=136, limit=64 [ 433.860608] gfs2: error 10 reading superblock 2018/05/26 12:21:19 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x9e]}) 2018/05/26 12:21:19 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0xff0f000000000000, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:19 executing program 2: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) write$cgroup_type(r1, &(0x7f0000000000)='threaded\x00', 0x9) write$cgroup_type(r1, &(0x7f0000000040)='threaded\x00', 0x9) 2018/05/26 12:21:19 executing program 1: r0 = socket(0xa, 0x80006, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x4, 0x0) r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ppp\x00', 0x80800, 0x0) ioctl$DRM_IOCTL_RES_CTX(r2, 0xc0106426, &(0x7f00000000c0)={0x4, &(0x7f0000000080)=[{0x0}, {}, {}, {}]}) ioctl$DRM_IOCTL_LOCK(r0, 0x4008642a, &(0x7f0000000100)={r3, 0x9}) ioctl$SG_SCSI_RESET(r1, 0x1267, 0x707000) openat(r2, &(0x7f0000000140)='./file0\x00', 0x100, 0x48) sendto$inet6(r2, &(0x7f0000000180)="5778972211e8", 0x6, 0x0, &(0x7f00000001c0)={0xa, 0x4e22, 0x100000001, @remote={0xfe, 0x80, [], 0xbb}, 0x60d}, 0x1c) 2018/05/26 12:21:19 executing program 7: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f00000003c0)={0xfffffffffffffffc}) ioctl$KVM_SET_PIT(r2, 0x4070aea0, &(0x7f00000000c0)={[{0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}]}) getsockopt$inet_sctp_SCTP_STATUS(r0, 0x84, 0xe, &(0x7f0000000140)={0x0, 0x101, 0x7e, 0x3, 0x7ff00000, 0x2, 0x7ff, 0x2, {0x0, @in={{0x2, 0x4e24, @broadcast=0xffffffff}}, 0x18, 0x0, 0x0, 0x3b8a, 0x6}}, &(0x7f0000000000)=0xb0) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000080)={r3, 0xff}, &(0x7f0000000200)=0x8) 2018/05/26 12:21:19 executing program 0: mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/autofs\x00', 0x2102, 0x0) mmap(&(0x7f0000013000/0x3000)=nil, 0x3000, 0x1, 0x10, r0, 0x0) r1 = userfaultfd(0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000015000/0x1000)=nil, 0x1000}, 0x1}) r2 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r2, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f0000000180)='./control\x00') rename(&(0x7f0000000040)='./control/file0\x00', &(0x7f0000000080)='./control\x00') mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) open(&(0x7f0000000080)='./file0\x00', 0x200000, 0x0) unlink(&(0x7f0000000140)='./file0\x00') close(r1) 2018/05/26 12:21:19 executing program 3: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000d28000)={0xaa}) epoll_create1(0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) r2 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r2, 0xc0145401, &(0x7f0000013000)) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r2, 0x54a3) readv(r2, &(0x7f000042bff8)=[{&(0x7f0000e3b000)=""/61, 0x3d}], 0x1) dup3(r1, r2, 0x2003) 2018/05/26 12:21:19 executing program 4: sched_setaffinity(0x0, 0x8, &(0x7f0000d81ff8)=0x101) mkdir(&(0x7f000082f000)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r1 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r1, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000000c0)='./control/file0\x00') rename(&(0x7f0000000040)='./control/file0\x00', &(0x7f0000000080)='./control\x00') mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) r2 = open(&(0x7f0000000080)='./file0\x00', 0x200000, 0x0) unlink(&(0x7f00000001c0)='./control\x00') close(r0) ioctl$TIOCSTI(r2, 0x5412, 0x5) 2018/05/26 12:21:19 executing program 7: r0 = socket(0xa, 0x1, 0x0) getsockopt$inet_sctp_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f0000000080)=@assoc_value={0x0, 0x1ff}, &(0x7f00000000c0)=0x8) getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000100)={r1, 0x8}, &(0x7f0000000140)=0x8) ioctl(r0, 0x8912, &(0x7f0000000040)="c626262c8523bf012cf66f") setsockopt$sock_int(r0, 0x1, 0x2e, &(0x7f0000000000)=0x3, 0x4) syz_mount_image$bfs(&(0x7f0000000200)='bfs\x00', &(0x7f0000000280)='./file0\x00', 0x0, 0x0, &(0x7f00000008c0), 0x808400, 0x0) [ 434.190308] pit: kvm: requested 2514 ns i8254 timer period limited to 200000 ns [ 434.212526] pit: kvm: requested 2514 ns i8254 timer period limited to 200000 ns 2018/05/26 12:21:20 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0xff01, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:20 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000104]}) 2018/05/26 12:21:20 executing program 2: r0 = socket(0xa, 0x1, 0x0) fremovexattr(r0, &(0x7f0000000000)=@known='security.selinux\x00') r1 = creat(&(0x7f0000000080)='./file0\x00', 0x2) syz_genetlink_get_family_id$ipvs(&(0x7f0000000100)='IPVS\x00') write$cgroup_type(r1, &(0x7f0000000040)='threaded\x00', 0x9) ioctl$TIOCSBRK(r1, 0x5427) 2018/05/26 12:21:20 executing program 1: r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x484080, 0x0) socketpair$inet(0x2, 0x80005, 0x9, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$LOOP_CHANGE_FD(r0, 0x4c06, r1) clock_getres(0xa, &(0x7f0000000080)) 2018/05/26 12:21:20 executing program 7: r0 = socket(0x10, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snapshot\x00', 0x400000, 0x0) ioctl$TIOCSBRK(r1, 0x5427) syz_mount_image$iso9660(&(0x7f0000000200)='iso9660\x00', &(0x7f0000000280)='./file0\x00', 0x0, 0x0, &(0x7f0000000380), 0x0, &(0x7f00000003c0)={[{@nojoliet='nojoliet', 0x2c}, {@iocharset={'iocharset', 0x3d, 'iso8859-15'}, 0x2c}, {@unhide='unhide', 0x2c}, {@dmode={'dmode', 0x3d, [0x39]}, 0x2c}, {@map_off='map=off', 0x2c}, {@map_normal='map=normal', 0x2c}]}) 2018/05/26 12:21:20 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0xc0000080]}) 2018/05/26 12:21:20 executing program 2: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) write$cgroup_type(r1, &(0x7f0000000040)='threaded\x00', 0x9) socket(0x9, 0x6, 0x0) 2018/05/26 12:21:20 executing program 0: mkdir(&(0x7f000082f000)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r1 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r1, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000000c0)='./control/file0\x00') rename(&(0x7f0000000040)='./control/file0\x00', &(0x7f0000000080)='./control\x00') mknod(&(0x7f0000000180)='./file0\x00', 0x400000000000, 0x0) open(&(0x7f0000000080)='./file0\x00', 0x200000, 0x0) unlink(&(0x7f00000001c0)='./control\x00') close(r0) 2018/05/26 12:21:20 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x4000, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') [ 434.768922] ISOFS: Unable to identify CD-ROM format. [ 434.841793] ISOFS: Unable to identify CD-ROM format. 2018/05/26 12:21:21 executing program 0: mkdir(&(0x7f000082f000)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) perf_event_open(&(0x7f0000000140)={0x2, 0xb1, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet_dccp(0x2, 0x6, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r1, 0x0, 0x82, &(0x7f0000000040)={'filter\x00'}, &(0x7f00000000c0)=0x50) r2 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r2, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000000c0)='./control/file0\x00') rename(&(0x7f0000000040)='./control/file0\x00', &(0x7f0000000080)='./control\x00') mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) open(&(0x7f0000000080)='./file0\x00', 0x200000, 0x0) unlink(&(0x7f00000001c0)='./control\x00') close(r0) 2018/05/26 12:21:21 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0xc0011022]}) 2018/05/26 12:21:21 executing program 7: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000200)={0x2, 0x4e22, @multicast2=0xe0000002}, 0x1) sendto$inet(r0, &(0x7f0000000280), 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23}, 0x10) r1 = dup2(r0, r0) sendmsg$IPVS_CMD_FLUSH(r1, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x14, 0x0, 0x0, 0x0, 0x0, {0x11}}, 0x14}, 0x1}, 0x4011) recvfrom$inet6(r1, &(0x7f0000000000)=""/23, 0x17, 0x3, &(0x7f0000000040)={0xa}, 0x930000) 2018/05/26 12:21:21 executing program 4: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000100)) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000180), &(0x7f0000000200)=0xc) getsockopt$sock_cred(0xffffffffffffff9c, 0x1, 0x11, &(0x7f0000000240)={0x0}, &(0x7f00000002c0)=0xc) sched_setaffinity(r0, 0x1, &(0x7f0000000140)=0x1000000101) mkdir(&(0x7f000082f000)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000280)={0xaa, 0x4}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r2 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r2, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f0000000300)='./control\x00') unlink(&(0x7f00000000c0)='./control/file0\x00') rename(&(0x7f0000000040)='./control/file0\x00', &(0x7f0000000080)='./control\x00') mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) open(&(0x7f0000000080)='./file0\x00', 0x200000, 0x0) unlink(&(0x7f00000001c0)='./control\x00') close(r1) 2018/05/26 12:21:21 executing program 3: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000d28000)={0xaa}) r1 = epoll_create1(0x0) r2 = socket(0xa, 0x1, 0x0) ioctl(r2, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) r3 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r3, 0xc0145401, &(0x7f0000013000)) fchdir(r1) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r3, 0x54a3) readv(r3, &(0x7f000042bff8)=[{&(0x7f0000e3b000)=""/61, 0x3d}], 0x1) dup3(r1, r0, 0x0) 2018/05/26 12:21:21 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x2f00, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:21 executing program 1: r0 = socket(0xa, 0x1, 0x800000000000) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f0000000140)={0x2, 0xb1, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0xb, 0x40, 0xa9, 0xa37, 0x1, 0x1}, 0x2c) bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000200)={r1, &(0x7f00000003c0)="7d300b52d94b1bbcd081d92ff11695e96e728b218d83f3b8c3a0f614699a69b357fa5573d71336a8a796006643d898db3724160478945f403ad4891eb41dd0e797e00870b966b605ea7fe32527731d086361bc37dcb33a2c0448886031623fe4465a5aafe30082998e06989146ca87ab421d106a863a4b1598e7358886333dd2e1f50a314129c4b8c38c6d2171eb639b8bcdf5037eb3d2376d10a3781e664b3fac61f537cf3fab6ac04d3f6acb114562c6216123634a84c5a3a0a9ac3eccca021f1cfdf7bf8b5a3c2a3618b6cbcd253e470cb68edf931f7151c8bc99baf948b903c5b134e427efeed9dd4fa4"}, 0x10) setsockopt$inet_group_source_req(r0, 0x0, 0x2f, &(0x7f0000000500)={0xffffffffffffff81, {{0x2, 0x4e20}}, {{0x2, 0x4e20, @local={0xac, 0x14, 0x14, 0xaa}}}}, 0x108) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000300)={r1, 0x28, &(0x7f0000000280)}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)={0xb}, 0x2c) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r1, &(0x7f0000000280), &(0x7f0000001440)}, 0x20) openat$mixer(0xffffffffffffff9c, &(0x7f0000000340)='/dev/mixer\x00', 0x200000, 0x0) bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000380)={r1, &(0x7f00000000c0)}, 0x10) ioctl$KVM_SET_DEBUGREGS(0xffffffffffffffff, 0x4080aea2, &(0x7f0000000040)={[0x5000, 0x0, 0x1000]}) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(r0, 0x84, 0x1e, &(0x7f0000000100), &(0x7f00000004c0)=0x267) 2018/05/26 12:21:21 executing program 2: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = creat(&(0x7f0000000180)='./file0\x00', 0x0) creat(&(0x7f0000000000)='./file0\x00', 0x80) write$cgroup_type(r1, &(0x7f0000000040)='threaded\x00', 0x9) 2018/05/26 12:21:21 executing program 7: r0 = socket(0xa, 0x1, 0x0) r1 = memfd_create(&(0x7f0000000000)='\x00', 0x1) ioctl$KDGKBDIACR(r1, 0x4b4a, &(0x7f0000000040)=""/68) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0xffffff87, 0x0, @local={0xfe, 0x80, [], 0xaa}, @local={0xfe, 0x80, [], 0xaa}, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, &(0x7f00000002c0)) 2018/05/26 12:21:21 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0xc0010141]}) 2018/05/26 12:21:21 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x2, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:21 executing program 2: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) write$cgroup_type(r1, &(0x7f0000000000)='threaded\x00', 0xbb51eb9ba103ef2a) 2018/05/26 12:21:21 executing program 1: r0 = socket$inet6(0xa, 0x8000000000000802, 0x0) r1 = accept$packet(0xffffffffffffff9c, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @random}, &(0x7f00000000c0)=0x14) getsockname$packet(r1, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @dev}, &(0x7f0000000140)=0x14) setsockopt$inet6_opts(r0, 0x29, 0x3b, &(0x7f0000000000)=@srh={0x0, 0x0, 0x4}, 0x8) r2 = dup2(r1, r1) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r2, 0x402c5342, &(0x7f0000000180)={0x5, 0x80000000, 0x81, {}, 0x3, 0x9}) getsockopt$inet6_opts(r0, 0x29, 0x3b, &(0x7f0000000200)=""/113, &(0x7f0000000040)=0x71) 2018/05/26 12:21:21 executing program 7: r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x8002, 0x0) getsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f0000000040), &(0x7f00000000c0)=0x4) r1 = syz_open_dev$sndseq(&(0x7f0000dcc000)='/dev/snd/seq\x00', 0x0, 0x0) read(r1, &(0x7f0000000280)=""/28, 0x58) ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r1, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "0a4ceaa05d9a00000000000000039b3fd4cec307e8ef3d13eb790ec9c65abaf90d229db692542e5b78f8b29e0a27800f0000000000000009fb42f376589701a4", 0xa9824f69d1376637, 0x10800a}) ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r1, 0x4040534e, &(0x7f000019ffe9)={0xc1}) ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r1, 0x40a85321, &(0x7f0000000380)={{}, 'port1\x00'}) ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r1, 0x40a85321, &(0x7f0000000140)={{}, 'port1\x00'}) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x0, 0x0) 2018/05/26 12:21:21 executing program 1: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r1, &(0x7f0000f56000)={0x0, 0x0, &(0x7f0000f36000)={&(0x7f0000333f88)=ANY=[@ANYBLOB="020300090c000000ffffffffffffffff02001300020000000000000000000000030006000000000002004e20e0000001000000000000002402000100f8ffffff0000000200000000030005000000000002004e20e00000010000000000000000"], 0x60}, 0x1}, 0x0) ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x3e16, 0x9, 0x0, 0xa, 0x18, 0x1, "e83d9dbf70cb51b553a2be0ccb58f453d225eb8a389c9838ce10623f5c9582babdcaae1f3cda4089062206c437383d752ab35a7f6f50d1f4839151d0f29fc6a4", "2d7e8b9355257210d646ea7fe18828392472bb92ccb27a05600e24c894634516bd610c4dde8d8bd23f3fef280d5e7821937bfb18f709eb11f052201fdb2ebe6d", "0cdbc500f0d4ee07a1b8acc271e3542cfe09840d87f3823171f506f3c34b7e2f", [0x5e, 0x1ff]}) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000140)='IPVS\x00') sendmsg$IPVS_CMD_NEW_DEST(r0, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="1c00dd00d342b16cbd3b87d20ba2ae2e704d3225600b5afaabc8250268ab8761b1", @ANYRES16=r2, @ANYBLOB="02002cbd7000fbdbdf25050000000800040000000000"], 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4) 2018/05/26 12:21:21 executing program 2: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") creat(&(0x7f0000000080)='./file0\x00', 0x0) 2018/05/26 12:21:21 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x4b564d04]}) 2018/05/26 12:21:23 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x400000000000000, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:23 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000108]}) 2018/05/26 12:21:23 executing program 2: socket$inet6_sctp(0xa, 0x1, 0x84) r0 = socket(0xa, 0x1, 0x0) fallocate(r0, 0x1, 0x80000001, 0x8) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x80, 0x0) r2 = creat(&(0x7f0000000080)='./file0\x00', 0x0) setsockopt$inet6_mtu(r1, 0x29, 0x17, &(0x7f0000000100)=0x5, 0x4) write$cgroup_type(r2, &(0x7f0000000040)='threaded\x00', 0x9) setsockopt$inet_sctp6_SCTP_MAX_BURST(r0, 0x84, 0x14, &(0x7f0000000000)=@int=0xe4, 0x4) 2018/05/26 12:21:23 executing program 1: r0 = socket$inet(0x10, 0x3, 0xc) sendmsg(r0, &(0x7f0000011fc8)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000002000)="24000000020207031dfffd946fa2830020200a0009000b00031d85680c1ba3a20400ff7e", 0x24}], 0x1}, 0x0) setsockopt$IP_VS_SO_SET_DEL(r0, 0x0, 0x484, &(0x7f0000000000)={0x1d, @dev={0xac, 0x14, 0x14, 0x16}, 0x4e20, 0x1, 'fo\x00', 0x4, 0xc287, 0x6}, 0x2c) 2018/05/26 12:21:23 executing program 3: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = accept$inet(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, @broadcast}, &(0x7f0000000040)=0x10) getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1a, &(0x7f0000000080)=ANY=[@ANYRES32=0x0, @ANYBLOB="1385c1006689ac"], &(0x7f00000000c0)=0x1b) setsockopt$inet_sctp_SCTP_AUTH_KEY(r0, 0x84, 0x17, &(0x7f0000000100)={r1, 0x28, 0xc8, "70c979bc141e0141bc3c3bb7b29aad643a5d5c8b1c01c09945722811bf19690b3617e66ad6cad382dc4262b00a504512318ad3640e9515f668623fb2e7efbadae67331f4ce6a9defbd7fb501b87b9f97baa8d14db19d3b59e2898da9117a8af234af622738de8ecc4fbbe1edd39bd2374b34cbf55171aa9af8b7503851f01388ffe4065e26a0876914728a5d6d1132e2e54860c47fcda2ded91a62577af469e78308520e342aa239b3f46feb6103298936b236e3476e790ada2a3e16d830399bee7552a2213fc458"}, 0xd0) r2 = userfaultfd(0x0) ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000d28000)={0xaa}) r3 = epoll_create1(0x0) r4 = socket(0xa, 0x1, 0x0) r5 = dup2(r2, r2) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000200)={r5, 0x50, &(0x7f0000000480)}, 0x10) ioctl(r4, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$fiemap(r0, 0xc020660b, &(0x7f0000000280)={0x3f, 0x7, 0x5, 0x20, 0x8, [{0x4, 0x9, 0x7, 0x0, 0x0, 0x802}, {0x9, 0x409, 0x4, 0x0, 0x0, 0x208}, {0x3ccc, 0x1, 0x1, 0x0, 0x0, 0x1}, {0x0, 0x81, 0x20, 0x0, 0x0, 0x908}, {0x9d8c, 0x1, 0x3, 0x0, 0x0, 0xc}, {0xc347, 0x1ff, 0x39f0, 0x0, 0x0, 0x80}, {0x4, 0x1, 0x0, 0x0, 0x0, 0x8}, {0x4, 0x8, 0x9, 0x0, 0x0, 0x200}]}) ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) r6 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r6, 0xc0145401, &(0x7f0000013000)) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r6, 0x54a3) readv(r6, &(0x7f000042bff8)=[{&(0x7f0000e3b000)=""/61, 0x3d}], 0x1) dup3(r3, r2, 0x0) 2018/05/26 12:21:23 executing program 7: 2018/05/26 12:21:23 executing program 4: getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000001340)={0x0}, &(0x7f0000001380)=0xc) sched_setaffinity(r0, 0x8, &(0x7f0000d81ff8)=0x101) mkdir(&(0x7f000082f000)='./control\x00', 0x800000000) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$mice(&(0x7f0000000180)='/dev/input/mice\x00', 0x0, 0x40) ioctl$sock_netrom_TIOCINQ(r1, 0x541b, &(0x7f0000000280)) r2 = userfaultfd(0x0) setsockopt$inet_sctp6_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f0000001500)={0x9, 0x40, 0x8, 0x4, 0x1, 0x59c, 0x5, 0x2, 0x6, 0x421a, 0x3f0}, 0xb) ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) statx(r1, &(0x7f00000013c0)='./control/file0\x00', 0x400, 0x400, &(0x7f0000001400)) ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r3 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r3, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @tick=0x6, {0x200000000000}, {}, @quote={{0x3f, 0x10000}, 0x5, &(0x7f00000002c0)={0x5, 0x0, 0x4, 0x0, @tick=0x9, {0x7, 0x81}, {0x6, 0x3}, @raw32={[0x1, 0x3]}}}}], 0x8) unlink(&(0x7f00000000c0)='./control/file0\x00') ioctl$EVIOCGBITKEY(r3, 0x80404521, &(0x7f0000000200)=""/121) rename(&(0x7f0000000040)='./control/file0\x00', &(0x7f0000000080)='./control\x00') mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) open(&(0x7f0000000080)='./file0\x00', 0x200000, 0x0) unlink(&(0x7f00000001c0)='./control\x00') ioctl$sock_SIOCGPGRP(r3, 0x8904, &(0x7f0000000300)=0x0) ptrace$setregs(0xd, r4, 0x0, &(0x7f0000000340)="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") pivot_root(&(0x7f0000000100)='./control/file0\x00', &(0x7f0000000140)='./file0\x00') close(r2) 2018/05/26 12:21:23 executing program 0: mkdir(&(0x7f000082f000)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r1 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r1, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000000c0)='./control/file0\x00') rename(&(0x7f0000000040)='./control/file0\x00', &(0x7f0000000080)='./control\x00') mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) open(&(0x7f0000000080)='./file0\x00', 0x200000, 0x0) unlink(&(0x7f00000001c0)='./control\x00') close(r1) 2018/05/26 12:21:23 executing program 1: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sndseq(&(0x7f0000000040)='/dev/snd/seq\x00', 0x0, 0x0) r1 = dup2(r0, r0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000240)={0x0, 0x0, 0x0, "9ede7a8c5ae95ec8672c93340f643a664f13eeab65c0322901dc6bd36cde2c51f01b7f0b014f9f91eeb7c37c7240f476c8d753d000aa8faf8fb574dbcfa6dc4d"}) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r1, 0x40605346, &(0x7f0000000480)={0x0, 0x0, {0x3, 0x0, 0x0, 0x0, 0x401}}) 2018/05/26 12:21:23 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x4000013b]}) 2018/05/26 12:21:23 executing program 2: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) write$cgroup_type(r1, &(0x7f0000000000)='threaded\x00', 0x9) write$cgroup_type(r1, &(0x7f0000000040)='threaded\x00', 0x9) 2018/05/26 12:21:23 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x4000000000000, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:23 executing program 7: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x10, 0x3, 0xc) sendmsg(r0, &(0x7f0000011fc8)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000000)="2400000001061f001cfffd946fa2830020200a000900010001e700000000a3a20404ff7e", 0x24}], 0x1}, 0x0) getpeername$packet(0xffffffffffffff9c, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @link_local}, &(0x7f0000000180)=0xfffffffffffffd3b) getsockopt$inet_tcp_int(r0, 0x6, 0x0, &(0x7f00000000c0), &(0x7f0000000100)=0x4) [ 437.638573] netlink: 'syz-executor7': attribute type 1 has an invalid length. [ 437.646120] netlink: 4 bytes leftover after parsing attributes in process `syz-executor7'. [ 437.674790] netlink: 'syz-executor7': attribute type 1 has an invalid length. 2018/05/26 12:21:23 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) r1 = getpid() getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000140)={{{@in=@dev, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast2}, 0x0, @in6=@mcast2}}, &(0x7f0000000000)=0xe8) r3 = getgid() setsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000040)={r1, r2, r3}, 0xc) bind$alg(r0, &(0x7f00000000c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'kw(serpent)\x00'}, 0x58) r4 = socket(0x2, 0x1, 0x0) ioctl(r4, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00003c1000), 0x0) r5 = accept$alg(r0, 0x0, 0x0) sendto$packet(r5, &(0x7f0000001240)="e863a74633ff2bbcc686add7565c6744b7cee6ca359b886e5fcbc0d68d85f78a69c2a36735fc6b61113e696ff349250c0392de3506ec5714ac0734b341edeabfe36d727d0b6d12f09d5003110c07de5266e18ada2f239678308c72ab59cfe8462da9ad5f29053902b18456c460c5267486fc5ea93738e7c25d12c893d071a6fa0e43dc0298113c64630311c4a0f8d954b00961cab54eadb72a0fd5283a4fe714a5cc682cbcd9ef7b009f9efc6f42349900cbef0a756529b189fc842c0f3455fbc100496703dec179cc3a46e42be726a33c49cc265b0c74f1455c3565d789e0a1505ec151ef2bdc3bdc181bd80fc7b437cf977247d391d9580d39ed13511d432118467fc623e9212bc4c404731d0ed1194bd7c8193df9c411fff1e7734e348cb9f9e75f7eba9a89b9b468a716858c95847eca2eebca17aece3617b7623a078907874ffe9025b44724a67ba597ab831f4c72bd239952936be7ea1b916b605ed52e064e81a8f6856f676606778633d39a1b53d65c5b23c20de2852bf2abf72ede5f3886ae556d8ee29ef4b698545b2491d4d1d011cbee2b8ca462ea5f05734704fc5931b9f7f45e8dd78abb85812666f324b85c9a5d4155295e0254592872c7514f305abd6ce7ad150ca1025a659f7094852fcdedd3962a1451bca896fb67f54743947b19011d080a1916ee1cee76441e779af0a37ae67fbe607bc0029109e2098b662a2eb9661906bd51c3deb6841cd49ffbae88fd7c6fb955beac7cb52ef812af7f8414394baff03d8d3e56ddcb4713d00e59bb7de59529d096eb9bde907b5be681cdcbcf5676033446d2f4b5a08d4a2a1750bfc84104e1281127bf6dbdb2fb07af190356987e50326e98f3e8c7c8a38dfced19b7447ef3cf3227dc040c2b5d04ddf63e92588e231f21ef9be5f51c3ae2f216bbb441c5a28ea62969da4245e37541434e1c39001b29f566fb6b0c529a6bdee30ce81a8ad7be63fc67de500fac21ce65bcc4637a58dae25918baed993cd84c8e04f4a5ce70721f6a962bd6466ba3c80bd085e4d38e7854ce6d36f34149f84df546cf4fcbbf3429ec16563e5e58c443031c5f54d5fabeff19bd71d33d7b09575535a31e90cb90b9d5efedebd91795a044168bdc3de9868f0591a79c559b4ff94cab7045c0a1359ac3a42d66ace9642fd0aaaaa9c2d006e8b1c3aaa645b22a7ef4149e6130cf116e34e545d2e3af62709616e3b1632fa6ec159bdd7c8ecc46df783341505d8f5023560b421c53819c745c6bd351cd38a737da3d6191a1b0dcce0ce208a9065c5936d851d5ec7f24c232f0a6e16988ea49094bc0155d6191553264dda0b0a4e8064587d15ccae280a0b95f8c036e8af13ec4da829bb2eb2a00f72ac1df86705dde06d50510e9ccf8745ffbe47182876d6428b7bef14f681b3c73d9d6bfb17177f162b3d3e17ef83da22906ed3a2ddda24af0ae6d3dbd32831020de605eb57d33fd1259413039258dac6414c21d51349d6c93143b8f5e805e46638d18acb5f08ea62e2500f99ce39830cb134ec97850d9b723b6b11a7284248454d24b902967224cc6eb42cc8dafd11855acad7bb868ed20d44ceb6961a783aa10f89493536bb8ee5369cacad58f3e4bcbf4b27ef1409a1c8e7a33d7892f2490f52fd951687b9dce93d2b9ceddec8831a999db387ead3ba32c2b8df26336aa3c12f2b9e8e64ab1fb71c9b97dc85869416e36bb761e00d6579e386f98246d6f7d8dd216d182625a2465a0df8ec60fef08f635bc1a6daa8f7fcda1bafb2d24aeea8a1bb026372415138e9291013732dd5c80c2f610c0cc9b6c575e1fe03318631c8636ef08c4059b0646588dbe4c6a535176dca2c4d90e5816572b142fc975fdda3a680867ebc1a6bcd62a3f12d6c92327513313fc7f4468e3749c5bf43ae6dce52511e29d94388503a43a0df079ca48688771329f6624252266845c160a08b9286e8b50cc0c83f9a6f5c339d643793c23ee278470d03cf148f3e411661f71de37987664f83e927534df33a89a8473945360a0d9821439818680567d5f1490170625be383c684ebea9d7117060d512991ad328d56b4c16f19e100ca7360c949e49baa2780cd3ad50faaeaa7a8beca50ae3d9f9a5689eba0a92fea202703077ecbe14d93d6621ca04c6571f77a77a52e6e0db31fc19af216e1f5f4ea8ee62c98710c15d62a6b4a9d2e0f428bae9c2b4b91d7b13395d93b64360e1c9f33fa9776a4b7c37bc293437ec5eeb5c3bfdfbc2e95cd51fda8bee5926cf73951b8e7af106970028f2c46ef735ca97487ddaec778905ec134b107b378275b21177cb23fddb6946e8d0e71c9a22387ca7b5953b98b51d3d31a8a201a9f08cba31539757a2bf9fb107d339615fe3206df4ddae4ab8a1a94be63fdd48174a99eb914d1a1fa8f7e926ab3103ea37854871c3220b0fe5a96cb3d33af0a5566e92f5c27bd20859bcaa1367bc28d604044407dad67dc54ae06a3d6c20694c6ecadf75e28104bb10350012b34b0ee43c899d65b771e05db8a89658f011bc135d6d30f1e511dade248ef8d2941ae363601cdfe919cc7146cb0af6477dd481a78b00711863c1df56323147f092e4bbbfeddaa801c057ba4f997f618039522ad3c4b6baffa6586921a9ac7477854511af046cb462049652c1584e8659f639b39109648d29b628b0f25093103cdc1b1015163dc9ce40d0c435774e5246e9aca9f675b17a6490d77f0a3872ef8546989464a765c7b7fa432a617ac911d3c504537dc94358bcc9e81894269ec7bb2e84d415cd1beed3f982c7e567107f5a584a98280f59eccdced92d13c80e17f804a046749efc64562f98be4b447dabd197d78c65c84cf8291840f6efa48279e0a2645efbc2a2a9121d7c0677506496a0ec355f4865c209f3e217857074bfce54902c7a0ad20645426246e7ec773f6121a7ff66f955fe2cec914fd805e514c498bf89a72ff786af1b92efae8561150b4096fb8275ca7fd84b033187323b57943abea073f5d88b0ed9774dd2bb088a88a5749ef4331e23cc030af3f91b486910e4bc9ced5c64e958b5e3a0eb65ac6d0f237539aec659771e92c27f793ba0c2cb8a0212e1e1e2d39dd7a08ed241f495470f60d187ed8b77d85dd289be1b6712c93ac58a724ab394daa039a3d58f1d2c8bda073fff0b9743cd004bc4a5c4c1d057672a4067324b48d694826315c5c9e54b48a1a7a1f0652bb795a9c7ef610be42eb2a4d138ec48e8baed07c68bae904ecd5f207fac76455c8e3b60379bae6e398a42d2f01f96cead34cc16ee266b19e173a18f81d1d07964fc07bd344e40a92153c8ddd0d66bfd9a0606c20e1523e64f5231b828d615f9d7fb919d97abbebb6128be8ba4dfbefe67e490bde48e40dad1af844c7bb3d062097cf3ea512bf749005c1cc05702554ffd0de6cf7b39c4263fb18db83d43795cd502bc77c3f61d96f35da20830f99ca10178dfe97dcf12bb014304dc2ce6a6979cd3432f09b07bee690ccd5472818b5a40d9ddf3254a176aee6cbf73791b7bae40be90c9ea9626232e6867f61754164960110dd00ffa1c1313164014d436dce4c6ac666b016e4e37b96b92e1350c49552ce2b2d9d4296a2a1cb7f4b6f84e022fa0a584d61f5bb14d5809fbe4f4957991332f88bd281c03bfee94e28c6a192ff0ba7b02a64402ee7931d97842d5f670cdddba2ca07c8093bd55f2eaa06a359eb7f6c31f47b9feb9a55f30f595172499b8a3ea180da30efc22510115f4ebec4481085bc7a7425402ffa82640b1c78585d7a74bde3ad23ea337aa22041c265058547ce99e35a8811fd9ebd87016606c3b000cf195ac25485833a234f39d8ba6c31b794d7b1071af0b694f3c01a45021be31a5764b9002c4b805760f816b49a59faf2743e4d0ec4193817bd3285c61d5806507f6a130b54f43933351dda0a5deae8d67f3d48d494b9adfde9d1953f6b518b0819d4df53d4363e37fc8cc64682397c02e89b43b98f0917df3577d7e294302970941df28acaf79ded833113be3ff2dbd5f347b4c62ecddd41755bf22f49c6578c64efd66bb09cbd4c5797a1fe4c65b9b857364f390dd8b77ec0897bcd9567e8772e4cbe6d2688f0873bf5074428d69f547de4b50a8527d35ac93d3061381bbf2b6d472b5cdad6ee3734ab5c18398feead4af08138813e8c48a7300d5f2914ef25a82acad4bcb676e2b1c9199ed766613fb9d8e2c58e403b95c61c0987c4aa42b00090a609fb289dd19d4887d582184c7ae99619dbcf90db96293cfd86e9ef59dbc0d13600ab167d232088c65a0da325668c36d6427d3e637f1d55a0e9a417faf0547dd515c5c069c22e37a45399c4db584c4cc56a5b931ccf04d1c3fe5f37dd79a0c7dda85b05a7fe9b3caf69aa5f142559a0bc9bed2d3a7463f292890fa498ece6d048a477f00f1eb576a9358d1802b252db9ffd509418440585bb02b2d1c887d374d381dfa07a82ee1bf900bdc851f2df6baea4184b5e7126fa3450abc1f9d25cf9c736dac116bca8f203e1f4372756eb87bb6b7bc279fbdeb8d8bb8f365dca5004f84941cd13db774136a0a914945b67aca66ab0471c79e20b1a8be862e09fe14aa323b540654bb7255ab85c1ccad86c7b14db4a2b1320359865002def92c138dd333db5f30b7db67aff529c6f271875b43bce1298b52aba31fedd2dcdb3e47fe7093ad7f07886be573e5b45e5df9fc81584e0168c656d82488ca67f8cef22bcf54ce1a5dbfa8db71b966e485a2a41b7edd6a1b1831d55311102bcb1a0bf938f7cbc019026606f924e0cf073e87b081a3fa4ed5e15edf8e04ab6049718101c87222f74338edc14c0cbcc3d3c3ee4b113272e528ae78fbffac60e8d30d748f600c1e6699bb628d1b23aa874537797fd1a0", 0xd88, 0x0, &(0x7f0000000740)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}}, 0x14) recvmsg(r5, &(0x7f0000000a80)={&(0x7f0000000480)=@pppol2tpin6, 0x80, &(0x7f0000000080)=[{&(0x7f0000000280)=""/92, 0xfffffed1}], 0x1, &(0x7f0000000a00)=""/111, 0x6f}, 0x0) [ 437.682323] netlink: 4 bytes leftover after parsing attributes in process `syz-executor7'. 2018/05/26 12:21:24 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x4b564d02]}) 2018/05/26 12:21:24 executing program 7: r0 = perf_event_open(&(0x7f0000000200)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f00000001c0), 0x8}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x9) getpeername(0xffffffffffffffff, &(0x7f0000000000)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @dev}}}, &(0x7f0000000080)=0x80) setsockopt$inet6_tcp_TLS_TX(r1, 0x6, 0x1, &(0x7f00000000c0)={0x303, 0x33}, 0x4) accept4$ax25(r1, &(0x7f0000000100), &(0x7f0000000140)=0x10, 0x0) ioctl$PERF_EVENT_IOC_REFRESH(r0, 0x2402, 0x0) 2018/05/26 12:21:24 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x500, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:24 executing program 1: socket$packet(0x11, 0x2, 0x300) r0 = socket$inet6(0xa, 0x2, 0x0) getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f0000000180)={0x0, 0x832}, &(0x7f00000001c0)=0x8) setsockopt$inet_sctp_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f0000000200)={r1, 0x7fff, 0x0, 0x6, 0xfff, 0xff}, 0xfffffffffffffd86) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x3}, 0x1c) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000000)={0x0, 0x8}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f0000000100)={r2, 0x100}, &(0x7f0000000140)=0x8) sendto$inet6(r0, &(0x7f0000000300), 0xfd90, 0x0, &(0x7f00000000c0)={0xa, 0x4e23, 0x0, @ipv4={[], [0xff, 0xff], @multicast2=0xe0000002}}, 0x1c) 2018/05/26 12:21:24 executing program 2: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) write$cgroup_type(r1, &(0x7f0000000040)='threaded\x00', 0x9) getsockopt$ipx_IPX_TYPE(r1, 0x100, 0x1, &(0x7f0000000000), &(0x7f00000000c0)=0x4) 2018/05/26 12:21:24 executing program 3: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000d28000)={0xaa}) r1 = epoll_create1(0x0) r2 = socket(0xa, 0x1, 0x0) ioctl(r2, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) r3 = semget$private(0x0, 0x0, 0x2a0) semctl$GETVAL(r3, 0x2, 0xc, &(0x7f0000000000)=""/223) r4 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r4, 0xc0145401, &(0x7f0000013000)) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r4, 0x54a3) readv(r4, &(0x7f000042bff8)=[{&(0x7f0000e3b000)=""/61, 0x3d}], 0x1) dup3(r1, r0, 0x0) 2018/05/26 12:21:24 executing program 4: sched_setaffinity(0x0, 0x8, &(0x7f0000d81ff8)=0x101) mkdir(&(0x7f000082f000)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r1 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r1, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000000c0)='./control/file0\x00') renameat(r1, &(0x7f0000000100)='./control\x00', r1, &(0x7f0000000140)='./control\x00') rename(&(0x7f0000000040)='./control/file0\x00', &(0x7f0000000080)='./control\x00') mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) open(&(0x7f0000000080)='./file0\x00', 0x200000, 0x0) unlink(&(0x7f00000001c0)='./control\x00') close(r0) ioctl$KDDISABIO(r1, 0x4b37) 2018/05/26 12:21:24 executing program 0: mkdir(&(0x7f000082f000)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r1 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r1, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000000c0)='./control/file0\x00') rename(&(0x7f0000000040)='./control/file0\x00', &(0x7f0000000080)='./control\x00') mknod(&(0x7f0000000180)='./control/file0\x00', 0x8050, 0xfffffffe) open(&(0x7f0000000080)='./file0\x00', 0x200000, 0x0) unlink(&(0x7f00000001c0)='./control\x00') close(r0) 2018/05/26 12:21:24 executing program 7: r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/vga_arbiter\x00', 0x202000, 0x0) getsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r0, 0x84, 0x1e, &(0x7f0000000300), &(0x7f0000000340)=0x4) r1 = syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x100) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080)='IPVS\x00') faccessat(r0, &(0x7f0000000180)='./file0\x00', 0x48, 0x200) sendmsg$IPVS_CMD_DEL_SERVICE(r1, &(0x7f0000000100)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000400)=ANY=[@ANYBLOB="04010000", @ANYRES16=r2, @ANYBLOB="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"], 0x3}, 0x1, 0x0, 0x0, 0x800}, 0x40000) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r3, &(0x7f0000000980)={&(0x7f0000000900)={0x10}, 0xc, &(0x7f0000000140)={&(0x7f00000009c0)=@dellink={0x28, 0x11, 0x103, 0x0, 0x0, {}, [@IFLA_GROUP={0x8, 0x1b, 0x80000001}]}, 0x28}, 0x1}, 0x0) ioctl$TIOCGPGRP(r1, 0x540f, &(0x7f0000000380)=0x0) sched_setattr(r4, &(0x7f00000003c0)={0x30, 0x5, 0x38334cda3fcbc846, 0xffffffffffffff56, 0x7, 0x4, 0x1ff, 0x9}, 0x0) 2018/05/26 12:21:24 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0xc001001f]}) 2018/05/26 12:21:24 executing program 1: r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000009fe8)={0xaa, 0x100000000002}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000911000)={{&(0x7f00003e3000/0x1000)=nil, 0x1000}, 0x1}) r1 = syz_open_dev$sndpcmp(&(0x7f00000001c0)='/dev/snd/pcmC#D#p\x00', 0x10000, 0x200) ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r1, 0x4040534e, &(0x7f0000000200)={0x8, @time={0x0, 0x989680}, 0x0, {0x4, 0x1f}, 0x40, 0x0, 0x4}) pipe2(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}, 0x4000) sendmsg$nl_route(r2, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000900}, 0xc, &(0x7f0000000140)={&(0x7f0000000480)=ANY=[@ANYBLOB="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"], 0x1}, 0x1, 0x0, 0x0, 0x8000}, 0x0) r4 = userfaultfd(0x0) ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f0000009fe8)={0xaa, 0xe}) ioctl$UFFDIO_REGISTER(r4, 0xc020aa00, &(0x7f0000001000)={{&(0x7f0000003000/0x4000)=nil, 0x4000}, 0x1}) ioctl$KVM_INTERRUPT(r3, 0x4004ae86, &(0x7f0000000100)=0xc3f) syz_open_dev$binder(&(0x7f0000000380)='/dev/binder#\x00', 0x0, 0x803) ioctl$UFFDIO_REGISTER(r4, 0xc020aa00, &(0x7f0000913000)={{&(0x7f00004b3000/0x5000)=nil, 0x5000}, 0x1}) clone(0x0, &(0x7f0000001f37), &(0x7f0000001ffc), &(0x7f0000001000), &(0x7f0000001000)) r5 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x40000, 0x0) ioctl$GIO_CMAP(r5, 0x4b70, &(0x7f0000000040)) read(r4, &(0x7f0000000280)=""/100, 0x64) ioctl$DRM_IOCTL_MODESET_CTL(r2, 0x40086408, &(0x7f0000000340)={0xffffffff, 0x9490}) sendto$ipx(r1, &(0x7f0000000300)="ab2b98b3cd3d9de07d9c88513fd8a79ee1049b77535e6a3c41f867b73dee0a64d7", 0x21, 0x0, 0x0, 0x0) read(r0, &(0x7f0000000400)=""/100, 0x64) 2018/05/26 12:21:24 executing program 2: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x78, &(0x7f00000000c0)="c626262c8523bf012cf66f") r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) write$cgroup_type(r1, &(0x7f0000000040)='threaded\x00', 0x9) 2018/05/26 12:21:24 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x64, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:24 executing program 7: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) write$cgroup_type(r1, &(0x7f0000000040)='threaded\x00', 0x9) getsockopt$ipx_IPX_TYPE(r1, 0x100, 0x1, &(0x7f0000000000), &(0x7f00000000c0)=0x4) 2018/05/26 12:21:24 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0xc0010140]}) 2018/05/26 12:21:25 executing program 4: sched_setaffinity(0x0, 0x8, &(0x7f0000d81ff8)=0x101) mkdir(&(0x7f000082f000)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r1 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r1, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000000c0)='./control/file0\x00') rename(&(0x7f0000000040)='./control/file0\x00', &(0x7f0000000080)='./control\x00') mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) ioctl$TCFLSH(r1, 0x540b, 0x5a) open(&(0x7f0000000080)='./file0\x00', 0x200000, 0x0) unlink(&(0x7f00000001c0)='./control\x00') close(r0) 2018/05/26 12:21:25 executing program 2: r0 = socket(0x1f, 0x7, 0x0) getpeername$ax25(r0, &(0x7f0000000100), &(0x7f0000000180)=0xfffffffffffffda2) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f0000000000)={0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, &(0x7f00000000c0)=0x1c) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000140)={r1, 0x4}, &(0x7f00000001c0)=0x8) ioctl$KVM_GET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee2, &(0x7f00000002c0)={0x0, 0x13, 0x7c99, &(0x7f0000000280)=0x9}) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") r2 = creat(&(0x7f0000000080)='./file0\x00', 0x0) write$cgroup_type(r2, &(0x7f0000000040)='threaded\x00', 0x9) 2018/05/26 12:21:25 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0xfbffffff00000000, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:25 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0xc0000081]}) 2018/05/26 12:21:25 executing program 7: perf_event_open(&(0x7f000025c000)={0x4, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x2, 0x0, 0x20000000000, 0x0, 0x0, 0x0, 0xca, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x8, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x0, 0x100000001}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x400, 0x20240) setsockopt$inet6_dccp_buf(r0, 0x21, 0x0, &(0x7f00000000c0)="a365a6c50bd87bb65abab0474e73b2cf", 0x10) syz_emit_ethernet(0x66, &(0x7f0000000000)={@random="cd3997030f00", @empty, [], {@ipv6={0x86dd, {0x0, 0x6, "b40900", 0x30, 0x3a, 0x0, @ipv4={[], [0xff, 0xff], @multicast2=0xe0000002}, @mcast2={0xff, 0x2, [], 0x1}, {[], @icmpv6=@time_exceed={0xffffff81, 0x0, 0x0, 0x0, [0x0, 0x4], {0x0, 0x6, "b680fa", 0x0, 0x0, 0x0, @ipv4={[], [0xff, 0xff], @broadcast=0xffffffff}, @ipv4={[], [0xff, 0xff], @remote={0xac, 0x14, 0xffffffffffffffff, 0xbb}}}}}}}}}, 0x0) 2018/05/26 12:21:25 executing program 3: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000d28000)={0xaa}) r1 = epoll_create1(0x0) r2 = socket(0xa, 0x1, 0x0) ioctl(r2, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) r3 = semget(0x2, 0x2, 0x4) semctl$IPC_INFO(r3, 0x0, 0x3, &(0x7f00000000c0)=""/186) r4 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r4, 0xc0145401, &(0x7f0000013000)) r5 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x4, 0x0) ioctl$DRM_IOCTL_RM_MAP(r5, 0x4028641b, &(0x7f0000000080)={&(0x7f0000011000/0x2000)=nil, 0x10001, 0x0, 0x2, &(0x7f0000011000/0x2000)=nil, 0x22}) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r4, 0x54a3) readv(r4, &(0x7f000042bff8)=[{&(0x7f0000e3b000)=""/61, 0x3d}], 0x1) dup3(r1, r0, 0x0) 2018/05/26 12:21:25 executing program 1: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/cuse\x00', 0x0, 0x0) setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='reno\x00', 0x5) syz_open_procfs(0x0, &(0x7f0000000040)='net/fib_triestat\x00') r1 = syz_open_dev$sndpcmp(&(0x7f0000000080)='/dev/snd/pcmC#D#p\x00', 0x9, 0x208000) bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x0, 0x0, 0x7ff, 0x7fffffff, 0x0, r1}, 0x2c) r2 = open(&(0x7f000000fffa)='./bus\x00', 0x141042, 0x0) open_by_handle_at(r2, &(0x7f0000000000)={0x8, 0x2}, 0x0) 2018/05/26 12:21:25 executing program 0: mkdir(&(0x7f000082f000)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r1 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r1, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000000c0)='./control/file0\x00') ioctl$KDSKBLED(r1, 0x4b65, 0x2) rename(&(0x7f0000000040)='./control/file0\x00', &(0x7f0000000080)='./control\x00') mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) open(&(0x7f0000000080)='./file0\x00', 0x200000, 0x0) unlink(&(0x7f00000001c0)='./control\x00') close(r0) 2018/05/26 12:21:25 executing program 7: sched_setaffinity(0x0, 0x8, &(0x7f0000d81ff8)=0x101) mkdir(&(0x7f000082f000)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r1 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r1, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000000c0)='./control/file0\x00') renameat(r1, &(0x7f0000000100)='./control\x00', r1, &(0x7f0000000140)='./control\x00') rename(&(0x7f0000000040)='./control/file0\x00', &(0x7f0000000080)='./control\x00') mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) open(&(0x7f0000000080)='./file0\x00', 0x200000, 0x0) unlink(&(0x7f00000001c0)='./control\x00') close(r0) ioctl$KDDISABIO(r1, 0x4b37) 2018/05/26 12:21:25 executing program 2: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f00000000c0)='IPVS\x00') setsockopt$packet_rx_ring(r1, 0x107, 0x5, &(0x7f00000001c0)=@req={0xb1, 0x8, 0xffffffff, 0x401}, 0x10) sendmsg$IPVS_CMD_GET_CONFIG(r1, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400008}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x2c, r2, 0x500, 0x70bd2b, 0x25dfdbfb, {0xd}, [@IPVS_CMD_ATTR_DAEMON={0x18, 0x3, [@IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @remote={0xfe, 0x80, [], 0xbb}}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x1}, 0x4000) setsockopt$inet6_MCAST_MSFILTER(r1, 0x29, 0x30, &(0x7f0000000380)={0x9, {{0xa, 0x4e22, 0x7ff, @mcast2={0xff, 0x2, [], 0x1}, 0xffffffff}}, 0x1, 0x3, [{{0xa, 0x4e22, 0xa0da, @mcast1={0xff, 0x1, [], 0x1}, 0x401}}, {{0xa, 0x4e22, 0xfffffffffffffffc, @empty, 0x7}}, {{0xa, 0x4e24, 0xffffffff, @dev={0xfe, 0x80, [], 0xd}, 0xfffffffffffffe00}}]}, 0x210) getsockopt$inet_sctp_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f0000000200)={0x0, 0xfffffffffffeffff, 0x800, 0x5c1, 0x36f4, 0x65}, &(0x7f0000000280)=0x14) setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f00000002c0)={r3, @in6={{0xa, 0x4e24, 0x8, @mcast2={0xff, 0x2, [], 0x1}, 0x1}}, 0x79f, 0x74}, 0x90) ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(r1, 0x4010ae74, &(0x7f00000005c0)={0x8, 0x4, 0x8}) write$cgroup_type(r1, &(0x7f0000000040)='threaded\x00', 0x9) 2018/05/26 12:21:25 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x800000, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:25 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x480]}) 2018/05/26 12:21:25 executing program 1: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = dup2(r0, r0) sendto$llc(r1, &(0x7f0000000000)="2fa1cf373f5d73b092ef20ee4f88e21947cd", 0x12, 0x10, &(0x7f0000000040)={0x1a, 0x32e, 0x4, 0x9, 0x101, 0xe2, @random="2fad1b3d51ef"}, 0x10) r2 = fcntl$getown(r0, 0x9) prlimit64(r2, 0x0, &(0x7f0000000100)={0x1f, 0x100000000}, 0x0) recvfrom$ax25(r1, &(0x7f0000000240)=""/238, 0xff6f, 0x2000, 0x0, 0x90) getsockopt$inet_tcp_TCP_REPAIR_WINDOW(r1, 0x6, 0x1d, &(0x7f0000000080), &(0x7f00000000c0)=0xf8) 2018/05/26 12:21:26 executing program 2: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f0000000000)=0x4, 0x4) r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) write$cgroup_type(r1, &(0x7f0000000040)='threaded\x00', 0x9) 2018/05/26 12:21:26 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x1d9]}) 2018/05/26 12:21:26 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x300000000000000, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:26 executing program 1: perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e4}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000140)='/dev/hwrng\x00', 0x0, 0x0) pread64(r0, &(0x7f0000000500)=""/87, 0x57, 0x0) connect$bt_rfcomm(r0, &(0x7f0000000040)={0x1f, {0x5, 0x4, 0x7fffffff, 0x4, 0x62, 0x931}, 0x2}, 0xa) 2018/05/26 12:21:26 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x176]}) 2018/05/26 12:21:26 executing program 2: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x800, 0x8000) setsockopt$inet_sctp6_SCTP_AUTOCLOSE(r1, 0x84, 0x4, &(0x7f0000000180)=0x8001, 0x4) readlinkat(r1, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)=""/106, 0x6a) r2 = creat(&(0x7f0000000080)='./file0\x00', 0x0) write$cgroup_type(r2, &(0x7f0000000040)='threaded\x00', 0x9) 2018/05/26 12:21:26 executing program 3: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000d28000)={0xaa}) r1 = epoll_create1(0x0) r2 = socket(0xa, 0x1, 0x0) ioctl(r2, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) r3 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r3, 0xc0145401, &(0x7f0000013000)) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r3, 0x54a3) readv(r3, &(0x7f000042bff8)=[{&(0x7f0000e3b000)=""/61, 0x3d}], 0x1) r4 = dup3(r1, r0, 0x0) sendfile(r0, r3, 0x0, 0x7f) ioctl$KDGKBTYPE(r4, 0x4b33, &(0x7f0000000000)) 2018/05/26 12:21:26 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x9000000, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:26 executing program 7: r0 = socket$inet(0x2, 0xf, 0x71b) getpeername$packet(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast}, &(0x7f0000000100)=0x14) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000140)={'team0\x00', r1}) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000040)={&(0x7f0000000000)={0x20, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0xc, 0x11, [@typed={0x8, 0x0, @fd}]}]}, 0x20}, 0x1}, 0x0) 2018/05/26 12:21:26 executing program 4: sched_setaffinity(0x0, 0x8, &(0x7f0000d81ff8)=0x101) r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000002840)='/dev/cuse\x00', 0x4000, 0x0) ioctl$KVM_DIRTY_TLB(r0, 0x4010aeaa, &(0x7f0000002880)={0x80, 0x9}) mkdir(&(0x7f000082f000)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000002900)={{&(0x7f0000012000/0x3000)=nil, 0x3000}, 0x3}) r2 = creat(&(0x7f0000000300)='./control\x00', 0x40) write$sndseq(r2, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000000c0)='./control/file0\x00') ioctl$SIOCGIFHWADDR(r2, 0x8927, &(0x7f00000028c0)) rename(&(0x7f0000000040)='./control/file0\x00', &(0x7f0000000080)='./control\x00') getxattr(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)=@known='trusted.syz\x00', &(0x7f0000000200)=""/164, 0xa4) mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) unlink(&(0x7f00000001c0)='./control\x00') ioctl$TIOCPKT(r2, 0x5420, &(0x7f0000000180)=0x4) close(r1) recvmsg(0xffffffffffffffff, &(0x7f0000002800)={&(0x7f0000000340)=@in={0x0, 0x0, @remote}, 0x80, &(0x7f0000002700)=[{&(0x7f00000003c0)=""/183, 0xb7}, {&(0x7f0000000480)=""/112, 0x70}, {&(0x7f0000000500)=""/234, 0xea}, {&(0x7f0000000600)=""/228, 0xe4}, {&(0x7f0000000700)=""/4096, 0x1000}, {&(0x7f0000001700)=""/4096, 0x1000}], 0x6, &(0x7f0000002780)=""/66, 0x42, 0x401}, 0x100) ioctl$KVM_ASSIGN_SET_MSIX_NR(r2, 0x4008ae73, &(0x7f00000002c0)={0x7fff}) 2018/05/26 12:21:26 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$rdma_cm(r0, &(0x7f0000001780)=@create_id={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000001740)={0xffffffff}, 0x13f}}, 0x20) write$rdma_cm(r0, &(0x7f0000000000)=@set_option={0xe, 0x18, 0xfa00, @ib_path={&(0x7f0000000100), r1, 0x1, 0x1, 0x400000}}, 0x20) munmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000) syz_emit_ethernet(0x66, &(0x7f0000000140)={@empty, @random="1b207f5c5eeb", [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x2c, 0x0, @local={0xac, 0x14, 0x14, 0xaa}, @local={0xac, 0x14, 0x14, 0xaa}}, @gre={{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x86dd}, {0x8, 0x88be, 0x0, {{0x0, 0x1}, 0x1}}, {0x8, 0x22eb, 0x0, {{0x0, 0x2}, 0x2}}, {0x8, 0x6558}}}}}}, &(0x7f0000000000)) 2018/05/26 12:21:27 executing program 1: perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e4}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000140)='/dev/hwrng\x00', 0x0, 0x0) pread64(r0, &(0x7f0000000500)=""/87, 0x57, 0x0) connect$bt_rfcomm(r0, &(0x7f0000000040)={0x1f, {0x5, 0x4, 0x7fffffff, 0x4, 0x62, 0x931}, 0x2}, 0xa) 2018/05/26 12:21:27 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000107]}) 2018/05/26 12:21:27 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0xfffffffe, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:27 executing program 2: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) write$cgroup_type(r1, &(0x7f0000000040)='threaded\x00', 0x9) setsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, &(0x7f0000000000), 0x4) 2018/05/26 12:21:27 executing program 7: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000200)='io.max\x00', 0x2, 0x0) write(r1, &(0x7f0000000140)='\f', 0x1) openat$cgroup_int(r0, &(0x7f0000000000)='cpuset.cpu_exclusive\x00', 0x2, 0x0) 2018/05/26 12:21:27 executing program 0: r0 = socket$vsock_stream(0x28, 0x1, 0x0) setsockopt$SO_VM_SOCKETS_BUFFER_SIZE(r0, 0x28, 0x2, &(0x7f0000000140), 0x7) r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rfkill\x00', 0x503202, 0x0) getsockopt$inet6_udp_int(r1, 0x11, 0x1, &(0x7f0000000040), &(0x7f0000000080)=0x4) 2018/05/26 12:21:27 executing program 1: perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e4}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000140)='/dev/hwrng\x00', 0x0, 0x0) pread64(r0, &(0x7f0000000500)=""/87, 0x57, 0x0) connect$bt_rfcomm(r0, &(0x7f0000000040)={0x1f, {0x5, 0x4, 0x7fffffff, 0x4, 0x62, 0x931}, 0x2}, 0xa) 2018/05/26 12:21:27 executing program 4: sched_setaffinity(0x0, 0x8, &(0x7f0000d81ff8)=0x101) mkdir(&(0x7f000082f000)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r1 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) symlinkat(&(0x7f0000000100)='./control\x00', r1, &(0x7f0000000b40)='./control\x00') fcntl$notify(r1, 0x402, 0x80000001) write$sndseq(r1, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) r2 = shmget(0x1, 0x3000, 0x54001690, &(0x7f0000012000/0x3000)=nil) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f0000000200)={{{@in6=@ipv4={[], [], @multicast2}, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@local}, 0x0, @in6=@remote}}, &(0x7f0000000180)=0xe8) stat(&(0x7f00000005c0)='./control/file0\x00', &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) stat(&(0x7f00000003c0)='./control\x00', &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0}) r6 = getgid() r7 = getpgid(0x0) r8 = gettid() shmctl$IPC_SET(r2, 0x1, &(0x7f0000000480)={{0xfffffffffffffffd, r3, r4, r5, r6, 0x48, 0xfffffffffffffff8}, 0x6, 0x7f, 0x7d, 0xff, r7, r8, 0xfff}) shmctl$IPC_STAT(r2, 0x2, &(0x7f0000000680)=""/59) setsockopt$inet6_udp_encap(r1, 0x11, 0x64, &(0x7f0000000640)=0x7, 0x4) setsockopt$inet_mreqsrc(r0, 0x0, 0x0, &(0x7f0000000b00)={@local={0xac, 0x14, 0x14, 0xaa}, @rand_addr=0x7ff}, 0xc) unlink(&(0x7f00000000c0)='./control/file0\x00') rename(&(0x7f0000000040)='./control/file0\x00', &(0x7f0000000080)='./control\x00') pwritev(r0, &(0x7f0000000a80)=[{&(0x7f00000006c0)="075b1c4d26f19b26eda365936625f023f5f8727c4a52b8734f77397d7da76d3f5cd4151b4f8e63ce78722bc65288525c2c59dc5eb87c50b6944534969bde09d435cc62407bdcfdc09743d09fa8f04ac9611c0b6792bbf146f423e7ea258f45ca65da3a95043cd262e4ce00a87e1dd7eb57f865dd09a61d93c29ee445b3726c8e71c1cc519b5786a8aa1f634ecc99d8ece925eb16c7bcdb008d0f4fe712e4562b6ddf9ace64467331a2aeecf0b1dd84112edf12a063eef2a0added315cf9dd78009bae18e8ba0e1b270a355038a18bf27227b6d20ff", 0xd5}, {&(0x7f00000007c0)="bc421a030bb84027d1177d35c5ae10c3fdedad3dfb43268c62130b46e3646d73c089cb506fd23e014debf981fbdd5bba9566c4a229f745ae22640f47add006bdf1f02c4de5c14d33aa19db402ca6859a478a41367d33dedc9f490727e7daf6005697e9cb713c717aa0e947d85c11be883fae4edc74cec19b2e79298eb0b0d5bdd0731c908b1ef2df21defecd59bd4e416caa6f", 0x93}, {&(0x7f0000000880)="1feb5a8f98a7ea4817f1aff79cac1b83996b1d3f57a5d78ad8a9782ab84f9295d8fcc4400cfc7fe2163568e13aa589e4fc3a62f96ec51c3f7b132b714d77e8c0b990ded92ac1ed3c6c950767c10d5140b262034d4359fd1924804232e7012edf98abd6bd0e3294ed7ed33392ae094135d641cdfa153f763baaf236d39572327760f95322b15c2c6fba956ffbfc2a493acb5386450883457f133e9fe268", 0x9d}, {&(0x7f0000000940)="6bf524aa1a509f2ce001e28dca266aab76754f53487f2893e2335e10cacaeadaf7f3d5938e16c0f8f86dc9e26aa97411c1b1ef1d294d1a73ee514833de1b95ec26314df3e5257d97d8c434581714e44bd6794497a38a9677b5a14cfbaa74d8b0f7b10f16d41a517b17ac76c290e3e3eda8458d2ab764aec339d77bbf2869c7736d0cecc74a9934039006295f0d6fece52e73e2d1f90c6f3dfbbe13f6ff240b4432d44604c3167a2caffa6d5a209534610d50ff5a44b36456f2793ef7eb35c2b5d05d8a4e5b46a83607bf411305d0cb46e152", 0xd2}, {&(0x7f0000000300)="487edb842f45047cddb212580dceaf2eb72000553df785f3c3e2e459445bb624c1024b2b91b62dc611a9e81bfb175065b5251a23a96e05df4d", 0x39}, {&(0x7f0000000540)="b5a208cda5b4d5312eb880e394fe6e7b6e368e347775c3ec48922bc61b53e4cdf593371ba6aa0b4c85a60830c7cf17e77054e73d51303593fed85c", 0x3b}, {&(0x7f0000000a40)="bda96b04be64339ade", 0x9}], 0x7, 0x0) mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) open(&(0x7f0000000080)='./file0\x00', 0x200000, 0x0) openat$mixer(0xffffffffffffff9c, &(0x7f0000000500)='/dev/mixer\x00', 0x1, 0x0) unlink(&(0x7f00000001c0)='./control\x00') migrate_pages(r8, 0x4, &(0x7f0000000580)=0x6d1, &(0x7f0000000600)=0x49) close(r0) 2018/05/26 12:21:27 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0xc001001b]}) 2018/05/26 12:21:28 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x86, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:28 executing program 0: capset(&(0x7f0000000000)={0x19980330}, &(0x7f0000000040)) r0 = semget$private(0x0, 0x6, 0x0) semop(r0, &(0x7f000002efe2)=[{}], 0x1) 2018/05/26 12:21:28 executing program 2: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x80000000, &(0x7f0000000000)='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00') r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) write$cgroup_type(r1, &(0x7f0000000040)='threaded\x00', 0x9) 2018/05/26 12:21:28 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0xd90]}) 2018/05/26 12:21:28 executing program 1: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={&(0x7f0000de2ff4)={0x10}, 0xc, &(0x7f00000000c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000000201ffff000000000000aae80b60000008000100e0000001b5c6fd858352c2bed4a50106d53ffab5c9"], 0x1c}, 0x1}, 0x0) r1 = dup2(r0, r0) getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r1, 0x84, 0x1b, &(0x7f0000000100)={0x0, 0xde, "2f6e1b5feba3aaee3c102f6a3c1009075a7485027a28f4a75cd8b9d9ebff4bd1aa8beec9ba8616a81ac8774301683a71234dbd9ac08226ca1037aa38e32431a9675162ffa4d5277a4aa397e691ccab8b4e78e87665596c87c80cd1aba7b52c11aea8b15f437b63d4a4947681c9ad776211e43824d45fb583872a04b5ec77aa61aa01db0d8a15a6d225c31e17f9869c64c9d392c9740d48f0da2ce3e2a3ec62b5ee2391eae3f0de5ed8b427ea8ff629713e02a6fcbd48aae45796a3a171ffa3e5da6cbd708ba120d7491176264e72ad913d92e838262960fc143093018cec"}, &(0x7f0000000000)=0xe6) setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r1, 0x84, 0x7c, &(0x7f0000000040)={r2, 0x9, 0x1f}, 0x8) 2018/05/26 12:21:28 executing program 4: sched_setaffinity(0x0, 0x8, &(0x7f0000d81ff8)=0x101) mkdir(&(0x7f000082f000)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x80000) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r1 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r1, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000000c0)='./control/file0\x00') rename(&(0x7f0000000040)='./control/file0\x00', &(0x7f0000000080)='./control\x00') mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) open(&(0x7f0000000080)='./file0\x00', 0x200000, 0x0) unlink(&(0x7f00000001c0)='./control\x00') close(r0) 2018/05/26 12:21:28 executing program 3: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000d28000)={0xaa}) r1 = epoll_create1(0x0) r2 = socket(0xa, 0x1, 0x0) ioctl(r2, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) time(&(0x7f0000000000)) r3 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r3, 0xc0145401, &(0x7f0000013000)) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r3, 0x54a3) readv(r3, &(0x7f000042bff8)=[{&(0x7f0000e3b000)=""/61, 0x3d}], 0x1) dup3(r1, r0, 0x0) 2018/05/26 12:21:28 executing program 7: r0 = accept4$packet(0xffffffffffffff9c, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @dev}, &(0x7f0000000080)=0x14, 0x800) setsockopt$packet_buf(r0, 0x107, 0x17, &(0x7f00000000c0)="3f8461b4fff20b128b5e09464385b58a38889b428f19594ebfb1695208075326984be47afe679415f53ff4abb95b02de0e77fccf5a95bbbb7946a025b70c12672809b3528b485c4fbf7fafa5c23ff01c5e", 0x51) r1 = perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_dev$vcsn(&(0x7f0000000200)='/dev/vcs#\x00', 0xfffffffffffffff7, 0x4b0000) ioctl$PERF_EVENT_IOC_DISABLE(r1, 0x2401, 0x5) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x2400, 0x101) sendto$packet(r0, &(0x7f0000000140), 0x0, 0x1, 0x0, 0x0) ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f00000001c0)=0x0) perf_event_open(&(0x7f0000000140)={0x5, 0x70, 0x8000, 0x10000, 0x6, 0x3, 0x0, 0x19, 0x0, 0x1, 0x1, 0x9, 0x7, 0xff, 0xff, 0x18, 0x0, 0x0, 0x8001, 0x800, 0xfff, 0x80000000, 0xf27b, 0x984200000000000, 0xfffffffffffffff8, 0x8, 0x6, 0xffffffffffff0001, 0x0, 0x400, 0x4, 0x2, 0x80000000, 0x1f, 0x4f208581, 0x7ff, 0xfff, 0xfffffffffffffffb, 0x0, 0xb9, 0x1, @perf_config_ext={0x5, 0x6}, 0x800, 0x9, 0x7, 0x5, 0x73d3, 0x8, 0x10001}, r2, 0xe, r1, 0x2) ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x40082406, &(0x7f0000000240)='\x00') r3 = getpgrp(0xffffffffffffffff) getpgrp(r3) socket$l2tp(0x18, 0x1, 0x1) 2018/05/26 12:21:28 executing program 0: r0 = syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x0, 0x0) syz_open_dev$sndseq(&(0x7f0000000040)='/dev/snd/seq\x00', 0x0, 0x400000) fcntl$setstatus(r0, 0x4, 0x2000) 2018/05/26 12:21:28 executing program 2: r0 = socket(0xa, 0x1, 0x0) ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000000)) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") socket(0x9, 0xa, 0x5) r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) write$cgroup_type(r1, &(0x7f0000000040)='threaded\x00', 0x9) 2018/05/26 12:21:28 executing program 7: r0 = socket(0xa, 0x6, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) accept4$vsock_stream(r0, &(0x7f0000000000)={0x28, 0x0, 0x2711, @my=0x1}, 0x10, 0x800) getsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000040), &(0x7f00000001c0)=0x4) clock_adjtime(0x0, &(0x7f0000000080)) 2018/05/26 12:21:28 executing program 1: r0 = socket$inet(0x2, 0x2, 0x0) setsockopt$IP_VS_SO_SET_DEL(r0, 0x0, 0x484, &(0x7f0000000000)={0x2f, @remote={0xac, 0x14, 0x14, 0xbb}, 0x4e21, 0x0, 'none\x00', 0x10, 0xffff, 0x28}, 0x2c) socketpair$inet_icmp(0x2, 0x2, 0x1, &(0x7f0000000040)) setsockopt$inet_udp_int(r0, 0x11, 0x2, &(0x7f0000000a00)=0x4, 0x4) r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000080)='/dev/audio\x00', 0x80000, 0x0) setsockopt$SO_VM_SOCKETS_BUFFER_SIZE(r1, 0x28, 0x0, &(0x7f00000000c0)=0x81, 0x8) setsockopt$l2tp_PPPOL2TP_SO_LNSMODE(r1, 0x111, 0x4, 0x1, 0x4) 2018/05/26 12:21:28 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x4000009f]}) [ 443.020882] netlink: 4 bytes leftover after parsing attributes in process `syz-executor1'. [ 443.049009] netlink: 4 bytes leftover after parsing attributes in process `syz-executor1'. 2018/05/26 12:21:28 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x100000000000000, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:28 executing program 0: r0 = socket(0xa, 0x80002, 0x0) ioctl(r0, 0x401000000008912, &(0x7f00000000c0)="26458523bf012cf66f0000c43628465b0f182fab94d84ad439ad5cf1b73831000000e2ff0d0001000000000000000000000000000000000000") syncfs(r0) r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x0, 0x0) sendmsg$nl_crypto(r1, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000240)={&(0x7f00000002c0)=@alg={0xe8, 0x10, 0x608, 0x70bd29, 0x25dfdbfe, {{'md5-generic\x00'}, [], [], 0x2400, 0x400}, [{0x8, 0x1, 0x1ff}]}, 0xe8}, 0x1, 0x0, 0x0, 0x8801}, 0x801) bind$ipx(r1, &(0x7f0000000140)={0x4, 0x5e2, 0x0, "9ba93797d014", 0x100}, 0x10) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000040)={0x10, 0xf}, 0xffffffffffffff03, &(0x7f0000000000)={&(0x7f00000005c0)=ANY=[]}, 0x1, 0x0, 0x0, 0xfffffffffffffffd}, 0x0) 2018/05/26 12:21:29 executing program 7: r0 = accept4$nfc_llcp(0xffffffffffffff9c, &(0x7f0000000000), &(0x7f0000000080)=0x60, 0x4602066d73987064) recvfrom(r0, &(0x7f00000000c0)=""/102, 0x66, 0x40000041, &(0x7f0000000140)=@in6={0xa, 0x4e24, 0x0, @loopback={0x0, 0x1}, 0x6}, 0x80) r1 = dup2(r0, r0) connect$pppoe(r1, &(0x7f0000000280)={0x18, 0x0, {0x4, @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], 'bond_slave_1\x00'}}, 0x1e) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xf, 0x3, &(0x7f0000001fd8)=ANY=[@ANYBLOB="effbd8fa1579b8e6163000000000b2ea90e06be603017e6b"], &(0x7f0000003ff6)='GPL\x00', 0x1, 0xc3, &(0x7f000000cf3d)=""/195}, 0x48) r2 = memfd_create(&(0x7f00000001c0)='}md5sum\x00', 0x2) getsockopt$inet6_opts(r2, 0x29, 0x3b, &(0x7f0000000200)=""/64, &(0x7f0000000240)=0x40) socket$unix(0x1, 0x7, 0x0) 2018/05/26 12:21:29 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x48]}) 2018/05/26 12:21:29 executing program 2: r0 = socket(0xa, 0x1, 0x0) r1 = getpgrp(0x0) ioctl$sock_SIOCSPGRP(r0, 0x8902, &(0x7f0000000000)=r1) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") creat(&(0x7f0000000080)='./file0\x00', 0x0) [ 443.375975] IPVS: set_ctl: invalid protocol: 47 172.20.20.187:20001 none [ 443.387372] IPVS: set_ctl: invalid protocol: 47 172.20.20.187:20001 none 2018/05/26 12:21:29 executing program 4: sched_setaffinity(0x0, 0x8, &(0x7f0000d81ff8)=0x101) mkdir(&(0x7f000082f000)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r1 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r1, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000000c0)='./control/file0\x00') rename(&(0x7f0000000040)='./control/file0\x00', &(0x7f0000000080)='./control\x00') mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) open(&(0x7f0000000080)='./file0\x00', 0x200000, 0x0) unlink(&(0x7f0000000180)='./control\x00') close(r0) 2018/05/26 12:21:29 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vcs\x00', 0x0, 0x0) r3 = msgget(0x2, 0x20) msgctl$MSG_STAT(r3, 0xb, &(0x7f0000000040)=""/191) getsockopt$bt_sco_SCO_OPTIONS(r2, 0x11, 0x1, &(0x7f0000000180)=""/6, &(0x7f00000001c0)=0x6) openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x189041, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r5 = getpgid(0xffffffffffffffff) renameat(r2, &(0x7f0000000240)='./file0\x00', r1, &(0x7f0000000280)='./file0\x00') ptrace$pokeuser(0x6, r5, 0x7b8, 0x2) ioctl$KVM_SET_CPUID(r4, 0x4008ae89, &(0x7f0000000000)=ANY=[@ANYBLOB="a79a7356afa9c10200048acca6f52853f3a225726a19c00000"]) ioctl$sock_kcm_SIOCKCMUNATTACH(r2, 0x89e1, &(0x7f00000002c0)={r2}) 2018/05/26 12:21:29 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0xc0000100]}) 2018/05/26 12:21:29 executing program 2: r0 = socket(0xa, 0x1, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x4000, 0x12f) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) write$cgroup_type(r1, &(0x7f0000000040)='threaded\x00', 0x9) 2018/05/26 12:21:29 executing program 3: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000d28000)={0xaa}) r1 = epoll_create1(0x0) r2 = socket(0xa, 0x1, 0x0) ioctl(r2, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) r3 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r3, 0xc0145401, &(0x7f0000013000)) io_setup(0x5, &(0x7f0000000000)=0x0) r5 = syz_open_dev$midi(&(0x7f0000000080)='/dev/midi#\x00', 0x7, 0x0) r6 = syz_open_dev$mice(&(0x7f0000000140)='/dev/input/mice\x00', 0x0, 0x0) r7 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000200)='/dev/uinput\x00', 0x80, 0x0) r8 = openat$audio(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/audio\x00', 0x2000, 0x0) r9 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f00000006c0)='/dev/qat_adf_ctl\x00', 0x1, 0x0) io_submit(r4, 0x8, &(0x7f0000000840)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x8, r0, &(0x7f0000000040)="f1df57f902f4f282e06c546abd5614f06c3a915150ed6d7f6fd4b54f3cd6", 0x1e, 0x0, 0x0, 0x1, r5}, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x3, 0xfffffffffffffc4a, r1, &(0x7f0000000100)="8f6f00f28c11b151b5e352a4c11a743745dc66156678d1f03740c7a38986d530662e3ea885fb281c00", 0x29, 0x8001, 0x0, 0x1, r6}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0xfffffffffffff66e, r1, &(0x7f00000001c0)="43e2cc0fcefe522f11cfe46ba20e7e7bb992ae6ea74b7e15e77a46879a6b0766", 0x20, 0x0, 0x0, 0x1, r7}, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x7, 0x2, r1, &(0x7f00000002c0)="b17766fa737bdff1db2c302ec984092a31c5389caaac78f48527962ae491cfa0ef9eb4a8e421b4e02acd96947d4272a2361670bc4076e8e94a62f569fbfaac994a342c54127ee47f3f14176fd558212719b032cf6fd1a1ed3253a06d4f37454cd17de34e2db4e1ef0d8870b588015bc43d6d4b7f650f57591f8c8516cd9599aa41209f8e18127c6545dfdda9b2fd6f60c25f5c34815d281073301fecf031140e7aa029191ee9ecdef77d52c75222c085f0f5a0a8328c42542679e9aa4da1adad76a937013f8233b087bff79107d79b46c67d43be646857b8d390a65b3b78222cafda9f96d2ed60e49fa93bb78062e175429ae71f28e6727a07", 0xf9, 0x9, 0x0, 0x1, r8}, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x3, 0x80, r2, &(0x7f0000000440)="7b300b3085a76de7281f66bea28c585cdf9601285bff583f84ce4e98dd17de7a0a2b290ec8ad1525b220eeebd715741792f3ebd7a8efd58d3bc82b4868", 0x3d, 0x7, 0x0, 0x0, r0}, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0xfff, r1, &(0x7f00000004c0)="bf1fca54204ca395664e74589138c673f6436ce28505e5d272ef7b8691eb3afb2f1a7f2db48da287a9262ab26a4459434d9b9c489e87642dc5e017f3a29bfc235536f2d04ea6f78c2947872a8e7c03500958aa3f2dbe5ec75f1a53e4434e25be05d4f81c3e1318b7b5838607f2de8d04f7d499e4fd1d54ccdb4b742b73ac23882fcfcded982dfdb4e5ecb1c1170c56d822f2070d61e71c3b4db86e3b", 0x9c, 0x5, 0x0, 0x1, r2}, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x6, 0x377, r1, &(0x7f00000005c0)="c6081f5293ab416b6d3f0a0283098852f79fc783a4f4e18c7b4d63f861b4183def3c95be427ded9d4e0eea49091ab90774999eb9d2251330e00be0bde68cec83d50af13a039636027a379ca8cd57c9773f04303c623cf756621351a7c55c42db9abbdcf23e197bcf3a1226846e5f06d100526a0473a154cd3ed45619f8cba09c98f9b19dd3e2947005487cf395f9e2b0236dd9de374d958b13430c8f56df83ad088966d6ed43ea6edefe55782ccf4a892e0368b7d2687d007374eb36e1af18660eadf1e706adf278be7ee6f934610a6a2975", 0xd2, 0x117f, 0x0, 0x1, r9}, &(0x7f0000000800)={0x0, 0x0, 0x0, 0x1, 0x10000, r1, &(0x7f0000000740)="5bf0e65514770e1687314e3162d58d94597b02c0a0b574218306555e33e8f58390e1f57c0c71dcda816ad5d02c712314fb1c9f8ade67f3b13c365743782e59dc3826e1d619e9dd5699d84df308dd4d4b8e0f2d66d0d004bf9201d37620771befa68e1e7e3b688b4bbf04783903c7b4481af00ed36ee629f024bf10a0624c9aa86e40f0a086ed72bc2711510e6a10f67a1364ed6a7834e5be1764c9f41edce26c504ce28da332579a38207a9180e7e81749", 0xb1, 0x0, 0x0, 0x0, r0}]) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r3, 0x54a3) readv(r3, &(0x7f000042bff8)=[{&(0x7f0000e3b000)=""/61, 0x3d}], 0x1) dup3(r1, r0, 0x0) 2018/05/26 12:21:29 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0xffffff7f, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:29 executing program 1: r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0), 0x20) r1 = socket(0xa, 0x200000000001, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") socket$inet_tcp(0x2, 0x1, 0x0) r2 = syz_open_procfs(0x0, &(0x7f0000000180)="2f65786500000000000409004bddd9de91be10eebf000ee9a90f798058439ed554fa07424adee901d2da75af1f0200f5ab26d7a071fb35331ce39c5a") mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x4) ioctl$DRM_IOCTL_RES_CTX(r2, 0xc0c0583b, &(0x7f0000000040)={0x0, &(0x7f0000000040)}) ioctl$SNDRV_TIMER_IOCTL_PARAMS(r0, 0x40505412, &(0x7f0000000100)={0x5, 0xcf38, 0x1, 0x0, 0xe}) 2018/05/26 12:21:29 executing program 0: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000d06000)=0x1, 0x4) ioctl$sock_inet_SIOCDARP(r0, 0x8953, &(0x7f0000000100)={{0x2}, {0x306, @random="16ed3e398fe0"}, 0x28, {0x2, 0x4e21, @broadcast=0xffffffff}, 'veth0_to_bond\x00'}) connect$inet(r0, &(0x7f00000000c0)={0x2}, 0x10) setsockopt$inet6_tcp_TLS_RX(r0, 0x6, 0x2, &(0x7f0000000180)={0x303, 0x33}, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x4000000000014, &(0x7f0000000000)=0x80000000001, 0x4) sendto$inet(r0, &(0x7f0000000080), 0xfffffffffffffedf, 0x0, &(0x7f0000000040)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) socket$inet(0x2, 0x5, 0x3) r1 = dup2(r0, r0) setsockopt$bt_BT_DEFER_SETUP(r1, 0x112, 0x7, &(0x7f0000000080)=0xffffffffffff8000, 0x4) bind$inet(r0, &(0x7f00000001c0)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x18}}, 0x10) recvfrom(r1, &(0x7f00000012c0)=""/162, 0xa2, 0x2, 0x0, 0x0) 2018/05/26 12:21:30 executing program 7: r0 = socket(0x2, 0x1, 0x0) r1 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_INFO(r1, 0xc08c5334, &(0x7f0000000280)={0x400, 0x10001, 0xfffffffffffffffc, 'queue1\x00', 0x4}) getcwd(&(0x7f0000000340)=""/154, 0x9a) perf_event_open(&(0x7f000000a000)={0x6, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) getpeername(r0, &(0x7f0000001980)=@generic, &(0x7f0000001a00)=0x80) syz_mount_image$cifs(&(0x7f0000000040)='cifs\x00', &(0x7f0000000080)='./file0\x00', 0x9, 0xa, &(0x7f0000001840)=[{&(0x7f0000000140)="839890817cd520897c5f793a1381bf5fdc184d6a3679bbe994bb30eda9f818cbcb8182c22b5e832023e5ebfa688f43a09ec0aa770d81aa5e7f2c4c2c734689d8db8e3078b1b84744e8f94cc4dc944fd27840d4e25fdc53711b8cb4322fac92f869d565d6970e3ee8abe70d849e2f456f92bb72458752180400e789179431b26ae1a206c08901ed9fe7c3591a8df3a2a819883efae0a17145c772910cb0b53839cd3eec9cdfdc5b7954e14078593058d88db88d04fa72982dd5b34b8fd98f7c5d665b301af14e9d1d80dd1e5913a1fb49d10d1506858ecb23a89aa15022acd235c5517ca913e9948b23a6", 0xea, 0x9}, {&(0x7f0000000400)="f55c7a8aecdc8a2809611ddc3cf3acc831e6d67cbd3dd83304de79d650a8fa8de5ff43545240db372d50e3b62374d6d47fe67081d66b4b5a345476d62ea403fc4eb7d31a9096c10d07a878755e83ec88117f6bea6edc21241794ff15e18286fced6034fc21a700b9ae9693e56d5108da805a59a4f268dfad6288b1214f4472cdfbac5cde4bf05bca6b4cd6b7d24cf262dfb21c64", 0x94, 0x400}, {&(0x7f00000004c0)="95d138a7df6d0b461a2af3ccf81a838274631b149c7548533d87abdf18e221450d01bc45f1379b3f940d251e8468eda20226d64d01e04e30296cddb186a2", 0x3e, 0x401}, {&(0x7f0000000500)="34667f0f7c7a683d2f16c2a4aac21a814edf114fadfa6b66b006b9961fa149ba4791feb6fbc7631efb973d18dd68fc7496674437215a5b119b2d3bfc8318383a9b8a6fe554", 0x45, 0x6fa}, {&(0x7f0000000580)="5c89d2deac46baadacfa811ee1f6e4590a88ef08313e12ad247e2f64aa395d5e587404721d5c9170405204003a23b354f32171ae2423682a1d9b9704033c6d0a947ee2b0d142317c1827d0a6672cb1e5f3cec58f1eae51746992765a1a670f3e4e7d6e873dcf107fb057463f4715ec90228a2929e51b5b61838e3b98841ea913360fe6bcff616fdcc545de5f17", 0x8d, 0x9000000000000000}, {&(0x7f0000000640)="90f9c76bcd1551f2a0f9261b570d334dd3f6d00592ed8bd2489568097325d6824271de990fb9c2c53c3b025b5505bd", 0x2f, 0x8}, {&(0x7f0000000680)="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", 0x1000, 0x1}, {&(0x7f0000001680)="0b07d78735ef22c29c29b94d392402b948db7446e0162fc58f0988bb2612f4d87e1d356fe0568216787ff19559791c36a8c5c1e09c405fe8c8a7e10ba6595c372b845e7d5a6b5cebc25308b174f57c28a1", 0x51, 0x4}, {&(0x7f0000001700)="129759d38a6e0bbc9e1edd700e8261341e10bbf926690e346b369abcd19d77f7b290382baa0909cc18d4dca72bf5265d9d339421c97d4485939781d81176038cd98ebad72d930d5d208799587a5b0664461694ba6f1010f3598889ec3dfc13a7df24dc30d086a65ef01b9927395ff574695c868c6da9e3e735a20b9e38df62227be30c69e3056000cf9d1fa556c99dc9", 0x90, 0x4284}, {&(0x7f00000017c0)="936d8adf59f38b82eb0dbf8e2c315c60ffc7dc1c40a4a8a3a90eb5b77dede3c8b5d75ba965e03cdf987f49a7a91ebdd003a5b05d029cd834ecc15ca6ca84bccddb7564fb68585d6578", 0x49}], 0x882000, &(0x7f0000001940)='}$ppp0\x00') ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") clone(0x0, &(0x7f0000000040), &(0x7f0000000100), &(0x7f0000000000), &(0x7f0000000080)) 2018/05/26 12:21:30 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0xc0000084]}) 2018/05/26 12:21:30 executing program 2: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) write$cgroup_type(r1, &(0x7f0000000040)='threaded\x00', 0x9) ioctl$DRM_IOCTL_GEM_FLINK(r1, 0xc008640a, &(0x7f0000000000)={0x0, 0x0}) ioctl$DRM_IOCTL_GEM_FLINK(r1, 0xc008640a, &(0x7f00000000c0)={0x0}) ioctl$DRM_IOCTL_GEM_OPEN(r1, 0xc010640b, &(0x7f0000000100)={r2, r3, 0x117cea40}) 2018/05/26 12:21:30 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x20000, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:30 executing program 0: mkdir(&(0x7f0000fd5ff8)='./file0\x00', 0x0) r0 = syz_fuse_mount(&(0x7f0000000340)='./file0\x00', 0x4000, 0x0, 0x0, 0x0, 0x0) socket$inet6_dccp(0xa, 0x6, 0x0) removexattr(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)=ANY=[@ANYBLOB='lfevj0\x00']) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x0, 0x0) clock_gettime(0x0, &(0x7f00000001c0)={0x0, 0x0}) clock_gettime(0x0, &(0x7f0000000200)={0x0, 0x0}) clock_gettime(0x0, &(0x7f0000000240)={0x0, 0x0}) clock_gettime(0x0, &(0x7f0000000280)={0x0, 0x0}) write$evdev(r1, &(0x7f0000000380)=[{{r2, r3/1000+10000}, 0x737, 0x5, 0x18}, {{r4, r5/1000+30000}, 0x5, 0x93, 0x7}, {{0x77359400}, 0x1f, 0x7, 0x9}, {{r6, r7/1000+30000}, 0x0, 0x7ff, 0x9}, {{}, 0x7fffffff, 0x5, 0x800}, {{0x77359400}, 0x20, 0x100000080000001, 0x9104}, {{r8, r9/1000+10000}, 0x0, 0x5, 0x2}, {{0x77359400}, 0xfe, 0x401, 0x535}, {{0x77359400}, 0x100000000, 0x0, 0x101}], 0xd8) fcntl$dupfd(r0, 0x0, r0) r10 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x0, 0x0) ioctl$TCSETA(r10, 0x5406, &(0x7f0000000040)={0x2, 0x3ff, 0x9, 0x1, 0x7ff, 0x1ff, 0x9, 0x8, 0x33ba, 0x6}) lchown(&(0x7f0000000100)='./file0\x00', 0x0, 0x0) bind$bt_l2cap(r10, &(0x7f0000000300)={0x1f, 0x7, {0x6, 0x5, 0x10000, 0x1, 0x9, 0x8}, 0x7fff, 0x9}, 0xe) umount2(&(0x7f00000000c0)='./file0\x00', 0x3) socket$vsock_stream(0x28, 0x1, 0x0) clock_gettime(0x7, &(0x7f00000002c0)) 2018/05/26 12:21:30 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/loop-control\x00', 0x0, 0x0) setsockopt$SO_VM_SOCKETS_CONNECT_TIMEOUT(0xffffffffffffffff, 0x28, 0x6, &(0x7f0000000180), 0x10) r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snapshot\x00', 0x40000, 0x0) ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82) r2 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82) ioctl$LOOP_CTL_ADD(r1, 0x4c81, r2) bind(r1, &(0x7f0000000000)=@ethernet={0x306, @local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}}, 0x80) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) 2018/05/26 12:21:31 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x17]}) 2018/05/26 12:21:31 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x4000000000000000, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:31 executing program 2: r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0xffffffffffffff9c, 0x6, 0x1, 0x3, &(0x7f0000000000)=[0x0, 0x0], 0x2}, 0x20) ioctl$KDGKBSENT(r0, 0x4b48, &(0x7f0000000100)={0x80, 0x8, 0x1}) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") r2 = creat(&(0x7f0000000080)='./file0\x00', 0x0) write$cgroup_type(r2, &(0x7f0000000040)='threaded\x00', 0x9) 2018/05/26 12:21:31 executing program 4: sched_setaffinity(0x0, 0x8, &(0x7f0000d81ff8)=0x101) mkdir(&(0x7f000082f000)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r1 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r1, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000000c0)='./control/file0\x00') getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000100)=@assoc_value={0x0}, &(0x7f0000000140)=0x8) setsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r1, 0x84, 0x6, &(0x7f0000000200)={r2, @in6={{0xa, 0x4e22, 0x8, @ipv4={[], [0xff, 0xff]}, 0x8}}}, 0x84) rename(&(0x7f0000000040)='./control/file0\x00', &(0x7f0000000080)='./control\x00') mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) open(&(0x7f0000000080)='./file0\x00', 0x200000, 0x0) unlink(&(0x7f00000001c0)='./control\x00') close(r0) 2018/05/26 12:21:31 executing program 1: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sndseq(&(0x7f0000dcc000)='/dev/snd/seq\x00', 0x0, 0x0) read(0xffffffffffffffff, &(0x7f0000fb6000)=""/28, 0x1c) ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80, 0x9}, "0a4ceaa05d9a00000000000000039b3fd4cec307e8ef3d13eb790ec9c65abaf90d229db692542e5b78f8b29e0a27800f0000000000000009fb42f376589701a4", 0xa9824f69d1376637, 0x10800a}) ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(0xffffffffffffffff, 0x4040534e, &(0x7f0000000240)={0x10, @tick, 0x0, {}, 0x0, 0x0, 0x100000000000}) 2018/05/26 12:21:31 executing program 3: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000d28000)={0xaa}) r1 = epoll_create1(0x7fffc) r2 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x20000, 0x0) r3 = syz_open_dev$vcsn(&(0x7f0000000040)='/dev/vcs#\x00', 0x100000001, 0x181000) ioctl$sock_kcm_SIOCKCMATTACH(r2, 0x89e0, &(0x7f0000000080)={r1, r3}) r4 = socket(0xa, 0x1, 0x0) ioctl(r4, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) r5 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r5, 0xc0145401, &(0x7f0000013000)) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r5, 0x54a3) readv(r5, &(0x7f000042bff8)=[{&(0x7f0000e3b000)=""/61, 0x3d}], 0x1) dup3(r1, r0, 0x0) 2018/05/26 12:21:31 executing program 7: r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000140)={0xaa, 0x40}) r1 = syz_open_dev$vcsa(&(0x7f0000000080)='/dev/vcsa#\x00', 0xffffffffffffffc1, 0x80) accept$unix(r1, &(0x7f00000001c0), &(0x7f0000000180)=0x6e) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000004fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000528000/0x3000)=nil, 0x3000}, 0x1}) r2 = socket(0xa, 0x1, 0x0) ioctl(r2, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") mmap(&(0x7f0000000000/0xfe3000)=nil, 0xfe3000, 0x0, 0x32, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)) openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) close(r0) 2018/05/26 12:21:31 executing program 0: mkdir(&(0x7f0000fd5ff8)='./file0\x00', 0x0) r0 = syz_fuse_mount(&(0x7f0000000340)='./file0\x00', 0x4000, 0x0, 0x0, 0x0, 0x0) socket$inet6_dccp(0xa, 0x6, 0x0) removexattr(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)=ANY=[@ANYBLOB='lfevj0\x00']) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x0, 0x0) clock_gettime(0x0, &(0x7f00000001c0)={0x0, 0x0}) clock_gettime(0x0, &(0x7f0000000200)={0x0, 0x0}) clock_gettime(0x0, &(0x7f0000000240)={0x0, 0x0}) clock_gettime(0x0, &(0x7f0000000280)={0x0, 0x0}) write$evdev(r1, &(0x7f0000000380)=[{{r2, r3/1000+10000}, 0x737, 0x5, 0x18}, {{r4, r5/1000+30000}, 0x5, 0x93, 0x7}, {{0x77359400}, 0x1f, 0x7, 0x9}, {{r6, r7/1000+30000}, 0x0, 0x7ff, 0x9}, {{}, 0x7fffffff, 0x5, 0x800}, {{0x77359400}, 0x20, 0x100000080000001, 0x9104}, {{r8, r9/1000+10000}, 0x0, 0x5, 0x2}, {{0x77359400}, 0xfe, 0x401, 0x535}, {{0x77359400}, 0x100000000, 0x0, 0x101}], 0xd8) fcntl$dupfd(r0, 0x0, r0) r10 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x0, 0x0) ioctl$TCSETA(r10, 0x5406, &(0x7f0000000040)={0x2, 0x3ff, 0x9, 0x1, 0x7ff, 0x1ff, 0x9, 0x8, 0x33ba, 0x6}) lchown(&(0x7f0000000100)='./file0\x00', 0x0, 0x0) bind$bt_l2cap(r10, &(0x7f0000000300)={0x1f, 0x7, {0x6, 0x5, 0x10000, 0x1, 0x9, 0x8}, 0x7fff, 0x9}, 0xe) umount2(&(0x7f00000000c0)='./file0\x00', 0x3) socket$vsock_stream(0x28, 0x1, 0x0) clock_gettime(0x7, &(0x7f00000002c0)) [ 445.543339] Unknown ioctl 35296 2018/05/26 12:21:31 executing program 1: r0 = socket$inet6_icmp(0xa, 0x2, 0x3a) read(r0, &(0x7f0000000000)=""/65, 0x41) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='numa_maps\x00') readv(r1, &(0x7f0000000200)=[{&(0x7f00000001c0)=""/27, 0x1b}], 0x1) exit(0x0) readv(r1, &(0x7f00000013c0)=[{&(0x7f0000001080)=""/157, 0x9d}], 0x1) 2018/05/26 12:21:31 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x8000000, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:31 executing program 2: ioctl(0xffffffffffffffff, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_STATUS(r0, 0xc05c5340, &(0x7f00000000c0)={0x5, 0x9, 0x100, {0x0, 0x989680}, 0x5, 0xffffffffffff2bff}) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(0xffffffffffffffff, 0x84, 0x66, &(0x7f0000000000)={0x0, 0x1}, &(0x7f0000000140)=0x8) setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000180)={r1, 0xfffffffffffffffa, 0x4, [0x4, 0x8, 0x4, 0x3ff]}, 0x10) write$cgroup_type(r0, &(0x7f0000000040)='threaded\x00', 0x9) 2018/05/26 12:21:31 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x4d0]}) [ 446.512045] Unknown ioctl 35296 2018/05/26 12:21:32 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000003]}) 2018/05/26 12:21:32 executing program 7: r0 = socket(0x10, 0x80002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = syz_open_dev$mouse(&(0x7f0000000080)='/dev/input/mouse#\x00', 0x3f, 0x20180) ioctl$SG_GET_VERSION_NUM(r1, 0x2282, &(0x7f00000000c0)) r2 = socket$inet6(0xa, 0x1, 0x8010000400000084) ioctl$SG_SET_RESERVED_SIZE(r1, 0x2275, &(0x7f0000000180)=0xc61) bind$inet6(r2, &(0x7f0000ed3fe4)={0xa, 0x4e20, 0x0, @loopback={0x0, 0x1}}, 0x1c) socketpair$inet6_dccp(0xa, 0x6, 0x0, &(0x7f0000000100)) setsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r1, 0x84, 0x8, &(0x7f0000000140)=0x2, 0x4) shutdown(r0, 0x0) r3 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x400000, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(r3, 0xc0045540, &(0x7f0000000040)=0x8) sendto$inet6(r2, &(0x7f0000925000)="e0", 0x1, 0x0, &(0x7f0000bb6000)={0xa, 0x4e20, 0x0, @loopback={0x0, 0x1}}, 0x1c) sendmmsg(r2, &(0x7f000050ef88)=[{{0x0, 0x0, &(0x7f0000e8afc0)=[{&(0x7f0000654000)='c', 0x1}], 0x1, &(0x7f0000607000)}}], 0x1, 0x0) setsockopt$sock_linger(r2, 0x1, 0xd, &(0x7f0000f96000)={0x9, 0x7fff}, 0xfe53) close(r2) ioctl$RNDCLEARPOOL(r1, 0x5206, &(0x7f00000001c0)=0x2b83) 2018/05/26 12:21:32 executing program 2: r0 = socket(0x80000000000004, 0x3, 0x0) r1 = syz_open_dev$sndmidi(&(0x7f0000000040)='/dev/snd/midiC#D#\x00', 0x2975, 0x800) ioctl$KVM_CHECK_EXTENSION(r1, 0xae03, 0x80000000) getsockopt$inet_sctp_SCTP_MAXSEG(r1, 0x84, 0xd, &(0x7f00000000c0)=@assoc_id=0x0, &(0x7f0000000100)=0x4) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f0000000140)={0x4, 0x200, 0x6, 0x1ff, r2}, &(0x7f0000000180)=0x10) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r0, 0x84, 0x71, &(0x7f00000001c0)={r3, 0xff}, &(0x7f0000000200)=0x8) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") r4 = creat(&(0x7f0000000080)='./file0\x00', 0x0) write$cgroup_type(r4, &(0x7f0000000000)='threaded\x00', 0x9) 2018/05/26 12:21:32 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x1000000, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:32 executing program 3: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000040)={0xaa}) r1 = gettid() fcntl$setownex(r0, 0xf, &(0x7f0000000000)={0x1, r1}) r2 = epoll_create1(0x0) r3 = socket(0xa, 0x1, 0x0) ioctl(r3, 0xb7, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) r4 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r4, 0xc0145401, &(0x7f0000013000)) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r4, 0x54a3) readv(r4, &(0x7f000042bff8)=[{&(0x7f0000e3b000)=""/61, 0x3d}], 0x1) r5 = add_key$user(&(0x7f0000000280)='user\x00', &(0x7f00000002c0)={0x73, 0x79, 0x7a, 0x2}, &(0x7f0000000300)="709bb8e0f1375686cd15ecd40000000000000000a11d08dfa973ac01a39475293220f6fc7a4f1d56276e0e6ae8394e0071c175a55aac547d1ff0e0298bd97912074c6410c3b105fdf10aec344284e267040000008fbbd6ef6218f5679b5fbb081e15c2ece5f6c4a9", 0x68, 0xfffffffffffffffc) keyctl$assume_authority(0x10, r5) r6 = dup3(r2, r0, 0x0) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r6, 0xc04064a0, &(0x7f0000000200)={&(0x7f0000000100)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000001c0)=[0x0], 0x5, 0x5, 0x8, 0x1}) getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r6, 0x84, 0x16, &(0x7f0000000080)={0x4, [0x8, 0x80000001, 0x9, 0x0]}, &(0x7f00000000c0)=0xc) 2018/05/26 12:21:32 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = syz_open_dev$adsp(&(0x7f0000000200)='/dev/adsp#\x00', 0x0, 0x40) ioctl$DRM_IOCTL_IRQ_BUSID(r1, 0xc0106403, &(0x7f0000000240)={0x0, 0x20, 0x6f2, 0x4}) r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snapshot\x00', 0x480000, 0x0) ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r2, 0x8008ae9d, &(0x7f0000000180)=""/1) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000040)=ANY=[@ANYBLOB="01000000006bb90000008042738ccc24b1c39a0700000000"]) ioctl$KIOCSOUND(r2, 0x4b2f, 0x0) ioctl$KVM_SET_GSI_ROUTING(r3, 0x4008ae6a, &(0x7f0000000080)={0x2, 0x0, [{0x69c, 0x1, 0x0, 0x0, @msi={0x3ff, 0x1, 0xfffffffffffffff7}}, {0x3, 0x3, 0x0, 0x0, @irqchip={0xffffffff7fffffff, 0x8}}]}) ioctl$KVM_GET_PIT2(r3, 0x8070ae9f, &(0x7f0000000100)) ioctl$PERF_EVENT_IOC_REFRESH(r2, 0x2402, 0xfffffffffffffffc) ioctl$KDDELIO(r2, 0x4b35, 0x3) 2018/05/26 12:21:32 executing program 4: sched_setaffinity(0x0, 0x8, &(0x7f0000d81ff8)=0x101) mkdir(&(0x7f000082f000)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x80800) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r1 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r1, &(0x7f0000011fd2)=[{0x0, 0x4000, 0x0, 0xfffffffffffffff7, @tick=0x3ff, {0x0, 0xfffffffffffffffd}, {}, @note={0x1c3b, 0x7, 0x0, 0x6, 0x9}}], 0x30) unlink(&(0x7f00000000c0)='./control/file0\x00') rename(&(0x7f0000000040)='./control/file0\x00', &(0x7f0000000080)='./control\x00') mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) open(&(0x7f0000000080)='./file0\x00', 0x200000, 0x0) unlink(&(0x7f00000001c0)='./control\x00') close(r0) 2018/05/26 12:21:32 executing program 1: r0 = creat(&(0x7f0000000700)='./bus\x00', 0x0) fcntl$setstatus(r0, 0x4, 0x6100) ftruncate(r0, 0x8200) lseek(r0, 0x0, 0x2) epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, r0) r1 = open(&(0x7f000000fffa)='./bus\x00', 0x141042, 0x0) r2 = socket(0x2000000000000a, 0x2, 0x0) futimesat(r1, &(0x7f0000000080)='./bus\x00', &(0x7f00000000c0)={{0x0, 0x2710}, {0x0, 0x7530}}) ioctl(r2, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") r3 = socket$key(0xf, 0x3, 0x2) fallocate(r3, 0x2, 0x6, 0x4) r4 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0) ioctl$TIOCGSOFTCAR(r4, 0x5419, &(0x7f0000000040)) syz_open_pts(r4, 0x65185e5030f1359e) sendfile(r0, r4, &(0x7f0000d83ff8), 0x8000fffffffe) ftruncate(r1, 0x0) 2018/05/26 12:21:32 executing program 0: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000040)='io.max\x00', 0x2, 0x0) r2 = shmget(0x1, 0x5000, 0x440, &(0x7f0000ffa000/0x5000)=nil) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000100)={{{@in=@remote, @in6=@ipv4={[], [], @rand_addr}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6}, 0x0, @in6}}, &(0x7f0000000080)=0xe8) r4 = getegid() getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffff9c, 0x0, 0x10, &(0x7f0000000200)={{{@in=@broadcast, @in=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@broadcast}, 0x0, @in=@rand_addr}}, &(0x7f0000000300)=0xe8) getsockopt$sock_cred(0xffffffffffffff9c, 0x1, 0x11, &(0x7f0000000340)={0x0, 0x0, 0x0}, &(0x7f0000000380)=0xc) r7 = fcntl$getown(r0, 0x9) r8 = getpid() shmctl$IPC_SET(r2, 0x1, &(0x7f00000003c0)={{0x2, r3, r4, r5, r6, 0x40, 0x4}, 0x2, 0xffffffffcbb27053, 0xff, 0x4, r7, r8}) write$cgroup_int(r1, &(0x7f00000000c0)={[0x36]}, 0x1) 2018/05/26 12:21:32 executing program 7: r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) recvmsg(r0, &(0x7f00000015c0)={&(0x7f0000000080)=@sco, 0x80, &(0x7f0000001500)=[{&(0x7f0000000100)=""/189, 0xbd}, {&(0x7f00000001c0)=""/130, 0x82}, {&(0x7f0000000000)=""/41, 0x29}, {&(0x7f0000000280)=""/253, 0xfd}, {&(0x7f0000000380)=""/190, 0xbe}, {&(0x7f0000000440)=""/13, 0xd}, {&(0x7f0000000480)=""/4096, 0x1000}, {&(0x7f0000001480)=""/107, 0x6b}], 0x8, &(0x7f0000001580)=""/54, 0x36, 0x773f4fd4}, 0x2) r1 = accept4(r0, &(0x7f0000001600)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @local}}}, &(0x7f0000001680)=0x80, 0x80000) setsockopt$inet6_tcp_buf(r1, 0x6, 0x16, &(0x7f00000016c0)="929fabef847dee27d64de23cfe46f34684b96d5be773ba1fe70b0b86b185ba1d091556656b59a106f39d09fdc2f015a06ea26acb32680992d15b2c814611e35c177a678a6bcfdfc6d5958044c9eba88ad28c75fc430046e8d84adb85c9f724557473343279c901f2ff11329993b554b1ef4289273cb1e69dda293bdb35a7dd532bf1d20a98075324dcc7b4c48c3bf53884c1f941fdc1b13f194c9495a4", 0x9d) getsockopt$bt_BT_SECURITY(r0, 0x112, 0x4, &(0x7f0000000040), 0x0) 2018/05/26 12:21:32 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0xd000000, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:32 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x400001c1]}) 2018/05/26 12:21:32 executing program 2: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") fstatfs(r0, &(0x7f00000000c0)=""/100) r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) write$cgroup_type(r1, &(0x7f0000000040)='threaded\x00', 0x9) 2018/05/26 12:21:32 executing program 7: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000003]}) 2018/05/26 12:21:32 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000040)={"7465616d300000000000000020000080", &(0x7f0000005180)=ANY=[@ANYBLOB="4b00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000252baa1b000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003142057584325daf57e46a8c2d5d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000044505e2fe3a60f480000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000014e8a4386cee44c639f4355d161ab3c2000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"]}) 2018/05/26 12:21:32 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0xc0010117]}) 2018/05/26 12:21:32 executing program 2: r0 = socket(0xa, 0x1, 0x0) openat$cuse(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cuse\x00', 0x0, 0x0) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) socket$inet(0x2, 0x0, 0x3ff) write$cgroup_type(r1, &(0x7f0000000040)='threaded\x00', 0x9) 2018/05/26 12:21:32 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x10000000, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:32 executing program 0: bpf$MAP_CREATE(0x0, &(0x7f0000346fd4)={0x0, 0x0, 0x0, 0x102d, 0x8}, 0x2c) bpf$PROG_LOAD(0x5, &(0x7f00000ba000)={0x5, 0x5, &(0x7f0000346fc8)=@framed={{0x18}, [@alu={0x8000000201a7f19, 0x0, 0x201a7fa6, 0x0, 0x1, 0xffffff85}], {0x95}}, &(0x7f0000f6bffb)='GPL\x00', 0x1, 0x3bc, &(0x7f00001a7f05)=""/251}, 0x2e) 2018/05/26 12:21:33 executing program 7: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000140)={0x10c, 0x6, 0x209e20, 0x8000000004, 0x0, 0xffffffffffffffff, 0x8}, 0x2c) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f00000000c0)={r0, &(0x7f0000000180), &(0x7f0000000180)=""/153}, 0xffffffffffffff41) 2018/05/26 12:21:33 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0xc0000102]}) 2018/05/26 12:21:33 executing program 2: r0 = socket(0xa, 0x1, 0x0) syz_open_dev$sndctrl(&(0x7f0000000000)='/dev/snd/controlC#\x00', 0x4, 0x0) ioctl(r0, 0x400, &(0x7f0000000240)="c62626b68573bf1b2cf66f") r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) write$cgroup_type(r1, &(0x7f0000000040)='threaded\x00', 0x9) 2018/05/26 12:21:33 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x100, 0x0) ioctl$SNDRV_SEQ_IOCTL_CLIENT_ID(r1, 0x80045301, &(0x7f0000000080)) sendmsg$nl_generic(r0, &(0x7f0000000000)={&(0x7f0000018ff4)={0x10}, 0xc, &(0x7f0000013ff1)={&(0x7f0000000180)={0x14, 0x2000029, 0x1, 0x0, 0x0, {0x1}}, 0x14}, 0x1}, 0x0) 2018/05/26 12:21:33 executing program 3: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000040)={0xaa, 0x2}) r1 = epoll_create1(0x0) r2 = socket(0xa, 0x1, 0x0) ioctl(r2, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) r3 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0) r4 = syz_open_dev$sndmidi(&(0x7f0000000140)='/dev/snd/midiC#D#\x00', 0x200000000000000, 0x400140) ioctl$EVIOCGSND(r4, 0x8040451a, &(0x7f0000000180)=""/19) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r3, 0xc0145401, &(0x7f0000013000)) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r3, 0x54a3) readv(r3, &(0x7f000042bff8)=[{&(0x7f0000e3b000)=""/61, 0x3d}], 0x1) r5 = dup3(r1, r0, 0x0) openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x40800, 0x0) ioctl$LOOP_GET_STATUS(r5, 0x4c03, &(0x7f0000000080)) 2018/05/26 12:21:33 executing program 4: sched_setaffinity(0x0, 0x8, &(0x7f0000d81ff8)=0x101) mkdir(&(0x7f000082f000)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r1 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r1, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000000c0)='./control/file0\x00') rename(&(0x7f0000000040)='./control/file0\x00', &(0x7f0000000080)='./control\x00') ioctl$VHOST_SET_VRING_ERR(r1, 0x4008af22, &(0x7f0000000100)={0x3}) mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) r2 = open(&(0x7f0000000080)='./file0\x00', 0x200000, 0x0) unlink(&(0x7f00000001c0)='./control\x00') open$dir(&(0x7f0000000140)='./file0\x00', 0x10000, 0x100) close(r0) setsockopt$packet_rx_ring(r2, 0x107, 0x5, &(0x7f0000000180)=@req={0xfffffffffffffa3b, 0xa13, 0x1, 0x1dc}, 0x10) 2018/05/26 12:21:33 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x2fae0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:33 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x40000000000080) ioctl$SG_IO(r0, 0x2285, &(0x7f00000002c0)={0x53, 0xffffffffffffffff, 0x21, 0x4, @buffer={0x0, 0x4, &(0x7f0000000040)=""/4}, &(0x7f0000000180)="3c1a016b527d9b534c1b83060141a0fcf1152a77a4831dda9216c4e70ebb36a16e", &(0x7f0000000240)=""/41, 0x0, 0x0, 0x0, &(0x7f0000000280)}) 2018/05/26 12:21:33 executing program 1: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x8912, &(0x7f0000000080)="c626262c8523bf012cf66f") r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MIF(r1, 0x29, 0xca, &(0x7f0000000000)={0x0, 0x1}, 0xc) setsockopt$inet6_int(r1, 0x29, 0xcb, &(0x7f0000000080), 0x4) r2 = semget$private(0x0, 0x0, 0x508) semctl$GETALL(r2, 0x0, 0xd, &(0x7f0000000040)=""/6) 2018/05/26 12:21:33 executing program 7: sched_setaffinity(0x0, 0x8, &(0x7f0000d81ff8)=0x101) mkdir(&(0x7f000082f000)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x80800) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r1 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r1, &(0x7f0000011fd2)=[{0x0, 0x4000, 0x0, 0xfffffffffffffff7, @tick=0x3ff, {0x0, 0xfffffffffffffffd}, {}, @note={0x1c3b, 0x7, 0x0, 0x6, 0x9}}], 0x30) unlink(&(0x7f00000000c0)='./control/file0\x00') rename(&(0x7f0000000040)='./control/file0\x00', &(0x7f0000000080)='./control\x00') mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) open(&(0x7f0000000080)='./file0\x00', 0x200000, 0x0) unlink(&(0x7f00000001c0)='./control\x00') close(r0) 2018/05/26 12:21:33 executing program 0: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_type(r0, &(0x7f00000003c0)='cgroup.type\x00', 0x2, 0x0) write$cgroup_type(r1, &(0x7f0000000040)='threaded\x00', 0x5) r2 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/cuse\x00', 0x20501, 0x0) getsockopt$inet_sctp_SCTP_EVENTS(r2, 0x84, 0xb, &(0x7f0000000140), &(0x7f0000000180)=0xb) openat$cgroup_ro(r0, &(0x7f0000000000)='pids.current\x00', 0x0, 0x0) 2018/05/26 12:21:33 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x179]}) 2018/05/26 12:21:33 executing program 2: r0 = socket(0xa, 0x100000005, 0x0) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) write$cgroup_type(r1, &(0x7f0000000040)='threaded\x00', 0x9) 2018/05/26 12:21:33 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0xfffffff4, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:33 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000d06000)=0x1, 0x4) r1 = socket(0xa, 0x1, 0x0) openat$ashmem(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ashmem\x00', 0x0, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") getsockopt$inet_sctp6_SCTP_AUTOCLOSE(0xffffffffffffffff, 0x84, 0x4, &(0x7f0000000040), &(0x7f0000000080)=0x4) mmap$binder(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x8, 0x11, r1, 0x0) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000)=[{}, {}, {}, {}], 0x200000000000014b) 2018/05/26 12:21:33 executing program 0: r0 = socket$can_bcm(0x1d, 0x2, 0x2) r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000300)='/dev/full\x00', 0x400202, 0x0) bind$llc(r1, &(0x7f0000000340)={0x1a, 0x325, 0xffffffffffffa7e6, 0x0, 0x9, 0x1, @random="f51caca16093"}, 0x10) connect(r0, &(0x7f0000000000)=@nfc={0x27, 0x1, 0x1, 0x4}, 0xfffffffffffffcfd) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000002fd8)={'vcan0\x00', 0x0}) sendmsg$can_bcm(r0, &(0x7f0000011000)={&(0x7f0000010ff0)={0x1d, r2}, 0x10, &(0x7f000000eff0)={&(0x7f0000000180)=ANY=[@ANYBLOB="04000000fcff01040000000000000000895f29884c8619befee97836a1aa5b1b94ba597f7e78d393ed2430f505a6e2a8cd90d5f75f160100a455fd81ba45dd77e7f9df20589e8723991a5bdf589358af3c330abb28774349783300de13ba74301bf86a408540", @ANYRES64=0x0, @ANYRES64=0x2710, @ANYRES64=0x77359400, @ANYRES64=0x0, @ANYBLOB="000000000100040000000000f4dec7541b52d86934f8a100000068753e49207446a705148dd98d6591445366fdc7e5b35afc19cd0ed506fb9cdba948697c01f3ec6bc0f8f98290b01d8d30bde499753f80c203fe810000000000"], 0x80}, 0x1}, 0x0) clock_gettime(0x0, &(0x7f00000000c0)={0x0, 0x0}) setsockopt$packet_rx_ring(r1, 0x107, 0x5, &(0x7f0000000380)=@req={0x1000, 0x9, 0x1, 0x8}, 0x10) sendmsg$can_bcm(r0, &(0x7f00000002c0)={&(0x7f0000000080)={0x1d, r2}, 0x10, &(0x7f0000000280)={&(0x7f0000000100)={0x7, 0x0, 0xc812, {r3, r4/1000+10000}, {}, {0x1, 0x7, 0x3f, 0x8}, 0x1, @canfd={{0x2, 0x7fff, 0x1, 0x7}, 0x16, 0x2, 0x0, 0x0, "9bda8ebd33313006d354445287b9caa5ba98429730263cca0c1b5988c517039c1b3f977a95b85b0f355c1c49049a932b25f878ef7052dfc25e141004a95f3704"}}, 0x80}, 0x1, 0x0, 0x0, 0x40}, 0x80) ioctl$KVM_SET_BOOT_CPU_ID(r1, 0xae78, &(0x7f00000003c0)) 2018/05/26 12:21:33 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x2c]}) 2018/05/26 12:21:34 executing program 2: r0 = socket(0xa, 0x1, 0x0) r1 = shmget(0x0, 0x4000, 0x112a, &(0x7f0000ff9000/0x4000)=nil) shmctl$IPC_STAT(r1, 0x2, &(0x7f0000000180)=""/146) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") r2 = creat(&(0x7f0000000080)='./file0\x00', 0x0) write$cgroup_type(r2, &(0x7f0000000040)='threaded\x00', 0x9) 2018/05/26 12:21:34 executing program 1: mprotect(&(0x7f0000033000/0x3000)=nil, 0x3000, 0x0) r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snapshot\x00', 0x100, 0x0) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000100)='IPVS\x00') sendmsg$IPVS_CMD_NEW_DAEMON(r0, &(0x7f00000001c0)={&(0x7f0000000080)={0x10}, 0xc, &(0x7f00000005c0)={&(0x7f0000000480)={0x11c, r1, 0x1, 0x70bd2a, 0x400000, {0x9}, [@IPVS_CMD_ATTR_DEST={0x1c, 0x2, [@IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e20}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3}]}, @IPVS_CMD_ATTR_SERVICE={0x28, 0x1, [@IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'nq\x00'}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_SCHED_NAME={0xc, 0x6, 'none\x00'}]}, @IPVS_CMD_ATTR_DAEMON={0x30, 0x3, [@IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e22}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0xff}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @ipv4={[], [0xff, 0xff], @dev={0xac, 0x14, 0x14, 0x16}}}]}, @IPVS_CMD_ATTR_DEST={0x14, 0x2, [@IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x9}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x10001}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4}, @IPVS_CMD_ATTR_DAEMON={0x18, 0x3, [@IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'eql\x00'}]}, @IPVS_CMD_ATTR_DEST={0x60, 0x2, [@IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x83ec}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x7}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e22}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x9}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0x2}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e24}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x7}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0xe7}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@mcast2={0xff, 0x2, [], 0x1}}]}]}, 0x11c}, 0x1}, 0x44010) ioctl$sock_inet_SIOCSARP(r0, 0x8955, &(0x7f0000000400)={{0x2, 0x4e21, @remote={0xac, 0x14, 0x14, 0xbb}}, {0x1, @random="aef63de4955d"}, 0x8, {0x2, 0x4e21, @remote={0xac, 0x14, 0x14, 0xbb}}, 'sit0\x00'}) socketpair(0xb, 0x0, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nullb0\x00', 0x4002, 0x0) r4 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000240)='IPVS\x00') sendmsg$IPVS_CMD_GET_DAEMON(r2, &(0x7f00000003c0)={&(0x7f00000000c0)={0x10}, 0xc, &(0x7f0000000380)={&(0x7f00000002c0)={0xa0, r4, 0x10, 0x70bd28, 0x25dfdbfe, {0xb}, [@IPVS_CMD_ATTR_DEST={0x60, 0x2, [@IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@local={0xfe, 0x80, [], 0xaa}}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0x2}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e24}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x200}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e23}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x1}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x2}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e20}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x1}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x81}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0xffffffffffffffc0}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x7fff}, @IPVS_CMD_ATTR_DEST={0xc, 0x2, [@IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e20}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x3}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x9}]}, 0xa0}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) write$binfmt_misc(r3, &(0x7f0000000000)={'syz1'}, 0x3e00406000) 2018/05/26 12:21:34 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000000c0)='/dev/sg#\x00', 0x0, 0x1) r1 = syz_open_dev$sndpcmc(&(0x7f0000000040)='/dev/snd/pcmC#D#c\x00', 0x3, 0x240400) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f0000000100)={0x40, 0x8, 0x3, 0x0, 0x0, [], [], [], 0x4, 0x2}) ioctl$SG_SCSI_RESET(r0, 0x227b, 0x80fd01) getsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r1, 0x6, 0x1d, &(0x7f0000000080), &(0x7f0000000240)=0x14) modify_ldt$write2(0x11, &(0x7f0000000000)={0x9, 0x20000800, 0xffffffff, 0xfffffffffffffffa, 0x1, 0x1, 0x7f, 0x0, 0x800, 0x8}, 0x10) 2018/05/26 12:21:34 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x400001ce]}) 2018/05/26 12:21:34 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0xffffff7f00000000, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:34 executing program 3: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000d28000)={0xaa}) r1 = epoll_create1(0x0) r2 = socket(0xa, 0x1, 0x0) ioctl(r2, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) r3 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0) getdents(r3, &(0x7f0000000000)=""/101, 0x65) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r3, 0xc0145401, &(0x7f0000013000)) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r3, 0x54a3) readv(r3, &(0x7f000042bff8)=[{&(0x7f0000e3b000)=""/61, 0x3d}], 0x1) dup3(r1, r0, 0x0) 2018/05/26 12:21:34 executing program 4: sched_setaffinity(0x0, 0x8, &(0x7f0000d81ff8)=0x101) mkdir(&(0x7f000082f000)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r1 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r1, &(0x7f0000011fd2)=[{0xaf7c, 0x7ffffff, 0x0, 0x2, @time, {0x9}, {0x4}, @control={0x0, 0x4}}], 0xfffffffffffffd9b) unlink(&(0x7f00000000c0)='./control/file0\x00') rename(&(0x7f0000000040)='./control/file0\x00', &(0x7f0000000080)='./control\x00') ioctl$sock_inet_SIOCDARP(r1, 0x8953, &(0x7f00000001c0)={{0x2, 0x4e20, @rand_addr=0x8}, {0x307, @local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}}, 0x46, {0x2, 0x4e21, @multicast1=0xe0000001}, 'bcsf0\x00'}) chdir(&(0x7f0000000240)='./control\x00') mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) getsockopt$bt_BT_SECURITY(r1, 0x112, 0x4, &(0x7f0000000100), 0x2) open(&(0x7f0000000080)='./file0\x00', 0x200000, 0x0) syz_open_dev$urandom(&(0x7f0000000180)='/dev/urandom\x00', 0x0, 0x41) unlink(&(0x7f0000000140)='./file0\x00') close(r0) fcntl$getflags(r1, 0x401) 2018/05/26 12:21:34 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x4000, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) r4 = open(&(0x7f0000000080)='./file0\x00', 0x280000, 0x40) ioctl$DRM_IOCTL_ADD_MAP(r4, 0xc0286415, &(0x7f00000000c0)={&(0x7f0000ffe000/0x2000)=nil, 0x6, 0x7, 0x26, &(0x7f0000ffd000/0x3000)=nil, 0x7}) r5 = epoll_create1(0x80000) socket$bt_hidp(0x1f, 0x3, 0x6) ftruncate(r5, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0xc008ae88, &(0x7f0000000140)={0x10, 0x0, [0xc001001b]}) openat$null(0xffffffffffffff9c, &(0x7f0000000040)='/dev/null\x00', 0xa0000, 0x0) 2018/05/26 12:21:34 executing program 0: r0 = socket$nl_generic(0xa, 0x5, 0x84) ioctl$sock_SIOCETHTOOL(r0, 0x89f0, &(0x7f0000000080)={"62726964676530000400", &(0x7f00000000c0)=@ethtool_cmd={0x12, 0x0, 0x707000, 0x0, 0x0, 0x0, 0x2}}) 2018/05/26 12:21:34 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x400001c2]}) 2018/05/26 12:21:35 executing program 2: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = syz_genetlink_get_family_id$team(&(0x7f00000000c0)='team\x00') getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000003c0)={{{@in6=@local, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@local}, 0x0, @in6}}, &(0x7f00000004c0)=0xe8) accept$packet(r0, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @random}, &(0x7f0000000540)=0x14) recvmmsg(r0, &(0x7f0000005d00)=[{{&(0x7f0000000580)=@sco, 0x80, &(0x7f0000000a00)=[{&(0x7f0000000600)=""/139, 0x8b}, {&(0x7f00000006c0)=""/22, 0x16}, {&(0x7f0000000700)=""/110, 0x6e}, {&(0x7f0000000780)=""/18, 0x12}, {&(0x7f00000007c0)=""/53, 0x35}, {&(0x7f0000000800)=""/205, 0xcd}, {&(0x7f0000000900)=""/198, 0xc6}], 0x7, &(0x7f0000000a80)=""/240, 0xf0, 0x81}, 0xf2a4}, {{&(0x7f0000000b80)=@vsock={0x0, 0x0, 0x0, @reserved}, 0x80, &(0x7f0000000dc0)=[{&(0x7f0000000c00)=""/178, 0xb2}, {&(0x7f0000000cc0)=""/226, 0xe2}], 0x2, &(0x7f0000000e00)=""/36, 0x24}, 0x8}, {{&(0x7f0000000e40)=@nl=@unspec, 0x80, &(0x7f0000001100)=[{&(0x7f0000000ec0)=""/146, 0x92}, {&(0x7f0000000f80)=""/129, 0x81}, {&(0x7f0000001040)=""/140, 0x8c}], 0x3, &(0x7f0000001140)=""/113, 0x71, 0x5}, 0x2}, {{0x0, 0x0, &(0x7f0000003400)=[{&(0x7f00000011c0)=""/4096, 0x1000}, {&(0x7f00000021c0)=""/255, 0xff}, {&(0x7f00000022c0)=""/67, 0x43}, {&(0x7f0000002340)=""/30, 0x1e}, {&(0x7f0000002380)=""/88, 0x58}, {&(0x7f0000002400)=""/4096, 0x1000}], 0x6, &(0x7f0000003480)=""/70, 0x46, 0x7fffffff}, 0x1}, {{&(0x7f0000003500)=@ll={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @link_local}, 0x80, &(0x7f0000003b80)=[{&(0x7f0000003580)=""/123, 0x7b}, {&(0x7f0000003600)=""/211, 0xd3}, {&(0x7f0000003700)=""/96, 0x60}, {&(0x7f0000003780)=""/87, 0x57}, {&(0x7f0000003800)=""/15, 0xf}, {&(0x7f0000003840)=""/100, 0x64}, {&(0x7f00000038c0)=""/250, 0xfa}, {&(0x7f00000039c0)=""/117, 0x75}, {&(0x7f0000003a40)=""/186, 0xba}, {&(0x7f0000003b00)=""/77, 0x4d}], 0xa, &(0x7f0000003c40)=""/237, 0xed, 0x1}, 0x1f}, {{&(0x7f0000003d40)=@pptp={0x0, 0x0, {0x0, @dev}}, 0x80, &(0x7f0000004200)=[{&(0x7f0000003dc0)=""/248, 0xf8}, {&(0x7f0000003ec0)=""/165, 0xa5}, {&(0x7f0000003f80)=""/147, 0x93}, {&(0x7f0000004040)=""/233, 0xe9}, {&(0x7f0000004140)=""/115, 0x73}, {&(0x7f00000041c0)=""/41, 0x29}], 0x6, &(0x7f0000004280)=""/4096, 0x1000, 0x4}}, {{0x0, 0x0, &(0x7f0000005680)=[{&(0x7f0000005280)=""/191, 0xbf}, {&(0x7f0000005340)=""/183, 0xb7}, {&(0x7f0000005400)=""/245, 0xf5}, {&(0x7f0000005500)=""/90, 0x5a}, {&(0x7f0000005580)=""/253, 0xfd}], 0x5, &(0x7f0000005700)=""/143, 0x8f, 0x7fffffff}, 0x7}, {{&(0x7f00000057c0)=@sco, 0x80, &(0x7f0000005940)=[{&(0x7f0000005840)=""/51, 0x33}, {&(0x7f0000005880)=""/94, 0x5e}, {&(0x7f0000005900)=""/21, 0x15}], 0x3, &(0x7f0000005980)=""/228, 0xe4, 0xc9de}, 0xb9}, {{0x0, 0x0, &(0x7f0000005c00)=[{&(0x7f0000005a80)=""/86, 0x56}, {&(0x7f0000005b00)=""/19, 0x13}, {&(0x7f0000005b40)=""/10, 0xa}, {&(0x7f0000005b80)=""/90, 0x5a}], 0x4, &(0x7f0000005c40)=""/185, 0xb9, 0x6}, 0x6}], 0x9, 0x10000, &(0x7f0000005f40)) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f00000061c0)={{{@in=@broadcast, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6}, 0x0, @in=@local}}, &(0x7f00000062c0)=0xe8) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000063c0)={'bridge0\x00', 0x0}) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000006400)={{{@in=@local, @in=@rand_addr, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast1}, 0x0, @in=@remote}}, &(0x7f0000006500)=0xe8) sendmsg$TEAM_CMD_PORT_LIST_GET(r0, &(0x7f00000067c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800400}, 0xc, &(0x7f0000006780)={&(0x7f0000006540)={0x240, r1, 0x1, 0x70bd29, 0x7e, {0x3}, [{{0x8, 0x1, r2}, {0x1a8, 0x2, [{0x3c, 0x1, @enabled={{{0x24, 0x1, 'enabled\x00'}, {0x8, 0x3, 0x6}, {0x4, 0x4}}, {0x8, 0x6, r3}}}, {0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x8}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8, 0x3, 0x6}, {0x4, 0x4}}, {0x8, 0x6, r4}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x8}}}, {0x38, 0x1, @activeport={{0x24, 0x1, 'activeport\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, r5}}}, {0x44, 0x1, @bpf_hash_func={{0x24, 0x1, 'bpf_hash_func\x00'}, {0x8, 0x3, 0xb}, {0x14, 0x4, [{0x5, 0x1d79f88a, 0x7, 0x4}, {0x40307c45, 0x800, 0x3, 0x2}]}}}, {0x40, 0x1, @priority={{{0x24, 0x1, 'priority\x00'}, {0x8, 0x3, 0xe}, {0x8, 0x4, 0x8}}, {0x8, 0x6, r6}}}]}}, {{0x8, 0x1, r7}, {0x74, 0x2, [{0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x1}}}, {0x38, 0x1, @notify_peers_interval={{0x24, 0x1, 'notify_peers_interval\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x4}}}]}}]}, 0x240}, 0x1, 0x0, 0x0, 0x8000}, 0x4000000) r8 = creat(&(0x7f0000000080)='./file0\x00', 0x0) write$cgroup_type(r8, &(0x7f0000000040)='threaded\x00', 0x9) 2018/05/26 12:21:35 executing program 7: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000080)={0x0, 0x100}, &(0x7f00000000c0)=0x8) getsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000100)=@assoc_id=r1, &(0x7f0000000200)=0x4) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x0, 0x1, &(0x7f0000000180)=[{&(0x7f00000001c0)="00010000002f000066000000c9030000ec000000010000000000000000000000002000000020000000010000000000006e5fbe5a0000ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000000040)) 2018/05/26 12:21:35 executing program 1: umount2(&(0x7f0000000040)='./file0\x00', 0x3) r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_opts(r0, 0x0, 0xb, &(0x7f0000000400)="df", 0x1) connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @local={0xac, 0x14, 0x14, 0xaa}}, 0xfffffda4) r1 = memfd_create(&(0x7f00000000c0)="237d00d3fc1ee4671fbaa0a455e73e678b8e96f7fd829d4d39f1828ebf765e220913b73db94f6d495077a6df5ab82b4c4f8d", 0x0) ftruncate(r1, 0x40001) sendfile(r0, r1, &(0x7f000000a000), 0x7ffff) 2018/05/26 12:21:35 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x804, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:35 executing program 0: r0 = socket$inet(0x2, 0xffffffffffffffff, 0x800000000000008) r1 = socket$inet6(0xa, 0x5, 0x4) connect$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @broadcast=0xffffffff}, 0x10) getsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r1, 0x84, 0x13, &(0x7f00000000c0)={0x0, 0x401}, &(0x7f0000000140)=0x8) setsockopt$inet_sctp_SCTP_AUTH_DEACTIVATE_KEY(r0, 0x84, 0x23, &(0x7f00000003c0)={r2, 0x6}, 0x8) getsockopt$inet6_tcp_int(r1, 0x6, 0x12, &(0x7f0000000180), &(0x7f00000001c0)=0x4) setsockopt$inet_int(r0, 0x0, 0x31, &(0x7f0000000100), 0x4) syz_emit_ethernet(0x2a, &(0x7f0000000200)=ANY=[@ANYBLOB="aaaeaaaaaaaaaaaaaaaaaafa07004500001c0000003f0000000000000000e00000010800907800000000b3e203ac7384b0f33af0a6e0e9e17f4cad2a8a36c361991eba7c03cef828a574763838ebaf101df70b5799148f7cbc02b7313bbbf3af00004c5d1aadaaba9abd054c5fed75765c2005bc00634e5ffb696328b5fde1a1e52ea46a305c7724588759c6a7ffeda95438bace0806ff22967da1a728cf75c7a61e4c5b04cc41e0202f46efe013730973eb795e874000000de1265676f7b826f3994c860b3b917710c54db9d5d0689c8c82e3f7cc4a1a7f75d794d86efd663530e7ee3a9f1510aeeb7f58036e1e1d5ace2bda5408e5565dac214e91236d3778063796a005c119731329b73d75f67eb8cf9fbe04685810790430f6fffa23fcf53fa316434c203173457e03fffeaa6b1aa529348248e8a6c3f5a85fcbbb228ea5844315f1c2addbb11fc88d5dc737bedba7dce3b9a00c706869841eba68a7ec3c341dfd02bc4b0a74ab7071beded8a470803b599bcf05ab26e852fade46c9513d3c0707775478dc92e23a15839b7cbe769f8ab5fac9b8c0"], &(0x7f0000000040)) ioctl$sock_inet_SIOCSIFPFLAGS(r1, 0x8934, &(0x7f0000000000)={'lo\x00', 0xfffffffffffffffb}) 2018/05/26 12:21:35 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0xc2]}) 2018/05/26 12:21:35 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f000065ffa8)={0x26, 'hash\x00', 0x0, 0x0, 'vmac(aes-generic)\x00'}, 0x58) r1 = accept$alg(r0, 0x0, 0x0) sendmsg(r1, &(0x7f00000000c0)={&(0x7f0000000000)=@pptp={0x18, 0x2, {0x0, @dev={0xac, 0x14, 0x14}}}, 0x80, &(0x7f0000002680)=[{&(0x7f0000001680)="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", 0x101}], 0x1, &(0x7f00000004c0)}, 0x0) socketpair$inet_dccp(0x2, 0x6, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGPGRP(r2, 0x8904, &(0x7f0000000100)) fallocate(r0, 0x0, 0x8, 0x2d4d) [ 449.569914] EXT4-fs (loop7): bad geometry: block count 12032 exceeds size of device (2 blocks) [ 449.598614] EXT4-fs (loop7): bad geometry: block count 12032 exceeds size of device (2 blocks) 2018/05/26 12:21:36 executing program 7: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x800000032, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000040)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000001fe2)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r2, 0x84, 0x8, &(0x7f0000013e95), 0x4) getsockopt$inet_sctp6_SCTP_INITMSG(r2, 0x84, 0x1e, &(0x7f00000000c0), &(0x7f0000000100)=0x8) pipe2(&(0x7f0000000080), 0x80800) setsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, &(0x7f0000000000)=0x4934, 0x4) close(r2) socket$alg(0x26, 0x5, 0x0) close(r1) 2018/05/26 12:21:36 executing program 1: r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") mount(&(0x7f0000000040)='./file1\x00', &(0x7f0000000140)='./file0\x00', &(0x7f0000000280)='bpf\x00', 0x0, 0x0) 2018/05/26 12:21:36 executing program 2: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, &(0x7f0000000000)={'syzkaller1\x00', 0xffff}) r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) write$cgroup_type(r1, &(0x7f0000000040)='threaded\x00', 0x9) 2018/05/26 12:21:36 executing program 4: sched_setaffinity(0x0, 0x8, &(0x7f0000d81ff8)=0x101) mkdir(&(0x7f000082f000)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r1 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r1, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000000c0)='./control/file0\x00') rename(&(0x7f0000000040)='./control/file0\x00', &(0x7f0000000080)='./control\x00') mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) r2 = open(&(0x7f0000000080)='./file0\x00', 0x200000, 0x0) unlink(&(0x7f00000001c0)='./control\x00') ioctl$TIOCGPGRP(r1, 0x540f, &(0x7f0000000200)=0x0) perf_event_open(&(0x7f0000000140)={0x1, 0x70, 0x95b, 0x2, 0x400, 0x9, 0x0, 0x2, 0x40, 0x3, 0x8, 0x16b, 0x3, 0x5ef, 0x7, 0x3, 0x2, 0x8, 0x0, 0x2, 0x2, 0x6, 0x177f, 0xc4, 0x1, 0x0, 0x1, 0x1, 0x7ff, 0x5, 0x1, 0x74, 0x10001, 0x5, 0x10000, 0x6e6, 0xfffffffffffffff7, 0x42, 0x0, 0x9a, 0x1, @perf_bp={&(0x7f0000000100), 0xd}, 0x800, 0xfff, 0x5, 0x0, 0x7ff, 0xee, 0x4}, r3, 0x3, r2, 0x2) close(r0) 2018/05/26 12:21:36 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x175]}) 2018/05/26 12:21:36 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0xffffffff000, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:36 executing program 3: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000d28000)={0xaa}) r1 = epoll_create1(0x0) r2 = socket(0xa, 0x1, 0x0) syz_mount_image$hfsplus(&(0x7f0000000000)='hfsplus\x00', &(0x7f0000000040)='./file0\x00', 0x1, 0x6, &(0x7f0000001600)=[{&(0x7f0000000280)="c0d86bd734dd58029482c922f6d972d0ab77764f0446616586024a478b5b9d4e7ad5d32d022edb7a03944053d76421d402020b903a2b20ecc13fa3c224da0fd6786fc91ff9ba6870a206c7665a19408d7b33abd16cede43159c7f5027c66a044b935dffe67d143926f4838f4a4039f42e2d9757f044e6ced11a17844c27525cf16b118213caaef4b43ba89b647d0667af8ac22af44259010b050ba06a61c627390be760cccfe849c73ed0c5753e904d246e6e35d", 0xb4, 0x48}, {&(0x7f0000000080)="bff188f853c4467be7c202883a2a1cfb685127da4c09869d13abd6cbddc7d3943ebc7671c7dea2fb548607cfe31e47b382625321", 0x34, 0x5}, {&(0x7f0000000340)="fbcef6e2bf4be84b4c923f6df6e9d294f2f61ae6202ec9fc5d9b3b8dee58abfa1c8cacee2c462997f67baf54ea2250a7e3945894f7414405abbba5a143e298ea682a7b7555b6f93210755221f2ecbae8286c5ee39680ede88c14d3697ab6533c3f4bd77862f86ae9d5177cdec5350ac022d811905cd68c65f20b9fb3524fc27d0be3b4e73d30c52c2314aa40bd0667d0951a10ecdd3c0977efc7c57d3889ba6cfc0741ab56e87250ee7b3de5921973ed62bcf0c8802c3541794fc55f8012f8bae96dd67abb13ef074c320473aafe5f5ad77962637e4340fe79a2e3c6407e5092164d", 0xe2, 0x101}, {&(0x7f0000000440)="6fb5a5e2752e79d9c2cc39a0b751657af9db3674159cec5b35ad29f6ff72fd67778933ef43a0587dfd35a1affa789a2954a181f5f49d168ed4aec9defaa50a347ba0c2f7f6bcf7b302cf772fa0685ff45aa8e73c24eb22cdbb52803a83ce8f2940cc9ab6b095d476f09c5e331c451cdb490ba96e18a39b9ef1d4cca0a6329c4ded3f41ae93ac3ed3cda19a58d2ddba808ef22dc97c6b26a9db5bd7e7312ab36de173e0547e9df80f77f53b1594e6012516b6d0f83187bd565ab3af0217194d67", 0xc0, 0xffffffffffffff3d}, {&(0x7f0000000500)="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", 0x1000, 0x400}, {&(0x7f0000001500)="eac6a4bcb60d481c54e0f40c9183c1a4413111e5fad4938b0029867409aa60ab8c08333089a0524de4f62a786f29e6017c5028119b598a4bf2d7879ed2fc40a7ef8facc87266ba0d411d1f0fd1475e70399df505168ff03721edc9711042c62dc6de19ef5b756626f20d18a9018a71cb5521662e3be106edefca2709e6a4af1d72b140d9fbcd1970c2c2dfe338bd4e3842d380ec13375c38c7761844cd566ad2d8896fb8ceef060bd070a698fad1c6deb4f38e60d5a349b7265fc44ca3f1b5f9594aed0d7bb37ebf", 0xc8, 0x100}], 0x0, &(0x7f0000000200)={[{@nls={'nls', 0x3d, 'cp860'}, 0x2c}, {@nodecompose='nodecompose', 0x2c}, {@part={'part', 0x3d, [0x37]}, 0x2c}, {@decompose='decompose', 0x2c}, {@part={'part', 0x3d, [0x30, 0x35, 0x33, 0x0, 0x36, 0x35, 0x7f, 0x3a, 0x34]}, 0x2c}]}) ioctl(r2, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) r3 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r3, 0xc0145401, &(0x7f0000013000)) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r3, 0x54a3) readv(r3, &(0x7f00000028c0)=[{&(0x7f00000000c0)=""/66, 0x42}, {&(0x7f0000000140)=""/138, 0x8a}, {&(0x7f0000002280)=""/132, 0x84}, {&(0x7f0000002340)=""/248, 0xf8}, {&(0x7f0000002440)=""/205, 0xcd}, {&(0x7f0000002540)=""/233, 0xe9}, {&(0x7f0000002640)=""/197, 0xc5}, {&(0x7f0000002740)=""/233, 0xe9}, {&(0x7f0000002840)=""/101, 0x65}], 0x9) dup3(r1, r0, 0x0) 2018/05/26 12:21:36 executing program 0: r0 = syz_open_dev$sndpcmp(&(0x7f0000000080)='/dev/snd/pcmC#D#p\x00', 0x9, 0x101000) r1 = syz_genetlink_get_family_id$team(&(0x7f0000000100)='team\x00') getsockopt$inet_mreqn(0xffffffffffffff9c, 0x0, 0x24, &(0x7f0000000140)={@broadcast, @loopback, 0x0}, &(0x7f0000000180)=0xc) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffff9c, 0x29, 0x23, &(0x7f0000000280)={{{@in6=@ipv4={[], [], @dev}, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@loopback}, 0x0, @in=@rand_addr}}, &(0x7f0000000380)=0xe8) getsockname$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @link_local}, &(0x7f0000000400)=0x14) recvmmsg(0xffffffffffffffff, &(0x7f0000001080)=[{{&(0x7f0000000440)=@ll={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f00000005c0)=[{&(0x7f00000004c0)=""/87, 0x57}, {&(0x7f0000000540)=""/89, 0x59}], 0x2, &(0x7f0000000600)=""/85, 0x55, 0x7fffffff}, 0x401}, {{&(0x7f0000000680)=@generic, 0x80, &(0x7f0000000840)=[{&(0x7f0000000700)=""/102, 0x66}, {&(0x7f0000000780)=""/166, 0xa6}], 0x2, 0x0, 0x0, 0x6}, 0x6314}, {{&(0x7f0000000880)=@llc={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast}, 0x80, &(0x7f0000000980)=[{&(0x7f0000000900)=""/117, 0x75}], 0x1, &(0x7f00000009c0)=""/193, 0xc1, 0xffb0}, 0x80}, {{&(0x7f0000000ac0)=@llc, 0x80, &(0x7f0000000d00)=[{&(0x7f0000000b40)=""/8, 0x8}, {&(0x7f0000000b80)=""/83, 0x53}, {&(0x7f0000000c00)=""/90, 0x5a}, {&(0x7f0000000c80)=""/100, 0x64}], 0x4, &(0x7f0000000d40)=""/18, 0x12, 0x1ff}, 0x7}, {{0x0, 0x0, &(0x7f0000000f40)=[{&(0x7f0000000d80)=""/170, 0xaa}, {&(0x7f0000000e40)=""/213, 0xd5}], 0x2, &(0x7f0000000f80)=""/207, 0xcf, 0x8}, 0xffffffffffffffff}], 0x5, 0x40000000, &(0x7f00000011c0)={0x77359400}) getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x15, &(0x7f0000002700)={@ipv4={[], [], @remote}, 0x0}, &(0x7f0000002740)=0x14) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000002780)={{{@in=@multicast2, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6}, 0x0, @in6=@loopback}}, &(0x7f0000002880)=0xe8) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffff9c, 0x29, 0x22, &(0x7f0000002940)={{{@in6=@local, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{}, 0x0, @in6=@mcast1}}, &(0x7f0000002a40)=0xe8) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffff9c, 0x0, 0x10, &(0x7f0000002b40)={{{@in=@multicast2, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@local}, 0x0, @in6=@local}}, &(0x7f0000002c40)=0xe8) accept$packet(0xffffffffffffffff, &(0x7f0000002ec0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @random}, &(0x7f0000002f00)=0x14) getpeername$packet(0xffffffffffffff9c, &(0x7f0000002f40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @dev}, &(0x7f0000002f80)=0x14) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffff9c, 0x0, 0x11, &(0x7f0000002fc0)={{{@in=@remote, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast2}, 0x0, @in6}}, &(0x7f00000030c0)=0xe8) getsockopt$inet_pktinfo(0xffffffffffffff9c, 0x0, 0x8, &(0x7f0000003300)={0x0, @local, @multicast2}, &(0x7f0000003340)=0xc) accept$packet(0xffffffffffffff9c, &(0x7f0000003380)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @link_local}, &(0x7f00000033c0)=0x14) getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x24, &(0x7f0000003400)={@multicast1, @broadcast, 0x0}, &(0x7f0000003440)=0xc) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000003480)={{{@in=@rand_addr, @in=@rand_addr, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@loopback}, 0x0, @in6=@ipv4={[], [], @loopback}}}, &(0x7f0000003580)=0xe8) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f00000035c0)={{{@in, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast2}, 0x0, @in=@multicast1}}, &(0x7f00000036c0)=0xe8) ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000003700)={'vcan0\x00', 0x0}) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000003740)={{{@in=@multicast2, @in=@rand_addr, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@local}, 0x0, @in6}}, &(0x7f0000003840)=0xe8) sendmsg$TEAM_CMD_OPTIONS_SET(r0, &(0x7f0000004080)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x800004}, 0xc, &(0x7f0000004040)={&(0x7f0000003880)={0x7b0, r1, 0x2, 0x70bd29, 0x25dfdbfe, {0x1}, [{{0x8, 0x1, r2}, {0x40, 0x2, [{0x3c, 0x1, @lb_tx_method={{0x24, 0x1, 'lb_tx_method\x00'}, {0x8, 0x3, 0x5}, {0xc, 0x4, 'hash\x00'}}}]}}, {{0x8, 0x1, r3}, {0x21c, 0x2, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, r4}}, {0x8, 0x7}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, r5}}, {0x8, 0x7}}}, {0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x8}}}, {0x38, 0x1, @notify_peers_interval={{0x24, 0x1, 'notify_peers_interval\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4}}}, {0x40, 0x1, @queue_id={{{0x24, 0x1, 'queue_id\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0xfffffffffffff000}}, {0x8, 0x6, r6}}}, {0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x8, 0x3, 0xb}, {0x8, 0x4, 0x7}}, {0x8, 0x7}}}, {0x38, 0x1, @notify_peers_interval={{0x24, 0x1, 'notify_peers_interval\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x100000000}}}, {0x38, 0x1, @notify_peers_interval={{0x24, 0x1, 'notify_peers_interval\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x400}}}, {0x38, 0x1, @activeport={{0x24, 0x1, 'activeport\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, r7}}}]}}, {{0x8, 0x1, r8}, {0x74, 0x2, [{0x34, 0x1, @bpf_hash_func={{0x24, 0x1, 'bpf_hash_func\x00'}, {0x8, 0x3, 0xb}, {0x4, 0x4}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8, 0x3, 0x6}, {0x4, 0x4}}, {0x8, 0x6, r9}}}]}}, {{0x8, 0x1, r10}, {0x44, 0x2, [{0x40, 0x1, @queue_id={{{0x24, 0x1, 'queue_id\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x7}}, {0x8, 0x6, r11}}}]}}, {{0x8, 0x1, r12}, {0x1ec, 0x2, [{0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0xffffffff}}}, {0x40, 0x1, @queue_id={{{0x24, 0x1, 'queue_id\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x3}}, {0x8, 0x6, r13}}}, {0x38, 0x1, @activeport={{0x24, 0x1, 'activeport\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, r14}}}, {0x38, 0x1, @activeport={{0x24, 0x1, 'activeport\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, r15}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8, 0x3, 0x6}, {0x4, 0x4}}, {0x8, 0x6, r16}}}, {0x4c, 0x1, @lb_tx_method={{0x24, 0x1, 'lb_tx_method\x00'}, {0x8, 0x3, 0x5}, {0x1c, 0x4, 'hash_to_port_mapping\x00'}}}, {0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x8, 0x3, 0xb}, {0x8, 0x4, 0x8e70}}, {0x8, 0x7}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x2fabf3c7}}}]}}, {{0x8, 0x1, r17}, {0x26c, 0x2, [{0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4}}}, {0x3c, 0x1, @user_linkup={{{0x24, 0x1, 'user_linkup\x00'}, {0x8, 0x3, 0x6}, {0x4, 0x4}}, {0x8, 0x6, r18}}}, {0x40, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x8, 0x3, 0x5}, {0x10, 0x4, 'loadbalance\x00'}}}, {0x38, 0x1, @activeport={{0x24, 0x1, 'activeport\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, r19}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x3}}}, {0x5c, 0x1, @bpf_hash_func={{0x24, 0x1, 'bpf_hash_func\x00'}, {0x8, 0x3, 0xb}, {0x2c, 0x4, [{0xff, 0x7fff, 0x8}, {0xe0, 0x1, 0xe9, 0x3ff}, {0x2, 0x3, 0x0, 0x6}, {0xffff, 0xc3e, 0x400, 0x3}, {0x5, 0x7fffffff, 0x0, 0xfffffffffffffff9}]}}}, {0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x8, 0x3, 0xb}, {0x8, 0x4, 0x5}}, {0x8, 0x7}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x400000000}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x3}}}]}}]}, 0x7b0}, 0x1, 0x0, 0x0, 0x4000000}, 0x84) r20 = socket(0xa, 0x1, 0x0) ioctl(r20, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") r21 = ioctl$KVM_CREATE_VM(0xffffffffffffff9c, 0xae01, 0x0) ioctl$KVM_SET_TSS_ADDR(r21, 0xae47, 0xd000) getsockopt$bt_l2cap_L2CAP_OPTIONS(r20, 0x6, 0x1, &(0x7f0000000000), &(0x7f0000000040)=0xc) 2018/05/26 12:21:36 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_int(r0, 0x29, 0x3c, &(0x7f00000007c0)=0x6, 0x0) setsockopt$inet6_MRT6_ADD_MIF(0xffffffffffffff9c, 0x29, 0xca, &(0x7f0000000200)={0x3, 0x1, 0x4, 0x6, 0xedd}, 0xc) setsockopt$inet6_MRT6_ADD_MFC(r0, 0x29, 0xcc, &(0x7f0000000000)={{0xa, 0x4e21, 0x1c2, @loopback={0x0, 0x1}, 0x7}, {0xa, 0x4e20, 0x4, @mcast1={0xff, 0x1, [], 0x1}, 0x698}, 0x3, [0x9, 0x401, 0x1614, 0xf49, 0xb2e, 0x7, 0x200, 0x1]}, 0x5c) socketpair(0x19, 0xa, 0x6, &(0x7f00000000c0)={0xffffffffffffffff}) socket$packet(0x11, 0x3, 0x300) connect$l2tp(r1, &(0x7f0000000100)=@pppol2tp={0x18, 0x1, {0x0, r0, {0x2, 0x4e20, @local={0xac, 0x14, 0x14, 0xaa}}, 0x1, 0x0, 0x1, 0x1}}, 0x26) setsockopt$inet6_MRT6_ADD_MFC(r0, 0x29, 0xc9, &(0x7f0000000180)={{0xa}, {0xa, 0x0, 0x0, @remote={0xfe, 0x80, [], 0xbb}}, 0xffffffff, [0x1, 0x0, 0x3, 0x2, 0x3, 0x0, 0x800000000000, 0x4]}, 0x5c) 2018/05/26 12:21:36 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0xc0000082]}) 2018/05/26 12:21:36 executing program 0: r0 = memfd_create(&(0x7f0000000000)=',cpuset\x00', 0x0) r1 = getpgrp(0xffffffffffffffff) ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, &(0x7f0000000140)={{0x67, 0x5, 0x7, 0x80000000, "d385e03540df42e3ef774c8c48f87f7b9d1fc2255b4846b0cf141ef825c8fd96a1ec474836fd611fc6b3f17e"}, 0x0, 0x0, 0x9, r1, 0x10000, 0x8, "ac4a59265d651a6b3807c60732804feb141cfd95139c1d76df7d176ab305fa0c40f2711f900e2e1725231b379780fd566ebd6394adb0a188e3a67ce2ffa5e7db", &(0x7f0000000040)=',cpuset\x00', 0x8, [], [0x3, 0x8000000000000000, 0x80, 0x9]}) write(0xffffffffffffffff, &(0x7f0000000280)="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", 0x109) 2018/05/26 12:21:36 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0xc000000000000000, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:36 executing program 2: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f00000000c0)={'filter\x00'}, &(0x7f0000000000)=0x78) r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) write$cgroup_type(r1, &(0x7f0000000040)='threaded\x00', 0x9) [ 450.491884] hfsplus: unable to find HFS+ superblock [ 451.449886] hfsplus: unable to find HFS+ superblock 2018/05/26 12:21:37 executing program 1: r0 = syz_open_dev$vcsn(&(0x7f0000000040)='/dev/vcs#\x00', 0xffffffffffff0001, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x20800000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@gettaction={0x2c, 0x32, 0x22e, 0x70bd2c, 0x25dfdbfc, {0x0, 0xffff, 0xffff}, [@action_gd=@TCA_ACT_TAB={0x4, 0x1}, @action_dump_flags=@TCA_ROOT_FLAGS={0xc, 0x2}, @action_dump_flags=@TCA_ROOT_TIME_DELTA={0x8, 0x4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8000}, 0x4000000) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/autofs\x00', 0x40, 0x0) r2 = syz_open_dev$mice(&(0x7f00000000c0)='/dev/input/mice\x00', 0x0, 0xa000) pipe2(&(0x7f0000000340)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) dup2(r3, r2) getsockopt$kcm_KCM_RECV_DISABLE(r1, 0x119, 0x1, &(0x7f0000000080), 0x4) r4 = syz_open_dev$sndseq(&(0x7f0000000000)='/dev/snd/seq\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_CLIENT(r4, 0xc0bc5351, &(0x7f0000000140)={0x1c, 0x1, 'client0\x00', 0x0, "342cc9bf9bb6c038", "21584122836a19aeff833672a7e0a3b5770c88c9965f25bac89f61888c2ed633"}) 2018/05/26 12:21:37 executing program 4: sched_setaffinity(0x0, 0x8, &(0x7f0000d81ff8)=0x101) r0 = socket$inet_smc(0x2b, 0x1, 0x0) fcntl$setflags(r0, 0x2, 0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r2 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r2, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000000c0)='./control/file0\x00') rename(&(0x7f0000000040)='./control/file0\x00', &(0x7f0000000080)='./control\x00') mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) open(&(0x7f0000000080)='./file0\x00', 0x200000, 0x0) unlink(&(0x7f00000001c0)='./control\x00') close(r1) 2018/05/26 12:21:37 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0xf00000000000000, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:37 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x10]}) 2018/05/26 12:21:37 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = syz_open_dev$vcsn(&(0x7f0000000040)='/dev/vcs#\x00', 0x3df50268, 0x410600) ioctl$DRM_IOCTL_MARK_BUFS(r1, 0x40206417, &(0x7f0000000080)={0x25, 0x1f, 0x20, 0x7, 0x10, 0x7}) r2 = socket(0xa, 0x1, 0x0) ioctl(r2, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) ioctl$KVM_SET_GSI_ROUTING(r3, 0x4008ae6a, &(0x7f00000001c0)={0x1, 0x0, [{0x0, 0x1, 0x0, 0x0, @adapter={0x1}}]}) 2018/05/26 12:21:37 executing program 2: r0 = socket(0xa, 0x1, 0x0) r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040)='IPVS\x00') sendmsg$IPVS_CMD_FLUSH(r0, &(0x7f0000000280)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000140)={&(0x7f00000001c0)={0xa0, r2, 0x800, 0x70bd27, 0x25dfdbfc, {0x11}, [@IPVS_CMD_ATTR_SERVICE={0x3c, 0x1, [@IPVS_SVC_ATTR_AF={0x8, 0x1}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x1}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'sed\x00'}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'fo\x00'}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x1}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'sed\x00'}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e24}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x7}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x100000001}, @IPVS_CMD_ATTR_DAEMON={0x20, 0x3, [@IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'veth1_to_team\x00'}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x9}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xbf}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x7}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x8}]}, 0xa0}, 0x1, 0x0, 0x0, 0x4000}, 0x4040001) ioctl$PIO_FONT(r1, 0x4b61, &(0x7f00000000c0)="0e98e47406ad149b26a3f7f08e5e033245e3bc490b85607c7a94a839411c0cd013e7c85aa4f8ad458e4b5d25f9f68ce92cfbfa28753e566d6616ba004ccb7ab3821293f2d7b1b477046551f7768eb1c215259848df810f01625fe9") ioctl$DRM_IOCTL_SET_CLIENT_CAP(r1, 0x4010640d, &(0x7f0000000180)={0x6, 0x1200000009}) 2018/05/26 12:21:37 executing program 0: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/expire_nodest_conn\x00', 0x2, 0x0) lseek(r0, 0x0, 0x0) 2018/05/26 12:21:37 executing program 3: mmap(&(0x7f0000010000/0x2000)=nil, 0x2000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000d28000)={0xaa}) readahead(r0, 0x7fff, 0x3f) r1 = epoll_create1(0x0) r2 = socket(0xa, 0x1, 0x0) ioctl$fiemap(r2, 0xc020660b, &(0x7f0000000000)={0xaa1b, 0x101, 0x4, 0x3c, 0x6, [{0x0, 0x5, 0x1, 0x0, 0x0, 0x85}, {0x974b, 0x4, 0x8, 0x0, 0x0, 0x1}, {0x7, 0x6, 0x6, 0x0, 0x0, 0x2}, {0x9, 0x8001, 0x8, 0x0, 0x0, 0x40a}, {0x4, 0x40, 0xfffffffffffffffb, 0x0, 0x0, 0x182}, {0xffffffffffff9cfa, 0x2, 0x0, 0x0, 0x0, 0x1}]}) ioctl(r2, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) r3 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0) fcntl$getownex(r1, 0x10, &(0x7f0000000200)) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r3, 0xc0145401, &(0x7f0000013000)) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r3, 0x54a3) r4 = openat$full(0xffffffffffffff9c, &(0x7f0000000180)='/dev/full\x00', 0x10b402, 0x0) ioctl$KVM_SIGNAL_MSI(r4, 0x4020aea5, &(0x7f00000001c0)={0xf000, 0x0, 0x4, 0x3, 0x1}) readv(r3, &(0x7f000042bff8)=[{&(0x7f0000e3b000)=""/61, 0x3d}], 0x1) dup3(r1, r0, 0x0) 2018/05/26 12:21:37 executing program 0: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0xf}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x20, 0x22, 0x1, 0x0, 0x0, {0x5}, [@typed={0xc, 0xa, @u64}]}, 0x20}, 0x1}, 0x0) 2018/05/26 12:21:37 executing program 2: r0 = socket(0x20000000001b, 0x1, 0x0) ioctl(r0, 0x2, &(0x7f0000000280)="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") r1 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) write$cgroup_type(r1, &(0x7f0000000040)='threaded\x00', 0x9) 2018/05/26 12:21:37 executing program 7: mkdir(&(0x7f0000000300)='./control\x00', 0x0) r0 = syz_open_dev$adsp(&(0x7f0000000040)='/dev/adsp#\x00', 0x7, 0x0) r1 = accept(0xffffffffffffffff, &(0x7f0000000200)=@can={0x0, 0x0}, &(0x7f0000000280)=0x80) sendmsg$can_raw(r0, &(0x7f00000003c0)={&(0x7f0000000400)={0x1d, r2}, 0x34c, &(0x7f0000000440)={&(0x7f00000004c0)=@can={{0x4, 0x8001, 0x1, 0xffff}, 0x4, 0x2, 0x0, 0x0, "66275bf6d6477bdf"}, 0x10}, 0x1, 0x0, 0x0, 0x404007d}, 0x24800000) r3 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e4}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r4 = fcntl$getown(r0, 0x9) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000001a40)={{{@in=@multicast2, @in=@rand_addr, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6}, 0x0, @in6=@remote}}, &(0x7f00000002c0)=0xe8) getgroups(0x4, &(0x7f0000001b40)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0]) ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f0000001b80)=0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000001bc0)={{{@in6=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@ipv4={[], [], @multicast1}}, 0x0, @in=@dev}}, &(0x7f0000001cc0)=0xe8) lstat(&(0x7f0000000140)='./control/file0/file0\x00', &(0x7f0000001d40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r10 = gettid() getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000001dc0)={{{@in=@rand_addr, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@dev}, 0x0, @in=@multicast2}}, &(0x7f0000001ec0)=0xe8) r12 = getgid() r13 = gettid() lstat(&(0x7f0000001f00)='./control/file0\x00', &(0x7f0000001f40)={0x0, 0x0, 0x0, 0x0, 0x0}) stat(&(0x7f0000001fc0)='./control/file0/file0\x00', &(0x7f0000002000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000002080)=0x0) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f00000020c0)={{{@in6=@local, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast2}, 0x0, @in=@broadcast}}, &(0x7f00000021c0)=0xe8) r18 = getgid() ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f0000002200)=0x0) lstat(&(0x7f0000002240)='./file0/file0\x00', &(0x7f0000002280)={0x0, 0x0, 0x0, 0x0, 0x0}) stat(&(0x7f0000002300)='./file0\x00', &(0x7f0000002340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) sendmmsg$unix(r1, &(0x7f0000002880)=[{&(0x7f0000000340)=@abs={0x0, 0x0, 0x4e20}, 0x6e, &(0x7f00000000c0)=[{&(0x7f0000000500)="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", 0x1000}, {&(0x7f0000001500)="0638b3082d3b973bb662890ffff04fd32ba004bbbc65d8e8a5250aa106f010d820cf261579ad5eb8ee3e8f76328e1023fbb771c9a1032206eef9c1a023953b6ed504a61ba2340a5e0352b8e85f45079686d31e0940f1aa0c7019c20f4f167cb56d2bb40715916f213b7ee950b85b941eeef38d2367eba80c4cb12c4bd04d7f2ea7542a53ed376de7d4cb21c6aa1e1eeb422ad681f328ec3277aa5a8f0cd89ad22f75896f3592bd0df78382c881bc901e7a261949510107d35e3bb2fb89272cedc3d789ba673afca494ae25d58cf9576a1d533cac0edaf34d6a4fed44", 0xdc}], 0x2}, {&(0x7f0000001600)=@abs={0x1, 0x0, 0x4e22}, 0x6e, &(0x7f00000019c0)=[{&(0x7f0000001680)="aef971bfe8c93ce08f41451242ec5dac3072021d752b15920f36202acf2f00f1fd1a85aa411cacbfd22731da56d81cddc0f369552ac1d9077b223c1f2af7632cf074fb94549805b02a8be1940624495008b65363bda38ebc3940bdf4497001e0d544477ebd8c3161424de6dc19", 0x6d}, {&(0x7f0000000140)}, {&(0x7f0000001700)="d213e533ece140b38bdfdf853d7113e6139dd2d416ae667cdf9a69e72382cf460800ef07dbaf8529754a6b1f678bc3e29e86d7711ba8f56b60df18d86ac2c98216", 0x41}, {&(0x7f0000001780)="193b8e4890f444e18e755c36f24a72dea2dbe6cc759074c190a9f216ec3800a79ca6324bb85998433139d63281defa85d21bda98a0e50d64ddcba2c1b2784b228340f4ded76c0a3d110a358046f220fe3b44b18598c154cd326f7e74a0257062ebebdea5a6bb67e0eddd4e3bc0acf0b08cc4bf487d238fb6721b233a961a21edc9cfada84012", 0x86}, {&(0x7f0000001840)="9ea31b0396aaf225f94c2ff57c5069cb93bb2d0b44512616135e2722f7f4ee1ba2d861aa9f1a3c967a26804e23b2ac2b4025773a94dd728215f84293ea524dd72bed471a8bfd8f79be1b92074a5591d0f05d5d413afc8d4a318d05edf6f31229790a1e3a4110a90412", 0x69}, {&(0x7f00000018c0)="a847c999dfa68e3c9069fe41bbe2d01ffaae53c0241f6ff196e88b57c93126aca80a9f445a5e44e287ebf95f034dc31665b5c648d056af98e5a4109fec50a9f3e478032ae6c260e12a5dd5cb31f2b9efa5b966902c83c90dcd97346b740eb6b79f386779e3d8e339ab09b628b3bb483b35086143115e51eaa48eea777169be4a1958a1448e0ddaa025c47b142aac30596e6d53af880edc3977774329fbe11739fd95851a3e3e82d2ffd28fd08d02b03f456b6e7037b55129dc05b5100edf503fb7633d063108ff8592", 0xc9}], 0x6, &(0x7f00000023c0)=[@rights={0x38, 0x1, 0x1, [r3, r0, r3, r0, r3, r0, r0, r0, r1]}, @cred={0x20, 0x1, 0x2, r4, r5, r6}, @cred={0x20, 0x1, 0x2, r7, r8, r9}, @cred={0x20, 0x1, 0x2, r10, r11, r12}, @cred={0x20, 0x1, 0x2, r13, r14, r15}, @cred={0x20, 0x1, 0x2, r16, r17, r18}, @cred={0x20, 0x1, 0x2, r19, r20, r21}, @rights={0x28, 0x1, 0x1, [r3, r3, r3, r1, r3, r3]}], 0x120}, {&(0x7f0000002500)=@abs={0x0, 0x0, 0x4e23}, 0x6e, &(0x7f00000027c0)=[{&(0x7f0000002580)="2af1af6dfa422c2bee8d28f0edb59530fe08c7e303ef473391f789a71cb5956c5bc787b3812ff8752fa7481bb1b5c4ba6f27f61191c529d3fdc11fe920855779a9391313c0ef96a913b592a876e5f3a216d889de8dc10a9e8f0d6d955daec6be9fd888dc7b1b3c3aedac5b4609e7d8d7a64c3bbc0525557fe18ea507ca770d4e788453360be77c7be1be0b8183069ed6a7d6a90d6af8d0f1f3a0352c8360e4a73a57627e36215b377562f3752e79e2839b10821f0bcf1aa649540eea3f384ad19bf491d854b47ae682ba44d74e86b75a2bcfae7c00c15237fef5cfef4689639d092bd1f6f3f2b871e868bc4a007d41a5c44d1a", 0xf3}, {&(0x7f0000002680)="f0838e1dfd44aff80ececa0859a0d26484b0ea2bf47fc1bd732a98fb29", 0x1d}, {&(0x7f00000026c0)="899b7adeed7e45b7753192118b401f3c371d77fbd254ae9e6239e13a1ba3928fc27683b1b0c7ca5544392a7f82c3b244c6c7550bb634004e62f80d6fc76d943a03", 0x41}, {&(0x7f0000002740)="fd50b47f95917ba3d6f3bf489bb43e3d09e6a23fd0def2dea0fe38ceba44768dc7f00013bc79f466a26f76a404588df18a99deb9384c1aa73d4251033324b0e82344e1ed27db4676e824f5fa6cd64ea50d3e8e4f90321ce04d3f80eaf262a6dde1e6", 0x62}], 0x4, &(0x7f0000002800)=[@rights={0x20, 0x1, 0x1, [r0, r0, r1]}, @rights={0x10, 0x1, 0x1}, @rights={0x28, 0x1, 0x1, [r3, r1, r1, r1, r0]}], 0x58, 0x4}], 0x3, 0x48000) openat$rtc(0xffffffffffffff9c, &(0x7f0000000080)='/dev/rtc0\x00', 0x2, 0x0) mkdir(&(0x7f0000000480)='./file0\x00', 0x0) creat(&(0x7f0000000100)='./file0/file0\x00', 0x0) rename(&(0x7f00000001c0)='./file0/file0\x00', &(0x7f0000000180)='./control/file0\x00') 2018/05/26 12:21:37 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0xc0010200]}) 2018/05/26 12:21:37 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x1, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[@ANYBLOB="0000063fc900000000000000050000008c0100000400000000000000000065750ede825e45a90f3d09876e6d0cd4e191a1f98937702d8f9523b12ed909205c7333bb937dee28d4b2921ea4c8fa86a91c8275dd4b26916a0dc38b518cdf628235cebb98b7559414d05501b53517cdf5426294335b7189c3003b2cbdae69c72000000000000000710e13"], 0x89) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = accept$inet6(0xffffffffffffff9c, &(0x7f0000000000)={0x0, 0x0, 0x0, @loopback}, &(0x7f0000000040)=0x1c) setsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r1, 0x84, 0x1e, &(0x7f0000000080)=0x1, 0x4) r2 = syz_open_pts(r0, 0x0) ioctl$TCXONC(r2, 0x540a, 0x0) 2018/05/26 12:21:37 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x80000000000000, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:37 executing program 0: mbind(&(0x7f0000ff6000/0x8000)=nil, 0x8000, 0x0, &(0x7f0000885ff8)=0x20000000001, 0x5, 0x2) r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x4100, 0x0) accept$packet(r0, 0x0, &(0x7f0000000080)) fremovexattr(r0, &(0x7f00000000c0)=@random={'user.', '\x00'}) r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x20000, 0x0) ioctl$TIOCSTI(r1, 0x5412, 0x5) [ 451.882605] netlink: 'syz-executor0': attribute type 10 has an invalid length. [ 451.894981] netlink: 'syz-executor0': attribute type 10 has an invalid length. 2018/05/26 12:21:37 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0xc0010113]}) 2018/05/26 12:21:37 executing program 1: r0 = socket$inet6(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) syz_mount_image$ntfs(&(0x7f0000000040)='ntfs\x00', &(0x7f0000000080)='./file0\x00', 0x1, 0x1, &(0x7f0000000200)=[{&(0x7f00000000c0), 0x0, 0x168}], 0x10, &(0x7f00000000c0)=ANY=[@ANYBLOB="6769643d3738002c646d61736b3d36353235312c646d6173013d332c00a7"]) shutdown(r1, 0x0) socketpair$inet(0x2, 0x1, 0x400, &(0x7f0000000000)) clock_gettime(0x0, &(0x7f0000006800)={0x0, 0x0}) recvmmsg(r1, &(0x7f0000006680)=[{{0x0, 0x0, &(0x7f0000004240), 0x0, &(0x7f0000004280)=""/252, 0xfc}}, {{&(0x7f0000004380)=@ll={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000005640), 0x0, &(0x7f0000005680)=""/4096, 0x1000}}], 0x2, 0x0, &(0x7f0000006840)={0x0, r2+30000000}) 2018/05/26 12:21:37 executing program 2: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) write$cgroup_type(r1, &(0x7f0000000040)='threaded\x00', 0x2c9) connect(r0, &(0x7f00000000c0)=@nfc_llcp={0x27, 0x0, 0x0, 0x4, 0x20, 0x200000000000, "717e99a76144d0a12c0bf0fa5ae3ad2bc29a2b0f2453b192303c459162c1f33f18007e18d0ccaa90f11eb40c3b59d20350ddc88048184568e92b824dfcf91a", 0x6}, 0x80) [ 452.153134] Unknown ioctl 21522 [ 452.266128] ntfs: (device loop1): read_ntfs_boot_sector(): Primary boot sector is invalid. [ 452.274740] ntfs: (device loop1): read_ntfs_boot_sector(): Mount option errors=recover not used. Aborting without trying to recover. [ 452.286901] ntfs: (device loop1): ntfs_fill_super(): Not an NTFS volume. [ 452.323783] ntfs: (device loop1): read_ntfs_boot_sector(): Primary boot sector is invalid. [ 452.332303] ntfs: (device loop1): read_ntfs_boot_sector(): Mount option errors=recover not used. Aborting without trying to recover. [ 452.344469] ntfs: (device loop1): ntfs_fill_super(): Not an NTFS volume. 2018/05/26 12:21:38 executing program 3: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000d28000)={0xaa}) r1 = epoll_create1(0x0) r2 = socket(0xa, 0x1, 0x0) ioctl(r2, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) r3 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r3, 0xc0145401, &(0x7f0000013000)) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r3, 0x54a3) readv(r3, &(0x7f000042bff8)=[{&(0x7f0000e3b000)=""/61, 0x3d}], 0x1) r4 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x400, 0x0) ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000000280)={"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"}) getsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000040), 0x10) dup3(r1, r0, 0x0) ioctl$PERF_EVENT_IOC_RESET(r4, 0x2403, 0x76c) 2018/05/26 12:21:38 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x6400, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:38 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x187]}) 2018/05/26 12:21:38 executing program 0: r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000280)="2f007e574d000330809022cfde26555dc9ecfe1974406edad38364782d63b6612854b9e49dbdcaef718197e37e870a308b1e3a798fa788a46d3025ef933e51828ab675064e2adbe9126423b4a73d68fbe99c6db2f160d49cb6cce76c27289a4f9d097354aaa5860d2383df87526baa184d90bb7729366c17bc33d765e9bc2f882a13f3a9c1f60660bd4fd2fa31d2c0a775242289bce062d10d24ded5406918a66b2c75c43fe1ff458ae5cd9fec63039ba5a7b66a60ede5ccdabc7ee77660ef2358ccdff02226021384b0c235f114ed9ade92767aecc256acdeb610df42e7169f240357f735ae5fe29017e51e27252f48b95bfbbb3a865535298bdc36d71db635f41c57771db77aeaff883feb3dc3cc24bd3c036e396ad3af37945058839e812270bc40901fa654e7cc3292a82fc80c374dc07142a1c2e9d3e2528e4fdac32bcaefe910ebd3b948a3bfebef5fa8d82473c7fbf3ec", 0x0, 0x0) ioctl$KVM_S390_UCAS_MAP(r0, 0x4018ae50, &(0x7f0000000080)={0x80, 0x7, 0xf9e}) socket$bt_bnep(0x1f, 0x3, 0x4) r1 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fadvise64(r0, 0x0, 0x3, 0x7) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000040)=ANY=[@ANYRES64=r1], 0x1) 2018/05/26 12:21:38 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_GSI_ROUTING(r1, 0x4008ae6a, &(0x7f00000000c0)={0x1, 0x0, [{0x0, 0x4, 0x0, 0x0, @msi}]}) r2 = syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) r3 = syz_open_dev$adsp(&(0x7f0000000040)='/dev/adsp#\x00', 0xda80, 0x400800) setsockopt$sock_attach_bpf(r2, 0x1, 0x32, &(0x7f0000000080)=r3, 0x4) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000000)={0x0, 0x1}) 2018/05/26 12:21:38 executing program 1: syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000040), 0x0, &(0x7f0000000240)=ANY=[]) r0 = open(&(0x7f0000000080)='./file0/file0\x00', 0x3fffa, 0x0) write$binfmt_script(r0, &(0x7f0000000280)=ANY=[@ANYBLOB='\x00'], 0xfffffffffffffed1) getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r0, 0x84, 0x16, &(0x7f0000000040)={0x1, [0x3ff]}, &(0x7f0000000140)=0x6) io_setup(0x5, &(0x7f0000000000)=0x0) r2 = dup2(r0, r0) r3 = socket(0xa, 0x1, 0x0) ioctl$DRM_IOCTL_RES_CTX(r0, 0xc0106426, &(0x7f0000000440)={0x1, &(0x7f00000003c0)=[{0x0}]}) ioctl$DRM_IOCTL_SWITCH_CTX(r2, 0x40086424, &(0x7f0000000380)={r4, 0x3}) socket$inet6(0xa, 0xa, 0x1) ioctl$DRM_IOCTL_AGP_ALLOC(r2, 0xc0206434, &(0x7f00000001c0)={0x8, 0x0, 0x10001, 0x80000001}) ioctl$DRM_IOCTL_AGP_UNBIND(r0, 0x40106437, &(0x7f0000000200)={r5, 0x1}) ioctl(r3, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") io_submit(r1, 0x1, &(0x7f0000000400)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f00000002c0)="01", 0x1}]) 2018/05/26 12:21:38 executing program 2: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") fchdir(r0) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000000080)={{{@in6=@mcast1, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@rand_addr}, 0x0, @in6}}, &(0x7f0000000000)=0xe8) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000280)={{{@in=@multicast2, @in=@rand_addr, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@broadcast}, 0x0, @in6=@local}}, &(0x7f0000000180)=0xe8) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000380)={{{@in6=@remote={0xfe, 0x80, [], 0xbb}, @in=@dev={0xac, 0x14, 0x14, 0xc}, 0x4e20, 0x7, 0x4e23, 0x0, 0x2, 0xa0, 0x0, 0x6e, r1, r2}, {0x5, 0x1, 0x49dc24aa, 0xff, 0x0, 0x80000001, 0x2, 0x80}, {0x946, 0x9, 0x3f, 0x2}, 0x6, 0x6e6bba, 0x2, 0x1, 0x3bb7bd8c5295463f, 0x3}, {{@in6=@ipv4={[], [0xff, 0xff], @loopback=0x7f000001}, 0x4d4, 0x6f}, 0xa, @in, 0x3507, 0x0, 0x0, 0x3, 0x401, 0x6, 0x4}}, 0xe8) getsockopt$bt_rfcomm_RFCOMM_CONNINFO(r0, 0x12, 0x2, &(0x7f0000000480)=""/146, &(0x7f00000001c0)=0x92) write$cgroup_type(0xffffffffffffffff, &(0x7f0000000040)='threaded\x00', 0x9) r3 = syz_open_dev$adsp(&(0x7f0000000200)='/dev/adsp#\x00', 0x3, 0x210400) ioctl$KVM_SET_DEBUGREGS(r3, 0x4080aea2, &(0x7f0000000540)={[0x13000, 0xd000, 0x100000, 0x10000], 0x3, 0x80, 0xa82}) 2018/05/26 12:21:38 executing program 4: sched_setaffinity(0x0, 0x8, &(0x7f0000d81ff8)=0x101) mkdir(&(0x7f000082f000)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) utime(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)={0xfffffffffffffc6f, 0x100}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r1 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r1, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000000c0)='./control/file0\x00') rename(&(0x7f0000000040)='./control/file0\x00', &(0x7f0000000080)='./control\x00') mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) open(&(0x7f0000000080)='./file0\x00', 0x200000, 0x0) unlink(&(0x7f00000001c0)='./control\x00') close(r0) 2018/05/26 12:21:38 executing program 2: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) write$cgroup_type(r1, &(0x7f0000000040)='threaded\x00', 0x9) [ 452.906480] FAT-fs (loop1): bogus number of reserved sectors [ 452.912533] FAT-fs (loop1): Can't find a valid FAT filesystem 2018/05/26 12:21:38 executing program 0: r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/cgroup\x00') ioctl$void(r0, 0xc0045878) capset(&(0x7f00001e8ff8)={0x19980330}, &(0x7f0000032fe8)) setns(r0, 0x0) 2018/05/26 12:21:38 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x4b564d01]}) 2018/05/26 12:21:38 executing program 7: r0 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000000), &(0x7f0000000040)=0xb) r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vsock\x00', 0x4d2202, 0x0) ioctl$BLKSECDISCARD(r1, 0x127d, &(0x7f00000000c0)=0x81) 2018/05/26 12:21:38 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0xd00, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') [ 453.039927] FAT-fs (loop1): Unrecognized mount option "˜" or missing value 2018/05/26 12:21:38 executing program 2: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuacct.usage_all\x00', 0x0, 0x0) getsockopt$inet_sctp_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f00000000c0), &(0x7f0000000140)=0xb) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x100000000008912, &(0x7f0000000100)="c626262c8523bf012cf66f") r2 = creat(&(0x7f0000000080)='./file0\x00', 0x0) write$cgroup_type(r2, &(0x7f0000000040)='threaded\x00', 0x9) 2018/05/26 12:21:38 executing program 0: r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) r1 = socket$inet_dccp(0x2, 0x6, 0x0) r2 = accept(r1, 0x0, &(0x7f0000000440)) setsockopt$inet_tcp_TCP_MD5SIG(r2, 0x6, 0xe, &(0x7f0000000480)={@in6={{0xa, 0x4e20, 0x1, @remote={0xfe, 0x80, [], 0xbb}, 0x8000}}, 0x200, 0x2, 0x800, "add3844856c5c981af836c19d01e309d7fdb161567a74738686808d742127cb33ddf75c128e1fec415de2761f64648c4645de01a6891bb9a94d4065a3e43dfa1203c83bc4bd8e026538d17f26f8371ce"}, 0xd8) listen(r0, 0x6) setsockopt(r1, 0x10d, 0x800000000d, &(0x7f00001c9fff)="03", 0x1) connect$inet(r1, &(0x7f0000000040)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10) write$binfmt_elf64(r1, &(0x7f0000000080)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x38}, [{}]}, 0x78) write$binfmt_elf64(r0, &(0x7f0000000100)={{0x7f, 0x45, 0x4c, 0x46, 0x100000000, 0x7b2, 0x7, 0x100, 0x3ff, 0x0, 0x7, 0x2, 0x1a3, 0x40, 0xc3, 0x6, 0xfffffffffffffffd, 0x38, 0x1, 0x2, 0x2, 0x6}, [{0x5, 0x8, 0x4, 0x200, 0x3f, 0x5c42, 0x5, 0x9}], "ad45d1a43508d34a1b23d4f756f959bf88f7c02ce6faca50b6ced2648ab1e059588ca3f2955c40332926cfdb86d1d383905a5df8f5df2ad04d1c6152b99870bc4ba719e3c7abc385214e1503ca0b89f99338bf81c3e7d0e4986ebcd6e193072bb735b13d8a1a4bdc9f086b31ac35e8b536b3681774749c9080ce4a186154ba4b2a5b939bc2faebca057cf01ee91210c46cec399786c376ce665b784bd59bc144d2259d", [[], []]}, 0x31b) writev(r1, &(0x7f000062dff0)=[{&(0x7f0000d9cfef)='\x00', 0x1}], 0x1) 2018/05/26 12:21:39 executing program 7: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000040)) syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x91, 0x2) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETA(r0, 0x5406, &(0x7f0000000080)={0x0, 0x0, 0x0, 0xf087}) ioctl$TIOCSSOFTCAR(r1, 0x5412, &(0x7f0000000140)=0xec16) 2018/05/26 12:21:39 executing program 1: syz_mount_image$vfat(&(0x7f0000000180)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000040), 0x0, &(0x7f0000000240)=ANY=[]) r0 = open(&(0x7f0000000080)='./file0/file0\x00', 0x3fffa, 0x0) write$binfmt_script(r0, &(0x7f0000000280)=ANY=[@ANYBLOB='\x00'], 0xfffffffffffffed1) getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r0, 0x84, 0x16, &(0x7f0000000040)={0x1, [0x3ff]}, &(0x7f0000000140)=0x6) io_setup(0x5, &(0x7f0000000000)=0x0) r2 = dup2(r0, r0) r3 = socket(0xa, 0x1, 0x0) ioctl$DRM_IOCTL_RES_CTX(r0, 0xc0106426, &(0x7f0000000440)={0x1, &(0x7f00000003c0)=[{0x0}]}) ioctl$DRM_IOCTL_SWITCH_CTX(r2, 0x40086424, &(0x7f0000000380)={r4, 0x3}) socket$inet6(0xa, 0xa, 0x1) ioctl$DRM_IOCTL_AGP_ALLOC(r2, 0xc0206434, &(0x7f00000001c0)={0x8, 0x0, 0x10001, 0x80000001}) ioctl$DRM_IOCTL_AGP_UNBIND(r0, 0x40106437, &(0x7f0000000200)={r5, 0x1}) ioctl(r3, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") io_submit(r1, 0x1, &(0x7f0000000400)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f00000002c0)="01", 0x1}]) 2018/05/26 12:21:39 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x1b]}) 2018/05/26 12:21:39 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0xff0f, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:39 executing program 0: syz_mount_image$ntfs(&(0x7f0000000000)='ntfs\x00', &(0x7f0000000080)='./file0\x00', 0xd, 0x6, &(0x7f00000014c0)=[{&(0x7f00000000c0)="348c3d01fd754e8a43fdc6771a81fd7dc900a3cc2f10b0b2b1a7733161aa6e4ca155d2294375a11a6ed2f8b7ce82f71452baadc66470d8333ac8b95c5b2b3f211226e944b3f1531beac9c761544bc5217f41e13b18e4b57291fab1fe38421f44e1a8738dff5c2a43bae52915883cb0126c28863c4301b15703db14f11a9503e9296cbafbda19b76afe5f5a0ab1df9551fcacc8ad470e4c961fc7609c25f9a8fed3d504e7ebfdab2f00fbfb3d55b6039e1ea29001a306c87ca0b370e2df1514272a1af306d70448a7c6254d5712b1366f968861f447f3e0da", 0xd8, 0x1000}, {&(0x7f00000001c0)="5cbdd2066fede611e092eb566b0b0c8ac14c5a8162c366b93f1220ff73402f428a18643333eface7243384ff21d39e164e928966db0e57b8b10791781bc8c7ce22ff0976174a3485a908a1ccf0eaa22f7987509d7af944747ff884d910270e9a07e716edfa8d96a70ec0998ddfeb859c1907051414010eb56ea461381d9ff2df0447eda5c13932cb755c063af7cc7bdec6a590437298cbe7199b7831414072614ff743d118e3091c88b011fca750486c019ee0578c5be8028260b31555db3b28ecbea7b4784d8a3cb508da716192e5e29559", 0xd2, 0x1}, {&(0x7f00000003c0)="96bc8227dba0c6553750674c0b27a4795f04cd2597f1939653bae3211f40ff9469bc6b987bf95cb432bd7788887bf32af33eaa10cf308b29a602790345e51a8e666f9fc2d1d60c70d0c79a32e19756bfee3714dae8777bf2806c0a7501289b6112fac04ab49cdb6470b1c8d1549f7c16657293835a8369b6d40fd1558e1327c94524893bc28255cc15678fe97db54373a02e12497905a09e30357a8c9b5e7cb6b856d44ac4b92957090389628b52b2341b7cb91a1dbcdfa7141cb572ebe472e88d67e466191c3499cfd3b914b23ab9125247b33854c4", 0xd6, 0x99}, {&(0x7f00000002c0)="e4420d6c27e7725b92eae29449e076d3cb49c108601bfcba6acefac0982ebf1c37670612b381d6c78b09e698d8e0941309a4eb1ff9323a47c94c927b5218a30f03b86b79", 0x44, 0x80000001}, {&(0x7f0000001580)="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", 0x1000, 0x1000000000}, {&(0x7f0000000340)="d365b466ffd194b521cfe0d5b2d32a3d0a2a3a1718c1852653e5fca0f1f57a69c3d41d50b35007cc672ac9430895edc736500cacc90dac636e56fa96e3f95a", 0x3f, 0xfff}], 0x0, &(0x7f0000000380)=ANY=[]) 2018/05/26 12:21:39 executing program 2: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = creat(&(0x7f0000000000)='./file0\x00', 0x14) write$cgroup_type(r1, &(0x7f0000000040)='threaded\x00', 0x9) ioctl$EVIOCGID(r1, 0x80084502, &(0x7f0000000080)=""/245) 2018/05/26 12:21:39 executing program 3: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000d28000)={0xaa}) r1 = epoll_create1(0x0) r2 = socket(0xa, 0x1, 0x0) ioctl(r2, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) r3 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r3, 0xc0145401, &(0x7f0000013000)) setsockopt$ax25_buf(r2, 0x101, 0x19, &(0x7f0000000000)="580a159d29ff03bf5b1c2f214ae0c7b7f14603e76f5a998a12ec82cacc210f75995b001d9225280cb543dd6409ccc84aabf5330807c396663e00416b5fc2366653f64e54bd87b6f1543ea50ab9c199d018e9b276969d0715d9a1", 0x5a) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r3, 0x54a3) readv(r3, &(0x7f000042bff8)=[{&(0x7f0000e3b000)=""/61, 0x3d}], 0x1) dup3(r1, r0, 0x0) fdatasync(r2) 2018/05/26 12:21:39 executing program 4: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/cuse\x00', 0x400000, 0x0) setsockopt$inet_sctp_SCTP_AUTH_CHUNK(r0, 0x84, 0x15, &(0x7f0000000140)={0x1f}, 0x1) r1 = getpgid(0xffffffffffffffff) sched_setaffinity(r1, 0x8, &(0x7f0000000200)=0x101) mkdir(&(0x7f000082f000)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r2 = userfaultfd(0x0) ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r3 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r3, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000000c0)='./control/file0\x00') rename(&(0x7f0000000040)='./control/file0\x00', &(0x7f0000000080)='./control\x00') mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) open(&(0x7f0000000080)='./file0\x00', 0x200000, 0x0) unlink(&(0x7f00000001c0)='./control\x00') close(r2) 2018/05/26 12:21:39 executing program 7: r0 = socket(0x100000000000a, 0x1, 0x0) open$dir(&(0x7f0000000000)='./file0\x00', 0x40202, 0x54) ioctl(r0, 0x2, &(0x7f0000000080)="c626260000c01f012cf66f") r1 = socket(0x10, 0x100000802, 0x0) r2 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8923, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:21:39 executing program 2: r0 = socket(0xa, 0x1, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x41000}, 0xc, &(0x7f00000001c0)={&(0x7f00000000c0)={0xe8, 0x3f, 0x400, 0x70bd29, 0x25dfdbfb, {0x1a}, [@nested={0xd4, 0x41, [@typed={0xcc, 0x66, @binary="d413f109f48cd56cb52aa9bb7f1a298c7b881dcc988c0876a83011322e9a12e1d4030a6eb744a1a2c0f83b83abdc65d82b97e5f04882a0c028ea95643e3c39ba18891b75b59567d152f0aa6a7621930f3512bfb2656e05039facac72835d5463ac163d60ecee9e8be4e05369290b05a4e635d0d5b384d95ecd325ab3e54d5375d94787bed39dc5eafb1abb0e5e1d6a2229c399b18259c06137e453030e15b77cc360305a2985cc74c7f3ddbf0c294f968def78fe22fe121d97d82bb97cfead653803d656a2"}, @typed={0x4, 0x17}]}]}, 0xe8}, 0x1, 0x0, 0x0, 0x4000010}, 0x1) ioctl(r0, 0xfffffffffffffffc, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) write$cgroup_type(r1, &(0x7f0000000040)='threaded\x00', 0x9) [ 454.063145] ntfs: (device loop0): is_boot_sector_ntfs(): Invalid boot sector checksum. [ 454.071402] ntfs: (device loop0): read_ntfs_boot_sector(): Primary boot sector is invalid. [ 454.079914] ntfs: (device loop0): read_ntfs_boot_sector(): Mount option errors=recover not used. Aborting without trying to recover. [ 454.091993] ntfs: (device loop0): ntfs_fill_super(): Not an NTFS volume. 2018/05/26 12:21:39 executing program 0: msgget(0x3, 0x0) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rfkill\x00', 0x2, 0x0) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000040)={@multicast2=0xe0000002, @remote={0xac, 0x14, 0x14, 0xbb}, 0x0, 0x4, [@empty, @multicast1=0xe0000001, @multicast1=0xe0000001, @empty]}, 0x20) r1 = socket$inet(0x2, 0x1, 0xfffffffffffffffc) getsockopt$inet_opts(r1, 0x0, 0x200000000000004, &(0x7f0000739ff1)=""/15, &(0x7f000024bffc)=0xf) [ 454.148706] FAT-fs (loop1): bogus number of reserved sectors [ 454.154781] FAT-fs (loop1): Can't find a valid FAT filesystem 2018/05/26 12:21:39 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x10a]}) 2018/05/26 12:21:39 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x5, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:40 executing program 1: r0 = syz_open_pts(0xffffffffffffff9c, 0x2) r1 = inotify_init() fcntl$dupfd(r0, 0x406, r1) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) getsockopt$sock_int(r2, 0x1, 0x0, &(0x7f0000000080), &(0x7f00000000c0)=0x4) setsockopt$inet6_MRT6_ADD_MFC(r2, 0x29, 0xc8, &(0x7f0000000000)={{0xa, 0x3, 0x0, @loopback={0x0, 0x1}, 0xffffffffffff4093}, {0xa, 0x0, 0x0, @dev={0xfe, 0x80, [], 0x16}, 0x1}, 0x80, [0x0, 0x0, 0x0, 0x0, 0x80000e8d4, 0x0, 0x4]}, 0x5c) [ 454.325506] : renamed from ifb0 2018/05/26 12:21:40 executing program 7: r0 = socket(0x100000000000a, 0x1, 0x0) open$dir(&(0x7f0000000000)='./file0\x00', 0x40202, 0x54) ioctl(r0, 0x2, &(0x7f0000000080)="c626260000c01f012cf66f") r1 = socket(0x10, 0x100000802, 0x0) r2 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8923, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:21:40 executing program 2: r0 = socket(0xa, 0x1, 0xffffffffffffffff) tee(r0, r0, 0x7fff, 0x1) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) write$cgroup_type(r1, &(0x7f0000000040)='threaded\x00', 0x9) 2018/05/26 12:21:40 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0xc001102a]}) 2018/05/26 12:21:40 executing program 0: unshare(0x12000d00) r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0) fsync(r0) accept$ax25(r0, &(0x7f0000000000), &(0x7f0000000040)=0x10) 2018/05/26 12:21:40 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f00001fefe4)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(r1, &(0x7f0000000100), 0xffffffffffffffd6, 0x20000004, &(0x7f000031e000)={0xa, 0x4e22}, 0x1c) r2 = syz_open_dev$amidi(&(0x7f0000000000)='/dev/amidi#\x00', 0x3ff, 0x800) setsockopt$packet_buf(r2, 0x107, 0x17, &(0x7f0000000040)="2ccce89f998621f1bda90e29529a5d39d5656c5c229498dd4001a371aa", 0x1d) r3 = socket$inet(0x10, 0x3, 0x4) sendmsg(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f000000d000)=[{&(0x7f0000008000)="4c0000001200ff09fffefd956fa283b724a6008000000000000000683540150024001d001fc41180b598bc593ab6821148a730de33a49868c62b2ca654a6613b6aabf35d0f1cbc882b079881", 0x4c}], 0x1}, 0x0) [ 454.636752] : renamed from ifb0 2018/05/26 12:21:41 executing program 3: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000d28000)={0xaa}) ioctl$SG_SCSI_RESET(r0, 0x2284, 0x0) r1 = epoll_create1(0x0) socketpair(0x9, 0xa, 0x7, &(0x7f0000000280)={0xffffffffffffffff}) ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r2, 0x40a85323, &(0x7f00000002c0)={{0x1, 0x3}, 'port0\x00', 0x3c, 0x90800, 0xfffffffffffffff9, 0x8001, 0x7f, 0x7fffffff, 0x7, 0x0, 0x2, 0x1}) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x0, 0x0) getsockname$netrom(r3, &(0x7f0000000040)=@full, &(0x7f00000000c0)=0x48) getsockopt$inet_sctp_SCTP_STATUS(r3, 0x84, 0xe, &(0x7f0000000100)={0x0, 0x4, 0x7490a3d9, 0x6, 0x0, 0x8000, 0x0, 0x81, {0x0, @in={{0x2, 0x4e24, @multicast1=0xe0000001}}, 0x0, 0x80000001, 0x8, 0x0, 0x2}}, &(0x7f00000001c0)=0xb0) setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r3, 0x84, 0x7b, &(0x7f0000000200)={r4, 0x8}, 0x8) r5 = socket(0xa, 0x1, 0x0) ioctl(r5, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) r6 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r6, 0xc0145401, &(0x7f0000013000)) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r6, 0x54a3) readv(r6, &(0x7f000042bff8)=[{&(0x7f0000e3b000)=""/61, 0x3d}], 0x1) dup3(r1, r0, 0x0) 2018/05/26 12:21:41 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0xe0fa020000000000, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:41 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0xc0010007]}) 2018/05/26 12:21:41 executing program 7: r0 = socket(0x100000000000a, 0x1, 0x0) open$dir(&(0x7f0000000000)='./file0\x00', 0x40202, 0x54) ioctl(r0, 0x2, &(0x7f0000000080)="c626260000c01f012cf66f") r1 = socket(0x10, 0x100000802, 0x0) r2 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8923, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:21:41 executing program 2: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) ioctl$sock_inet_SIOCGARP(r1, 0x8954, &(0x7f00000000c0)={{0x2, 0x4e24, @multicast2=0xe0000002}, {0x1, @random="e34c04b18492"}, 0x0, {0x2, 0x4e20, @broadcast=0xffffffff}, 'veth0\x00'}) write$cgroup_type(r1, &(0x7f0000000040)='threaded\x00', 0x9) 2018/05/26 12:21:41 executing program 4: sched_setaffinity(0x0, 0x8, &(0x7f0000d81ff8)=0x101) mkdir(&(0x7f000082f000)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r1 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r1, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f0000000100)='./control/file0\x00') rename(&(0x7f0000000040)='./control/file0\x00', &(0x7f0000000080)='./control\x00') mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) open(&(0x7f0000000080)='./file0\x00', 0x280000, 0x0) unlink(&(0x7f00000001c0)='./control\x00') close(r0) 2018/05/26 12:21:41 executing program 1: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = socket$l2tp(0x18, 0x1, 0x1) connect$l2tp(r1, &(0x7f0000e71000)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x3, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @remote={0xfe, 0x80}}}}, 0x32) sendmmsg(r1, &(0x7f000000d180)=[{{&(0x7f00000060c0)=@sco={0x1f}, 0x80, &(0x7f000000c900), 0x0, &(0x7f000000c980)}}], 0x1, 0x0) 2018/05/26 12:21:41 executing program 0: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000080)='/dev/rfkill\x00', 0x2, 0x0) getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(0xffffffffffffff9c, 0x84, 0x13, &(0x7f00000000c0)={0x0, 0x9}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r1, 0x84, 0x18, &(0x7f0000000140)={r2, 0xc45}, 0x8) ioctl$DRM_IOCTL_GET_MAP(r1, 0xc0286404, &(0x7f0000000200)={&(0x7f0000ffe000/0x2000)=nil, 0x1, 0x0, 0x2a, &(0x7f0000ffc000/0x3000)=nil, 0x8}) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000180)={&(0x7f0000000040)=@gettclass={0x24, 0x2a, 0x1}, 0x24}, 0x1}, 0x0) [ 455.900009] : renamed from ifb0 2018/05/26 12:21:41 executing program 0: ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f0000001180)=0x0) openat$ppp(0xffffffffffffff9c, &(0x7f00000011c0)='/dev/ppp\x00', 0x1, 0x0) pipe(&(0x7f0000001200)={0xffffffffffffffff, 0xffffffffffffffff}) perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x400d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, r2, 0x0) r3 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0) r4 = memfd_create(&(0x7f00000000c0)="74086e750000000000000000008c00", 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0xfffffffffffffffe) getsockopt$inet6_mreq(r4, 0x29, 0x1c, &(0x7f0000001280)={@mcast2, 0x0}, &(0x7f0000001240)=0xfffffffffffffe2e) connect$packet(r4, &(0x7f0000000100)={0x11, 0x19, r5, 0x1, 0x2, 0x6, @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff]}, 0x14) getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f00000012c0)={0x0, @in6={{0xa, 0x4e22, 0x0, @remote={0xfe, 0x80, [], 0xbb}, 0x7ff}}, 0x4, 0x4, 0x6, 0x1, 0x4bd72d6283097510}, &(0x7f0000000040)=0x98) ptrace$cont(0x38, r0, 0x7f, 0x5) getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000001380)={r6, @in={{0x2, 0x4e21, @multicast1=0xe0000001}}, 0x8, 0xa602, 0x2, 0x2, 0xf}, &(0x7f0000000080)=0x98) getsockname$inet6(r4, &(0x7f0000001540)={0x0, 0x0, 0x0, @local}, &(0x7f0000001580)=0x1c) capset(&(0x7f00001b4ff8)={0x19980330}, &(0x7f000077ffe8)) chroot(&(0x7f000009a000)='./file0\x00') ioctl$LOOP_CHANGE_FD(r2, 0x4c00, r4) fchmod(r3, 0x0) fstatfs(r3, &(0x7f0000001440)=""/86) epoll_create(0x8) ftruncate(r4, 0x401) ioctl$LOOP_CHANGE_FD(r3, 0x4c06, r3) getsockopt$inet_mtu(r1, 0x0, 0xa, &(0x7f00000014c0), &(0x7f0000001500)=0x4) ioctl$DRM_IOCTL_SET_CLIENT_CAP(r4, 0x4010640d, &(0x7f0000000140)={0x10000000000009}) 2018/05/26 12:21:41 executing program 7: r0 = socket(0x100000000000a, 0x1, 0x0) open$dir(&(0x7f0000000000)='./file0\x00', 0x40202, 0x54) ioctl(r0, 0x2, &(0x7f0000000080)="c626260000c01f012cf66f") r1 = socket(0x10, 0x100000802, 0x0) r2 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8923, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:21:41 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000102]}) 2018/05/26 12:21:41 executing program 2: r0 = socket(0xa, 0x1, 0x0) setsockopt$RDS_CONG_MONITOR(r0, 0x114, 0x6, &(0x7f0000000000)=0x1, 0x4) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={0xffffffffffffffff, 0x0, 0x1, 0x3f, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], 0x4}, 0x20) ioctl$BINDER_GET_NODE_DEBUG_INFO(0xffffffffffffffff, 0xc018620b, &(0x7f0000000140)={0x0}) ioctl$BINDER_GET_NODE_DEBUG_INFO(0xffffffffffffffff, 0xc018620b, &(0x7f0000000280)={0x0}) ioctl$BINDER_GET_NODE_DEBUG_INFO(0xffffffffffffffff, 0xc018620b, &(0x7f0000000400)={0x0}) r5 = mmap$binder(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x8, 0x1010, 0xffffffffffffffff, 0x10) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000005c0)={0x124, 0x0, &(0x7f0000000440)=[@acquire={0x40046305, 0x4}, @reply={0x40406301, {0x3, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x48, 0x10, &(0x7f0000000180)=[@fd={0x66642a85, 0x0, r0}, @flat={0x77622a85, 0x101, r2, 0x2}, @fd={0x66642a85, 0x0, r0, 0x0, 0x4}], &(0x7f0000000200)=[0x0, 0xc2897eb403cc5587]}}, @increfs_done={0x40106308, r3}, @exit_looper={0x630d}, @reply={0x40406301, {0x4, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x20, 0x10, &(0x7f00000002c0)=[@fda={0x66646185, 0x3, 0x2, 0x12}], &(0x7f0000000300)=[0x60, 0x40]}}, @reply_sg={0x40486312, {{0x0, 0x0, 0x4, 0x0, 0x11, 0x0, 0x0, 0x28, 0x30, &(0x7f0000000380)=[@ptr={0x70742a85, 0x0, &(0x7f0000000340), 0x1, 0x0, 0x23}], &(0x7f00000003c0)=[0x30, 0x38, 0x0, 0x0, 0x0, 0x38]}, 0x7ff}}, @increfs_done={0x40106308, r4, 0x3}, @release={0x40046306, 0x1}, @release={0x40046306, 0x3}, @free_buffer={0x40086303, r5}], 0x0, 0x0, &(0x7f0000000580)}) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") r6 = creat(&(0x7f0000000080)='./file0\x00', 0x0) write$cgroup_type(r6, &(0x7f0000000040)='threaded\x00', 0x9) 2018/05/26 12:21:41 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x5000000, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:41 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000001280)='vegas\x00', 0x6) sendto$inet(r0, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x0, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r0, 0x0) [ 456.162569] : renamed from ifb0 2018/05/26 12:21:42 executing program 7: r0 = socket(0x100000000000a, 0x1, 0x0) open$dir(&(0x7f0000000000)='./file0\x00', 0x40202, 0x54) ioctl(r0, 0x2, &(0x7f0000000080)="c626260000c01f012cf66f") r1 = socket(0x10, 0x100000802, 0x0) syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8923, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:21:42 executing program 0: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000d06000)=0x1, 0x4) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) setsockopt$inet_tcp_int(r0, 0x6, 0x4000000000014, &(0x7f0000000040)=0x80000000001, 0x4) sendto$inet(r0, &(0x7f0000000240)='z', 0x1, 0x0, 0x0, 0x0) 2018/05/26 12:21:42 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0xc0000101]}) 2018/05/26 12:21:42 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:21:42 executing program 2: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) setsockopt$inet6_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000000)='cubic\x00', 0x6) write$cgroup_type(r1, &(0x7f0000000040)='threaded\x00', 0x9) 2018/05/26 12:21:42 executing program 3: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000d28000)={0xaa}) r1 = epoll_create1(0x0) socket(0x80000007, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0xd4081, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x7) r3 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0) epoll_ctl$EPOLL_CTL_DEL(r1, 0x2, r3) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r3, 0xc0145401, &(0x7f0000013000)) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r3, 0x54a3) readv(r3, &(0x7f000042bff8)=[{&(0x7f0000e3b000)=""/61, 0x3d}], 0x1) dup3(r1, r0, 0x0) write$binfmt_elf32(r3, &(0x7f0000000280)=ANY=[@ANYBLOB="7f454c46090907f9030000000000000002003e00020000002e0100003800000085000000990000000100200002946b765d00000005006030f7000000070000000900000081000000030000000101000004000000000000000101000002fcb3c327a6c370779ad2e6478489d63f8be7e317d6ff1797e886af8d2d244c1e031d89928259298cff8788fe3b264a5ba896a9e34da0b798ef168c2062b9db609fe7109587309e2583d55b7252dd98fa3e60f75a6d0debbba414e84a45e51b35d76ddb03a50828ed5ff90623a7bc4893066a2094837be5fdbdaa77473bd521d83992de63adb957df6f72eacb26aa7f929be47fd9c259392a29c3e5d77748a97f82ea63a60eccdf6614f2a566eeade69d1484ed1e64e1a834e954ed073ea923357b39027e64022683dadfade8c2dc19134d93f42544d53a7fac2cb91b4b05b45d7b9af14e9932e9a77b7bde8eb32cfee7f3822c17382af8a0c5ef89f456d2"], 0x7b) 2018/05/26 12:21:42 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0xff01000000000000, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:42 executing program 4: sched_setaffinity(0x0, 0x8, &(0x7f0000d81ff8)=0x101) mkdir(&(0x7f000082f000)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r1 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r1, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000000c0)='./control/file0\x00') rename(&(0x7f0000000040)='./control/file0\x00', &(0x7f0000000080)='./control\x00') mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) open(&(0x7f0000000080)='./file0\x00', 0x200000, 0x0) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000100)) unlink(&(0x7f00000001c0)='./control\x00') close(r0) 2018/05/26 12:21:42 executing program 0: unshare(0x20000000) clone(0x0, &(0x7f0000b53000), &(0x7f000084effc), &(0x7f0000000080), &(0x7f0000000040)) clone(0x0, &(0x7f000052cf69), &(0x7f0000000000), &(0x7f0000e9b000), &(0x7f0000ce4000)) 2018/05/26 12:21:42 executing program 2: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) setsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, &(0x7f0000000000)=0x400, 0x4) write$cgroup_type(r1, &(0x7f0000000040)='threaded\x00', 0x9) 2018/05/26 12:21:42 executing program 7: r0 = socket(0x100000000000a, 0x1, 0x0) open$dir(&(0x7f0000000000)='./file0\x00', 0x40202, 0x54) ioctl(r0, 0x2, &(0x7f0000000080)="c626260000c01f012cf66f") r1 = socket(0x10, 0x100000802, 0x0) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8923, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:21:42 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x8f000000, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:42 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000106]}) 2018/05/26 12:21:42 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:21:43 executing program 7: r0 = socket(0x100000000000a, 0x1, 0x0) open$dir(&(0x7f0000000000)='./file0\x00', 0x40202, 0x54) ioctl(r0, 0x2, &(0x7f0000000080)="c626260000c01f012cf66f") r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(0xffffffffffffffff, 0x8923, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:21:43 executing program 2: socket(0xa, 0x1, 0x0) r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0) write$cgroup_type(r0, &(0x7f0000000040)='threaded\x00', 0x9) 2018/05/26 12:21:43 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x8b]}) 2018/05/26 12:21:43 executing program 3: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000d28000)={0xaa}) r1 = epoll_create1(0x0) r2 = socket(0xa, 0x1, 0x0) ioctl(r2, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) r3 = accept4$llc(r2, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @dev}, &(0x7f0000000040)=0x10, 0x80000) r4 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r4, 0xc0145401, &(0x7f0000013000)) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r4, 0x54a3) readv(r4, &(0x7f000042bff8)=[{&(0x7f0000e3b000)=""/61, 0x3d}], 0x1) write$cgroup_pid(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="956d68d65bed"], 0x1) r5 = dup3(r3, r0, 0x0) getsockopt$bt_l2cap_L2CAP_LM(r5, 0x6, 0x3, &(0x7f0000000080), &(0x7f0000000100)=0x4) 2018/05/26 12:21:43 executing program 7: socket(0x100000000000a, 0x1, 0x0) open$dir(&(0x7f0000000000)='./file0\x00', 0x40202, 0x54) r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8923, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:21:43 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x11]}) 2018/05/26 12:21:43 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0xffffffe4, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:43 executing program 2: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) write$cgroup_type(r1, &(0x7f0000000040)='threaded\x00', 0x9) ioctl$DMA_BUF_IOCTL_SYNC(r1, 0x40086200, &(0x7f0000000000)=0x5) 2018/05/26 12:21:43 executing program 0: mkdir(&(0x7f0000000300)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000001c0)={0xaa}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000200)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r1 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r1, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000000c0)='./control/file0\x00') close(r0) 2018/05/26 12:21:43 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:21:43 executing program 4: sched_setaffinity(0x0, 0x8, &(0x7f0000d81ff8)=0x101) mkdir(&(0x7f000082f000)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r1 = creat(&(0x7f0000000000)='./control/file0\x00', 0x2) write$sndseq(r1, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000000c0)='./control/file0\x00') rename(&(0x7f0000000040)='./control/file0\x00', &(0x7f0000000080)='./control\x00') mknod(&(0x7f0000000180)='./file0\x00', 0x0, 0x7) open(&(0x7f0000000080)='./file0\x00', 0x200000, 0x0) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x4000, 0x0) unlink(&(0x7f0000000100)='./control/file0\x00') close(r0) socketpair$inet_tcp(0x2, 0x1, 0x0, &(0x7f00000001c0)) [ 458.249912] : renamed from ifb0 2018/05/26 12:21:44 executing program 7: socket(0x100000000000a, 0x1, 0x0) r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8923, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:21:44 executing program 2: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="f0b86599aa13911d794bec0959287a1dfb70af171d1887de2789edada5a0f6984efe400df2cfbef0cc7d29448a42c1", 0x2f) r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) getsockopt$inet_sctp_SCTP_MAXSEG(r1, 0x84, 0xd, &(0x7f00000000c0)=@assoc_id=0x0, &(0x7f0000000100)=0x4) setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f0000000140)={r2, 0x6}, 0x8) getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f0000000280)=""/201, &(0x7f0000000200)=0xc9) write$cgroup_type(r1, &(0x7f0000000040)='threaded\x00', 0x9) 2018/05/26 12:21:44 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x9, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:44 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000148]}) 2018/05/26 12:21:44 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) [ 458.417720] : renamed from ifb0 2018/05/26 12:21:44 executing program 7: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8923, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) [ 458.503951] IPVS: length: 201 != 24 2018/05/26 12:21:44 executing program 2: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) getsockopt$inet6_opts(r0, 0x29, 0x36, &(0x7f00000000c0)=""/146, &(0x7f0000000000)=0x92) write$cgroup_type(r1, &(0x7f0000000040)='threaded\x00', 0x9) 2018/05/26 12:21:44 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000020]}) [ 458.526997] IPVS: length: 201 != 24 [ 458.641746] : renamed from ifb0 2018/05/26 12:21:45 executing program 3: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000d28000)={0xaa}) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffff9c, 0x0, 0x11, &(0x7f00000000c0)={{{@in, @in=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@dev}, 0x0, @in6=@local}}, &(0x7f00000001c0)=0xe8) fchown(r0, r1, 0x0) r2 = epoll_create1(0x0) r3 = socket(0xa, 0x1, 0x0) ioctl(r3, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") setsockopt$IP_VS_SO_SET_EDIT(r3, 0x0, 0x483, &(0x7f0000000080)={0x7c, @multicast2=0xe0000002, 0x4e23, 0xfc, 'nq\x00', 0x12, 0x1f, 0x7c}, 0x2c) r4 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r4, 0xc0145401, &(0x7f0000013000)) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r4, 0x54a3) readv(r4, &(0x7f000042bff8)=[{&(0x7f0000e3b000)=""/61, 0x3d}], 0x1) r5 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x204000, 0x0) ioctl$SG_GET_NUM_WAITING(r5, 0x227d, &(0x7f0000000040)) dup3(r2, r0, 0x0) 2018/05/26 12:21:45 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x8600000000000000, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:45 executing program 7: r0 = socket(0x0, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8923, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:21:45 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:21:45 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000000]}) 2018/05/26 12:21:45 executing program 0: unshare(0x20000000) clone(0x0, &(0x7f0000b53000), &(0x7f000084effc), &(0x7f0000000080), &(0x7f0000000040)) wait4(0x0, 0x0, 0x40000000, &(0x7f0000000200)) 2018/05/26 12:21:45 executing program 2: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) setsockopt$netlink_NETLINK_PKTINFO(r1, 0x10e, 0x3, &(0x7f0000000000)=0x100, 0x4) write$cgroup_type(r1, &(0x7f0000000040)='threaded\x00', 0x9) 2018/05/26 12:21:45 executing program 4: sched_setaffinity(0x0, 0x8, &(0x7f0000d81ff8)=0x101) mkdir(&(0x7f000082f000)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r1 = syz_open_dev$sndmidi(&(0x7f0000000100)='/dev/snd/midiC#D#\x00', 0x4, 0x0) r2 = syz_open_dev$vcsn(&(0x7f0000000180)='/dev/vcs#\x00', 0x2, 0x10000) renameat2(r1, &(0x7f0000000140)='./file0\x00', r2, &(0x7f0000000200)='./control/file0\x00', 0x2) r3 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r3, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) ppoll(&(0x7f0000000240)=[{r3, 0x1005}], 0x1, &(0x7f0000000280), &(0x7f00000002c0), 0x8) unlink(&(0x7f00000000c0)='./control/file0\x00') rename(&(0x7f0000000040)='./control/file0\x00', &(0x7f0000000080)='./control\x00') mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) open(&(0x7f0000000080)='./file0\x00', 0x200000, 0x0) unlink(&(0x7f00000001c0)='./control\x00') close(r0) 2018/05/26 12:21:45 executing program 7: r0 = socket(0x10, 0x0, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8923, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:21:45 executing program 2: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) write$cgroup_type(r1, &(0x7f0000000040)='threaded\x00', 0x9) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r0, 0x84, 0x73, &(0x7f0000000000)={0x0, 0x1, 0x2000000000000020, 0xfff, 0x1}, &(0x7f00000000c0)=0x18) getsockopt$inet_sctp_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000100)=ANY=[@ANYRES32=r2, @ANYBLOB="01000100baff"], &(0x7f0000000140)=0xa) 2018/05/26 12:21:45 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x8600, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:45 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0xc0010015]}) 2018/05/26 12:21:45 executing program 0: r0 = socket$inet6(0xa, 0x100000003, 0xff) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={[], [0xff, 0xff]}}, 0x1c) sendmsg$key(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[]}, 0x1}, 0x0) 2018/05/26 12:21:45 executing program 1: openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) [ 459.615976] IPVS: set_ctl: invalid protocol: 124 224.0.0.2:20003 nq 2018/05/26 12:21:45 executing program 7: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8923, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:21:45 executing program 0: 2018/05/26 12:21:46 executing program 3: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000d28000)={0xaa}) r1 = epoll_create1(0x0) r2 = socket(0xa, 0x1, 0x0) ioctl(r2, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) r3 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$sock_ifreq(r2, 0x8925, &(0x7f0000000000)={'bcsf0\x00', @ifru_map={0x505, 0x2, 0x7f, 0x8, 0x0, 0x8000}}) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r3, 0xc0145401, &(0x7f0000013000)) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r3, 0x54a3) readv(r3, &(0x7f000042bff8)=[{&(0x7f0000e3b000)=""/61, 0x3d}], 0x1) dup3(r1, r0, 0x0) 2018/05/26 12:21:46 executing program 1: openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:21:46 executing program 7: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00'}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8923, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:21:46 executing program 0: 2018/05/26 12:21:46 executing program 4: sched_setaffinity(0x0, 0x8, &(0x7f0000d81ff8)=0x101) mkdir(&(0x7f000082f000)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r1 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r1, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000000c0)='./control/file0\x00') rename(&(0x7f0000000040)='./control/file0\x00', &(0x7f0000000080)='./control\x00') mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) open(&(0x7f0000000080)='./file0\x00', 0x200000, 0x0) unlink(&(0x7f00000001c0)='./control\x00') syz_mount_image$nfs4(&(0x7f0000000100)='nfs4\x00', &(0x7f0000000140)='./control\x00', 0x10001, 0x4, &(0x7f00000003c0)=[{&(0x7f0000000200)="8527269bd3db2b3725a4e419d8d76655070480bb2f82ca4ce9ba7f4c228e5d1e235f86aafaee547a2e601ea3b7171dbe1091f90fb2269411a0dc19e982e202d66e2bc61f3b8793a419158800dc4bfa595659f2c57f714a1f1ace318cbb00663fd4ffbc75aa0c6704c4b45ed2cc248d7003d91ff19d50218fd68c1fa195740df2550f338af64a8eff1a02b14bb7234b190709d05bcfc93940621956353211b5e2ace0eda297678d2414fa65c242ec63df80a00879ba29c11f5d9b94af87300713f6dd357fadc85ac9d7585fcbbf48208762da06689651845b0046cc617f32235948741bf0d1e582c3c415f2d855abbf1beb66a1a65d5eba44138accd0c79b", 0xfe, 0x101}, {&(0x7f0000000300)="c05063161b25b4a5186164d1db2d4b711ebcc3f380ac5c488fc79b4235b096cc829a7d14836f7c251a06f0f842400025a48645d77f6bd608d4b617daf265cd03613e9edc3769a55712ca3e", 0x4b, 0x6}, {&(0x7f0000000180)="2d101475e740b5bddf7d717bc3428bb7d2d6f483bd600477b069446d9ea67c", 0x1f, 0x56e3}, {&(0x7f0000000380)="4c34c4bec18bd350e4b7af16", 0xc, 0x8}], 0x200008, &(0x7f0000000440)='%\x00') close(r0) 2018/05/26 12:21:46 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x804000000000000, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:46 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x400000b0]}) 2018/05/26 12:21:46 executing program 2: r0 = socket(0xa, 0x1, 0x0) pipe2(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x800) openat$cgroup_type(r1, &(0x7f00000001c0)='cgroup.type\x00', 0x2, 0x0) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") r2 = creat(&(0x7f0000000080)='./file0\x00', 0x0) accept4$vsock_stream(r0, &(0x7f0000000100)={0x28, 0x0, 0x2710, @reserved=0x1}, 0x10, 0x800) write$cgroup_type(r2, &(0x7f0000000040)='threaded\x00', 0x9) bind$netrom(r0, &(0x7f0000000140)=@full={{0x3, {"b42ac6d7251fb7"}, 0x7}, [{"7fa1076f9146ff"}, {"4f9be99c98fab4"}, {"90996e59185762"}, {"c8735c140f3a5a"}, {"6fb16e83219919"}, {"38048aa8830c55"}, {"a6584bd02899b8"}, {"97030ccfdde43c"}]}, 0x5) setsockopt$bt_BT_RCVMTU(r2, 0x112, 0xd, &(0x7f00000000c0)=0x7, 0x2) [ 460.537105] IPVS: set_ctl: invalid protocol: 124 224.0.0.2:20003 nq 2018/05/26 12:21:46 executing program 0: 2018/05/26 12:21:46 executing program 7: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(0xffffffffffffffff, 0x8923, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:21:46 executing program 2: r0 = socket(0xa, 0x4, 0x4) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") creat(&(0x7f0000000080)='./file0\x00', 0x0) 2018/05/26 12:21:46 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000105]}) 2018/05/26 12:21:46 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0xf0ffffff0f0000, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:46 executing program 1: openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:21:46 executing program 0: 2018/05/26 12:21:46 executing program 7: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8923, &(0x7f00000000c0)={"6966623000f7ff010000000000000076"}) 2018/05/26 12:21:47 executing program 2: r0 = socket(0x3, 0xffffffffffffffef, 0x6) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) write$cgroup_type(r1, &(0x7f0000000040)='threaded\x00', 0x9) 2018/05/26 12:21:47 executing program 3: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000d28000)={0xaa}) r1 = epoll_create1(0x0) socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) r2 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r2, 0xc0145401, &(0x7f0000013000)={0x0, 0x0, 0x0, 0x0, 0x6}) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r2, 0x54a3) readv(r2, &(0x7f000042bff8)=[{&(0x7f0000e3b000)=""/61, 0x3d}], 0x1) dup3(r1, r0, 0x0) 2018/05/26 12:21:47 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000111]}) 2018/05/26 12:21:47 executing program 7: 2018/05/26 12:21:47 executing program 4: sched_setaffinity(0x0, 0x8, &(0x7f0000d81ff8)=0x101) mkdir(&(0x7f000082f000)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) fsetxattr(r0, &(0x7f0000000140)=@known='system.sockprotoname\x00', &(0x7f0000000180)='[/-&GPL\'eth0@\x00', 0xe, 0x0) r1 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r1, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) ioctl$TIOCMGET(r1, 0x5415, &(0x7f0000000100)) unlink(&(0x7f00000000c0)='./control/file0\x00') rename(&(0x7f0000000040)='./control/file0\x00', &(0x7f0000000080)='./control\x00') mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) open(&(0x7f0000000080)='./file0\x00', 0x200000, 0x3) unlink(&(0x7f00000001c0)='./control\x00') close(r0) 2018/05/26 12:21:47 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x30000000, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:47 executing program 1: ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:21:47 executing program 0: 2018/05/26 12:21:47 executing program 0: 2018/05/26 12:21:47 executing program 1: ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:21:47 executing program 7: 2018/05/26 12:21:47 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x34]}) 2018/05/26 12:21:47 executing program 2: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) write$cgroup_type(r1, &(0x7f0000000040)='threaded\x00', 0x1da) ioctl$KVM_GET_DEBUGREGS(r1, 0x8080aea1, &(0x7f0000000080)) ioctl$KVM_KVMCLOCK_CTRL(r1, 0xaead) 2018/05/26 12:21:47 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x4, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:47 executing program 0: 2018/05/26 12:21:48 executing program 7: 2018/05/26 12:21:48 executing program 1: ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:21:48 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0xc0000103]}) 2018/05/26 12:21:48 executing program 0: 2018/05/26 12:21:48 executing program 2: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x100000000008912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) write$cgroup_type(r1, &(0x7f0000000040)='threaded\x00', 0x9) socketpair$inet6_dccp(0xa, 0x6, 0x0, &(0x7f0000000000)) 2018/05/26 12:21:48 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0xfeffffff00000000, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:48 executing program 3: r0 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x1, 0x10001) ioctl$KVM_S390_VCPU_FAULT(r0, 0x4008ae52, &(0x7f0000000040)=0x7ff) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r2 = socket(0xa, 0x1, 0x0) ioctl(r2, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f00000000c0)="c4824da82b66ba2100b801000000efb9270900000f323640a7650f30c4e2899c8e02000000f02046452ef3440f6fb800f0ff7fc42101dbc40f2047"}], 0x0, 0x0, &(0x7f0000000080), 0x0) ioctl$KVM_SET_MSRS(r4, 0x4008ae89, &(0x7f0000000040)=ANY=[@ANYBLOB="01000000001e00fb034d564b0000000001"]) ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfdfdffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r5 = userfaultfd(0x0) ioctl$UFFDIO_API(r5, 0xc018aa3f, &(0x7f0000d28000)={0xaa}) r6 = epoll_create1(0x1) r7 = socket(0xa, 0x1, 0x0) ioctl(r7, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$UFFDIO_REGISTER(r5, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) r8 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r8, 0xc0145401, &(0x7f0000013000)) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r8, 0x54a3) readv(r8, &(0x7f000042bff8)=[{&(0x7f0000e3b000)=""/61, 0x3d}], 0x1) dup3(r6, r5, 0x0) 2018/05/26 12:21:48 executing program 4: 2018/05/26 12:21:48 executing program 4: 2018/05/26 12:21:48 executing program 0: 2018/05/26 12:21:48 executing program 7: 2018/05/26 12:21:48 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:21:48 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x186]}) 2018/05/26 12:21:48 executing program 2: 2018/05/26 12:21:48 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0xfbffffff, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:49 executing program 0: perf_event_open(&(0x7f000001d000)={0x200000002, 0x70, 0x5, 0x108000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = epoll_create1(0x0) r1 = epoll_create1(0x0) syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0) close(r0) signalfd(0xffffffffffffffff, &(0x7f0000000080), 0x8) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000c85000)) mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x0, 0x44031, 0xffffffffffffffff, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:21:49 executing program 4: r0 = socket$inet6(0xa, 0x802, 0x0) sendto$inet6(r0, &(0x7f0000000000), 0x0, 0x0, &(0x7f0000001000)={0xa, 0x4e23, 0x0, @mcast1={0xff, 0x1, [], 0x1}}, 0x1c) 2018/05/26 12:21:49 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$sock_ifreq(r0, 0x8983, &(0x7f0000000280)={'eql\x00', @ifru_settings={0x0, 0x0, @sync=&(0x7f00000001c0)}}) 2018/05/26 12:21:50 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:21:50 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000110]}) 2018/05/26 12:21:50 executing program 2: perf_event_open(&(0x7f0000000140)={0x2, 0xb1, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000380)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(0xffffffffffffffff, 0xc08c5335, &(0x7f0000000080)={0x0, 0x0, 0x0, 'queue1\x00'}) mmap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x0, 0x20011, r0, 0x0) r1 = syz_open_dev$sndseq(&(0x7f00000001c0)='/dev/snd/seq\x00', 0x0, 0x0) read(r1, &(0x7f0000001780)=""/140, 0x31b) ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r1, 0xc0a45320, &(0x7f00000004c0)={{0x4000000080}, 'port0\x00', 0x3f, 0xffffffffffffffff}) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x0, 0x0) 2018/05/26 12:21:50 executing program 4: r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f00001edff0)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10) r1 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r1, &(0x7f0000f66000)={0xa, 0x4e20, 0x0, @ipv4={[], [0xff, 0xff], @remote={0xac, 0x14, 0x14, 0xbb}}}, 0x1c) 2018/05/26 12:21:50 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x40000000, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:50 executing program 7: r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x100008912, &(0x7f0000000240)="c626262c8523bf012cf66f") add_key$keyring(&(0x7f0000000140)='keyring\x00', &(0x7f0000000200)={0x73, 0x79, 0x7a}, 0x0, 0x0, 0xffffffffffffffff) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f00000001c0)={0x73, 0x79, 0x7a}, 0x0, 0x0, 0x0) request_key(&(0x7f0000000040)='dns_resolver\x00', &(0x7f0000000100)={0x73, 0x79, 0x7a}, &(0x7f0000000180)='vmnet1wlan1)proccpuset\x00', 0x0) 2018/05/26 12:21:50 executing program 3: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000d28000)={0xaa}) r1 = epoll_create1(0x0) r2 = socket(0xa, 0x1, 0x0) ioctl(r2, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") r3 = creat(&(0x7f00000001c0)='./file0\x00', 0x88) ioctl$DRM_IOCTL_RES_CTX(0xffffffffffffff9c, 0xc0106426, &(0x7f0000000080)={0x2, &(0x7f0000000040)=[{}, {0x0}]}) ioctl$DRM_IOCTL_LOCK(r3, 0x4008642a, &(0x7f00000000c0)={r4, 0x22}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) getsockopt$inet_sctp6_SCTP_RECVNXTINFO(r2, 0x84, 0x21, &(0x7f0000000100), &(0x7f0000000140)=0x4) ioctl$sock_inet6_tcp_SIOCATMARK(r3, 0x8905, &(0x7f0000000180)) r5 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r5, 0xc0145401, &(0x7f0000013000)) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r5, 0x54a3) readv(r5, &(0x7f000042bff8)=[{&(0x7f0000e3b000)=""/61, 0x3d}], 0x1) set_tid_address(&(0x7f0000000000)) dup3(r1, r0, 0x0) 2018/05/26 12:21:50 executing program 0: mkdir(&(0x7f0000000200)='./file0\x00', 0x0) 2018/05/26 12:21:50 executing program 4: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000105]}) 2018/05/26 12:21:50 executing program 7: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:21:50 executing program 0: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000000]}) 2018/05/26 12:21:50 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:21:50 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x4000012a]}) 2018/05/26 12:21:50 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0xe4ffffff, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:50 executing program 4: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000020]}) 2018/05/26 12:21:51 executing program 3: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000d28000)={0xaa}) r1 = epoll_create1(0x0) r2 = socket(0xa, 0x1, 0x0) ioctl(r2, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffffff, 0xc0206434, &(0x7f0000000000)={0x4, 0x0, 0x2, 0x1570608a}) ioctl$DRM_IOCTL_AGP_ALLOC(r1, 0xc0206434, &(0x7f0000000040)={0x8, r3, 0x2, 0x401}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) pread64(r0, &(0x7f0000000080)=""/223, 0xdf, 0x0) r4 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0) getsockopt$bt_BT_SNDMTU(r2, 0x112, 0xc, &(0x7f0000000180)=0x7, &(0x7f00000001c0)=0x2) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r4, 0xc0145401, &(0x7f0000013000)) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r4, 0x54a3) readv(r4, &(0x7f000042bff8), 0xe6e69177e7795166) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000000280)={{{@in6=@mcast1, @in=@rand_addr, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@ipv4={[], [], @loopback}}, 0x0, @in6=@loopback}}, &(0x7f0000000380)=0xe8) getresgid(&(0x7f00000003c0), &(0x7f0000000400), &(0x7f0000000440)=0x0) lchown(&(0x7f0000000200)='./file0\x00', r5, r6) dup3(r1, r0, 0x0) 2018/05/26 12:21:51 executing program 0 (fault-call:2 fault-nth:0): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:21:51 executing program 7: close(0xffffffffffffffff) syz_open_dev$tun(&(0x7f0000000000)='/dev/net/tun\x00', 0x0, 0x0) r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") perf_event_open(&(0x7f000025c000)={0x0, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e4}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mkdir(&(0x7f00000001c0)='./file0\x00', 0x0) mount(&(0x7f000000a000)='./file0\x00', &(0x7f0000026ff8)='./file0\x00', &(0x7f000000c000)='ramfs\x00', 0x0, &(0x7f000000a000)) r2 = inotify_init() inotify_add_watch(r2, &(0x7f0000000000)='./file0\x00', 0x2000000) clock_gettime(0x0, &(0x7f0000000100)={0x0, 0x0}) syz_mount_image$ceph(&(0x7f00000000c0)='ceph\x00', &(0x7f00000006c0)='./file0\x00', 0x7, 0x4, &(0x7f0000000900)=[{&(0x7f0000000700)="8e1ae172fb7a72e5d45fda3c49776238b8861efee5f406b9a81988b46c11e1bf64a5ccb0759a2a36d63f3db62883d52c083fa57bd058ad4da671ac2b017c60a5e2c8ead1aed8e318d10800075bfd3f006a475c0fcff09c2874de5972ea2d818603bad8dfa5669c6f453fb1311a7fb0dc49c4e816dcda91a98673fb264ff8169d9794a5f05830511b7daf500a8be0e262a90ba18523460fa7fe6fbec7", 0x9c, 0xfff}, {&(0x7f00000007c0)="841206da2b7389cc630d8464f3efb28f5d7ab9e857f8c8c1e3a4981e94b058dc311fbb4623dc99f8e4a09eaee26e03297c8c20e9dbbbe6896c24149de1cb9f5b103ad1dffbcbb5207427746a8b3dee5f3f02b99783de413426391294a5af2f69cf7bf97b53b0da61036d44ec6adc8305eb3176e739e03aa8a12885fa801c93ee3dddbf096eb91d7eeb45a141d63f40c3ee63195c285bfbf8d30c0abbda883197cf6cf5ddb1f4436a827c537810566b63e5ef67d61446f9a260ac4f540d5bce00", 0xc0}, {&(0x7f0000000880)="9628fbbd8a576ed10000", 0xa, 0x3f}, {&(0x7f00000008c0)="8cb4e7ae36", 0x5, 0x4}], 0x2000000, &(0x7f0000000980)='/dev/net/tun\x00') clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) write$sndseq(0xffffffffffffffff, &(0x7f0000000400)=[{0x1ff, 0x1, 0x5, 0x6, @time={0x77359400}, {0x10000, 0x8}, {0x401, 0x1}, @ext={0xce, &(0x7f0000000280)="27360d7b00b0c0831f0c313a69be25076e83fa9caf0ce4c451afcdfcca4e7782a2958c974b8804948b3feecb824ca99c61e761d8b7642af60f6dcfd030199edd3837e2fef7da6802f64423af0eac9567ae7addfa15aec76dee9c85398e60fe9cbe31997caa4dfe1f8d17244c072ad2cb135bbe0b8f681985b8aaaf586b1ae0b1a5dc4c094887c66bead3d75b7c029f1e99d9b7f482a1dc9b66d0caa1fed35e8884f2dfdc1be6bdc5f69f242d11404edefb4d25a61346193856a3093b327c8ec3d13907ff38f2956e5fef442844e5"}}, {0x5, 0x8, 0x1, 0x7, @time={0x77359400}, {0xffff, 0x1000}, {0x7, 0x80000001}, @time=@tick=0x20}, {0xdd, 0x3, 0x8, 0x100000000000000, @tick=0x83c, {0x7, 0x40}, {0x2, 0x94c00}, @result={0x1, 0xf193}}, {0x8b4, 0x8000, 0x200, 0x1f, @tick=0x9, {0xfffffffffffffffe, 0x2}, {0x1, 0x8}, @control={0x3, 0x80, 0x2}}, {0x0, 0x8, 0x2f, 0x6ec5, @time={r3, r4+30000000}, {0x3, 0x773}, {0x2, 0x96b8}, @addr={0x1f}}, {0x2, 0x6, 0xa31, 0x4, @time={r5, r6+30000000}, {0x3, 0xe13}, {0x79f6, 0x478}, @time=@time={0x0, 0x1c9c380}}, {0xc9df, 0x100000000, 0x0, 0x0, @tick=0xc0, {0x7fffffff, 0x401}, {0x1, 0xfffffffffffffff8}, @connect={{0xc3ca, 0xb6}, {0x3, 0xffffffff}}}, {0x1f, 0x4, 0x7, 0x7fff, @time, {0x4, 0xffffffffffff0000}, {0x0, 0xffffffffffffffc1}, @queue={0x5, {0xfffffffffffffffc, 0x7}}}, {0x5, 0xffffffffffffffc1, 0x7fff, 0x7, @tick, {0x3, 0x8}, {0x3, 0x9}, @ext={0x7a, &(0x7f0000000380)="7d5f9b52ce4e69247836fb74530cdacd64de0e9847640dcf3ff8cb02b51104f636d98f5f17da9bf73dee7e32f285bbba1de386e5ad80f2f1549c9c30634ed2bd567ad6186a74a27913418ff2fb74f0a1585152150cf086a4ad5295332095b7ce89d35dd6e8ce462787ab6a093b43f4545b9968fe5a037fc5c671"}}, {0x80, 0x9, 0xf5ed, 0x1d, @tick=0x1, {0x8001, 0x4a79}, {0x6, 0x80000000}, @quote={{0x8, 0x1}, 0x0, &(0x7f0000000180)={0xfffffffffffffff7, 0xa, 0x4, 0x9, @time={0x77359400}, {0x0, 0x8}, {0x7, 0x5}, @note={0xfff, 0x6, 0x0, 0x80, 0xd4}}}}], 0x1e0) umount2(&(0x7f0000000200)='./file0\x00', 0x0) fcntl$setlease(r2, 0x400, 0x1) r7 = dup2(r1, r2) ioctl$VHOST_NET_SET_BACKEND(0xffffffffffffffff, 0x4008af30, &(0x7f0000f1dff8)) setsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r7, 0x84, 0x1e, &(0x7f0000000080)=0x67, 0x4) ioctl$EVIOCSFF(r7, 0x40304580, &(0x7f0000000040)=ANY=[@ANYBLOB="570008000000ffff0000d400d7fa4a091f000000810100000600"]) clock_gettime(0x0, &(0x7f0000000600)={0x0, 0x0}) setitimer(0x2, &(0x7f0000000640)={{0x0, 0x2710}, {r8, r9/1000+10000}}, &(0x7f0000000680)) 2018/05/26 12:21:51 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f00001fefe4)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(r1, &(0x7f0000000100), 0xffffffffffffffd6, 0x20000004, &(0x7f000031e000)={0xa, 0x4e22}, 0x1c) r2 = syz_open_dev$amidi(&(0x7f0000000000)='/dev/amidi#\x00', 0x3ff, 0x800) setsockopt$packet_buf(r2, 0x107, 0x17, &(0x7f0000000040)="2ccce89f998621f1bda90e29529a5d39d5656c5c229498dd4001a371aa", 0x1d) r3 = socket$inet(0x10, 0x3, 0x4) sendmsg(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f000000d000)=[{&(0x7f0000008000)="4c0000001200ff09fffefd956fa283b724a6008000000000000000683540150024001d001fc41180b598bc593ab6821148a730de33a49868c62b2ca654a6613b6aabf35d0f1cbc882b079881", 0x4c}], 0x1}, 0x0) 2018/05/26 12:21:51 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x174]}) 2018/05/26 12:21:51 executing program 4 (fault-call:3 fault-nth:0): r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8923, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:21:51 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0xfeffffff, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:51 executing program 2: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0xffffffffffffffff) perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x8000000200000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mount(&(0x7f000091dff8)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f0000fb5ffc)='nfs\x00', 0x0, &(0x7f000000a000)) getrandom(&(0x7f0000000080)=""/215, 0xd7, 0x32b2662ba97ed26) [ 465.606504] : renamed from ifb0 [ 465.609960] FAULT_INJECTION: forcing a failure. [ 465.609960] name failslab, interval 1, probability 0, space 0, times 0 [ 465.621472] CPU: 0 PID: 28169 Comm: syz-executor4 Not tainted 4.17.0-rc6+ #68 [ 465.628758] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 465.638109] Call Trace: [ 465.640704] dump_stack+0x1b9/0x294 [ 465.644344] ? dump_stack_print_info.cold.2+0x52/0x52 [ 465.649550] ? finish_task_switch+0x1ca/0x840 [ 465.654053] ? finish_task_switch+0x182/0x840 [ 465.658555] should_fail.cold.4+0xa/0x1a [ 465.662624] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 465.667742] ? __schedule+0x809/0x1e30 [ 465.671639] ? __sched_text_start+0x8/0x8 [ 465.675798] ? find_held_lock+0x36/0x1c0 [ 465.679857] ? __lock_is_held+0xb5/0x140 [ 465.683917] ? check_same_owner+0x320/0x320 [ 465.688233] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 465.693761] ? refcount_inc_not_zero+0x1dd/0x2d0 [ 465.698539] __should_failslab+0x124/0x180 [ 465.702779] should_failslab+0x9/0x14 [ 465.706588] __kmalloc_track_caller+0x2c4/0x760 [ 465.711256] ? lock_release+0xa10/0xa10 [ 465.715225] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 465.720774] ? device_rename+0x8c/0x200 [ 465.724762] kstrdup+0x39/0x70 [ 465.727964] device_rename+0x8c/0x200 [ 465.731799] dev_change_name+0x36f/0xba0 [ 465.735866] ? netdev_adjacent_rename_links+0x2d0/0x2d0 [ 465.741232] ? perf_trace_lock_acquire+0xe3/0x980 [ 465.746083] ? find_held_lock+0x36/0x1c0 [ 465.750144] ? full_name_hash+0xc0/0x100 [ 465.754210] dev_ifsioc+0x623/0xb90 [ 465.757823] ? dev_ifsioc+0x623/0xb90 [ 465.761623] ? register_gifconf+0x70/0x70 [ 465.765795] dev_ioctl+0x5d5/0xcc0 [ 465.769341] sock_do_ioctl+0x1d3/0x3e0 [ 465.773234] ? compat_ifr_data_ioctl+0x170/0x170 [ 465.777983] ? lock_downgrade+0x8e0/0x8e0 [ 465.782138] ? kasan_check_read+0x11/0x20 [ 465.786279] ? rcu_is_watching+0x85/0x140 [ 465.790418] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 465.795602] sock_ioctl+0x30d/0x680 [ 465.799224] ? dlci_ioctl_set+0x40/0x40 [ 465.803200] ? expand_files.part.8+0x9a0/0x9a0 [ 465.807784] ? kasan_check_write+0x14/0x20 [ 465.812015] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 465.816956] ? wait_for_completion+0x870/0x870 [ 465.821543] ? dlci_ioctl_set+0x40/0x40 [ 465.825515] do_vfs_ioctl+0x1cf/0x16a0 [ 465.829405] ? ioctl_preallocate+0x2e0/0x2e0 [ 465.833825] ? fget_raw+0x20/0x20 [ 465.837277] ? __sb_end_write+0xac/0xe0 [ 465.841249] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 465.846777] ? fput+0x130/0x1a0 [ 465.850058] ? ksys_write+0x1a6/0x250 [ 465.853857] ? security_file_ioctl+0x94/0xc0 [ 465.858261] ksys_ioctl+0xa9/0xd0 [ 465.861709] __x64_sys_ioctl+0x73/0xb0 [ 465.865609] do_syscall_64+0x1b1/0x800 [ 465.869502] ? finish_task_switch+0x1ca/0x840 [ 465.873982] ? syscall_return_slowpath+0x5c0/0x5c0 [ 465.878909] ? syscall_return_slowpath+0x30f/0x5c0 [ 465.883836] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 465.889185] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 465.894027] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 465.899206] RIP: 0033:0x455a09 [ 465.902382] RSP: 002b:00007f161f79cc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 465.910085] RAX: ffffffffffffffda RBX: 00007f161f79d6d4 RCX: 0000000000455a09 [ 465.917342] RDX: 00000000200000c0 RSI: 0000000000008923 RDI: 0000000000000013 [ 465.924603] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 465.931859] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 465.939117] R13: 0000000000000445 R14: 00000000006fa718 R15: 0000000000000000 [ 465.949914] FAULT_INJECTION: forcing a failure. 2018/05/26 12:21:51 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x5d, &(0x7f0000000580), 0x0) ioctl$fiemap(0xffffffffffffffff, 0xc020660b, &(0x7f0000000000)=ANY=[@ANYBLOB="0000000000000000020000000000000002000000400000000300000000000000000200000003ce24acddcb054d000000000000010000000000000000000000000012000000000000f1"]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = syz_open_dev$sndpcmp(&(0x7f0000000080)='/dev/snd/pcmC#D#p\x00', 0x0, 0x50980) setsockopt$bt_BT_DEFER_SETUP(r3, 0x112, 0x7, &(0x7f00000000c0)=0x80, 0x4) [ 465.949914] name failslab, interval 1, probability 0, space 0, times 0 [ 465.961353] CPU: 0 PID: 28170 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 465.968641] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 465.978002] Call Trace: [ 465.980611] dump_stack+0x1b9/0x294 [ 465.984261] ? dump_stack_print_info.cold.2+0x52/0x52 [ 465.989458] ? perf_trace_lock_acquire+0xe3/0x980 [ 465.994310] ? kasan_check_read+0x11/0x20 [ 465.998467] ? do_raw_spin_unlock+0x9e/0x2e0 [ 466.002890] should_fail.cold.4+0xa/0x1a [ 466.006956] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 466.012058] ? _raw_spin_unlock+0x22/0x30 [ 466.016196] ? __handle_mm_fault+0x93a/0x4310 [ 466.020680] ? vm_insert_mixed_mkwrite+0x40/0x40 [ 466.025454] ? find_held_lock+0x36/0x1c0 [ 466.029899] ? check_same_owner+0x320/0x320 [ 466.034231] ? rcu_note_context_switch+0x710/0x710 [ 466.039160] ? lock_downgrade+0x8e0/0x8e0 [ 466.043296] __should_failslab+0x124/0x180 [ 466.047549] should_failslab+0x9/0x14 [ 466.051349] kmem_cache_alloc+0x2af/0x760 [ 466.055493] ? __handle_mm_fault+0x4310/0x4310 [ 466.060077] getname_flags+0xd0/0x5a0 [ 466.063879] getname+0x19/0x20 [ 466.067069] do_sys_open+0x39a/0x740 [ 466.070780] ? mm_fault_error+0x314/0x380 [ 466.074922] ? filp_open+0x80/0x80 [ 466.078469] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 466.084024] __x64_sys_open+0x7e/0xc0 [ 466.087825] do_syscall_64+0x1b1/0x800 [ 466.091701] ? finish_task_switch+0x1ca/0x840 [ 466.096188] ? syscall_return_slowpath+0x5c0/0x5c0 [ 466.101114] ? syscall_return_slowpath+0x30f/0x5c0 [ 466.106054] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 466.111582] ? retint_user+0x18/0x18 [ 466.115299] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 466.120143] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 466.125327] RIP: 0033:0x40fc61 [ 466.128502] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 466.136214] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 466.143481] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 [ 466.150752] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 2018/05/26 12:21:51 executing program 4 (fault-call:3 fault-nth:1): r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8923, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:21:51 executing program 0 (fault-call:2 fault-nth:1): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) [ 466.158023] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 [ 466.165294] R13: 0000000000000744 R14: 00000000006fef00 R15: 0000000000000000 [ 466.187531] ceph: device name is missing path (no : separator in /dev/loop7) 2018/05/26 12:21:51 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0xc001020b]}) 2018/05/26 12:21:52 executing program 7: syz_mount_image$f2fs(&(0x7f0000000400)='f2fs\x00', &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000a40), 0x0, &(0x7f00000016c0)=ANY=[]) r0 = syz_fuse_mount(&(0x7f0000000340)='./file0\x00', 0x4000, 0x0, 0x0, 0x0, 0x0) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ppp\x00', 0x113400, 0x0) ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r1, 0xc0a85352, &(0x7f0000000080)={{0x105e, 0x56}, 'port1\x00', 0x10, 0x40, 0x100000001, 0x7, 0xffffffff, 0xa4, 0x80, 0x0, 0x7, 0x3}) write$fuse(r0, &(0x7f0000000000)=ANY=[@ANYBLOB='(\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00'], 0x28) close(r0) munlockall() 2018/05/26 12:21:52 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0xf, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') [ 466.262175] ceph: device name is missing path (no : separator in /dev/loop7) [ 466.505993] : renamed from ifb0 [ 466.511318] FAULT_INJECTION: forcing a failure. [ 466.511318] name failslab, interval 1, probability 0, space 0, times 0 [ 466.523261] CPU: 0 PID: 28195 Comm: syz-executor4 Not tainted 4.17.0-rc6+ #68 [ 466.530544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 466.539894] Call Trace: [ 466.542482] dump_stack+0x1b9/0x294 [ 466.546118] ? dump_stack_print_info.cold.2+0x52/0x52 [ 466.551314] ? kasan_check_write+0x14/0x20 [ 466.555549] ? __mutex_lock+0x7d9/0x17f0 [ 466.559614] ? kernfs_rename_ns+0x60/0x5b1 [ 466.563853] should_fail.cold.4+0xa/0x1a [ 466.567908] ? mutex_trylock+0x2a0/0x2a0 [ 466.571954] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 466.577062] ? __save_stack_trace+0x7e/0xd0 [ 466.581378] ? graph_lock+0x170/0x170 [ 466.585176] ? find_held_lock+0x36/0x1c0 [ 466.589243] ? __lock_is_held+0xb5/0x140 [ 466.593305] ? check_same_owner+0x320/0x320 [ 466.597609] ? graph_lock+0x170/0x170 [ 466.601407] ? kasan_check_write+0x14/0x20 [ 466.605637] ? rcu_note_context_switch+0x710/0x710 [ 466.610553] __should_failslab+0x124/0x180 [ 466.614788] should_failslab+0x9/0x14 [ 466.618581] __kmalloc_track_caller+0x2c4/0x760 [ 466.623246] ? __lock_is_held+0xb5/0x140 [ 466.627302] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 466.632834] ? kstrdup_const+0x66/0x80 [ 466.636705] kstrdup+0x39/0x70 [ 466.639904] kstrdup_const+0x66/0x80 [ 466.643609] kernfs_rename_ns+0x355/0x5b1 [ 466.647763] sysfs_rename_link_ns+0x19c/0x250 [ 466.652266] device_rename+0x130/0x200 [ 466.656151] dev_change_name+0x36f/0xba0 [ 466.660199] ? netdev_adjacent_rename_links+0x2d0/0x2d0 [ 466.665556] ? graph_lock+0x170/0x170 [ 466.669357] ? find_held_lock+0x36/0x1c0 [ 466.673409] ? full_name_hash+0xc0/0x100 [ 466.677458] dev_ifsioc+0x623/0xb90 [ 466.681066] ? dev_ifsioc+0x623/0xb90 [ 466.684849] ? register_gifconf+0x70/0x70 [ 466.689006] dev_ioctl+0x5d5/0xcc0 [ 466.692546] sock_do_ioctl+0x1d3/0x3e0 [ 466.696419] ? compat_ifr_data_ioctl+0x170/0x170 [ 466.701159] ? lock_downgrade+0x8e0/0x8e0 [ 466.705314] ? kasan_check_read+0x11/0x20 [ 466.709465] ? rcu_is_watching+0x85/0x140 [ 466.713624] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 466.718819] sock_ioctl+0x30d/0x680 [ 466.722445] ? dlci_ioctl_set+0x40/0x40 [ 466.726420] ? expand_files.part.8+0x9a0/0x9a0 [ 466.730996] ? kasan_check_write+0x14/0x20 [ 466.735218] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 466.740133] ? wait_for_completion+0x870/0x870 [ 466.744704] ? dlci_ioctl_set+0x40/0x40 [ 466.748671] do_vfs_ioctl+0x1cf/0x16a0 [ 466.752561] ? ioctl_preallocate+0x2e0/0x2e0 [ 466.756954] ? fget_raw+0x20/0x20 [ 466.760396] ? __sb_end_write+0xac/0xe0 [ 466.764364] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 466.769887] ? fput+0x130/0x1a0 [ 466.773147] ? ksys_write+0x1a6/0x250 [ 466.776933] ? security_file_ioctl+0x94/0xc0 [ 466.781339] ksys_ioctl+0xa9/0xd0 [ 466.784783] __x64_sys_ioctl+0x73/0xb0 [ 466.788657] do_syscall_64+0x1b1/0x800 [ 466.792531] ? finish_task_switch+0x1ca/0x840 [ 466.797020] ? syscall_return_slowpath+0x5c0/0x5c0 [ 466.801932] ? syscall_return_slowpath+0x30f/0x5c0 [ 466.806847] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 466.812194] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 466.817032] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 466.822242] RIP: 0033:0x455a09 [ 466.825427] RSP: 002b:00007f161f79cc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 466.833127] RAX: ffffffffffffffda RBX: 00007f161f79d6d4 RCX: 0000000000455a09 [ 466.840387] RDX: 00000000200000c0 RSI: 0000000000008923 RDI: 0000000000000013 [ 466.847645] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 2018/05/26 12:21:52 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f00001fefe4)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(r1, &(0x7f0000000100), 0xffffffffffffffd6, 0x20000004, &(0x7f000031e000)={0xa, 0x4e22}, 0x1c) r2 = syz_open_dev$amidi(&(0x7f0000000000)='/dev/amidi#\x00', 0x3ff, 0x800) setsockopt$packet_buf(r2, 0x107, 0x17, &(0x7f0000000040)="2ccce89f998621f1bda90e29529a5d39d5656c5c229498dd4001a371aa", 0x1d) r3 = socket$inet(0x10, 0x3, 0x4) sendmsg(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f000000d000)=[{&(0x7f0000008000)="4c0000001200ff09fffefd956fa283b724a6008000000000000000683540150024001d001fc41180b598bc593ab6821148a730de33a49868c62b2ca654a6613b6aabf35d0f1cbc882b079881", 0x4c}], 0x1}, 0x0) 2018/05/26 12:21:52 executing program 4 (fault-call:3 fault-nth:2): r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8923, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) [ 466.854897] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 466.862156] R13: 0000000000000445 R14: 00000000006fa718 R15: 0000000000000001 [ 466.912064] FAULT_INJECTION: forcing a failure. [ 466.912064] name failslab, interval 1, probability 0, space 0, times 0 [ 466.923386] CPU: 1 PID: 28199 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 466.930668] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 466.940028] Call Trace: [ 466.942624] dump_stack+0x1b9/0x294 [ 466.946253] ? dump_stack_print_info.cold.2+0x52/0x52 [ 466.951438] should_fail.cold.4+0xa/0x1a [ 466.955496] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 466.960614] ? debug_check_no_locks_freed+0x310/0x310 [ 466.965820] ? find_held_lock+0x36/0x1c0 [ 466.969914] ? check_same_owner+0x320/0x320 [ 466.974257] ? rcu_note_context_switch+0x710/0x710 [ 466.979211] __should_failslab+0x124/0x180 [ 466.983462] should_failslab+0x9/0x14 [ 466.987275] kmem_cache_alloc+0x2af/0x760 [ 466.991427] ? debug_check_no_locks_freed+0x310/0x310 [ 466.996611] get_empty_filp+0x125/0x520 [ 467.000576] ? proc_nr_files+0x60/0x60 [ 467.004468] ? lock_downgrade+0x8e0/0x8e0 [ 467.008615] ? graph_lock+0x170/0x170 [ 467.012420] ? kasan_check_read+0x11/0x20 [ 467.016570] ? rcu_is_watching+0x85/0x140 [ 467.020704] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 467.025884] path_openat+0x116/0x4e20 [ 467.029689] ? unwind_get_return_address+0x61/0xa0 [ 467.034620] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 467.039640] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 467.044408] ? find_held_lock+0x36/0x1c0 [ 467.048487] ? lock_downgrade+0x8e0/0x8e0 [ 467.052646] ? do_sys_open+0x39a/0x740 [ 467.056551] ? kasan_check_read+0x11/0x20 [ 467.060712] ? do_raw_spin_unlock+0x9e/0x2e0 [ 467.065126] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 467.069714] ? __lock_is_held+0xb5/0x140 [ 467.073774] ? _raw_spin_unlock+0x22/0x30 [ 467.077918] ? __alloc_fd+0x346/0x700 [ 467.081732] ? usercopy_warn+0x120/0x120 [ 467.085807] do_filp_open+0x249/0x350 [ 467.089613] ? may_open_dev+0x100/0x100 [ 467.093585] ? strncpy_from_user+0x3b6/0x500 [ 467.097989] ? mpi_free.cold.1+0x19/0x19 [ 467.102058] ? get_unused_fd_flags+0x121/0x190 [ 467.106638] ? getname_flags+0xd0/0x5a0 [ 467.110595] ? getname_flags+0x26e/0x5a0 [ 467.114661] do_sys_open+0x56f/0x740 [ 467.118381] ? mm_fault_error+0x314/0x380 [ 467.122515] ? filp_open+0x80/0x80 [ 467.126052] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 467.131590] __x64_sys_open+0x7e/0xc0 [ 467.135390] do_syscall_64+0x1b1/0x800 [ 467.139274] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 467.144109] ? syscall_return_slowpath+0x5c0/0x5c0 [ 467.149036] ? syscall_return_slowpath+0x30f/0x5c0 [ 467.153972] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 467.159520] ? retint_user+0x18/0x18 [ 467.163246] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 467.168100] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 467.173292] RIP: 0033:0x40fc61 [ 467.176481] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 467.184196] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 467.191467] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 [ 467.198741] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 [ 467.206010] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 [ 467.213280] R13: 0000000000000744 R14: 00000000006fef00 R15: 0000000000000001 [ 467.244689] : renamed from ifb0 [ 467.249250] FAULT_INJECTION: forcing a failure. [ 467.249250] name failslab, interval 1, probability 0, space 0, times 0 [ 467.260537] CPU: 1 PID: 28212 Comm: syz-executor4 Not tainted 4.17.0-rc6+ #68 [ 467.267814] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 467.277171] Call Trace: [ 467.279769] dump_stack+0x1b9/0x294 [ 467.283413] ? dump_stack_print_info.cold.2+0x52/0x52 [ 467.288614] ? perf_trace_lock_acquire+0xe3/0x980 [ 467.293475] should_fail.cold.4+0xa/0x1a [ 467.297548] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 467.302659] ? graph_lock+0x170/0x170 [ 467.306462] ? find_held_lock+0x36/0x1c0 [ 467.310519] ? __lock_is_held+0xb5/0x140 [ 467.314582] ? check_same_owner+0x320/0x320 [ 467.318919] ? kasan_check_write+0x14/0x20 [ 467.323147] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 467.328070] ? rcu_note_context_switch+0x710/0x710 [ 467.332990] __should_failslab+0x124/0x180 [ 467.337232] should_failslab+0x9/0x14 [ 467.341028] __kmalloc+0x2c8/0x760 [ 467.344560] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 467.350085] ? kernfs_put+0x493/0x750 [ 467.353874] ? kobject_get_path+0xc2/0x1a0 [ 467.358098] kobject_get_path+0xc2/0x1a0 [ 467.362172] kobject_rename+0xbe/0x2a0 [ 467.366051] ? kobject_namespace+0x1a0/0x1a0 [ 467.370450] ? sysfs_rename_link_ns+0x1ac/0x250 [ 467.375109] device_rename+0x151/0x200 [ 467.378989] dev_change_name+0x36f/0xba0 [ 467.383049] ? netdev_adjacent_rename_links+0x2d0/0x2d0 [ 467.388399] ? perf_trace_lock_acquire+0xe3/0x980 [ 467.393228] ? find_held_lock+0x36/0x1c0 [ 467.397300] ? full_name_hash+0xc0/0x100 [ 467.401353] dev_ifsioc+0x623/0xb90 [ 467.404964] ? dev_ifsioc+0x623/0xb90 [ 467.408751] ? register_gifconf+0x70/0x70 [ 467.412890] dev_ioctl+0x5d5/0xcc0 [ 467.416424] sock_do_ioctl+0x1d3/0x3e0 [ 467.420300] ? compat_ifr_data_ioctl+0x170/0x170 [ 467.425040] ? lock_downgrade+0x8e0/0x8e0 [ 467.429181] ? kasan_check_read+0x11/0x20 [ 467.433317] ? rcu_is_watching+0x85/0x140 [ 467.437469] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 467.442648] sock_ioctl+0x30d/0x680 [ 467.446261] ? dlci_ioctl_set+0x40/0x40 [ 467.450225] ? expand_files.part.8+0x9a0/0x9a0 [ 467.454802] ? kasan_check_write+0x14/0x20 [ 467.459028] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 467.463946] ? wait_for_completion+0x870/0x870 [ 467.468515] ? dlci_ioctl_set+0x40/0x40 [ 467.472479] do_vfs_ioctl+0x1cf/0x16a0 [ 467.476360] ? ioctl_preallocate+0x2e0/0x2e0 [ 467.480764] ? fget_raw+0x20/0x20 [ 467.484204] ? __sb_end_write+0xac/0xe0 [ 467.488179] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 467.493713] ? fput+0x130/0x1a0 [ 467.496978] ? ksys_write+0x1a6/0x250 [ 467.500771] ? security_file_ioctl+0x94/0xc0 [ 467.505172] ksys_ioctl+0xa9/0xd0 [ 467.508611] __x64_sys_ioctl+0x73/0xb0 [ 467.512486] do_syscall_64+0x1b1/0x800 [ 467.516359] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 467.521188] ? syscall_return_slowpath+0x5c0/0x5c0 [ 467.526103] ? syscall_return_slowpath+0x30f/0x5c0 [ 467.531026] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 467.536378] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 467.541207] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 467.546387] RIP: 0033:0x455a09 [ 467.549561] RSP: 002b:00007f161f79cc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 467.557254] RAX: ffffffffffffffda RBX: 00007f161f79d6d4 RCX: 0000000000455a09 [ 467.564506] RDX: 00000000200000c0 RSI: 0000000000008923 RDI: 0000000000000013 [ 467.571758] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 467.579017] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015 [ 467.586278] R13: 0000000000000445 R14: 00000000006fa718 R15: 0000000000000002 [ 467.634250] f2fs_msg: 6 callbacks suppressed [ 467.634263] F2FS-fs (loop7): Magic Mismatch, valid(0xf2f52010) - read(0x0) [ 467.645848] F2FS-fs (loop7): Can't find valid F2FS filesystem in 1th superblock [ 467.657102] F2FS-fs (loop7): Magic Mismatch, valid(0xf2f52010) - read(0x0) [ 467.664229] F2FS-fs (loop7): Can't find valid F2FS filesystem in 2th superblock [ 467.674338] F2FS-fs (loop7): Magic Mismatch, valid(0xf2f52010) - read(0x0) [ 467.681494] F2FS-fs (loop7): Can't find valid F2FS filesystem in 1th superblock [ 467.689204] F2FS-fs (loop7): Magic Mismatch, valid(0xf2f52010) - read(0x0) [ 467.696318] F2FS-fs (loop7): Can't find valid F2FS filesystem in 2th superblock [ 467.729495] F2FS-fs (loop7): Magic Mismatch, valid(0xf2f52010) - read(0x0) [ 467.736658] F2FS-fs (loop7): Can't find valid F2FS filesystem in 1th superblock [ 468.143100] device bridge_slave_1 left promiscuous mode [ 468.148677] bridge0: port 2(bridge_slave_1) entered disabled state [ 468.159812] device bridge_slave_0 left promiscuous mode [ 468.165515] bridge0: port 1(bridge_slave_0) entered disabled state [ 468.207500] team0 (unregistering): Port device team_slave_1 removed [ 468.217483] team0 (unregistering): Port device team_slave_0 removed [ 468.227140] bond0 (unregistering): Releasing backup interface bond_slave_1 [ 468.246675] bond0 (unregistering): Releasing backup interface bond_slave_0 2018/05/26 12:21:54 executing program 0 (fault-call:2 fault-nth:2): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:21:54 executing program 3: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x40) ioctl$BLKGETSIZE(r0, 0x1260, &(0x7f0000000040)) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x30, r1, 0x3d) r2 = userfaultfd(0x80800) ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000d28000)={0xaa}) r3 = epoll_create1(0x80000) r4 = socket(0xa, 0x1, 0x0) ioctl(r4, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) r5 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r5, 0xc0145401, &(0x7f0000013000)) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r5, 0x54a3) readv(r5, &(0x7f000042bff8)=[{&(0x7f0000e3b000)=""/61, 0x3d}], 0x1) dup3(r3, r2, 0xffffffffffffffff) 2018/05/26 12:21:54 executing program 4 (fault-call:3 fault-nth:3): r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8923, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:21:54 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x140]}) 2018/05/26 12:21:54 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f00001fefe4)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(r1, &(0x7f0000000100), 0xffffffffffffffd6, 0x20000004, &(0x7f000031e000)={0xa, 0x4e22}, 0x1c) r2 = syz_open_dev$amidi(&(0x7f0000000000)='/dev/amidi#\x00', 0x3ff, 0x800) setsockopt$packet_buf(r2, 0x107, 0x17, &(0x7f0000000040)="2ccce89f998621f1bda90e29529a5d39d5656c5c229498dd4001a371aa", 0x1d) r3 = socket$inet(0x10, 0x3, 0x4) sendmsg(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f000000d000)=[{&(0x7f0000008000)="4c0000001200ff09fffefd956fa283b724a6008000000000000000683540150024001d001fc41180b598bc593ab6821148a730de33a49868c62b2ca654a6613b6aabf35d0f1cbc882b079881", 0x4c}], 0x1}, 0x0) 2018/05/26 12:21:54 executing program 7: syz_mount_image$f2fs(&(0x7f0000000400)='f2fs\x00', &(0x7f0000000440)='./file0\x00', 0x0, 0x0, &(0x7f0000000a40), 0x0, &(0x7f00000016c0)=ANY=[]) r0 = syz_fuse_mount(&(0x7f0000000340)='./file0\x00', 0x4000, 0x0, 0x0, 0x0, 0x0) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ppp\x00', 0x113400, 0x0) ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r1, 0xc0a85352, &(0x7f0000000080)={{0x105e, 0x56}, 'port1\x00', 0x10, 0x40, 0x100000001, 0x7, 0xffffffff, 0xa4, 0x80, 0x0, 0x7, 0x3}) write$fuse(r0, &(0x7f0000000000)=ANY=[@ANYBLOB='(\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00'], 0x28) close(r0) munlockall() 2018/05/26 12:21:54 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x2000000000000, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:54 executing program 2: r0 = syz_open_dev$sndseq(&(0x7f0000dcc000)='/dev/snd/seq\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "0a4ceaa05d9a00000000000000039b3fd4cec307e8ef3d13eb790ec9c65abaf90d229db692542e5b78f8b29e0a27800f0000000000000009fb42f376589701a4"}) ioctl$SNDRV_SEQ_IOCTL_UNSUBSCRIBE_PORT(r0, 0x40505331, &(0x7f0000000100)={{0x0, 0x8000000000}, {0x10000000000, 0x3}, 0x0, 0x0, 0x6b}) [ 468.282475] bond0 (unregistering): Released all slaves [ 468.390349] : renamed from ifb0 [ 468.391550] FAULT_INJECTION: forcing a failure. [ 468.391550] name failslab, interval 1, probability 0, space 0, times 0 [ 468.405060] CPU: 0 PID: 28243 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 468.412337] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 468.421689] Call Trace: [ 468.424297] dump_stack+0x1b9/0x294 [ 468.427947] ? dump_stack_print_info.cold.2+0x52/0x52 [ 468.433143] ? perf_trace_lock_acquire+0xe3/0x980 [ 468.437975] ? trace_hardirqs_off+0xd/0x10 [ 468.442201] should_fail.cold.4+0xa/0x1a [ 468.446250] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 468.451339] ? perf_trace_lock_acquire+0xe3/0x980 [ 468.456171] ? file_remove_privs+0x530/0x530 [ 468.460572] ? perf_trace_lock+0x900/0x900 [ 468.464794] ? find_held_lock+0x36/0x1c0 [ 468.468846] ? path_parent_directory+0x1c0/0x220 [ 468.473601] ? check_same_owner+0x320/0x320 [ 468.477911] ? rcu_note_context_switch+0x710/0x710 [ 468.482831] __should_failslab+0x124/0x180 [ 468.487056] should_failslab+0x9/0x14 [ 468.490859] kmem_cache_alloc+0x2af/0x760 [ 468.495005] ? do_raw_spin_unlock+0x9e/0x2e0 [ 468.499408] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 468.503977] ? bdev_test+0x71/0x90 [ 468.507509] ? bdev_i_callback+0x30/0x30 [ 468.511557] bdev_alloc_inode+0x1b/0x40 [ 468.515519] alloc_inode+0x63/0x190 [ 468.519131] iget5_locked+0x20e/0x570 [ 468.522922] ? bdev_test+0x90/0x90 [ 468.526445] ? I_BDEV+0x20/0x20 [ 468.529710] ? inode_lru_isolate+0x580/0x580 [ 468.534104] ? inode_add_lru+0x290/0x290 [ 468.538163] bdget+0xb1/0x5c0 [ 468.541260] ? do_raw_spin_unlock+0x9e/0x2e0 [ 468.545655] ? bd_may_claim+0xd0/0xd0 [ 468.549455] ? kasan_check_write+0x14/0x20 [ 468.553672] ? do_raw_spin_lock+0xc1/0x200 [ 468.557899] bd_acquire+0x102/0x2c0 [ 468.561511] blkdev_open+0x10e/0x280 [ 468.565216] do_dentry_open+0x7ef/0xf10 [ 468.569177] ? bd_acquire+0x2c0/0x2c0 [ 468.572966] vfs_open+0x139/0x230 [ 468.576404] path_openat+0x1676/0x4e20 [ 468.580287] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 468.585035] ? find_held_lock+0x36/0x1c0 [ 468.589086] ? lock_downgrade+0x8e0/0x8e0 [ 468.593223] ? kasan_check_read+0x11/0x20 [ 468.597358] ? do_raw_spin_unlock+0x9e/0x2e0 [ 468.601752] ? __lock_is_held+0xb5/0x140 [ 468.605804] ? _raw_spin_unlock+0x22/0x30 [ 468.609936] ? __alloc_fd+0x346/0x700 [ 468.613720] ? usercopy_warn+0x120/0x120 [ 468.617773] do_filp_open+0x249/0x350 [ 468.621561] ? may_open_dev+0x100/0x100 [ 468.625523] ? strncpy_from_user+0x3b6/0x500 [ 468.629920] ? mpi_free.cold.1+0x19/0x19 [ 468.633968] ? get_unused_fd_flags+0x121/0x190 [ 468.638537] ? getname_flags+0xd0/0x5a0 [ 468.642499] ? getname_flags+0x26e/0x5a0 [ 468.646574] do_sys_open+0x56f/0x740 [ 468.650277] ? mm_fault_error+0x314/0x380 [ 468.654417] ? filp_open+0x80/0x80 [ 468.657946] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 468.662777] __x64_sys_open+0x7e/0xc0 [ 468.666567] do_syscall_64+0x1b1/0x800 [ 468.670440] ? finish_task_switch+0x1ca/0x840 [ 468.674923] ? syscall_return_slowpath+0x5c0/0x5c0 [ 468.679837] ? syscall_return_slowpath+0x30f/0x5c0 [ 468.684753] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 468.690275] ? retint_user+0x18/0x18 [ 468.693976] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 468.698806] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 468.703977] RIP: 0033:0x40fc61 [ 468.707148] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 468.714845] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 468.722096] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 [ 468.729348] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 2018/05/26 12:21:54 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8923, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:21:54 executing program 2: r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_emit_ethernet(0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="8db482075da1aa32aaaaaaaa08004500002800000000002f9078a4280000006558", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="5000000090780000"], &(0x7f00000001c0)={0x0, 0x4, [0x0, 0xc8e]}) r1 = syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0xa02) mkdirat(r1, &(0x7f0000000080)='./file0\x00', 0x8) 2018/05/26 12:21:54 executing program 0 (fault-call:2 fault-nth:3): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) [ 468.736598] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 [ 468.743855] R13: 0000000000000744 R14: 00000000006fef00 R15: 0000000000000002 2018/05/26 12:21:54 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x199]}) 2018/05/26 12:21:54 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x64000000, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') [ 469.106640] : renamed from ifb0 [ 469.152106] FAULT_INJECTION: forcing a failure. [ 469.152106] name failslab, interval 1, probability 0, space 0, times 0 [ 469.163496] CPU: 1 PID: 28263 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 469.170781] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 469.180148] Call Trace: [ 469.182764] dump_stack+0x1b9/0x294 [ 469.186417] ? dump_stack_print_info.cold.2+0x52/0x52 [ 469.191630] ? finish_task_switch+0x1ca/0x840 [ 469.196154] ? finish_task_switch+0x182/0x840 [ 469.200672] should_fail.cold.4+0xa/0x1a [ 469.204757] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 469.209880] ? __schedule+0x809/0x1e30 [ 469.213788] ? __sched_text_start+0x8/0x8 [ 469.217948] ? find_held_lock+0x36/0x1c0 [ 469.222055] ? check_same_owner+0x320/0x320 [ 469.226395] __should_failslab+0x124/0x180 [ 469.230649] should_failslab+0x9/0x14 [ 469.234463] kmem_cache_alloc+0x2af/0x760 [ 469.238624] ? do_raw_spin_unlock+0x9e/0x2e0 [ 469.243050] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 469.247649] ? bdev_test+0x71/0x90 [ 469.251205] ? bdev_i_callback+0x30/0x30 [ 469.255271] bdev_alloc_inode+0x1b/0x40 [ 469.259236] alloc_inode+0x63/0x190 [ 469.262852] iget5_locked+0x20e/0x570 [ 469.266635] ? bdev_test+0x90/0x90 [ 469.270159] ? I_BDEV+0x20/0x20 [ 469.273425] ? inode_lru_isolate+0x580/0x580 [ 469.277820] ? inode_add_lru+0x290/0x290 [ 469.281870] bdget+0xb1/0x5c0 [ 469.284963] ? do_raw_spin_unlock+0x9e/0x2e0 [ 469.289358] ? bd_may_claim+0xd0/0xd0 [ 469.293153] ? kasan_check_write+0x14/0x20 [ 469.297375] ? do_raw_spin_lock+0xc1/0x200 [ 469.301603] bd_acquire+0x102/0x2c0 [ 469.305220] blkdev_open+0x10e/0x280 [ 469.308925] do_dentry_open+0x7ef/0xf10 [ 469.312884] ? bd_acquire+0x2c0/0x2c0 [ 469.316674] vfs_open+0x139/0x230 [ 469.320130] path_openat+0x1676/0x4e20 [ 469.324031] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 469.328779] ? find_held_lock+0x36/0x1c0 [ 469.332832] ? lock_downgrade+0x8e0/0x8e0 [ 469.336974] ? kasan_check_read+0x11/0x20 [ 469.341112] ? do_raw_spin_unlock+0x9e/0x2e0 [ 469.345506] ? __lock_is_held+0xb5/0x140 [ 469.349559] ? _raw_spin_unlock+0x22/0x30 [ 469.353695] ? __alloc_fd+0x346/0x700 [ 469.357480] ? usercopy_warn+0x120/0x120 [ 469.361552] do_filp_open+0x249/0x350 [ 469.365343] ? may_open_dev+0x100/0x100 [ 469.369302] ? strncpy_from_user+0x3b6/0x500 [ 469.373700] ? mpi_free.cold.1+0x19/0x19 [ 469.377758] ? get_unused_fd_flags+0x121/0x190 [ 469.382326] ? getname_flags+0xd0/0x5a0 [ 469.386291] ? getname_flags+0x26e/0x5a0 [ 469.390346] do_sys_open+0x56f/0x740 [ 469.394049] ? mm_fault_error+0x314/0x380 [ 469.398192] ? filp_open+0x80/0x80 [ 469.401718] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 469.406553] __x64_sys_open+0x7e/0xc0 [ 469.410347] do_syscall_64+0x1b1/0x800 [ 469.414219] ? finish_task_switch+0x1ca/0x840 [ 469.418698] ? syscall_return_slowpath+0x5c0/0x5c0 [ 469.423612] ? syscall_return_slowpath+0x30f/0x5c0 [ 469.428535] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 469.434065] ? retint_user+0x18/0x18 [ 469.437769] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 469.442601] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 469.447781] RIP: 0033:0x40fc61 2018/05/26 12:21:55 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x800000000000000, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:55 executing program 2: r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ppp\x00', 0x100, 0x0) fchmod(r0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f00000001c0)='oom_score_adj\x00') munmap(&(0x7f0000000000/0x600000)=nil, 0x600000) write$cgroup_pid(r1, &(0x7f0000000040)={[0x0]}, 0x1) [ 469.450953] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 469.458649] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 469.465904] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 [ 469.473156] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 [ 469.480408] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 [ 469.487658] R13: 0000000000000744 R14: 00000000006fef00 R15: 0000000000000003 2018/05/26 12:21:55 executing program 3: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000d28000)={0xaa}) r1 = syz_open_procfs(0x0, &(0x7f0000000040)='attr/prev\x00') write$sndseq(r1, &(0x7f00000000c0)=[{0x9, 0x8, 0x4, 0xaa99, @time, {0x5, 0x7}, {0x3ff, 0x4}, @quote={{0x10000, 0x9}, 0xfffffffffffffc34, &(0x7f0000000080)={0x100000001, 0x5709, 0x7, 0xfffffffffffffff9, @time={0x0, 0x1c9c380}, {0x8000, 0x101}, {0x1, 0x3f}, @control={0x40, 0x5, 0x8001}}}}, {0x101, 0x3, 0x0, 0x6, @time={0x77359400}, {0xe936, 0x10001}, {0x0, 0x3}, @result={0x83fc, 0x1}}], 0x60) r2 = epoll_create1(0x0) r3 = socket(0xa, 0x1, 0x0) ioctl$sock_bt_hidp_HIDPCONNDEL(r3, 0x400448c9, &(0x7f0000000000)={{0x5, 0x401, 0x6, 0x1ff, 0x2, 0x1d}, 0x24d9}) ioctl(r3, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) r4 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r4, 0xc0145401, &(0x7f0000013000)) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r4, 0x54a3) readv(r4, &(0x7f000042bff8)=[{&(0x7f0000e3b000)=""/61, 0x3d}], 0x1) dup3(r2, r0, 0x0) 2018/05/26 12:21:55 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8929, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) [ 471.042452] IPVS: ftp: loaded support on port[0] = 21 [ 471.382745] bridge0: port 1(bridge_slave_0) entered blocking state [ 471.389140] bridge0: port 1(bridge_slave_0) entered disabled state [ 471.396322] device bridge_slave_0 entered promiscuous mode [ 471.422301] bridge0: port 2(bridge_slave_1) entered blocking state [ 471.428702] bridge0: port 2(bridge_slave_1) entered disabled state [ 471.435766] device bridge_slave_1 entered promiscuous mode [ 471.462143] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 471.487961] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 471.556131] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 471.586101] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 471.613350] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 471.620240] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 471.646456] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 471.653382] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 471.722526] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 471.729658] team0: Port device team_slave_0 added [ 471.754210] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 471.761580] team0: Port device team_slave_1 added [ 471.790058] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 471.817362] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 471.844264] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 471.851363] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 471.859472] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 471.882433] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 471.889528] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 471.897588] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 472.117742] bridge0: port 2(bridge_slave_1) entered blocking state [ 472.124163] bridge0: port 2(bridge_slave_1) entered forwarding state [ 472.130824] bridge0: port 1(bridge_slave_0) entered blocking state [ 472.137307] bridge0: port 1(bridge_slave_0) entered forwarding state [ 472.144671] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 472.607150] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 472.925560] 8021q: adding VLAN 0 to HW filter on device bond0 [ 473.002601] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 473.078685] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 473.085157] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 473.092496] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 473.167715] 8021q: adding VLAN 0 to HW filter on device team0 [ 473.624418] f2fs_msg: 6 callbacks suppressed [ 473.624431] F2FS-fs (loop7): Magic Mismatch, valid(0xf2f52010) - read(0x0) [ 473.636118] F2FS-fs (loop7): Can't find valid F2FS filesystem in 1th superblock [ 473.644438] F2FS-fs (loop7): Magic Mismatch, valid(0xf2f52010) - read(0x0) [ 473.651759] F2FS-fs (loop7): Can't find valid F2FS filesystem in 2th superblock [ 473.659752] F2FS-fs (loop7): Magic Mismatch, valid(0xf2f52010) - read(0x0) [ 473.666830] F2FS-fs (loop7): Can't find valid F2FS filesystem in 1th superblock 2018/05/26 12:21:59 executing program 0 (fault-call:2 fault-nth:4): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:21:59 executing program 2: r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, &(0x7f0000000400)={0xfffffffffffffffe, 0x9}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)=""/193, &(0x7f0000000280)=""/97, &(0x7f0000000300)=""/127}) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000700)=ANY=[]) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000780)={0x1, 0x0, &(0x7f0000000380)=""/115, &(0x7f0000000580)=""/156, &(0x7f0000000940)=""/185}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000080)=0x1) ioctl$VHOST_GET_VRING_BASE(r0, 0xc008af12, &(0x7f0000000000)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af04, &(0x7f0000000040)) 2018/05/26 12:21:59 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8904, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:21:59 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000016]}) 2018/05/26 12:21:59 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x2000000, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:59 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f00001fefe4)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(r1, &(0x7f0000000100), 0xffffffffffffffd6, 0x20000004, &(0x7f000031e000)={0xa, 0x4e22}, 0x1c) r2 = syz_open_dev$amidi(&(0x7f0000000000)='/dev/amidi#\x00', 0x3ff, 0x800) setsockopt$packet_buf(r2, 0x107, 0x17, &(0x7f0000000040)="2ccce89f998621f1bda90e29529a5d39d5656c5c229498dd4001a371aa", 0x1d) sendmsg(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f000000d000)=[{&(0x7f0000008000)="4c0000001200ff09fffefd956fa283b724a6008000000000000000683540150024001d001fc41180b598bc593ab6821148a730de33a49868c62b2ca654a6613b6aabf35d0f1cbc882b079881", 0x4c}], 0x1}, 0x0) 2018/05/26 12:21:59 executing program 7: r0 = socket(0xa, 0x1, 0x0) r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vsock\x00', 0x200, 0x0) ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x80, 0xc8d6, 0x0, 0x13, 0x16, 0xd, "d4eef89ca7a0aba0b2123f4202bee30eaa4eabd7633b68739c7bb9e32c24974efb9bbeb4f824d22c6a50dd70958070d2289154fc382ef0003976088495203c9f", "9d23dc9310a182197326689ce01cee9491a416d8fc8d7bae0f1a9788b2782f5bc302755b1cac45078e5450335163c2655df0084118e1e8956d11dce9a1c70aa7", "3464f306374b97bbf97fbf570982be16f7b598543f0f1c7097246b9fbc65246e", [0x1, 0x3f]}) r2 = socket$unix(0x1, 0x3, 0x0) ioctl(r0, 0x8912, &(0x7f0000000080)="c626262c8523bf012cf66f") r3 = syz_open_dev$binder(&(0x7f0000000040)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) fcntl$F_GET_FILE_RW_HINT(r2, 0x40d, &(0x7f0000000100)) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0xeaf0, 0x7fffffff, 0x9, 0x74, 0x7}, 0x14) modify_ldt$read_default(0x2, &(0x7f0000000340)=""/180, 0x1027f) mmap(&(0x7f0000003000/0x2000)=nil, 0x2000, 0x4, 0x80010, r3, 0x0) r4 = syz_open_dev$sg(&(0x7f00000000c0)='/dev/sg#\x00', 0x0, 0x200000) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0xffffffffffffffff, 0x4010, r4, 0x0) accept$alg(r0, 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x20011, r3, 0x0) syz_open_procfs(0x0, &(0x7f0000003600)='net/netfilter\x00') 2018/05/26 12:21:59 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000fdbff8)=[{&(0x7f00000004c0)="290000002000190000003fffffffda060200000000e80001040000040d001500ea1100000005000000", 0x29}], 0x1) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) ioctl$KVM_HAS_DEVICE_ATTR(r0, 0x4018aee3, &(0x7f00000000c0)={0x0, 0x10001, 0x4, &(0x7f0000000080)}) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000d28000)={0xaa}) r2 = epoll_create1(0x0) r3 = socket(0xa, 0x1, 0x0) ioctl(r3, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) r4 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r4, 0xc0145401, &(0x7f0000013000)) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(r3, 0xc04c5349, &(0x7f0000000000)={0x1f, 0xfffffffffffffffa, 0x1}) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r4, 0x54a3) readv(r4, &(0x7f000042bff8)=[{&(0x7f0000e3b000)=""/61, 0x3d}], 0x1) dup3(r2, r1, 0x0) [ 473.674370] F2FS-fs (loop7): Magic Mismatch, valid(0xf2f52010) - read(0x0) [ 473.681583] F2FS-fs (loop7): Can't find valid F2FS filesystem in 2th superblock [ 473.799844] netlink: 'syz-executor3': attribute type 21 has an invalid length. [ 473.801673] FAULT_INJECTION: forcing a failure. [ 473.801673] name failslab, interval 1, probability 0, space 0, times 0 [ 473.819024] CPU: 1 PID: 28569 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 473.826309] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 473.835671] Call Trace: [ 473.838276] dump_stack+0x1b9/0x294 [ 473.841925] ? dump_stack_print_info.cold.2+0x52/0x52 [ 473.847135] ? perf_trace_lock_acquire+0xe3/0x980 [ 473.851992] ? __might_sleep+0x95/0x190 [ 473.855987] should_fail.cold.4+0xa/0x1a [ 473.860059] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 473.865176] ? mutex_trylock+0x2a0/0x2a0 [ 473.869242] ? __mutex_lock+0x7d9/0x17f0 [ 473.873300] ? graph_lock+0x170/0x170 [ 473.877090] ? graph_lock+0x170/0x170 [ 473.880890] ? find_held_lock+0x36/0x1c0 [ 473.884945] ? __lock_is_held+0xb5/0x140 [ 473.889017] ? check_same_owner+0x320/0x320 [ 473.893332] ? perf_trace_lock+0x900/0x900 [ 473.897558] ? rcu_note_context_switch+0x710/0x710 [ 473.902479] __should_failslab+0x124/0x180 [ 473.906701] should_failslab+0x9/0x14 [ 473.910495] kmem_cache_alloc_trace+0x2cb/0x780 [ 473.915164] loop_add+0x96/0x9c0 [ 473.918512] ? loop_lookup+0x102/0x220 [ 473.922387] ? loop_queue_rq+0x640/0x640 [ 473.926435] ? module_unload_free+0x5b0/0x5b0 [ 473.930931] loop_probe+0x185/0x1c0 [ 473.934545] ? loop_control_ioctl+0x500/0x500 [ 473.939038] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 473.944226] kobj_lookup+0x269/0x460 [ 473.947929] ? loop_control_ioctl+0x500/0x500 [ 473.952413] get_gendisk+0x4c/0x380 [ 473.956036] __blkdev_get+0x45f/0x13a0 [ 473.959916] ? blkdev_get_block+0xc0/0xc0 [ 473.964060] blkdev_get+0xb9/0xb30 [ 473.967600] ? bdget+0x5c0/0x5c0 [ 473.970956] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 473.975534] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 473.981059] ? errseq_sample+0xe3/0x120 [ 473.985024] ? _copy_to_user+0x110/0x110 [ 473.989079] ? _raw_spin_unlock+0x22/0x30 [ 473.993233] blkdev_open+0x1fb/0x280 [ 473.996940] do_dentry_open+0x7ef/0xf10 [ 474.000897] ? bd_acquire+0x2c0/0x2c0 [ 474.004690] vfs_open+0x139/0x230 [ 474.008133] path_openat+0x1676/0x4e20 [ 474.012023] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 474.017042] ? find_held_lock+0x36/0x1c0 [ 474.021096] ? lock_downgrade+0x8e0/0x8e0 [ 474.025239] ? kasan_check_read+0x11/0x20 [ 474.029372] ? do_raw_spin_unlock+0x9e/0x2e0 [ 474.033766] ? __lock_is_held+0xb5/0x140 [ 474.037821] ? _raw_spin_unlock+0x22/0x30 [ 474.041958] ? __alloc_fd+0x346/0x700 [ 474.045751] ? usercopy_warn+0x120/0x120 [ 474.049807] do_filp_open+0x249/0x350 [ 474.053610] ? may_open_dev+0x100/0x100 [ 474.057581] ? strncpy_from_user+0x3b6/0x500 [ 474.061978] ? mpi_free.cold.1+0x19/0x19 [ 474.066036] ? get_unused_fd_flags+0x121/0x190 [ 474.070602] ? getname_flags+0xd0/0x5a0 [ 474.074565] ? getname_flags+0x26e/0x5a0 [ 474.078616] do_sys_open+0x56f/0x740 [ 474.082320] ? mm_fault_error+0x314/0x380 [ 474.086452] ? filp_open+0x80/0x80 [ 474.089982] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 474.094827] __x64_sys_open+0x7e/0xc0 [ 474.098614] do_syscall_64+0x1b1/0x800 [ 474.102489] ? finish_task_switch+0x1ca/0x840 [ 474.106974] ? syscall_return_slowpath+0x5c0/0x5c0 [ 474.111888] ? syscall_return_slowpath+0x30f/0x5c0 [ 474.116809] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 474.122328] ? retint_user+0x18/0x18 [ 474.126038] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 474.130872] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 474.136050] RIP: 0033:0x40fc61 [ 474.139222] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 474.146919] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 474.154174] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 [ 474.161428] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 [ 474.168682] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 [ 474.175933] R13: 0000000000000744 R14: 00000000006fef00 R15: 0000000000000004 2018/05/26 12:21:59 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x900, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:21:59 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x89a3, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) [ 474.202684] kvm [28559]: vcpu0, guest rIP: 0xfff0 Hyper-V unhandled rdmsr: 0x40000016 [ 474.238628] kvm [28559]: vcpu0, guest rIP: 0xfff0 Hyper-V unhandled rdmsr: 0x40000016 2018/05/26 12:22:00 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000f8cff8)='pagemap\x00') r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x0, 0x4d031, 0xffffffffffffffff, 0x0) ioctl$TIOCGLCKTRMIOS(r0, 0x5456, &(0x7f0000000000)={0x554e, 0xdd20, 0x0, 0x7, 0x2, 0x55, 0x880, 0x2, 0x7, 0x6e95, 0x4, 0x7}) pread64(r0, &(0x7f0000e3e000)=""/8, 0x8, 0x100800) 2018/05/26 12:22:00 executing program 0 (fault-call:2 fault-nth:5): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:22:00 executing program 7: r0 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x0, 0x1) ioctl$BLKIOMIN(r0, 0x1278, &(0x7f0000000040)) r1 = socket$inet6(0xa, 0x80001, 0x0) setsockopt$inet6_MCAST_JOIN_GROUP(r1, 0x29, 0x2a, &(0x7f0000fca000)={0x100000001, {{0xa, 0x0, 0x0, @remote={0xfe, 0x80, [], 0xbb}, 0xffffffff}}}, 0x73) setsockopt$inet6_group_source_req(r1, 0x29, 0x2b, &(0x7f0000000140)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x1, [], 0x1}}}, {{0xa, 0x0, 0x20, @mcast1={0xff, 0x1, [], 0x1}, 0x1}}}, 0x108) setsockopt$inet6_group_source_req(r1, 0x29, 0x2b, &(0x7f0000a83000)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x1, [], 0x1}}}, {{0xa, 0x0, 0x0, @loopback={0x0, 0x1}}}}, 0x108) r2 = msgget(0x3, 0x4) msgctl$IPC_STAT(r2, 0x2, &(0x7f0000000300)=""/89) setsockopt$inet6_MCAST_MSFILTER(r1, 0x29, 0x30, &(0x7f0000000380)=ANY=[@ANYBLOB="01000000000000000a00000000000000ff01000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000004000000000000000000000000000000000000000000000000000000000000000000000000000000001ead799a9c0000000000"], 0x90) r3 = syz_open_dev$midi(&(0x7f00000000c0)='/dev/midi#\x00', 0x4, 0x80) ioctl$VHOST_SET_VRING_NUM(r3, 0x4008af10, &(0x7f0000000100)={0x0, 0x1}) 2018/05/26 12:22:00 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x1db]}) [ 474.315377] device bridge_slave_1 left promiscuous mode [ 474.321200] bridge0: port 2(bridge_slave_1) entered disabled state [ 474.333396] device bridge_slave_0 left promiscuous mode [ 474.338985] bridge0: port 1(bridge_slave_0) entered disabled state [ 474.409327] IPVS: ftp: loaded support on port[0] = 21 [ 474.457823] team0 (unregistering): Port device team_slave_1 removed [ 474.495993] team0 (unregistering): Port device team_slave_0 removed 2018/05/26 12:22:00 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x30, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') [ 474.517285] bond0 (unregistering): Releasing backup interface bond_slave_1 [ 474.520713] FAULT_INJECTION: forcing a failure. [ 474.520713] name failslab, interval 1, probability 0, space 0, times 0 [ 474.535681] CPU: 0 PID: 28594 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 474.542954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 474.552302] Call Trace: [ 474.554888] dump_stack+0x1b9/0x294 [ 474.558512] ? dump_stack_print_info.cold.2+0x52/0x52 [ 474.563690] ? perf_trace_lock_acquire+0xe3/0x980 [ 474.568520] ? __might_sleep+0x95/0x190 [ 474.572484] should_fail.cold.4+0xa/0x1a [ 474.576536] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 474.581626] ? mutex_trylock+0x2a0/0x2a0 [ 474.585675] ? __mutex_lock+0x7d9/0x17f0 [ 474.589725] ? graph_lock+0x170/0x170 [ 474.593511] ? graph_lock+0x170/0x170 [ 474.597304] ? find_held_lock+0x36/0x1c0 [ 474.601355] ? __lock_is_held+0xb5/0x140 [ 474.605409] ? check_same_owner+0x320/0x320 [ 474.609731] ? perf_trace_lock+0x900/0x900 [ 474.613957] ? rcu_note_context_switch+0x710/0x710 [ 474.618875] __should_failslab+0x124/0x180 [ 474.623185] should_failslab+0x9/0x14 [ 474.626970] kmem_cache_alloc_trace+0x2cb/0x780 [ 474.631633] loop_add+0x96/0x9c0 [ 474.634983] ? loop_lookup+0x102/0x220 [ 474.638857] ? loop_queue_rq+0x640/0x640 [ 474.642903] ? module_unload_free+0x5b0/0x5b0 [ 474.647388] loop_probe+0x185/0x1c0 [ 474.650999] ? loop_control_ioctl+0x500/0x500 [ 474.655490] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 474.660673] kobj_lookup+0x269/0x460 [ 474.664376] ? loop_control_ioctl+0x500/0x500 [ 474.668857] get_gendisk+0x4c/0x380 [ 474.672476] __blkdev_get+0x45f/0x13a0 [ 474.676358] ? blkdev_get_block+0xc0/0xc0 [ 474.680495] blkdev_get+0xb9/0xb30 [ 474.684034] ? bdget+0x5c0/0x5c0 [ 474.687386] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 474.691956] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 474.697482] ? errseq_sample+0xe3/0x120 [ 474.701443] ? _copy_to_user+0x110/0x110 [ 474.705490] ? _raw_spin_unlock+0x22/0x30 [ 474.709625] blkdev_open+0x1fb/0x280 [ 474.713326] do_dentry_open+0x7ef/0xf10 [ 474.717285] ? bd_acquire+0x2c0/0x2c0 [ 474.721082] vfs_open+0x139/0x230 [ 474.724524] path_openat+0x1676/0x4e20 [ 474.728407] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 474.733150] ? find_held_lock+0x36/0x1c0 [ 474.737205] ? lock_downgrade+0x8e0/0x8e0 [ 474.741345] ? kasan_check_read+0x11/0x20 [ 474.745480] ? do_raw_spin_unlock+0x9e/0x2e0 [ 474.749874] ? __lock_is_held+0xb5/0x140 [ 474.753924] ? _raw_spin_unlock+0x22/0x30 [ 474.758058] ? __alloc_fd+0x346/0x700 [ 474.761855] ? usercopy_warn+0x120/0x120 [ 474.765911] do_filp_open+0x249/0x350 [ 474.769699] ? may_open_dev+0x100/0x100 [ 474.773659] ? strncpy_from_user+0x3b6/0x500 [ 474.778058] ? mpi_free.cold.1+0x19/0x19 [ 474.782109] ? get_unused_fd_flags+0x121/0x190 [ 474.786673] ? getname_flags+0xd0/0x5a0 [ 474.790632] ? getname_flags+0x26e/0x5a0 [ 474.794682] do_sys_open+0x56f/0x740 [ 474.798386] ? mm_fault_error+0x314/0x380 [ 474.802520] ? filp_open+0x80/0x80 [ 474.806054] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 474.811620] __x64_sys_open+0x7e/0xc0 [ 474.815412] do_syscall_64+0x1b1/0x800 [ 474.819284] ? finish_task_switch+0x1ca/0x840 [ 474.823764] ? syscall_return_slowpath+0x5c0/0x5c0 [ 474.828677] ? syscall_return_slowpath+0x30f/0x5c0 [ 474.833599] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 474.839118] ? retint_user+0x18/0x18 [ 474.842819] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 474.847659] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 474.852843] RIP: 0033:0x40fc61 [ 474.856020] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 2018/05/26 12:22:00 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x4b564d00]}) [ 474.863714] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 474.870965] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 [ 474.878217] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 [ 474.885470] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 [ 474.892721] R13: 0000000000000744 R14: 00000000006fef00 R15: 0000000000000005 2018/05/26 12:22:00 executing program 3: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000d28000)={0xaa}) r1 = epoll_create1(0x0) r2 = socket(0xa, 0x1, 0x0) ioctl(r2, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") getsockopt$IPT_SO_GET_REVISION_MATCH(r2, 0x0, 0x42, &(0x7f0000000000)={'icmp6\x00'}, &(0x7f0000000040)=0x1e) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) r3 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r3, 0xc0145401, &(0x7f0000013000)) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r3, 0x54a3) getsockopt$inet_sctp_SCTP_GET_ASSOC_NUMBER(r2, 0x84, 0x1c, &(0x7f0000000080), &(0x7f00000000c0)=0x4) readv(r3, &(0x7f000042bff8)=[{&(0x7f0000e3b000)=""/61, 0x3d}], 0x1) dup3(r1, r0, 0x0) 2018/05/26 12:22:00 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f00001fefe4)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(r1, &(0x7f0000000100), 0xffffffffffffffd6, 0x20000004, &(0x7f000031e000)={0xa, 0x4e22}, 0x1c) r2 = syz_open_dev$amidi(&(0x7f0000000000)='/dev/amidi#\x00', 0x3ff, 0x800) setsockopt$packet_buf(r2, 0x107, 0x17, &(0x7f0000000040)="2ccce89f998621f1bda90e29529a5d39d5656c5c229498dd4001a371aa", 0x1d) sendmsg(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f000000d000)=[{&(0x7f0000008000)="4c0000001200ff09fffefd956fa283b724a6008000000000000000683540150024001d001fc41180b598bc593ab6821148a730de33a49868c62b2ca654a6613b6aabf35d0f1cbc882b079881", 0x4c}], 0x1}, 0x0) 2018/05/26 12:22:00 executing program 0 (fault-call:2 fault-nth:6): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) [ 474.922391] bond0 (unregistering): Releasing backup interface bond_slave_0 [ 474.961297] bond0 (unregistering): Released all slaves 2018/05/26 12:22:00 executing program 2: r0 = syz_open_dev$evdev(&(0x7f00000009c0)='/dev/input/event#\x00', 0x0, 0x0) r1 = syz_open_dev$usbmon(&(0x7f0000000100)='/dev/usbmon#\x00', 0x4, 0x501040) getsockopt$inet_buf(r1, 0x0, 0x30, &(0x7f0000000a00)=""/4096, &(0x7f0000000140)=0x1000) ioctl$EVIOCSMASK(r0, 0x40104593, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)}) ioctl$EVIOCGMASK(r0, 0x80104592, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)}) r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/rfkill\x00', 0x10000, 0x0) connect$netrom(r2, &(0x7f0000000040)=@ax25={0x3, {"ba2cfd9731d52d"}, 0x401}, 0x10) bpf$BPF_PROG_DETACH(0x9, &(0x7f00000000c0)={0x0, r2, 0xa, 0x1}, 0x14) [ 475.230608] FAULT_INJECTION: forcing a failure. [ 475.230608] name failslab, interval 1, probability 0, space 0, times 0 [ 475.242022] CPU: 1 PID: 28623 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 475.249313] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 475.258674] Call Trace: [ 475.261278] dump_stack+0x1b9/0x294 [ 475.264925] ? dump_stack_print_info.cold.2+0x52/0x52 [ 475.270132] ? rcu_is_watching+0x85/0x140 [ 475.274296] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 475.279853] should_fail.cold.4+0xa/0x1a [ 475.283931] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 475.289056] ? radix_tree_clear_tags+0xc0/0xc0 [ 475.293652] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 475.299212] ? graph_lock+0x170/0x170 [ 475.303025] ? find_held_lock+0x36/0x1c0 [ 475.307108] ? __lock_is_held+0xb5/0x140 [ 475.311193] ? check_same_owner+0x320/0x320 [ 475.315533] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 475.321085] ? node_tag_clear+0xc0/0x1c0 [ 475.325163] ? rcu_note_context_switch+0x710/0x710 [ 475.330103] __should_failslab+0x124/0x180 [ 475.334347] should_failslab+0x9/0x14 [ 475.338159] kmem_cache_alloc_node_trace+0x26f/0x770 [ 475.343272] ? __fprop_inc_percpu_max+0x2c0/0x2c0 [ 475.348136] __kmalloc_node+0x33/0x70 [ 475.351950] blk_mq_alloc_tag_set+0x37d/0xab0 [ 475.356459] ? idr_alloc+0x145/0x1a0 [ 475.360193] ? blk_mq_update_nr_hw_queues+0x4f0/0x4f0 [ 475.365404] loop_add+0x2b4/0x9c0 [ 475.368852] ? loop_lookup+0x102/0x220 [ 475.372734] ? loop_queue_rq+0x640/0x640 [ 475.376811] ? module_unload_free+0x5b0/0x5b0 [ 475.381310] loop_probe+0x185/0x1c0 [ 475.384926] ? loop_control_ioctl+0x500/0x500 [ 475.389413] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 475.394602] kobj_lookup+0x269/0x460 [ 475.398324] ? loop_control_ioctl+0x500/0x500 [ 475.402814] get_gendisk+0x4c/0x380 [ 475.406434] __blkdev_get+0x45f/0x13a0 [ 475.410322] ? blkdev_get_block+0xc0/0xc0 [ 475.414465] blkdev_get+0xb9/0xb30 [ 475.418001] ? bdget+0x5c0/0x5c0 [ 475.421362] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 475.425937] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 475.431465] ? errseq_sample+0xe3/0x120 [ 475.435428] ? _copy_to_user+0x110/0x110 [ 475.439479] ? _raw_spin_unlock+0x22/0x30 [ 475.443617] blkdev_open+0x1fb/0x280 [ 475.447324] do_dentry_open+0x7ef/0xf10 [ 475.451285] ? bd_acquire+0x2c0/0x2c0 [ 475.455077] vfs_open+0x139/0x230 [ 475.458526] path_openat+0x1676/0x4e20 [ 475.462417] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 475.467165] ? find_held_lock+0x36/0x1c0 [ 475.471224] ? lock_downgrade+0x8e0/0x8e0 [ 475.475357] ? do_sys_open+0x39a/0x740 [ 475.479240] ? kasan_check_read+0x11/0x20 [ 475.483376] ? do_raw_spin_unlock+0x9e/0x2e0 [ 475.487775] ? __lock_is_held+0xb5/0x140 [ 475.491831] ? _raw_spin_unlock+0x22/0x30 [ 475.495966] ? __alloc_fd+0x346/0x700 [ 475.499753] ? usercopy_warn+0x120/0x120 [ 475.503811] do_filp_open+0x249/0x350 [ 475.507608] ? may_open_dev+0x100/0x100 [ 475.511571] ? strncpy_from_user+0x3b6/0x500 [ 475.515975] ? mpi_free.cold.1+0x19/0x19 [ 475.520034] ? get_unused_fd_flags+0x121/0x190 [ 475.524605] ? getname_flags+0xd0/0x5a0 [ 475.528571] ? getname_flags+0x26e/0x5a0 [ 475.532624] do_sys_open+0x56f/0x740 [ 475.536332] ? mm_fault_error+0x314/0x380 [ 475.540465] ? filp_open+0x80/0x80 [ 475.543996] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 475.549537] __x64_sys_open+0x7e/0xc0 [ 475.553327] do_syscall_64+0x1b1/0x800 [ 475.557204] ? syscall_return_slowpath+0x5c0/0x5c0 [ 475.562120] ? syscall_return_slowpath+0x30f/0x5c0 [ 475.567047] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 475.572571] ? retint_user+0x18/0x18 [ 475.576285] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 475.581120] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 475.586296] RIP: 0033:0x40fc61 [ 475.589478] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 475.597179] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 475.604432] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 [ 475.611687] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 [ 475.618941] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 [ 475.626195] R13: 0000000000000744 R14: 00000000006fef00 R15: 0000000000000006 [ 476.201661] bridge0: port 1(bridge_slave_0) entered blocking state [ 476.208174] bridge0: port 1(bridge_slave_0) entered disabled state [ 476.215549] device bridge_slave_0 entered promiscuous mode [ 476.267158] bridge0: port 2(bridge_slave_1) entered blocking state [ 476.273649] bridge0: port 2(bridge_slave_1) entered disabled state [ 476.281914] device bridge_slave_1 entered promiscuous mode [ 476.324435] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 476.361312] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 476.468370] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 476.506700] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 476.678215] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 476.685680] team0: Port device team_slave_0 added [ 476.723260] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 476.730655] team0: Port device team_slave_1 added [ 476.764199] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 476.802693] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 476.842236] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 476.875250] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 477.124885] bridge0: port 2(bridge_slave_1) entered blocking state [ 477.131297] bridge0: port 2(bridge_slave_1) entered forwarding state [ 477.137946] bridge0: port 1(bridge_slave_0) entered blocking state [ 477.144423] bridge0: port 1(bridge_slave_0) entered forwarding state [ 477.151972] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 477.929715] 8021q: adding VLAN 0 to HW filter on device bond0 [ 478.006453] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 478.047135] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 478.097472] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 478.103666] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 478.111285] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 478.192940] 8021q: adding VLAN 0 to HW filter on device team0 2018/05/26 12:22:04 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8924, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:22:04 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x8040000, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:22:04 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) socketpair$inet_tcp(0x2, 0x1, 0x0, &(0x7f0000000000)) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000080)={'ip6gre0\x00', &(0x7f00000001c0)=@ethtool_ts_info={0x41}}) 2018/05/26 12:22:04 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0xc0010055]}) 2018/05/26 12:22:04 executing program 0 (fault-call:2 fault-nth:7): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:22:04 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f00001fefe4)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(r1, &(0x7f0000000100), 0xffffffffffffffd6, 0x20000004, &(0x7f000031e000)={0xa, 0x4e22}, 0x1c) syz_open_dev$amidi(&(0x7f0000000000)='/dev/amidi#\x00', 0x3ff, 0x800) r2 = socket$inet(0x10, 0x3, 0x4) sendmsg(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f000000d000)=[{&(0x7f0000008000)="4c0000001200ff09fffefd956fa283b724a6008000000000000000683540150024001d001fc41180b598bc593ab6821148a730de33a49868c62b2ca654a6613b6aabf35d0f1cbc882b079881", 0x4c}], 0x1}, 0x0) 2018/05/26 12:22:04 executing program 7: r0 = syz_open_dev$sndseq(&(0x7f0000dcc000)='/dev/snd/seq\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "0a4ceaa05d9a00000000000000039b3fd4cec307e8ef3d13eb790ec9c65abaf90d229db692542e5b78f8b29e0a27800f0000000000000009fb42f376589701a4"}) ioctl$SNDRV_SEQ_IOCTL_UNSUBSCRIBE_PORT(r0, 0x40505331, &(0x7f0000000c00)={{0x0, 0x100000001}, {0x80}}) r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x400, 0x0) setsockopt$inet_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f0000000040)={@in={{0x2, 0x4e22, @local={0xac, 0x14, 0x14, 0xaa}}}, 0x5, 0xbcb4, 0x101, "2bacd07c2ba0e508fb38434f05f0933849646e8e1c313f175279ccb3f10d61c4b2e24cd6926530df8ebe233d665dc4439fa6198e3835071c2d6dc5e688647d6ed926ade874860e97805279e34ae50fa2"}, 0xd8) 2018/05/26 12:22:04 executing program 3: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000d28000)={0xaa}) r1 = epoll_create1(0x0) r2 = socket(0xa, 0x1, 0x0) ioctl(r2, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) r3 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r3, 0xc0145401, &(0x7f0000013000)) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r3, 0x54a3) readv(r3, &(0x7f000042bff8)=[{&(0x7f0000e3b000)=""/61, 0x3d}], 0x1) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r3, 0xc0145401, &(0x7f0000000000)={0x3, 0x2, 0x7fffffff, 0x1, 0x6}) dup3(r1, r0, 0x0) [ 478.748251] FAULT_INJECTION: forcing a failure. [ 478.748251] name failslab, interval 1, probability 0, space 0, times 0 [ 478.759641] CPU: 0 PID: 28902 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 478.766924] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 478.776280] Call Trace: [ 478.778873] dump_stack+0x1b9/0x294 [ 478.782495] ? dump_stack_print_info.cold.2+0x52/0x52 [ 478.787674] ? perf_trace_lock_acquire+0xe3/0x980 [ 478.792502] ? kasan_check_read+0x11/0x20 [ 478.796634] ? rcu_is_watching+0x85/0x140 [ 478.800776] should_fail.cold.4+0xa/0x1a [ 478.804830] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 478.809925] ? kernel_text_address+0x79/0xf0 [ 478.814317] ? __unwind_start+0x166/0x330 [ 478.818452] ? graph_lock+0x170/0x170 [ 478.822237] ? __save_stack_trace+0x7e/0xd0 [ 478.826600] ? find_held_lock+0x36/0x1c0 [ 478.830651] ? __lock_is_held+0xb5/0x140 [ 478.834709] ? check_same_owner+0x320/0x320 [ 478.839023] ? do_syscall_64+0x1b1/0x800 [ 478.843072] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 478.848422] ? rcu_note_context_switch+0x710/0x710 [ 478.853339] __should_failslab+0x124/0x180 [ 478.857561] should_failslab+0x9/0x14 [ 478.861361] kmem_cache_alloc_node_trace+0x26f/0x770 [ 478.866453] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 478.871973] ? find_next_bit+0x104/0x130 [ 478.876032] blk_mq_init_tags+0x79/0x2b0 [ 478.880084] blk_mq_alloc_rq_map+0x9f/0x220 [ 478.884391] __blk_mq_alloc_rq_map+0xb1/0x2e0 [ 478.888872] blk_mq_alloc_tag_set+0x612/0xab0 [ 478.893356] ? idr_alloc+0x145/0x1a0 [ 478.897059] ? blk_mq_update_nr_hw_queues+0x4f0/0x4f0 [ 478.902240] loop_add+0x2b4/0x9c0 [ 478.905677] ? loop_lookup+0x102/0x220 [ 478.909551] ? loop_queue_rq+0x640/0x640 [ 478.913598] ? module_unload_free+0x5b0/0x5b0 [ 478.918082] loop_probe+0x185/0x1c0 [ 478.921695] ? loop_control_ioctl+0x500/0x500 [ 478.926179] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 478.931358] kobj_lookup+0x269/0x460 [ 478.935060] ? loop_control_ioctl+0x500/0x500 [ 478.939542] get_gendisk+0x4c/0x380 [ 478.943156] __blkdev_get+0x45f/0x13a0 [ 478.947126] ? blkdev_get_block+0xc0/0xc0 [ 478.951266] blkdev_get+0xb9/0xb30 [ 478.954795] ? bdget+0x5c0/0x5c0 [ 478.958148] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 478.962740] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 478.968271] ? errseq_sample+0xe3/0x120 [ 478.972233] ? _copy_to_user+0x110/0x110 [ 478.976284] ? _raw_spin_unlock+0x22/0x30 [ 478.980421] blkdev_open+0x1fb/0x280 [ 478.984123] do_dentry_open+0x7ef/0xf10 [ 478.988085] ? bd_acquire+0x2c0/0x2c0 [ 478.991874] vfs_open+0x139/0x230 [ 478.995319] path_openat+0x1676/0x4e20 [ 478.999204] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 479.003946] ? find_held_lock+0x36/0x1c0 [ 479.008001] ? lock_downgrade+0x8e0/0x8e0 [ 479.012148] ? kasan_check_read+0x11/0x20 [ 479.016279] ? do_raw_spin_unlock+0x9e/0x2e0 [ 479.020672] ? __lock_is_held+0xb5/0x140 [ 479.024724] ? _raw_spin_unlock+0x22/0x30 [ 479.028862] ? __alloc_fd+0x346/0x700 [ 479.032649] ? usercopy_warn+0x120/0x120 [ 479.036701] do_filp_open+0x249/0x350 [ 479.040490] ? may_open_dev+0x100/0x100 [ 479.044458] ? strncpy_from_user+0x3b6/0x500 [ 479.048857] ? mpi_free.cold.1+0x19/0x19 [ 479.052905] ? get_unused_fd_flags+0x121/0x190 [ 479.057469] ? getname_flags+0xd0/0x5a0 [ 479.061439] ? getname_flags+0x26e/0x5a0 [ 479.065491] do_sys_open+0x56f/0x740 [ 479.069192] ? mm_fault_error+0x314/0x380 [ 479.073328] ? filp_open+0x80/0x80 [ 479.076862] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 479.082395] __x64_sys_open+0x7e/0xc0 [ 479.086182] do_syscall_64+0x1b1/0x800 [ 479.090056] ? finish_task_switch+0x1ca/0x840 [ 479.094544] ? syscall_return_slowpath+0x5c0/0x5c0 [ 479.099462] ? syscall_return_slowpath+0x30f/0x5c0 [ 479.104380] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 479.109901] ? retint_user+0x18/0x18 [ 479.113605] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 479.118438] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 479.123620] RIP: 0033:0x40fc61 [ 479.126793] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 479.134494] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 479.141747] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 2018/05/26 12:22:04 executing program 2: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='pagemap\x00') r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffff9c, 0x4c82) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, r1) mount(&(0x7f0000212ff8)='./file0\x00', &(0x7f000078eff8)='./file0\x00', &(0x7f0000982ff9)='mqueue\x00', 0x0, &(0x7f0000653fff)) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000080)={@dev={0xac, 0x14, 0x14, 0x10}, @multicast2=0xe0000002, 0x1, 0x4, [@broadcast=0xffffffff, @local={0xac, 0x14, 0x14, 0xaa}, @rand_addr=0xe3, @empty]}, 0x20) r2 = creat(&(0x7f0000015ff4)='./file0/bus\x00', 0x0) mq_notify(r2, &(0x7f0000477fa0)={0x0, 0x0, 0x0, @thr={&(0x7f0000bc8000), &(0x7f0000589000)}}) mq_notify(r2, &(0x7f0000000100)) 2018/05/26 12:22:04 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8913, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) [ 479.148999] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 [ 479.156255] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 [ 479.163510] R13: 0000000000000744 R14: 00000000006fef00 R15: 0000000000000007 [ 479.172514] blk-mq: reduced tag depth (128 -> 64) 2018/05/26 12:22:04 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x4000011b]}) 2018/05/26 12:22:04 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x100000, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:22:04 executing program 0 (fault-call:2 fault-nth:8): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:22:05 executing program 7: r0 = getpgrp(0xffffffffffffffff) rt_sigqueueinfo(r0, 0x3e, &(0x7f0000000000)={0x22, 0x3, 0x0, 0x7}) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x2000, 0x0) r2 = getuid() getgroups(0x8, &(0x7f0000000080)=[0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]) setsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f00000000c0)={r0, r2, r4}, 0xc) r5 = openat$null(0xffffffffffffff9c, &(0x7f0000000100)='/dev/null\x00', 0x600, 0x0) ioctl$sock_ipx_SIOCAIPXPRISLT(r5, 0x89e1, &(0x7f0000000140)=0x1) fstat(r5, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0}) readahead(r1, 0x5, 0x371a) ioctl$VHOST_SET_VRING_CALL(r1, 0x4008af21, &(0x7f0000000200)={0x3}) r7 = semget(0x1, 0x0, 0x12) semctl$GETNCNT(r7, 0x4, 0xe, &(0x7f0000000240)=""/36) fadvise64(r1, 0x34, 0xff7, 0x1) ioctl$KVM_GET_FPU(r1, 0x81a0ae8c, &(0x7f0000000280)) ioctl$RNDZAPENTCNT(r5, 0x5204, &(0x7f0000000440)=0x80000000) fchown(r1, r6, r3) mprotect(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x1) getpriority(0x2, r0) faccessat(r5, &(0x7f0000000480)='./file0\x00', 0x8, 0x1100) tgkill(r0, r0, 0x11) epoll_ctl$EPOLL_CTL_MOD(r5, 0x3, r1, &(0x7f00000004c0)={0x80002000}) write$binfmt_misc(r5, &(0x7f0000000500)={'syz1', "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"}, 0x1004) r8 = socket$rds(0x15, 0x5, 0x0) syz_open_dev$binder(&(0x7f0000001540)='/dev/binder#\x00', 0x0, 0x2) mprotect(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000000) getsockopt$sock_cred(r8, 0x1, 0x11, &(0x7f0000001580), &(0x7f00000015c0)=0xc) lsetxattr(&(0x7f0000001600)='./file0\x00', &(0x7f0000001640)=@known='system.sockprotoname\x00', &(0x7f0000001680)='/dev/null\x00', 0xa, 0x1) setsockopt$inet_tcp_int(r5, 0x6, 0x1f, &(0x7f00000016c0)=0x7, 0x4) ioctl$KVM_SIGNAL_MSI(r5, 0x4020aea5, &(0x7f0000001700)={0x0, 0x0, 0x1f80000000000000, 0x8001, 0x1}) 2018/05/26 12:22:05 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x890a, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:22:05 executing program 2: r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mkdir(&(0x7f0000000400)='./file0\x00', 0x0) symlink(&(0x7f00000000c0)='./file0/file0\x00', &(0x7f0000000100)='./file0/file0\x00') r1 = getgid() syz_fuse_mount(&(0x7f0000000040)='./file0/file0\x00', 0x0, 0x0, r1, 0x0, 0x0) r2 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000380)='/dev/vga_arbiter\x00', 0x208002, 0x0) linkat(r0, &(0x7f0000000340)='./file0/file0\x00', r2, &(0x7f00000003c0)='./file0\x00', 0x0) r3 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000200)='/dev/rtc0\x00', 0x20800, 0x0) ioctl$TUNGETIFF(r3, 0x800454d2, &(0x7f0000000300)) renameat(r3, &(0x7f0000000240)='./file0\x00', 0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00') openat$dsp(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dsp\x00', 0x2002, 0x0) ioctl$SG_GET_ACCESS_COUNT(r2, 0x2289, &(0x7f00000001c0)) [ 479.543227] FAULT_INJECTION: forcing a failure. [ 479.543227] name failslab, interval 1, probability 0, space 0, times 0 [ 479.554530] CPU: 0 PID: 28926 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 479.561799] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 479.571133] Call Trace: [ 479.573720] dump_stack+0x1b9/0x294 [ 479.577338] ? dump_stack_print_info.cold.2+0x52/0x52 [ 479.582514] ? perf_trace_lock_acquire+0xe3/0x980 [ 479.587348] should_fail.cold.4+0xa/0x1a [ 479.591395] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 479.596484] ? mark_held_locks+0xc9/0x160 [ 479.600616] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 479.605192] ? graph_lock+0x170/0x170 [ 479.608982] ? find_held_lock+0x36/0x1c0 [ 479.613037] ? __lock_is_held+0xb5/0x140 [ 479.617110] ? check_same_owner+0x320/0x320 [ 479.621418] ? do_syscall_64+0x1b1/0x800 [ 479.625471] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 479.630825] ? rcu_note_context_switch+0x710/0x710 [ 479.635747] __should_failslab+0x124/0x180 [ 479.639969] should_failslab+0x9/0x14 [ 479.643757] kmem_cache_alloc_node_trace+0x26f/0x770 [ 479.648847] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 479.654369] ? find_next_bit+0x104/0x130 [ 479.658422] blk_mq_init_tags+0x79/0x2b0 [ 479.662469] blk_mq_alloc_rq_map+0x9f/0x220 [ 479.666779] __blk_mq_alloc_rq_map+0xb1/0x2e0 [ 479.671265] blk_mq_alloc_tag_set+0x612/0xab0 [ 479.675758] ? idr_alloc+0x145/0x1a0 [ 479.679461] ? blk_mq_update_nr_hw_queues+0x4f0/0x4f0 [ 479.684641] loop_add+0x2b4/0x9c0 [ 479.688087] ? loop_lookup+0x102/0x220 [ 479.691962] ? loop_queue_rq+0x640/0x640 [ 479.696010] ? module_unload_free+0x5b0/0x5b0 [ 479.700503] loop_probe+0x185/0x1c0 [ 479.704117] ? loop_control_ioctl+0x500/0x500 [ 479.708601] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 479.713783] kobj_lookup+0x269/0x460 [ 479.717488] ? loop_control_ioctl+0x500/0x500 [ 479.721971] get_gendisk+0x4c/0x380 [ 479.725586] __blkdev_get+0x45f/0x13a0 [ 479.729465] ? blkdev_get_block+0xc0/0xc0 [ 479.733611] blkdev_get+0xb9/0xb30 [ 479.737144] ? bdget+0x5c0/0x5c0 [ 479.740499] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 479.745070] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 479.750594] ? errseq_sample+0xe3/0x120 [ 479.754555] ? _copy_to_user+0x110/0x110 [ 479.758605] ? _raw_spin_unlock+0x22/0x30 [ 479.762741] blkdev_open+0x1fb/0x280 [ 479.766442] do_dentry_open+0x7ef/0xf10 [ 479.770400] ? bd_acquire+0x2c0/0x2c0 [ 479.774192] vfs_open+0x139/0x230 [ 479.777632] path_openat+0x1676/0x4e20 [ 479.781517] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 479.786260] ? find_held_lock+0x36/0x1c0 [ 479.790314] ? lock_downgrade+0x8e0/0x8e0 [ 479.795063] ? kasan_check_read+0x11/0x20 [ 479.799199] ? do_raw_spin_unlock+0x9e/0x2e0 [ 479.803591] ? __lock_is_held+0xb5/0x140 [ 479.807640] ? _raw_spin_unlock+0x22/0x30 [ 479.811773] ? __alloc_fd+0x346/0x700 [ 479.815555] ? usercopy_warn+0x120/0x120 [ 479.819611] do_filp_open+0x2c7/0x350 [ 479.823405] ? may_open_dev+0x100/0x100 [ 479.827367] ? strncpy_from_user+0x3b6/0x500 [ 479.831763] ? mpi_free.cold.1+0x19/0x19 [ 479.835813] ? get_unused_fd_flags+0x121/0x190 [ 479.840380] ? getname_flags+0xd0/0x5a0 [ 479.844340] ? getname_flags+0x26e/0x5a0 [ 479.848389] do_sys_open+0x56f/0x740 [ 479.852091] ? mm_fault_error+0x314/0x380 [ 479.856223] ? filp_open+0x80/0x80 [ 479.859750] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 479.865276] __x64_sys_open+0x7e/0xc0 [ 479.869065] do_syscall_64+0x1b1/0x800 [ 479.872937] ? finish_task_switch+0x1ca/0x840 [ 479.877419] ? syscall_return_slowpath+0x5c0/0x5c0 [ 479.882334] ? syscall_return_slowpath+0x30f/0x5c0 [ 479.887253] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 479.892778] ? retint_user+0x18/0x18 [ 479.896494] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 479.901326] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 479.906500] RIP: 0033:0x40fc61 [ 479.909675] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 479.917369] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 479.924620] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 [ 479.931885] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 2018/05/26 12:22:05 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000100, 0xc0010055]}) 2018/05/26 12:22:05 executing program 3: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000d28000)={0xaa}) r1 = epoll_create1(0x0) r2 = socket(0xa, 0x1, 0x0) ioctl(r2, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) r3 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r3, 0xc0145401, &(0x7f0000013000)) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r3, 0x54a3) readv(r3, &(0x7f000042bff8)=[{&(0x7f0000e3b000)=""/61, 0x3d}], 0x1) r4 = dup3(r1, r0, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(r4, 0x40405515, &(0x7f0000000000)={0x5, 0x5, 0x2, 0x400, "f008e8031fa6e8981a6370ceac53eb5609df14e679731c7992b8656859c19647c279c939d7904da397bc9fe1", 0x7}) [ 479.939138] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 [ 479.946392] R13: 0000000000000744 R14: 00000000006fef00 R15: 0000000000000008 [ 479.956436] blk-mq: reduced tag depth (128 -> 64) 2018/05/26 12:22:05 executing program 0 (fault-call:2 fault-nth:9): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:22:05 executing program 7: r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_int(r0, 0x29, 0xc8, &(0x7f0000000000), 0x4) r1 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000080)='/dev/urandom\x00', 0x301000, 0x0) ioctl$SIOCGIFMTU(r1, 0x8921, &(0x7f00000000c0)) syz_emit_ethernet(0x66, &(0x7f0000000000)={@random="cd390b081bf2", @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], [], {@ipv6={0x86dd, {0x0, 0x6, "02290f", 0x30, 0x3a, 0x0, @ipv4={[], [0xff, 0xff], @rand_addr}, @mcast2={0xff, 0xffffff8f, [], 0x1}, {[], @icmpv6=@pkt_toobig={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, "9433df", 0x0, 0x0, 0x0, @loopback={0x0, 0x1}, @dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb]}}}}}}}}, 0x0) [ 480.396816] FAULT_INJECTION: forcing a failure. [ 480.396816] name failslab, interval 1, probability 0, space 0, times 0 [ 480.408145] CPU: 1 PID: 28961 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 480.415426] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 480.424775] Call Trace: [ 480.427360] dump_stack+0x1b9/0x294 [ 480.430981] ? dump_stack_print_info.cold.2+0x52/0x52 [ 480.436166] ? find_next_zero_bit+0x111/0x140 [ 480.440657] should_fail.cold.4+0xa/0x1a [ 480.444708] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 480.449803] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 480.455329] ? graph_lock+0x170/0x170 [ 480.459124] ? find_held_lock+0x36/0x1c0 [ 480.463181] ? __lock_is_held+0xb5/0x140 [ 480.467236] ? check_same_owner+0x320/0x320 [ 480.471543] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 480.476551] ? rcu_note_context_switch+0x710/0x710 [ 480.481467] ? __lockdep_init_map+0x105/0x590 [ 480.485952] __should_failslab+0x124/0x180 [ 480.490196] should_failslab+0x9/0x14 [ 480.493991] kmem_cache_alloc_node_trace+0x26f/0x770 [ 480.499088] ? init_wait_entry+0x1b0/0x1b0 [ 480.503310] ? __kmalloc_node+0x47/0x70 [ 480.507273] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 480.512282] sbitmap_queue_init_node+0x3bd/0x7d0 [ 480.517030] ? tg3_reset_hw+0x6ee0/0xb580 [ 480.521175] ? sbitmap_init_node+0x460/0x460 [ 480.525576] ? rcu_read_lock_sched_held+0x108/0x120 [ 480.530590] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 480.535857] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 480.541389] ? find_next_bit+0x104/0x130 [ 480.545447] blk_mq_init_tags+0x17c/0x2b0 [ 480.549601] blk_mq_alloc_rq_map+0x9f/0x220 [ 480.553919] __blk_mq_alloc_rq_map+0xb1/0x2e0 [ 480.558409] blk_mq_alloc_tag_set+0x612/0xab0 [ 480.562894] ? idr_alloc+0x145/0x1a0 [ 480.566596] ? blk_mq_update_nr_hw_queues+0x4f0/0x4f0 [ 480.571782] loop_add+0x2b4/0x9c0 [ 480.575221] ? loop_lookup+0x102/0x220 [ 480.579094] ? loop_queue_rq+0x640/0x640 [ 480.583145] ? module_unload_free+0x5b0/0x5b0 [ 480.587629] loop_probe+0x185/0x1c0 [ 480.591243] ? loop_control_ioctl+0x500/0x500 [ 480.595728] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 480.600909] kobj_lookup+0x269/0x460 [ 480.604611] ? loop_control_ioctl+0x500/0x500 [ 480.609095] get_gendisk+0x4c/0x380 [ 480.612716] __blkdev_get+0x45f/0x13a0 [ 480.616599] ? blkdev_get_block+0xc0/0xc0 [ 480.620740] blkdev_get+0xb9/0xb30 [ 480.624269] ? bdget+0x5c0/0x5c0 [ 480.627624] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 480.632195] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 480.637717] ? errseq_sample+0xe3/0x120 [ 480.641680] ? _copy_to_user+0x110/0x110 [ 480.645727] ? _raw_spin_unlock+0x22/0x30 [ 480.649863] blkdev_open+0x1fb/0x280 [ 480.653581] do_dentry_open+0x7ef/0xf10 [ 480.657545] ? bd_acquire+0x2c0/0x2c0 [ 480.661343] vfs_open+0x139/0x230 [ 480.664790] path_openat+0x1676/0x4e20 [ 480.668676] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 480.673425] ? find_held_lock+0x36/0x1c0 [ 480.677477] ? lock_downgrade+0x8e0/0x8e0 [ 480.681618] ? do_sys_open+0x39a/0x740 [ 480.685499] ? kasan_check_read+0x11/0x20 [ 480.689634] ? do_raw_spin_unlock+0x9e/0x2e0 [ 480.694032] ? __lock_is_held+0xb5/0x140 [ 480.698085] ? _raw_spin_unlock+0x22/0x30 [ 480.702226] ? __alloc_fd+0x346/0x700 [ 480.706015] ? usercopy_warn+0x120/0x120 [ 480.710074] do_filp_open+0x249/0x350 [ 480.713862] ? may_open_dev+0x100/0x100 [ 480.717834] ? strncpy_from_user+0x3b6/0x500 [ 480.722232] ? mpi_free.cold.1+0x19/0x19 [ 480.726282] ? get_unused_fd_flags+0x121/0x190 [ 480.730855] ? getname_flags+0xd0/0x5a0 [ 480.734818] ? getname_flags+0x26e/0x5a0 [ 480.738869] do_sys_open+0x56f/0x740 [ 480.742577] ? mm_fault_error+0x314/0x380 [ 480.746710] ? filp_open+0x80/0x80 [ 480.750250] __x64_sys_open+0x7e/0xc0 [ 480.754039] do_syscall_64+0x1b1/0x800 [ 480.757914] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 480.762746] ? syscall_return_slowpath+0x5c0/0x5c0 [ 480.767677] ? syscall_return_slowpath+0x30f/0x5c0 [ 480.772600] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 480.778155] ? retint_user+0x18/0x18 [ 480.781860] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 480.786693] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 480.791869] RIP: 0033:0x40fc61 [ 480.795045] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 480.802753] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 480.810010] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 [ 480.817266] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 [ 480.824527] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 [ 480.831783] R13: 0000000000000744 R14: 00000000006fef00 R15: 0000000000000009 [ 480.842255] blk-mq: reduced tag depth (128 -> 64) 2018/05/26 12:22:07 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f00001fefe4)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(r1, &(0x7f0000000100), 0xffffffffffffffd6, 0x20000004, &(0x7f000031e000)={0xa, 0x4e22}, 0x1c) r2 = socket$inet(0x10, 0x3, 0x4) sendmsg(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f000000d000)=[{&(0x7f0000008000)="4c0000001200ff09fffefd956fa283b724a6008000000000000000683540150024001d001fc41180b598bc593ab6821148a730de33a49868c62b2ca654a6613b6aabf35d0f1cbc882b079881", 0x4c}], 0x1}, 0x0) 2018/05/26 12:22:07 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x800800000000, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:22:07 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8919, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:22:07 executing program 2: r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mkdir(&(0x7f0000000400)='./file0\x00', 0x0) symlink(&(0x7f00000000c0)='./file0/file0\x00', &(0x7f0000000100)='./file0/file0\x00') r1 = getgid() syz_fuse_mount(&(0x7f0000000040)='./file0/file0\x00', 0x0, 0x0, r1, 0x0, 0x0) r2 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000380)='/dev/vga_arbiter\x00', 0x208002, 0x0) linkat(r0, &(0x7f0000000340)='./file0/file0\x00', r2, &(0x7f00000003c0)='./file0\x00', 0x0) r3 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000200)='/dev/rtc0\x00', 0x20800, 0x0) ioctl$TUNGETIFF(r3, 0x800454d2, &(0x7f0000000300)) renameat(r3, &(0x7f0000000240)='./file0\x00', 0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00') openat$dsp(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dsp\x00', 0x2002, 0x0) ioctl$SG_GET_ACCESS_COUNT(r2, 0x2289, &(0x7f00000001c0)) 2018/05/26 12:22:07 executing program 7: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) ioctl$PIO_UNISCRNMAP(r0, 0x4b6a, &(0x7f0000000040)="9d8b80132d07c63629679ff73d6abe8528b18225f75cdd5561dec68b5cf5b885e0824c67603bb91630b0729031dc44fd5265b2decbf40f20b489e98b26433b211cff7c5cee720f6bc388c2eb15a6e2d924f241b12e157dc2ae852c66c951c3c50690aef2699fbd82d84f2b8e663fbe08d0b2ff2cea0c2560e084fc83b66952e5645336294453460cf67867695ac8d4f68490d20d9c3a2436724ea085d1ca098cdc3cc1ec07a59366ff217c32665cc14daa6a1a7a9149d017fdeba6efd856587411927d3081981056afed2ce95fa691b39d96b4fa95c76c170255f4692e701ade539227af64f7854f9d611b3271") ioctl$TIOCGPTPEER(r0, 0x5420, 0x0) 2018/05/26 12:22:07 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000100, 0x9e00000000000000]}) 2018/05/26 12:22:07 executing program 3: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x50000, 0x0) ioctl$KVM_TRANSLATE(r0, 0xc018ae85, &(0x7f0000000040)={0xd000, 0x100006, 0x3, 0x7f, 0x6d22}) r1 = userfaultfd(0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000d28000)={0xaa}) r2 = epoll_create1(0x0) r3 = socket(0xa, 0x1, 0x0) ioctl(r3, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) r4 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r4, 0xc0145401, &(0x7f0000013000)) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r4, 0x54a3) readv(r4, &(0x7f000042bff8)=[{&(0x7f0000e3b000)=""/61, 0x3d}], 0x1) dup3(r2, r1, 0x0) 2018/05/26 12:22:07 executing program 0 (fault-call:2 fault-nth:10): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) [ 481.584297] FAULT_INJECTION: forcing a failure. [ 481.584297] name failslab, interval 1, probability 0, space 0, times 0 [ 481.595728] CPU: 0 PID: 28984 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 481.603014] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 481.612377] Call Trace: [ 481.614991] dump_stack+0x1b9/0x294 [ 481.618645] ? dump_stack_print_info.cold.2+0x52/0x52 [ 481.623838] ? perf_trace_lock_acquire+0xe3/0x980 [ 481.628672] ? find_next_zero_bit+0x111/0x140 [ 481.633167] should_fail.cold.4+0xa/0x1a [ 481.637219] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 481.642314] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 481.647839] ? graph_lock+0x170/0x170 [ 481.651645] ? find_held_lock+0x36/0x1c0 [ 481.655699] ? __lock_is_held+0xb5/0x140 [ 481.659759] ? check_same_owner+0x320/0x320 [ 481.664068] ? __kmalloc_node+0x33/0x70 [ 481.668036] ? rcu_note_context_switch+0x710/0x710 [ 481.672956] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 481.678221] __should_failslab+0x124/0x180 [ 481.682449] should_failslab+0x9/0x14 [ 481.686234] kmem_cache_alloc_node_trace+0x26f/0x770 [ 481.691324] ? __kmalloc_node+0x47/0x70 [ 481.695290] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 481.700294] ? find_next_bit+0x104/0x130 [ 481.704349] sbitmap_queue_init_node+0x3bd/0x7d0 [ 481.709098] ? sbitmap_init_node+0x460/0x460 [ 481.713509] ? rcu_read_lock_sched_held+0x108/0x120 [ 481.718523] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 481.723794] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 481.729318] ? find_next_bit+0x104/0x130 [ 481.733384] blk_mq_init_tags+0x11b/0x2b0 [ 481.737525] blk_mq_alloc_rq_map+0x9f/0x220 [ 481.741839] __blk_mq_alloc_rq_map+0xb1/0x2e0 [ 481.746327] blk_mq_alloc_tag_set+0x612/0xab0 [ 481.750817] ? idr_alloc+0x145/0x1a0 [ 481.754522] ? blk_mq_update_nr_hw_queues+0x4f0/0x4f0 [ 481.759709] loop_add+0x2b4/0x9c0 [ 481.763148] ? loop_lookup+0x102/0x220 [ 481.767029] ? loop_queue_rq+0x640/0x640 [ 481.771076] ? module_unload_free+0x5b0/0x5b0 [ 481.775563] loop_probe+0x185/0x1c0 [ 481.779178] ? loop_control_ioctl+0x500/0x500 [ 481.783665] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 481.788856] kobj_lookup+0x269/0x460 [ 481.792560] ? loop_control_ioctl+0x500/0x500 [ 481.797046] get_gendisk+0x4c/0x380 [ 481.800672] __blkdev_get+0x45f/0x13a0 [ 481.804559] ? blkdev_get_block+0xc0/0xc0 [ 481.808699] blkdev_get+0xb9/0xb30 [ 481.812229] ? bdget+0x5c0/0x5c0 [ 481.815583] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 481.820158] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 481.825680] ? errseq_sample+0xe3/0x120 [ 481.829642] ? _copy_to_user+0x110/0x110 [ 481.833692] ? _raw_spin_unlock+0x22/0x30 [ 481.837828] blkdev_open+0x1fb/0x280 [ 481.841542] do_dentry_open+0x7ef/0xf10 [ 481.845503] ? bd_acquire+0x2c0/0x2c0 [ 481.849296] vfs_open+0x139/0x230 [ 481.852739] path_openat+0x1676/0x4e20 [ 481.856613] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 481.861366] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 481.866118] ? find_held_lock+0x36/0x1c0 [ 481.870174] ? lock_downgrade+0x8e0/0x8e0 [ 481.874318] ? kasan_check_read+0x11/0x20 [ 481.878457] ? do_raw_spin_unlock+0x9e/0x2e0 [ 481.882860] ? __lock_is_held+0xb5/0x140 [ 481.886914] ? _raw_spin_unlock+0x22/0x30 [ 481.891054] ? __alloc_fd+0x346/0x700 [ 481.894842] ? usercopy_warn+0x120/0x120 [ 481.898897] do_filp_open+0x249/0x350 [ 481.902692] ? may_open_dev+0x100/0x100 [ 481.906653] ? strncpy_from_user+0x3b6/0x500 [ 481.911056] ? mpi_free.cold.1+0x19/0x19 [ 481.915109] ? get_unused_fd_flags+0x121/0x190 [ 481.919676] ? getname_flags+0xd0/0x5a0 [ 481.923642] ? getname_flags+0x26e/0x5a0 [ 481.927713] do_sys_open+0x56f/0x740 [ 481.931416] ? mm_fault_error+0x314/0x380 [ 481.935560] ? filp_open+0x80/0x80 [ 481.939088] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 481.943923] __x64_sys_open+0x7e/0xc0 [ 481.947710] do_syscall_64+0x1b1/0x800 [ 481.951585] ? finish_task_switch+0x1ca/0x840 [ 481.956076] ? syscall_return_slowpath+0x5c0/0x5c0 [ 481.960994] ? syscall_return_slowpath+0x30f/0x5c0 [ 481.965918] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 481.971444] ? retint_user+0x18/0x18 [ 481.975147] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 481.979982] entry_SYSCALL_64_after_hwframe+0x49/0xbe 2018/05/26 12:22:07 executing program 7: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) pipe2(&(0x7f0000000500)={0xffffffffffffffff, 0xffffffffffffffff}, 0x3ffb) r2 = userfaultfd(0x800) ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000000580)={0xaa}) ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000d62fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) write$sndseq(r1, &(0x7f0000011fd2), 0xffffffee) write$binfmt_script(r1, &(0x7f0000000000)={'#! ', './file0', [], 0xa}, 0xb) ioctl$FIONREAD(r1, 0x541b, &(0x7f0000604ffc)) dup2(r0, r2) [ 481.985158] RIP: 0033:0x40fc61 [ 481.988329] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 481.996028] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 482.003280] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 [ 482.010532] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 [ 482.017783] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 [ 482.025036] R13: 0000000000000744 R14: 00000000006fef00 R15: 000000000000000a 2018/05/26 12:22:07 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x891a, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:22:07 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000100, 0x10100c000000000]}) [ 482.054958] blk-mq: reduced tag depth (128 -> 64) 2018/05/26 12:22:07 executing program 0 (fault-call:2 fault-nth:11): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:22:07 executing program 2: r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mkdir(&(0x7f0000000400)='./file0\x00', 0x0) symlink(&(0x7f00000000c0)='./file0/file0\x00', &(0x7f0000000100)='./file0/file0\x00') r1 = getgid() syz_fuse_mount(&(0x7f0000000040)='./file0/file0\x00', 0x0, 0x0, r1, 0x0, 0x0) r2 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000380)='/dev/vga_arbiter\x00', 0x208002, 0x0) linkat(r0, &(0x7f0000000340)='./file0/file0\x00', r2, &(0x7f00000003c0)='./file0\x00', 0x0) r3 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000200)='/dev/rtc0\x00', 0x20800, 0x0) ioctl$TUNGETIFF(r3, 0x800454d2, &(0x7f0000000300)) renameat(r3, &(0x7f0000000240)='./file0\x00', 0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00') openat$dsp(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dsp\x00', 0x2002, 0x0) ioctl$SG_GET_ACCESS_COUNT(r2, 0x2289, &(0x7f00000001c0)) [ 482.358390] FAULT_INJECTION: forcing a failure. [ 482.358390] name failslab, interval 1, probability 0, space 0, times 0 [ 482.369706] CPU: 1 PID: 29008 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 482.376995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 482.386352] Call Trace: [ 482.388972] dump_stack+0x1b9/0x294 [ 482.392667] ? dump_stack_print_info.cold.2+0x52/0x52 [ 482.397873] ? perf_trace_lock_acquire+0xe3/0x980 [ 482.402731] ? find_next_zero_bit+0x111/0x140 [ 482.407247] should_fail.cold.4+0xa/0x1a [ 482.411325] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 482.416456] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 482.422012] ? graph_lock+0x170/0x170 [ 482.425820] ? find_held_lock+0x36/0x1c0 [ 482.429888] ? __lock_is_held+0xb5/0x140 [ 482.433961] ? check_same_owner+0x320/0x320 [ 482.438277] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 482.443286] ? rcu_note_context_switch+0x710/0x710 [ 482.448210] ? __lockdep_init_map+0x105/0x590 [ 482.452693] __should_failslab+0x124/0x180 [ 482.456921] should_failslab+0x9/0x14 [ 482.460719] kmem_cache_alloc_node_trace+0x26f/0x770 [ 482.465812] ? init_wait_entry+0x1b0/0x1b0 [ 482.470043] ? __kmalloc_node+0x47/0x70 [ 482.474028] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 482.479054] sbitmap_queue_init_node+0x3bd/0x7d0 [ 482.483811] ? sbitmap_init_node+0x460/0x460 [ 482.488207] ? rcu_read_lock_sched_held+0x108/0x120 [ 482.493226] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 482.498510] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 482.504045] ? find_next_bit+0x104/0x130 [ 482.508104] blk_mq_init_tags+0x17c/0x2b0 [ 482.512270] blk_mq_alloc_rq_map+0x9f/0x220 [ 482.516605] __blk_mq_alloc_rq_map+0xb1/0x2e0 [ 482.521088] blk_mq_alloc_tag_set+0x612/0xab0 [ 482.525573] ? idr_alloc+0x145/0x1a0 [ 482.529284] ? blk_mq_update_nr_hw_queues+0x4f0/0x4f0 [ 482.534465] loop_add+0x2b4/0x9c0 [ 482.537905] ? loop_lookup+0x102/0x220 [ 482.541780] ? loop_queue_rq+0x640/0x640 [ 482.545836] ? module_unload_free+0x5b0/0x5b0 [ 482.550380] loop_probe+0x185/0x1c0 [ 482.554056] ? loop_control_ioctl+0x500/0x500 [ 482.558562] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 482.563766] kobj_lookup+0x269/0x460 [ 482.567489] ? loop_control_ioctl+0x500/0x500 [ 482.571990] get_gendisk+0x4c/0x380 [ 482.575621] __blkdev_get+0x45f/0x13a0 [ 482.579518] ? blkdev_get_block+0xc0/0xc0 [ 482.583676] blkdev_get+0xb9/0xb30 [ 482.587220] ? bdget+0x5c0/0x5c0 [ 482.590579] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 482.595157] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 482.600690] ? errseq_sample+0xe3/0x120 [ 482.604650] ? _copy_to_user+0x110/0x110 [ 482.608700] ? _raw_spin_unlock+0x22/0x30 [ 482.612841] blkdev_open+0x1fb/0x280 [ 482.616547] do_dentry_open+0x7ef/0xf10 [ 482.620511] ? bd_acquire+0x2c0/0x2c0 [ 482.624315] vfs_open+0x139/0x230 [ 482.627770] path_openat+0x1676/0x4e20 [ 482.631665] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 482.636425] ? find_held_lock+0x36/0x1c0 [ 482.640492] ? lock_downgrade+0x8e0/0x8e0 [ 482.644646] ? kasan_check_read+0x11/0x20 [ 482.648794] ? do_raw_spin_unlock+0x9e/0x2e0 [ 482.653200] ? __lock_is_held+0xb5/0x140 [ 482.657274] ? _raw_spin_unlock+0x22/0x30 [ 482.661406] ? __alloc_fd+0x346/0x700 [ 482.665194] ? usercopy_warn+0x120/0x120 [ 482.669253] do_filp_open+0x249/0x350 [ 482.673047] ? may_open_dev+0x100/0x100 [ 482.677013] ? strncpy_from_user+0x3b6/0x500 [ 482.681415] ? mpi_free.cold.1+0x19/0x19 [ 482.685466] ? get_unused_fd_flags+0x121/0x190 [ 482.690034] ? getname_flags+0xd0/0x5a0 [ 482.693996] ? getname_flags+0x26e/0x5a0 [ 482.698066] do_sys_open+0x56f/0x740 [ 482.701786] ? mm_fault_error+0x314/0x380 [ 482.705922] ? filp_open+0x80/0x80 [ 482.709450] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 482.714983] __x64_sys_open+0x7e/0xc0 [ 482.718784] do_syscall_64+0x1b1/0x800 [ 482.722668] ? syscall_return_slowpath+0x5c0/0x5c0 [ 482.727589] ? syscall_return_slowpath+0x30f/0x5c0 [ 482.732514] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 482.738042] ? retint_user+0x18/0x18 [ 482.741747] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 482.746577] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 482.751746] RIP: 0033:0x40fc61 [ 482.754918] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 482.762610] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 482.769864] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 [ 482.777117] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 [ 482.784367] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 [ 482.791627] R13: 0000000000000744 R14: 00000000006fef00 R15: 000000000000000b [ 482.801665] blk-mq: reduced tag depth (128 -> 64) 2018/05/26 12:22:08 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x8000000000000000, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:22:08 executing program 7: r0 = socket(0x10, 0x80002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") bind$alg(0xffffffffffffffff, &(0x7f0000001000)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$inet_sctp_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000001000)={0x10000, 0x4, 0x100, 0x400}, 0x6) r1 = socket(0x11, 0x80002, 0x0) getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x48, &(0x7f0000000040)=[@in6={0xa, 0x4e22, 0x1, @empty, 0xffff}, @in6={0xa, 0x4e21, 0x3ff, @remote={0xfe, 0x80, [], 0xbb}, 0x6}, @in={0x2, 0x4e20, @remote={0xac, 0x14, 0x14, 0xbb}}]}, &(0x7f0000000100)=0x10) setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f0000000140)={r2, @in={{0x2, 0x4e23}}, 0x87f, 0x7fff}, 0x90) setsockopt$packet_int(r1, 0x107, 0xa, &(0x7f0000788000)=0x2, 0x4) bind$packet(r1, &(0x7f0000000480)={0x11, 0x3, 0x0, 0x1, 0x0, 0x6, @local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}}, 0x14) setsockopt(r1, 0x107, 0x5, &(0x7f0000001000), 0xc5) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r3, &(0x7f00001fefe4)={0xa, 0x4e22}, 0x1c) listen(r3, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(r4, &(0x7f0000000280), 0xfffffdf7, 0x20000004, &(0x7f0000000000)={0xa, 0x4e22}, 0x1c) shutdown(r4, 0x1) 2018/05/26 12:22:08 executing program 0 (fault-call:2 fault-nth:12): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:22:08 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f00001fefe4)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(r1, &(0x7f0000000100), 0xffffffffffffffd6, 0x20000004, &(0x7f000031e000)={0xa, 0x4e22}, 0x1c) r2 = socket$inet(0x10, 0x3, 0x4) sendmsg(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f000000d000)=[{&(0x7f0000008000)="4c0000001200ff09fffefd956fa283b724a6008000000000000000683540150024001d001fc41180b598bc593ab6821148a730de33a49868c62b2ca654a6613b6aabf35d0f1cbc882b079881", 0x4c}], 0x1}, 0x0) 2018/05/26 12:22:08 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8902, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:22:08 executing program 3: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000d28000)={0xaa}) r1 = epoll_create1(0x0) r2 = socket(0xa, 0x1, 0x0) ioctl(r2, 0x40008912, &(0x7f0000000000)="c626262c8523bf012cf66f") ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) r3 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r3, 0xc0145401, &(0x7f0000013000)) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r3, 0x54a3) readv(r3, &(0x7f000042bff8)=[{&(0x7f0000e3b000)=""/61, 0x3d}], 0x1) dup3(r1, r0, 0x0) 2018/05/26 12:22:08 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000100, 0x11000000]}) 2018/05/26 12:22:08 executing program 2: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000040)='/dev/dsp#\x00', 0x3ff, 0x4000) setsockopt$bt_BT_SNDMTU(r0, 0x112, 0xc, &(0x7f0000000080)=0xf4b9, 0x2) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000000b000)={&(0x7f000000f000)={0x10}, 0xc, &(0x7f00005a6ff0)={&(0x7f0000000140)=@flushsa={0x70, 0x1c, 0x9, 0x0, 0x0, {}, [@migrate={0x5c, 0x11, [{@in6=@dev={0xfe, 0x80}, @in=@multicast1=0xe0000001, 0x33, 0x0, 0x0, 0x3504}, {@in, @in6=@mcast1={0xff, 0x1, [], 0x1}}]}]}, 0x70}, 0x1}, 0x0) [ 483.302632] FAULT_INJECTION: forcing a failure. [ 483.302632] name failslab, interval 1, probability 0, space 0, times 0 [ 483.314004] CPU: 1 PID: 29033 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 483.321286] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 483.330639] Call Trace: [ 483.333667] dump_stack+0x1b9/0x294 [ 483.337295] ? dump_stack_print_info.cold.2+0x52/0x52 [ 483.342481] ? is_bpf_text_address+0xd7/0x170 [ 483.346971] should_fail.cold.4+0xa/0x1a [ 483.351029] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 483.356134] ? graph_lock+0x170/0x170 [ 483.359956] ? save_stack+0xa9/0xd0 [ 483.363620] ? save_stack+0x43/0xd0 [ 483.367238] ? kasan_kmalloc+0xc4/0xe0 [ 483.371109] ? __kmalloc_node+0x47/0x70 [ 483.375074] ? blk_mq_alloc_rq_map+0xcc/0x220 [ 483.379556] ? __blk_mq_alloc_rq_map+0xb1/0x2e0 [ 483.384214] ? blk_mq_alloc_tag_set+0x612/0xab0 [ 483.388870] ? loop_add+0x2b4/0x9c0 [ 483.392481] ? loop_probe+0x185/0x1c0 [ 483.396302] ? kobj_lookup+0x269/0x460 [ 483.400183] ? __lock_is_held+0xb5/0x140 [ 483.404229] ? do_filp_open+0x249/0x350 [ 483.408200] ? check_same_owner+0x320/0x320 [ 483.412514] ? rcu_note_context_switch+0x710/0x710 [ 483.417436] __should_failslab+0x124/0x180 [ 483.421662] should_failslab+0x9/0x14 [ 483.425454] kmem_cache_alloc_node_trace+0x26f/0x770 [ 483.430552] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 483.436080] ? kasan_unpoison_shadow+0x35/0x50 [ 483.440652] __kmalloc_node+0x33/0x70 [ 483.444444] blk_mq_alloc_rq_map+0x10d/0x220 [ 483.448839] __blk_mq_alloc_rq_map+0xb1/0x2e0 [ 483.453327] blk_mq_alloc_tag_set+0x612/0xab0 [ 483.457812] ? idr_alloc+0x145/0x1a0 [ 483.461521] ? blk_mq_update_nr_hw_queues+0x4f0/0x4f0 [ 483.466705] loop_add+0x2b4/0x9c0 [ 483.470142] ? loop_lookup+0x102/0x220 [ 483.474023] ? loop_queue_rq+0x640/0x640 [ 483.478077] ? module_unload_free+0x5b0/0x5b0 [ 483.482564] loop_probe+0x185/0x1c0 [ 483.486177] ? loop_control_ioctl+0x500/0x500 [ 483.490664] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 483.495851] kobj_lookup+0x269/0x460 [ 483.499559] ? loop_control_ioctl+0x500/0x500 [ 483.504044] get_gendisk+0x4c/0x380 [ 483.507661] __blkdev_get+0x45f/0x13a0 [ 483.511547] ? blkdev_get_block+0xc0/0xc0 [ 483.515691] blkdev_get+0xb9/0xb30 [ 483.519226] ? bdget+0x5c0/0x5c0 [ 483.522584] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 483.527164] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 483.532691] ? errseq_sample+0xe3/0x120 [ 483.536661] ? _copy_to_user+0x110/0x110 [ 483.540713] ? _raw_spin_unlock+0x22/0x30 [ 483.544851] blkdev_open+0x1fb/0x280 [ 483.548558] do_dentry_open+0x7ef/0xf10 [ 483.552519] ? bd_acquire+0x2c0/0x2c0 [ 483.556317] vfs_open+0x139/0x230 [ 483.559761] path_openat+0x1676/0x4e20 [ 483.563650] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 483.568399] ? find_held_lock+0x36/0x1c0 [ 483.572459] ? lock_downgrade+0x8e0/0x8e0 [ 483.576592] ? do_sys_open+0x39a/0x740 [ 483.580472] ? kasan_check_read+0x11/0x20 [ 483.584605] ? do_raw_spin_unlock+0x9e/0x2e0 [ 483.588999] ? __lock_is_held+0xb5/0x140 [ 483.593058] ? _raw_spin_unlock+0x22/0x30 [ 483.597202] ? __alloc_fd+0x346/0x700 [ 483.600989] ? usercopy_warn+0x120/0x120 [ 483.605052] do_filp_open+0x249/0x350 [ 483.608842] ? may_open_dev+0x100/0x100 [ 483.612812] ? strncpy_from_user+0x3b6/0x500 [ 483.617215] ? mpi_free.cold.1+0x19/0x19 [ 483.621278] ? get_unused_fd_flags+0x121/0x190 [ 483.625843] ? getname_flags+0xd0/0x5a0 [ 483.629808] ? getname_flags+0x26e/0x5a0 [ 483.633863] do_sys_open+0x56f/0x740 [ 483.637573] ? mm_fault_error+0x314/0x380 [ 483.641716] ? filp_open+0x80/0x80 [ 483.645257] __x64_sys_open+0x7e/0xc0 [ 483.649052] do_syscall_64+0x1b1/0x800 [ 483.652930] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 483.657760] ? syscall_return_slowpath+0x5c0/0x5c0 [ 483.662678] ? syscall_return_slowpath+0x30f/0x5c0 [ 483.667600] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 483.673123] ? retint_user+0x18/0x18 [ 483.676827] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 483.681660] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 483.686833] RIP: 0033:0x40fc61 [ 483.690006] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 483.697714] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 483.704967] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 [ 483.712220] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 [ 483.719474] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 [ 483.726728] R13: 0000000000000744 R14: 00000000006fef00 R15: 000000000000000c [ 483.736816] blk-mq: reduced tag depth (128 -> 64) [ 483.749063] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters. [ 483.776131] tpacket_rcv: packet too big, clamped from 65536 to 65392. macoff=96 2018/05/26 12:22:09 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x8f, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:22:09 executing program 0 (fault-call:2 fault-nth:13): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:22:09 executing program 2: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x800800000000, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') [ 484.027354] FAULT_INJECTION: forcing a failure. [ 484.027354] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 484.039351] CPU: 0 PID: 29053 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 484.046626] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 484.055969] Call Trace: [ 484.058572] dump_stack+0x1b9/0x294 [ 484.062204] ? dump_stack_print_info.cold.2+0x52/0x52 [ 484.067412] ? find_held_lock+0x36/0x1c0 [ 484.071473] should_fail.cold.4+0xa/0x1a [ 484.075533] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 484.080633] ? graph_lock+0x170/0x170 [ 484.084438] ? lock_downgrade+0x8e0/0x8e0 [ 484.088598] ? __lock_is_held+0xb5/0x140 [ 484.092678] ? check_same_owner+0x320/0x320 [ 484.096986] ? kernel_text_address+0x79/0xf0 [ 484.101386] ? rcu_note_context_switch+0x710/0x710 [ 484.106307] ? __kernel_text_address+0xd/0x40 [ 484.110810] ? __might_sleep+0x95/0x190 [ 484.114791] __alloc_pages_nodemask+0x34e/0xd70 [ 484.119481] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 484.124515] ? save_stack+0x43/0xd0 [ 484.128157] ? kasan_kmalloc+0xc4/0xe0 [ 484.132065] ? __kmalloc_node+0x47/0x70 [ 484.136052] ? blk_mq_alloc_rq_map+0x10d/0x220 [ 484.140648] ? __blk_mq_alloc_rq_map+0xb1/0x2e0 [ 484.145330] ? blk_mq_alloc_tag_set+0x612/0xab0 [ 484.149999] ? loop_probe+0x185/0x1c0 [ 484.153788] ? kobj_lookup+0x269/0x460 [ 484.157670] ? get_gendisk+0x4c/0x380 [ 484.161454] ? __blkdev_get+0x45f/0x13a0 [ 484.165501] ? blkdev_get+0xb9/0xb30 [ 484.169206] ? blkdev_open+0x1fb/0x280 [ 484.173098] ? do_dentry_open+0x7ef/0xf10 [ 484.177246] ? vfs_open+0x139/0x230 [ 484.180860] ? path_openat+0x1676/0x4e20 [ 484.184914] ? do_filp_open+0x249/0x350 [ 484.188887] ? do_sys_open+0x56f/0x740 [ 484.192778] ? __x64_sys_open+0x7e/0xc0 [ 484.196739] ? do_syscall_64+0x1b1/0x800 [ 484.200785] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 484.206139] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 484.211663] ? find_next_bit+0x104/0x130 [ 484.215718] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 484.220730] ? blk_mq_hw_queue_to_node+0xd9/0x180 [ 484.225574] blk_mq_alloc_rqs+0x310/0x880 [ 484.229726] ? __kmalloc_node+0x33/0x70 [ 484.233711] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 484.238996] ? blk_mq_alloc_rq_map+0x220/0x220 [ 484.243588] ? __kmalloc_node+0x47/0x70 [ 484.247561] ? blk_mq_alloc_rq_map+0x142/0x220 [ 484.252565] __blk_mq_alloc_rq_map+0x15f/0x2e0 [ 484.257132] blk_mq_alloc_tag_set+0x612/0xab0 [ 484.262054] ? idr_alloc+0x145/0x1a0 [ 484.265755] ? blk_mq_update_nr_hw_queues+0x4f0/0x4f0 [ 484.270943] loop_add+0x2b4/0x9c0 [ 484.274399] ? loop_lookup+0x102/0x220 [ 484.278269] ? loop_queue_rq+0x640/0x640 [ 484.282315] ? module_unload_free+0x5b0/0x5b0 [ 484.286796] loop_probe+0x185/0x1c0 [ 484.290413] ? loop_control_ioctl+0x500/0x500 [ 484.294900] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 484.300075] kobj_lookup+0x269/0x460 [ 484.303771] ? loop_control_ioctl+0x500/0x500 [ 484.308249] get_gendisk+0x4c/0x380 [ 484.311862] __blkdev_get+0x45f/0x13a0 [ 484.315741] ? blkdev_get_block+0xc0/0xc0 [ 484.319876] blkdev_get+0xb9/0xb30 [ 484.323401] ? bdget+0x5c0/0x5c0 [ 484.326750] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 484.331319] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 484.336846] ? errseq_sample+0xe3/0x120 [ 484.340804] ? _copy_to_user+0x110/0x110 [ 484.344856] ? _raw_spin_unlock+0x22/0x30 [ 484.348992] blkdev_open+0x1fb/0x280 [ 484.352707] do_dentry_open+0x7ef/0xf10 [ 484.356670] ? bd_acquire+0x2c0/0x2c0 [ 484.360454] vfs_open+0x139/0x230 [ 484.363895] path_openat+0x1676/0x4e20 [ 484.367783] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 484.372525] ? find_held_lock+0x36/0x1c0 [ 484.376574] ? lock_downgrade+0x8e0/0x8e0 [ 484.380702] ? do_sys_open+0x39a/0x740 [ 484.384588] ? kasan_check_read+0x11/0x20 [ 484.388725] ? do_raw_spin_unlock+0x9e/0x2e0 [ 484.393113] ? __lock_is_held+0xb5/0x140 [ 484.397162] ? _raw_spin_unlock+0x22/0x30 [ 484.401292] ? __alloc_fd+0x346/0x700 [ 484.405085] ? usercopy_warn+0x120/0x120 [ 484.409152] do_filp_open+0x249/0x350 [ 484.412946] ? may_open_dev+0x100/0x100 [ 484.416912] ? strncpy_from_user+0x3b6/0x500 [ 484.421328] ? mpi_free.cold.1+0x19/0x19 [ 484.425390] ? get_unused_fd_flags+0x121/0x190 [ 484.429958] ? getname_flags+0xd0/0x5a0 [ 484.433923] ? getname_flags+0x26e/0x5a0 [ 484.437979] do_sys_open+0x56f/0x740 [ 484.441678] ? mm_fault_error+0x314/0x380 [ 484.445818] ? filp_open+0x80/0x80 [ 484.449345] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 484.454865] __x64_sys_open+0x7e/0xc0 [ 484.458661] do_syscall_64+0x1b1/0x800 [ 484.462541] ? finish_task_switch+0x1ca/0x840 [ 484.467027] ? syscall_return_slowpath+0x5c0/0x5c0 [ 484.471946] ? syscall_return_slowpath+0x30f/0x5c0 [ 484.476881] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 484.482403] ? retint_user+0x18/0x18 [ 484.486114] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 484.490959] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 484.496127] RIP: 0033:0x40fc61 [ 484.499298] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 484.507013] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 484.514273] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 [ 484.521524] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 [ 484.528787] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 [ 484.536049] R13: 0000000000000744 R14: 00000000006fef00 R15: 000000000000000d 2018/05/26 12:22:10 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8911, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:22:10 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000100, 0xd90]}) 2018/05/26 12:22:10 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f00001fefe4)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$inet(0x10, 0x3, 0x4) sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f000000d000)=[{&(0x7f0000008000)="4c0000001200ff09fffefd956fa283b724a6008000000000000000683540150024001d001fc41180b598bc593ab6821148a730de33a49868c62b2ca654a6613b6aabf35d0f1cbc882b079881", 0x4c}], 0x1}, 0x0) 2018/05/26 12:22:10 executing program 0 (fault-call:2 fault-nth:14): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:22:10 executing program 7: r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$netlink(0x10, 0x3, 0x9) r2 = fcntl$dupfd(r1, 0x0, r0) sendmmsg(r2, &(0x7f0000003fc0)=[{{&(0x7f00000000c0)=@pptp={0x18, 0x2, {0x1, @local={0xac, 0x14, 0x14, 0xaa}}}, 0x80, &(0x7f0000000480)=[{&(0x7f00000001c0)="4db0e8edb1725c38939a5cb012d0f514ee895fe9ddbc1bc9be4fdd1efaf204a0e40f178b59e6005c64dc7d8bbdb1767244b5d90b764d28b58e73e7d387fdf2e10a6aedd0adffd57d2e03d1f739202c48b11e24b9e188c90065620ca8776a3cdb36a9950f2be0bfb1b7112561954ebd163b8d9f3769d74c9ada8cc64a415a02b8ae3f", 0x82}, {&(0x7f0000000280)="bb910b2db4ee009b4daa00b42c28a6d037eaf4c51e0f", 0x16}, {&(0x7f00000002c0)="cc6f31d63c08a9d516f91822ef7ad84562c6dc91459041e314536aba8a6e7f03dcf4bbefc916bb5736cd017338be66d4d8c25d34b5b17e6b82d704bcec44f9efdaa2832aac68a4110af85cdc55a40149ca541f13e07c64ebb8c5", 0x5a}, {&(0x7f0000000340)="95e7f590c795", 0x6}, {&(0x7f0000000380)="c9c43318ae017d8fcbe1d83812db136ceab70bb0c2a7f6ed0aa13696d4484343b4745a29f26999578bab5683b160f1261d1676744ca6906a77de6dc65cd4ae6119348d2f64eb5fba33bff580e4ddacdf0ef3c99462619d6b32299999645122823c1b4c95d4bfdc5b2814c7042dc7089df6681a8e2c966b5c98118c9a5c6c6ddcebbd614ee706faa4d9a5725b7ac907291d9b6b96bd7b998663ba839371028216cd2199e6af022c8e2b932e29988e9658dbd76b75fc20992675d8b696f566d23c09c69d8e6c34759b3d8c36b3bddf16ce5c061b5fc5d802dc46cc45dbac254f8d9c1b2ae3379673edb7", 0xe9}], 0x5, &(0x7f0000000500)=[{0x1010, 0x0, 0x7fffffff, "9a6f545f4db2f5aa271f23e64cb9040d9c31baa4b4c9972d74877eddbedffe22bddf062daa2fd1beced9d5af57098f8b5289b7e4ff166b79c9451f74ba8d803e114cf035b729c97514df23c9103344a13c4b75fc80a2e3c1a2efdec890a848a07f164d188ac49cd860fa90f6e17b06bf9931058ed9ac6a5965110b9b052a52ef899aab0632c1f63267ecad0ef373752cf3d038159d494bd2dfb291c4c9d79c0fbc8818c079f9596cab11940a6b189693f9c88935b1bdb39d4a3435f2da7a6e790392f1383ba593d469cc0171e79755bbd251379b3a4ce5b37c0dc9a9fe0765b8ce4f2804d6780ebf97c40daf1dd7f1d106b6cb46679286add97bb543ec61cd2c5b92fda9440082efa855091f61dc1263cc89ea2ca4b079d13b6cb064ca600d6ec7279f3aa791be521d3d9d3935f4ad0095f69e6d0283f22ff2838b531adae093483fcdb0d3d9b8eea375aec486c486dd1a66f1f27e817de988f45c87b4c8f9e5a7d2326a8d4838dfab6cb312e13faac52f4af826509ca0b0444ab29ba6a323fcaca4d23c25aef5ad9c198566c5f794ec4615450289e421e85985022482401a05966bafa6dcf91efa34f8e61ff42dc2fbcaef480e405dd7064cb9055d9ece7933fe2bf122cf150ed62087508287ae3a4bd52ba7b83c696c9b7260351c00132dc1186b62c33597b9528f68cb2af7e50e5f5da8f59a60514116e9b55f7946da538b576a714fdad89408c4a69d4f299c64faba87252bd2dd8f1948842c75955efdab894262a1c29a164b0d45334ef23694820a05b3d5ed6470d4217944b999facdafdddcc2e348aea842bd8f9fb53752715481ff2a01c392acd1ef1a0174dcd06f204d6fc53fa4742ca408acdba941b8d595166276e6342476ac67294a72f2df6267a53677a255225a6e8919f909a5362e76856388d2529027bef2bc8e40f44536a538374afc2b535a36c77c4e1357c7e156510c672f49bfbbc1e913c077c83cce41121808d2d3dd353701dcafe6d9a58d136404b9cbce396e74e82b2355add99ec4e58031da7a339bd4881f6f2890754021915180000d816a9804212d940293f4cae876696f94b9bded287dc0cb91dc6d4c53e0a0220c8e76df3df99877ca9815678cacbf60d066b1f8e54af5140cea19cffdc1dd9deda84d9259d7ee315658ef63d23209894dfc2408992f2961918acbd366a9232975ce5c81bd72d28b17047fcce67ea96f0246825426f9396351ee343ba9379b6aef1e456811b911a50a4f279cbdb69c1d78f27793ea04637f669fdff85d43a3792548514df2146d14e485ca77b553145cab0b7fca34a08014057a23500c2a29c87ea83ce32b240403db50ac89298377f578829f662d9d26a1b77202fd8b0a3e586f738d7a82b3785689fca139b73740de79c3e60b8d6d92e94d41c5e4d92a82babe9c1bf45a8b43f169aa7ad68d40f85cfa2b7b9f90eb4021c2c48fbfba3085a9cc6bc00aa62ddb5f990b106c7744036f371a6596678d7b202605e3eb923465fcc93d0223591b66f5283aab323a60841334a6faddfb2402e51764b84d0bc7cd69da8f120dbef9a86f3ce415233ed7f8fe020ad620285ac2fc277bff3a540ca97c4c915fcad9536ecfc14e9abe7e0bd85e04056953ad450704dc9fd131a2718b8a82e8c7980d2fbdfc79344fbdd42026eb28cd8a0edd91c9a46755da4c77e055d8ee58dc6ee436145ce5749b70c0d169cd3caa4d458f06ce46bbb0e6c3eb9f6aab19ee2f068f770f188119daa73403ad937bcae216947bbd1d8db873279d3f09926fa081d8c71cad872e83e7fe1b2327ad0d18d2e371a89e9bb84a01cce3f470421cb5ec65b25163095e9005a1d7c203598702a3c1e65614b404271e7471310fd1a8a68f4dc28be328f9c4cac86cc40edf2f65118b43c843f76a685c3d84bb6091959e3ffffe28b904790b2fa1c474366123987c3a8a7ec4394caa306803defa048c78ea141ac1d28d943de38ce6136c7ae3fe8a4515ce687ab9db1e977f5ca9c5065297c22b9b765e5ccb02a363abfad986a6f160c736914e864508b566f8499cb9854f4881af1ce1a9e622c1cb204f571e70ac03671e99664b1ab044a75b3b58eb82125efea0acd895e24da47988bde39e9182190af2f676b8611137ebd77dd2dccd18d42b0190a1a35830297bb19bb59dee6ab5794830b30251d4f32844eca5564afbfe0876ab79ec65d42a505aeae9c4bb1b1902d9f31a7b608e91ac151b73cc157c25755fad9db1a660d5acb10f88948eb11cba5474306abfa9a4f3ef7fcc7c4b5a6c1687baada1e53fe97e7d185bbd113ecfeb3f4a7bc808cbead1491e03cde4a3236766de5e455c17a8ad064d311ff10e51a296e1f993782976c04b0f36b7e522e3607cc490b5650d59f70470dd6c012f93e72d818dc315180e6b3015d56898b4af5a70a6cd339b69468d5ef64ba690a678a244ac445ca82076cd759d9ce87e3b8656d6ed5ab4e6d82e507fb9405d55d6bfa306a488776614ef1505133fcc65298f49c8ef70aa071ee65812c3a5a066dbf565f4a5f7f77da4a709d0898a0e7a5d4feb8ea516279dc194c591122950a38f8b04d6bc672ad328bfc9bb0603d7f3c1ab9111f174335608c29459a9973eae2c10a1327c3a5625cefd15b6447f291667793868dca3b352bec5c71a9c8de54f2ecb14b42373f7a3b122deefbf3510a976f0214e48a80cceaaa2add5a2a60670a58a797b1be38564d188d9bdd8f5d7ae3ed0dc85bfdbbe5d40953ace2a3f9cc97066aca4732ff811a392155896057cab012dbca031fa99f2b6dc82a292396ee5d33f2e1faaf27763046c24876382c390a5c13975d240824035068a3aef809a72c45054be50a735d37e578bf945c092f518015b1a640154790a779b10de9ae6bdc6f1c5da1775b6b3bd84dea1ae7d2befaf5da582d54fde193f70c85927a8faba7dc56d85f4f030d7e169ef01eafeac62028e2cb1ae51497878a248879ea494590dcc9e8887aad5458ef39a122b85645683571232d41f92864e49aeb16ce26d94cce0c1691cdef58745e70ab4c0f3d7e14d3641c02e10d8cccd027cc8d884f02cc379ca1469c4099a6056b7c8496fbb82961be92719cd89e53a7d39e8466d8489cbf92550b52a9b68013484ba9ba78af63587ed6651141437fa210f2db35317ba7bec6c061cfa0364dc8826a1a55f1d11083aa50c7def4e8e0bb17372b98374d2e148571a6e65b8abb6f5529971a766bd5525cc194f060c432c765bfcd7b2c2c188002edca827176c8776a8b1e646329a6d21616ca74a101ff94be3d4ed540ed16851a251c732f7ff900de566f50f273641d49b5bdfa8d7080632e8a94248548222a695d03925b85d688da75cc76a0abee856958df932b2f32be6055eb8ccec404ce84cb829cb9d372e5719383c7a5dcae3b86e667f437bb61b0b791cde1096676d510cfe2758e4018c97bd82cbb078b2d7558abc889d1a115df5b06060871ee893384d656270f257e34f347e676f84eb03046201f3697c592dc94e214781f6b8c14a3b11d949b7c65ad810cf62c4fd8eab9d3bb4af28c9ae06895dc947abd0c39c82b6c0f003531f17e46e4c689131b3a3becd17f52dc3f940f1c47dd80d70d72302ca3f484718afd542cef202545ec3ee45a060d6411acd490a183bea552c06d99b400b5e1fad148c1ed34657b1e4b492a1c7749249722c051a48d4e68f82ec869592ec02157c555f912c2e6ad43d6d837dc1f9d28e9fc3d5049e85f6ad28d1b0ae31ac02afe570780a87b3dbe3bc9b9df16b220708e5dda7f7b040e13735da90513d6257af1a5d200b0c631b8a7399f59903bb5071d15ca4d41e5b27600a857f76dd12665ee2a804f707dce6c4dea13fa66a2285f5f740a09201a060d50350cbc46e7edfe8f0c240377e0e141f6343ef030a6a21b21585c8d6a1e85353f1c10775b1a479b8c32a05be52a738032e67de85a9d08d79e98d9d50cdb4b9ec1bfdadc80f83419095c42dc5ab60246203a65e10681b545c7f12d1e5708245190edab05b4bbd5bdaa6f75570abbe9a086634407fa8bdfbadaeb9c600918cc9cb83c6fceabc35d94bf4292257b4b97c4d4dd81153afe2f20f59a9cbbb8d04e02c96c66db25a6921e9fa27397eb584cc294895f2121ad8f613cedebb5bde7507eab524ed3f433255ff0776ea8c5da650096d76ae2bad1d0b2eb8218f09b54eab700c953f8a6a3de008cf39ea4b30e5c6321ff3dc1403d64418520e8e0a55bfa8d2042a898c5e94ee232c2598baca3d1bbea0e7093a2bedc25a9f0ccdb9545c1eab86d095fc0232c306b4a11c86596c98cb06c81792313a4193ca2020b51eb22e56ebc29f2ceb0c4080d1ccddd1cf35243dd71e020fc902ecbdeac28e7ce6f3e11a1bc5f09a2242650c23d9ebe1b4d34643a7ba77eb10fbe52588ad81b339f36a6bcb03b7f73f98c14eccc59e344cf91efb7e2684c901b1639c44351ae7d48cc6ec2470dadb93f7290abf2eeb99ae8f583eef850b0d1231ab3cb6443151b9a0d9f82f2131321e79f8a4285bfd8ea13626ec9e47c5b4b4d57bc72c0d9132614335d2f5f40c4117b033878318b2bc371f23e9dd8f1300843ccb80cca53d88d12693ee03d0a10dc006862988ca1816bd31a3646ea21cf4ae669cd401d41c49fbac7450983038479d829ddcb7c017da1d70e692457c6998b752a3946259763be181cda251853ff4a49798243ccf17289105770df72b69094e710138c0725edf72300b278ea3e2708ea9ebdc802bfa0c8bfb13455d0bc9fa0444f57b91ecb08cca07263805ae2f289089b4a9508d6bd35a71f698d2aa8861c8cd12aadc6a166ce905e539f92bef934c4342f86172fac547f9efca92838142f7e854a91d90135b1cf4a967189fe057ca6e0b51330cb4dd1054a8402d70a1d9f01926a65eee5b8e1b6b01aab29a3282ea8d2070f14e6545ecde9183ab0647bb2309bf8c314fd340c0184bb9af4a416d6aa626c6a70523f30d9e4fdc84f5e2bce6b71955084425f78bc51c58895ce25f260365a44aeb6079ef4cb5e2c7475be665a9b055fd47c9cc29c8e0f2288407d3d5985b72ce4da4a721a8b3ed952e9a42cbe9b0ea32cad96de73ad87c3781b7c79d3c942d5d592c291c8deeac0f97de0d5d50038be94de54f68a9a69a15f208cb2cc74aaa1dae7209f962d32d001c406162d11d7fc970438a8689c7e25b71d6736d084ee376ba3be5a20d43bd57fb3bb99639002dbbf0efe1b829130b90831da3855df477830972c82e633750218f8bf153b09493ffb4c0edd17abf7443e467e072b168f36bfc23a787396680d1366433334d2a65a60b353ad2b3cab5f385e1dab24d147fbb1ce982d018563b3ebb58549e15e3dd0ad957dd93e7967efeb5270035de5b42b006d2c72db2b1baa04f109634a2cb91b1db1ec2bd251faad6d38973969831346db00300ec4cb1bd823b858b10a01827170cd676ceb496b6bd373b5b48511339b54be1979f8b9f461e5375652e3a1096017aa228d691dd87dc48df7b90fb2dbb4b002702bf4e3ceb167f8bbf1dd05cad0394e9548ac70525b33f11e5f9faf5594ee198d48ffe96bf0dc47b25e56e400e56d599ae15ad35d1603a6bca6282168058b5fc7adccb6e7117597d22e77ad8866433953ccf559b3cff51b81b7a085ae4216a881a5fc813921fcc452fae845b455d82680dad6d735facc0cab17676468cd8a1d07d33c17d5d3974c8d9c207f73110cf77057679806fdb1f1323c3aa6716e9bfb767323c28c3ee9f8e181a5b85b9300b94ee"}, {0x1010, 0x117, 0x3, "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"}], 0x2020, 0x4000}, 0x2}, {{&(0x7f0000002540)=@ipx={0x4, 0x1, 0x800, "21acaeec6f53", 0x1}, 0x80, &(0x7f00000026c0)=[{&(0x7f00000025c0)="6ba57032347b3e4f78ed344323f12fc618dce00cd6704f425b23f4537efd9c9f5ef2174accea67f2a3efe95f38ea9c913d39a085d4df270785f26679ef9888789307a637e6b067f2bcc4848e1ee4a76eb81b026ddaed724aaf90bb82daa067b64ba1a5c777f47436589efc97e47dad36d20625382af4077bc24495fd080cad723e36714b1f07cbdd712205719b788d06e2ca20b67afd0b772f31a139712f1262ad3ca64c8e24f5cc252c1b3e97fdc672459cd8382fe88c0656207c4a405745e0c5ccd80ad650319741fd427fbc9486e807bd0339", 0xd4}], 0x1, &(0x7f0000002700)=[{0xd0, 0x11b, 0x6, "5418b9f70875f561cd74dc5134d5886e1d83dccb55355273e095d1b6aec7bb47b71ca26d6bbee5a06466f6845f6db495274049e32b27a94ffa87766a8142c6719978499bb9a4789fd890a158e0585769cad37a87d4025f766c373fa6ef437be19a85b6a810ffa41f377776e7338ffe2ad94296274b8ca265080de518e403311deac130ca898d7cb09f3c2b23077eb3fdda2e640ef5ddd6d8c0d89fbaa9b4739b4a7a0ec4afc1e271edc311e92a2fb8805e00967493d5702cc381c45034f724"}, {0xe8, 0x108, 0x38000000000, "d30825c0f6ccfef8b9705b31dd5c2fa9889cd769292a1d06947c875d69138e3c4c899559914c6962fe93c78a057e898383a179485ee73f303257b32fd4b9ed571d349358b45d60fde735b020604f0bcedf66c31c9acd86240ea2c31eadb1b088e7ac86800c03ac9e723e9a31ee8d769a1941691dd1cde9878b463df3f40be6770e3bbf2597729faa698a5e162d912e65d89dae4298ef0b6b3db6ef3697dc4af00461539d2fea3579c2f67a9a7523c00ce21b5866c37a6829bb835b8eb09494cf26c1f9f0daa16c2c1d53bfdd0c7a4d3f9b1e"}, {0x28, 0x1ff, 0x7, "d95a2f8853c25100002b29b07afa6657198f611568e8"}, {0xe8, 0x10b, 0xffffffffffffff80, "12df617309b2a45d435f221d75aded37eb413451576cf2165a09667c8fc110941e3198c8d812846676c0017a83fbe079981847d4219839257e0c8f664ec230c35bf2b75f63f8eca004cb500559dbe0e7d8532c221351eeb85d167e147c3ffc4c825a8d7a2e1f0e5f04f7914eb48491565d3543df708119ed83135fa2d745a2978cfdc6411afaf1d6772372ff985562e4eb8b59a172005378fb050bb60c7237b0b573e83792ec41aa77721ba6b2280fe4e706d8e72eb4603ada8ab69042890cfbebbbb20ce6ab05deab1b0b39a803bf6273"}, {0x20, 0x0, 0x3, "ee977b7693bb1570df54a5"}, {0x110, 0x11f, 0x80000001, "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"}], 0x3f8, 0x20000000}, 0x7ff}, {{&(0x7f0000002b00)=@rc={0x1f, {0x6, 0x524, 0x8001, 0x5, 0x0, 0x800}, 0x2}, 0x80, &(0x7f0000003dc0)=[{&(0x7f0000002b80)="e8f163ecdaa3aaa23c1ba981773efe50deebf93b9c4a02412849827b55cc896e30984187a14a6ff1bb91ec79", 0x2c}, {&(0x7f0000002bc0)="1c49295709b58aeb5e3a1a39b0333c17f97d3c9373602645de452ef414061851bded1a226409715b88544d832edcfd7986580151c71c87f3ffe2efbbc716c487aff508935570e02005a4066ce6c34ce4ff7c8e1c9415e2ead37615d49a8273d8e213710b86e03f4bbeb901df61b176758f60c554afaa09109eeaec4f0e4dbe899247d464e9989c4d26000f167b3e9df7e8d7acb461f33bb017343722c29d5bb186bd5cbff640796521cfb7fff1fd7e6ec4f5afb84183858764a6311aae3e5b8733c61f84c824d4e5", 0xc8}, {&(0x7f0000002cc0)="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", 0x1000}, {&(0x7f0000003cc0)="60d43bd0014afb319ea316e677bf0f0c94b9cf2f7df40b18910dbc322f69134388e17a0a3c1943a417535d56d9d6b28cc0783257faf21e8caa2f1fb1dd49f18becedf4b8137effb669ff48b5e0f3b51fd7073daa7f250991556949f1ea35f9116b7c272c47c2f1f8e49a678b1bfbd4a68b8f2a0f3213e4d4d64cf8a90978f26de52f16fd5de76c838d2451f579b1d6444651621f3e5526626490058336f3d11bcc0e45e5f283d48a5572fdd22c9c5935e0e50f49672d6d30accce049f62aa083a5a9de387d2a87d5dd4bff", 0xcb}], 0x4, &(0x7f0000003e00)=[{0xc0, 0x139, 0x3f, "b0afe94f01633a01c9008cf8830f9595b65a1c1e827094ac1ff9062ddfb89b70ac1e081518a94237affbd574ce555a017832e9dd49b8f37883c4fba3ffa859a7b16c0ddb541f07151ebcd7976ae6d165089a82784bf17047d1bb2f7fc85cd97a00c3c0c4fa9b1e153a7da8c3cc91b332256df950ff048a8c6a8c93b3a3c6023884aad10fcdfe3c4379c9877ede613536c81a8718bfd5d2f0341866dc1fa65e1c793082cce029c77cc9d5b6589c487f29"}, {0x30, 0x109, 0xffffffffffffffff, "29491ba730b6cf1ab943ea8c6b5d9f1ae4d95709a78b0696e908d44b"}, {0x40, 0x1, 0x0, "c4a7bbd65be169f43f73c2bff15fd2d4969405b3a763b93a3ee8d6f95c8bf6da0c2d03d8018144e6769f70aa"}, {0x58, 0x11b, 0x5, "059323ac4679c73b9e56dfbd4fc240356fcc333e00c26076a1cf039bfb3c2efcba59c940e69693de04adce307c5cac0745b91082f2f1c8811441ce2fab7c6cb5411cd1a2"}], 0x188, 0x40044}, 0x3}], 0x3, 0x1) ioctl$SG_SET_FORCE_PACK_ID(r2, 0x227b, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x5, 0x5f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={&(0x7f0000000000), 0x1}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) getsockopt$netlink(r1, 0x10e, 0x5, &(0x7f00008f9000)=""/12, &(0x7f0000000000)=0xc) 2018/05/26 12:22:10 executing program 3: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000d28000)={0xaa}) r1 = epoll_create1(0x0) r2 = socket(0xd, 0x800000000000001, 0x3f) ioctl(r2, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) r3 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r3, 0xc0145401, &(0x7f0000013000)) recvfrom$unix(r2, &(0x7f0000000000), 0x0, 0x20, &(0x7f0000000040)=@abs={0x1, 0x0, 0x4e21}, 0x6e) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r3, 0x54a3) readv(r3, &(0x7f000042bff8)=[{&(0x7f0000e3b000)=""/61, 0x3d}], 0x1) dup3(r1, r0, 0x0) 2018/05/26 12:22:10 executing program 2: r0 = syz_open_dev$binder(&(0x7f0000000100)='/dev/binder#\x00', 0xffffffffffffffff, 0x800) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000140)={0x8, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="f814d38465c917e2"], 0x0, 0x0, &(0x7f00000004c0)}) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f00000001c0)=[@increfs={0x40046307}], 0x0, 0x0, &(0x7f0000000280)}) 2018/05/26 12:22:10 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x500000000000000, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') [ 484.977614] FAULT_INJECTION: forcing a failure. [ 484.977614] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 484.989803] CPU: 0 PID: 29083 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 484.990236] binder: 29079:29086 unknown command -2066541320 [ 484.997086] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 484.997094] Call Trace: [ 484.997127] dump_stack+0x1b9/0x294 [ 484.997152] ? dump_stack_print_info.cold.2+0x52/0x52 [ 484.997171] ? find_held_lock+0x36/0x1c0 [ 485.007535] binder: 29079:29086 ioctl c0306201 20000140 returned -22 [ 485.012265] should_fail.cold.4+0xa/0x1a [ 485.012305] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 485.012328] ? graph_lock+0x170/0x170 [ 485.016274] binder: 29079:29086 DecRefs 0 refcount change on invalid ref 0 ret -22 [ 485.018527] ? lock_downgrade+0x8e0/0x8e0 [ 485.018555] ? __lock_is_held+0xb5/0x140 [ 485.018589] ? check_same_owner+0x320/0x320 [ 485.024673] binder: BINDER_SET_CONTEXT_MGR already set [ 485.027809] ? kernel_text_address+0x79/0xf0 2018/05/26 12:22:10 executing program 2: getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000161000)={0x0, 0x1c, &(0x7f0000519fa8)=[@in6={0xa, 0x0, 0x0, @mcast1={0xff, 0x1, [], 0x1}, 0x4f}]}, &(0x7f0000f91ffc)=0x10) bpf$PROG_LOAD(0x5, &(0x7f0000903000)={0xd, 0x5, &(0x7f0000519fa8)=@framed={{0x18}, [@ldst={0x3, 0x0, 0xb, 0x1, 0x0, 0xa4}], {0x95}}, &(0x7f00005fc000)='GPL\x00', 0x800a, 0x1000, &(0x7f000062b000)=""/4096}, 0x25) r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x101080, 0x0) sendmsg$nl_crypto(r1, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000180)={&(0x7f0000000080)=@alg={0xe8, 0x10, 0xf20, 0x70bd29, 0x25dfdbfd, {{'mcryptd(rmd160-generic)\x00'}, [], [], 0x400, 0x2400}, [{0x8, 0x1, 0x1}]}, 0xe8}, 0x1, 0x0, 0x0, 0x40000}, 0x48010) getsockopt$inet_sctp_SCTP_CONTEXT(r1, 0x84, 0x11, &(0x7f0000000200)={r0, 0x4}, &(0x7f0000000240)=0x8) setsockopt$inet_sctp6_SCTP_RESET_ASSOC(r1, 0x84, 0x78, &(0x7f0000000280)=r2, 0x4) [ 485.027832] ? rcu_note_context_switch+0x710/0x710 [ 485.027847] ? __kernel_text_address+0xd/0x40 [ 485.027868] ? __might_sleep+0x95/0x190 [ 485.027892] __alloc_pages_nodemask+0x34e/0xd70 [ 485.034597] binder: 29079:29088 unknown command -2066541320 [ 485.038415] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 485.038435] ? save_stack+0x43/0xd0 [ 485.038449] ? kasan_kmalloc+0xc4/0xe0 [ 485.038464] ? __kmalloc_node+0x47/0x70 [ 485.038481] ? blk_mq_alloc_rq_map+0x10d/0x220 [ 485.038494] ? __blk_mq_alloc_rq_map+0xb1/0x2e0 [ 485.038507] ? blk_mq_alloc_tag_set+0x612/0xab0 [ 485.038525] ? loop_probe+0x185/0x1c0 [ 485.043800] binder: 29079:29086 ioctl 40046207 0 returned -16 [ 485.047388] ? kobj_lookup+0x269/0x460 [ 485.047402] ? get_gendisk+0x4c/0x380 [ 485.047419] ? __blkdev_get+0x45f/0x13a0 [ 485.047434] ? blkdev_get+0xb9/0xb30 [ 485.047448] ? blkdev_open+0x1fb/0x280 [ 485.047464] ? do_dentry_open+0x7ef/0xf10 [ 485.047481] ? vfs_open+0x139/0x230 [ 485.055410] binder: 29079:29088 ioctl c0306201 20000140 returned -22 [ 485.059303] ? path_openat+0x1676/0x4e20 [ 485.059317] ? do_filp_open+0x249/0x350 [ 485.059334] ? do_sys_open+0x56f/0x740 [ 485.059350] ? __x64_sys_open+0x7e/0xc0 [ 485.059367] ? do_syscall_64+0x1b1/0x800 [ 485.059384] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 485.059407] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 485.205152] ? find_next_bit+0x104/0x130 [ 485.209225] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 485.214251] ? blk_mq_hw_queue_to_node+0xd9/0x180 [ 485.219104] blk_mq_alloc_rqs+0x310/0x880 [ 485.223254] ? __kmalloc_node+0x33/0x70 [ 485.227237] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 485.232507] ? blk_mq_alloc_rq_map+0x220/0x220 [ 485.237079] ? __kmalloc_node+0x47/0x70 [ 485.241053] ? blk_mq_alloc_rq_map+0x142/0x220 [ 485.245641] __blk_mq_alloc_rq_map+0x15f/0x2e0 [ 485.250243] blk_mq_alloc_tag_set+0x612/0xab0 [ 485.254757] ? idr_alloc+0x145/0x1a0 [ 485.258466] ? blk_mq_update_nr_hw_queues+0x4f0/0x4f0 [ 485.263663] loop_add+0x2b4/0x9c0 [ 485.267104] ? loop_lookup+0x102/0x220 [ 485.270992] ? loop_queue_rq+0x640/0x640 [ 485.275055] ? module_unload_free+0x5b0/0x5b0 [ 485.279551] loop_probe+0x185/0x1c0 [ 485.283175] ? loop_control_ioctl+0x500/0x500 [ 485.287664] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 485.292863] kobj_lookup+0x269/0x460 [ 485.296590] ? loop_control_ioctl+0x500/0x500 [ 485.301084] get_gendisk+0x4c/0x380 [ 485.304699] __blkdev_get+0x45f/0x13a0 [ 485.308576] ? blkdev_get_block+0xc0/0xc0 [ 485.312723] blkdev_get+0xb9/0xb30 [ 485.316259] ? bdget+0x5c0/0x5c0 [ 485.319629] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 485.324211] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 485.329733] ? errseq_sample+0xe3/0x120 [ 485.333705] ? _copy_to_user+0x110/0x110 [ 485.337762] ? _raw_spin_unlock+0x22/0x30 [ 485.341907] blkdev_open+0x1fb/0x280 [ 485.345615] do_dentry_open+0x7ef/0xf10 [ 485.349592] ? bd_acquire+0x2c0/0x2c0 [ 485.353390] vfs_open+0x139/0x230 [ 485.356832] path_openat+0x1676/0x4e20 [ 485.361195] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 485.365939] ? find_held_lock+0x36/0x1c0 [ 485.370002] ? lock_downgrade+0x8e0/0x8e0 [ 485.374152] ? kasan_check_read+0x11/0x20 [ 485.378288] ? do_raw_spin_unlock+0x9e/0x2e0 [ 485.382681] ? __lock_is_held+0xb5/0x140 [ 485.386731] ? _raw_spin_unlock+0x22/0x30 [ 485.390876] ? __alloc_fd+0x346/0x700 [ 485.394668] ? usercopy_warn+0x120/0x120 [ 485.398731] do_filp_open+0x249/0x350 [ 485.402526] ? may_open_dev+0x100/0x100 [ 485.406496] ? strncpy_from_user+0x3b6/0x500 [ 485.410908] ? mpi_free.cold.1+0x19/0x19 [ 485.414960] ? get_unused_fd_flags+0x121/0x190 [ 485.419536] ? getname_flags+0xd0/0x5a0 [ 485.423502] ? getname_flags+0x26e/0x5a0 [ 485.427567] do_sys_open+0x56f/0x740 [ 485.431283] ? mm_fault_error+0x314/0x380 [ 485.435424] ? filp_open+0x80/0x80 [ 485.438961] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 485.444510] __x64_sys_open+0x7e/0xc0 [ 485.448325] do_syscall_64+0x1b1/0x800 [ 485.452204] ? finish_task_switch+0x1ca/0x840 [ 485.456699] ? syscall_return_slowpath+0x5c0/0x5c0 [ 485.461632] ? syscall_return_slowpath+0x30f/0x5c0 [ 485.466556] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 485.472088] ? retint_user+0x18/0x18 [ 485.475808] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 485.480652] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 485.485835] RIP: 0033:0x40fc61 [ 485.489007] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 485.496713] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 485.503977] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 [ 485.511252] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 [ 485.518512] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 2018/05/26 12:22:11 executing program 7: r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$netlink(0x10, 0x3, 0x9) r2 = fcntl$dupfd(r1, 0x0, r0) sendmmsg(r2, &(0x7f0000003fc0)=[{{&(0x7f00000000c0)=@pptp={0x18, 0x2, {0x1, @local={0xac, 0x14, 0x14, 0xaa}}}, 0x80, &(0x7f0000000480)=[{&(0x7f00000001c0)="4db0e8edb1725c38939a5cb012d0f514ee895fe9ddbc1bc9be4fdd1efaf204a0e40f178b59e6005c64dc7d8bbdb1767244b5d90b764d28b58e73e7d387fdf2e10a6aedd0adffd57d2e03d1f739202c48b11e24b9e188c90065620ca8776a3cdb36a9950f2be0bfb1b7112561954ebd163b8d9f3769d74c9ada8cc64a415a02b8ae3f", 0x82}, {&(0x7f0000000280)="bb910b2db4ee009b4daa00b42c28a6d037eaf4c51e0f", 0x16}, {&(0x7f00000002c0)="cc6f31d63c08a9d516f91822ef7ad84562c6dc91459041e314536aba8a6e7f03dcf4bbefc916bb5736cd017338be66d4d8c25d34b5b17e6b82d704bcec44f9efdaa2832aac68a4110af85cdc55a40149ca541f13e07c64ebb8c5", 0x5a}, {&(0x7f0000000340)="95e7f590c795", 0x6}, {&(0x7f0000000380)="c9c43318ae017d8fcbe1d83812db136ceab70bb0c2a7f6ed0aa13696d4484343b4745a29f26999578bab5683b160f1261d1676744ca6906a77de6dc65cd4ae6119348d2f64eb5fba33bff580e4ddacdf0ef3c99462619d6b32299999645122823c1b4c95d4bfdc5b2814c7042dc7089df6681a8e2c966b5c98118c9a5c6c6ddcebbd614ee706faa4d9a5725b7ac907291d9b6b96bd7b998663ba839371028216cd2199e6af022c8e2b932e29988e9658dbd76b75fc20992675d8b696f566d23c09c69d8e6c34759b3d8c36b3bddf16ce5c061b5fc5d802dc46cc45dbac254f8d9c1b2ae3379673edb7", 0xe9}], 0x5, &(0x7f0000000500)=[{0x1010, 0x0, 0x7fffffff, "9a6f545f4db2f5aa271f23e64cb9040d9c31baa4b4c9972d74877eddbedffe22bddf062daa2fd1beced9d5af57098f8b5289b7e4ff166b79c9451f74ba8d803e114cf035b729c97514df23c9103344a13c4b75fc80a2e3c1a2efdec890a848a07f164d188ac49cd860fa90f6e17b06bf9931058ed9ac6a5965110b9b052a52ef899aab0632c1f63267ecad0ef373752cf3d038159d494bd2dfb291c4c9d79c0fbc8818c079f9596cab11940a6b189693f9c88935b1bdb39d4a3435f2da7a6e790392f1383ba593d469cc0171e79755bbd251379b3a4ce5b37c0dc9a9fe0765b8ce4f2804d6780ebf97c40daf1dd7f1d106b6cb46679286add97bb543ec61cd2c5b92fda9440082efa855091f61dc1263cc89ea2ca4b079d13b6cb064ca600d6ec7279f3aa791be521d3d9d3935f4ad0095f69e6d0283f22ff2838b531adae093483fcdb0d3d9b8eea375aec486c486dd1a66f1f27e817de988f45c87b4c8f9e5a7d2326a8d4838dfab6cb312e13faac52f4af826509ca0b0444ab29ba6a323fcaca4d23c25aef5ad9c198566c5f794ec4615450289e421e85985022482401a05966bafa6dcf91efa34f8e61ff42dc2fbcaef480e405dd7064cb9055d9ece7933fe2bf122cf150ed62087508287ae3a4bd52ba7b83c696c9b7260351c00132dc1186b62c33597b9528f68cb2af7e50e5f5da8f59a60514116e9b55f7946da538b576a714fdad89408c4a69d4f299c64faba87252bd2dd8f1948842c75955efdab894262a1c29a164b0d45334ef23694820a05b3d5ed6470d4217944b999facdafdddcc2e348aea842bd8f9fb53752715481ff2a01c392acd1ef1a0174dcd06f204d6fc53fa4742ca408acdba941b8d595166276e6342476ac67294a72f2df6267a53677a255225a6e8919f909a5362e76856388d2529027bef2bc8e40f44536a538374afc2b535a36c77c4e1357c7e156510c672f49bfbbc1e913c077c83cce41121808d2d3dd353701dcafe6d9a58d136404b9cbce396e74e82b2355add99ec4e58031da7a339bd4881f6f2890754021915180000d816a9804212d940293f4cae876696f94b9bded287dc0cb91dc6d4c53e0a0220c8e76df3df99877ca9815678cacbf60d066b1f8e54af5140cea19cffdc1dd9deda84d9259d7ee315658ef63d23209894dfc2408992f2961918acbd366a9232975ce5c81bd72d28b17047fcce67ea96f0246825426f9396351ee343ba9379b6aef1e456811b911a50a4f279cbdb69c1d78f27793ea04637f669fdff85d43a3792548514df2146d14e485ca77b553145cab0b7fca34a08014057a23500c2a29c87ea83ce32b240403db50ac89298377f578829f662d9d26a1b77202fd8b0a3e586f738d7a82b3785689fca139b73740de79c3e60b8d6d92e94d41c5e4d92a82babe9c1bf45a8b43f169aa7ad68d40f85cfa2b7b9f90eb4021c2c48fbfba3085a9cc6bc00aa62ddb5f990b106c7744036f371a6596678d7b202605e3eb923465fcc93d0223591b66f5283aab323a60841334a6faddfb2402e51764b84d0bc7cd69da8f120dbef9a86f3ce415233ed7f8fe020ad620285ac2fc277bff3a540ca97c4c915fcad9536ecfc14e9abe7e0bd85e04056953ad450704dc9fd131a2718b8a82e8c7980d2fbdfc79344fbdd42026eb28cd8a0edd91c9a46755da4c77e055d8ee58dc6ee436145ce5749b70c0d169cd3caa4d458f06ce46bbb0e6c3eb9f6aab19ee2f068f770f188119daa73403ad937bcae216947bbd1d8db873279d3f09926fa081d8c71cad872e83e7fe1b2327ad0d18d2e371a89e9bb84a01cce3f470421cb5ec65b25163095e9005a1d7c203598702a3c1e65614b404271e7471310fd1a8a68f4dc28be328f9c4cac86cc40edf2f65118b43c843f76a685c3d84bb6091959e3ffffe28b904790b2fa1c474366123987c3a8a7ec4394caa306803defa048c78ea141ac1d28d943de38ce6136c7ae3fe8a4515ce687ab9db1e977f5ca9c5065297c22b9b765e5ccb02a363abfad986a6f160c736914e864508b566f8499cb9854f4881af1ce1a9e622c1cb204f571e70ac03671e99664b1ab044a75b3b58eb82125efea0acd895e24da47988bde39e9182190af2f676b8611137ebd77dd2dccd18d42b0190a1a35830297bb19bb59dee6ab5794830b30251d4f32844eca5564afbfe0876ab79ec65d42a505aeae9c4bb1b1902d9f31a7b608e91ac151b73cc157c25755fad9db1a660d5acb10f88948eb11cba5474306abfa9a4f3ef7fcc7c4b5a6c1687baada1e53fe97e7d185bbd113ecfeb3f4a7bc808cbead1491e03cde4a3236766de5e455c17a8ad064d311ff10e51a296e1f993782976c04b0f36b7e522e3607cc490b5650d59f70470dd6c012f93e72d818dc315180e6b3015d56898b4af5a70a6cd339b69468d5ef64ba690a678a244ac445ca82076cd759d9ce87e3b8656d6ed5ab4e6d82e507fb9405d55d6bfa306a488776614ef1505133fcc65298f49c8ef70aa071ee65812c3a5a066dbf565f4a5f7f77da4a709d0898a0e7a5d4feb8ea516279dc194c591122950a38f8b04d6bc672ad328bfc9bb0603d7f3c1ab9111f174335608c29459a9973eae2c10a1327c3a5625cefd15b6447f291667793868dca3b352bec5c71a9c8de54f2ecb14b42373f7a3b122deefbf3510a976f0214e48a80cceaaa2add5a2a60670a58a797b1be38564d188d9bdd8f5d7ae3ed0dc85bfdbbe5d40953ace2a3f9cc97066aca4732ff811a392155896057cab012dbca031fa99f2b6dc82a292396ee5d33f2e1faaf27763046c24876382c390a5c13975d240824035068a3aef809a72c45054be50a735d37e578bf945c092f518015b1a640154790a779b10de9ae6bdc6f1c5da1775b6b3bd84dea1ae7d2befaf5da582d54fde193f70c85927a8faba7dc56d85f4f030d7e169ef01eafeac62028e2cb1ae51497878a248879ea494590dcc9e8887aad5458ef39a122b85645683571232d41f92864e49aeb16ce26d94cce0c1691cdef58745e70ab4c0f3d7e14d3641c02e10d8cccd027cc8d884f02cc379ca1469c4099a6056b7c8496fbb82961be92719cd89e53a7d39e8466d8489cbf92550b52a9b68013484ba9ba78af63587ed6651141437fa210f2db35317ba7bec6c061cfa0364dc8826a1a55f1d11083aa50c7def4e8e0bb17372b98374d2e148571a6e65b8abb6f5529971a766bd5525cc194f060c432c765bfcd7b2c2c188002edca827176c8776a8b1e646329a6d21616ca74a101ff94be3d4ed540ed16851a251c732f7ff900de566f50f273641d49b5bdfa8d7080632e8a94248548222a695d03925b85d688da75cc76a0abee856958df932b2f32be6055eb8ccec404ce84cb829cb9d372e5719383c7a5dcae3b86e667f437bb61b0b791cde1096676d510cfe2758e4018c97bd82cbb078b2d7558abc889d1a115df5b06060871ee893384d656270f257e34f347e676f84eb03046201f3697c592dc94e214781f6b8c14a3b11d949b7c65ad810cf62c4fd8eab9d3bb4af28c9ae06895dc947abd0c39c82b6c0f003531f17e46e4c689131b3a3becd17f52dc3f940f1c47dd80d70d72302ca3f484718afd542cef202545ec3ee45a060d6411acd490a183bea552c06d99b400b5e1fad148c1ed34657b1e4b492a1c7749249722c051a48d4e68f82ec869592ec02157c555f912c2e6ad43d6d837dc1f9d28e9fc3d5049e85f6ad28d1b0ae31ac02afe570780a87b3dbe3bc9b9df16b220708e5dda7f7b040e13735da90513d6257af1a5d200b0c631b8a7399f59903bb5071d15ca4d41e5b27600a857f76dd12665ee2a804f707dce6c4dea13fa66a2285f5f740a09201a060d50350cbc46e7edfe8f0c240377e0e141f6343ef030a6a21b21585c8d6a1e85353f1c10775b1a479b8c32a05be52a738032e67de85a9d08d79e98d9d50cdb4b9ec1bfdadc80f83419095c42dc5ab60246203a65e10681b545c7f12d1e5708245190edab05b4bbd5bdaa6f75570abbe9a086634407fa8bdfbadaeb9c600918cc9cb83c6fceabc35d94bf4292257b4b97c4d4dd81153afe2f20f59a9cbbb8d04e02c96c66db25a6921e9fa27397eb584cc294895f2121ad8f613cedebb5bde7507eab524ed3f433255ff0776ea8c5da650096d76ae2bad1d0b2eb8218f09b54eab700c953f8a6a3de008cf39ea4b30e5c6321ff3dc1403d64418520e8e0a55bfa8d2042a898c5e94ee232c2598baca3d1bbea0e7093a2bedc25a9f0ccdb9545c1eab86d095fc0232c306b4a11c86596c98cb06c81792313a4193ca2020b51eb22e56ebc29f2ceb0c4080d1ccddd1cf35243dd71e020fc902ecbdeac28e7ce6f3e11a1bc5f09a2242650c23d9ebe1b4d34643a7ba77eb10fbe52588ad81b339f36a6bcb03b7f73f98c14eccc59e344cf91efb7e2684c901b1639c44351ae7d48cc6ec2470dadb93f7290abf2eeb99ae8f583eef850b0d1231ab3cb6443151b9a0d9f82f2131321e79f8a4285bfd8ea13626ec9e47c5b4b4d57bc72c0d9132614335d2f5f40c4117b033878318b2bc371f23e9dd8f1300843ccb80cca53d88d12693ee03d0a10dc006862988ca1816bd31a3646ea21cf4ae669cd401d41c49fbac7450983038479d829ddcb7c017da1d70e692457c6998b752a3946259763be181cda251853ff4a49798243ccf17289105770df72b69094e710138c0725edf72300b278ea3e2708ea9ebdc802bfa0c8bfb13455d0bc9fa0444f57b91ecb08cca07263805ae2f289089b4a9508d6bd35a71f698d2aa8861c8cd12aadc6a166ce905e539f92bef934c4342f86172fac547f9efca92838142f7e854a91d90135b1cf4a967189fe057ca6e0b51330cb4dd1054a8402d70a1d9f01926a65eee5b8e1b6b01aab29a3282ea8d2070f14e6545ecde9183ab0647bb2309bf8c314fd340c0184bb9af4a416d6aa626c6a70523f30d9e4fdc84f5e2bce6b71955084425f78bc51c58895ce25f260365a44aeb6079ef4cb5e2c7475be665a9b055fd47c9cc29c8e0f2288407d3d5985b72ce4da4a721a8b3ed952e9a42cbe9b0ea32cad96de73ad87c3781b7c79d3c942d5d592c291c8deeac0f97de0d5d50038be94de54f68a9a69a15f208cb2cc74aaa1dae7209f962d32d001c406162d11d7fc970438a8689c7e25b71d6736d084ee376ba3be5a20d43bd57fb3bb99639002dbbf0efe1b829130b90831da3855df477830972c82e633750218f8bf153b09493ffb4c0edd17abf7443e467e072b168f36bfc23a787396680d1366433334d2a65a60b353ad2b3cab5f385e1dab24d147fbb1ce982d018563b3ebb58549e15e3dd0ad957dd93e7967efeb5270035de5b42b006d2c72db2b1baa04f109634a2cb91b1db1ec2bd251faad6d38973969831346db00300ec4cb1bd823b858b10a01827170cd676ceb496b6bd373b5b48511339b54be1979f8b9f461e5375652e3a1096017aa228d691dd87dc48df7b90fb2dbb4b002702bf4e3ceb167f8bbf1dd05cad0394e9548ac70525b33f11e5f9faf5594ee198d48ffe96bf0dc47b25e56e400e56d599ae15ad35d1603a6bca6282168058b5fc7adccb6e7117597d22e77ad8866433953ccf559b3cff51b81b7a085ae4216a881a5fc813921fcc452fae845b455d82680dad6d735facc0cab17676468cd8a1d07d33c17d5d3974c8d9c207f73110cf77057679806fdb1f1323c3aa6716e9bfb767323c28c3ee9f8e181a5b85b9300b94ee"}, {0x1010, 0x117, 0x3, "5512bce017200ba04ea8cab11d8fad7c5524628341f1c41838066107c4a9f0323766c02d3bffe3141d901aaca0f3221262a61c7ddb426c5dbbe428a300b39c6993df5b8162f492748b73a4ce382e442441512b0314cd51cba04164701d53615878422afaa83b0afc3db59b534d82dccfaae52824284f800f687ace40c48c19627a9c9e6883ffb63b045944693e48c91b660effce3e056524836584631f25aaea3125f635d63d8f9fa3829c593fb31aed9887235464f50fa427aa6e04f640b338fc68d2ff99670a1af02aca5be87a61ea77a3017cc78289a647cd0ee057184d36b77e7a3a8397a668adcaa2ff661066d4573e66cbaaac89e2f1b16ba8567f01c9824ff0b654b31c279aaf2e9bba0605494ebbb8c71652f3be6b049b4f93f841fa91d5df7e6dc3c2dd6f73441d601948051514719a851992caaa9c8ecfd3a029016ea4572250a3701f0f768477b397e83e34259137a025b1b79336497858abc4dc5575bedc0615b99d7d5dc39ff6a9640271a05a36d01e09bf93f472d28fa8cb2ee2e39a7305c0ee0baeaf9821b62aba5472109e180babd547198b368c48bad8c4492159fff640c5b4606f7c03efdf427a46de288a1f2ac857a5c835dc6a25ac15e2f1d505ec39850d3be6b8337f1b2521790bbfa898477db850c18b05c6b2dce300f8fcb779415f5514b8e4675e79ffc80f3ee2aed0c066fb03eac9f4b8818b6e2e3b5fd054c50c51f584d038ee862e8625c8ac721f61608a9bfa5bef656b7d7b8fdb9359989385b43cc93d10176cbb48f2c3e6aef672393b5ddf4e643083dcf26c2cfe3051ed4bcff26e8b2d5eecbb858628d562b73ed69f7c73cc5748aebb3d51f005a858acc6005f5de8670705281a01b8f900cdcb2df1a3de658849e6db9b6931cd9535b4322750ada013c6b1ba2dd5fe6176b6721daaefd75299d552934d33ce92010c9d1f61bbbd596eba8ddf191574246ecd470c65f5c4df9a575037bbbd70d9d0c52927060c411b825e46f456fb0b16fd546d49ed8709267dbf997d9fbd187342a74e828111942bca4d8fce42f1ffc73abdde65e2bb981c048d096331ee0573b9ec605f097d9f4309a7d36e23f5528fc4c6636933fb6488c678a1bf2aeff8c746da297c50b466554369c656f51f90575adc2139cc824aaa952865a372c76dfd69459cdae706ffdfb47497573330d3f8a8dddbcf3d805e17e2ad60b53ed477de2a16d466704faa0e865e4df70af809b81cfa4b6a3204fbad7b604900baefe13666c38fa89d65e8fcc5a191ecf1afdacc52aec87eddc4df7d74b3f0b228d22c20b11926912c21744e0530bd91c873c4053226be54b3980536b11a7e69358fd4502b8487e589c3b964d643bb52a85c17a7a9efcfe9bafa7f14aa2b2975d73a967e1bbd4378f79c202bdda77aedf0af5b307eee7c969b0c48217484255417644bffbd7b8292c551389c0be3d084aa10168f92e3b4b705d2b37cae2e54e85115cb577cfd4b71a419b39707e29dc23836aea05f8d57e2cc12406b1bf645aa56ee1c48d19b3b774e8467b2090e282eb2b1aa1bce29ac97ded1cff49736ff06856f90a44c6de92cc5c151960568dce6db0681eafd8b765e016baa9974f2dcc987e58b6350af8000a7fb420bc5e81b92f27dd5902cd9fdcb057cb34c2d487d83591dae0b1e40fa98714c500ddc606f753851a78fd8f0efc50da0edcb97b4ebfae2b9796d5ddeedbeb410806c3db743996bed89d41ef6b17988682841adbc1f57bbda29addd5d22f639679b92da5ce6574ad59b0c348ddbee68ceeeba002f3bc820be415c3d1c0dde515966b7dc01643f6a8c89bacc0588e7888931d2f45c1a8b411be9e755bc0abbc446ed36daf523abe45c2bc9ace94638f8ae403157a05f3c8050aaf048ae10d9f3613e0ab9abc4889c56b55705af001d32e6a06b3f1272591cb72463082f89b6147e15d99b6aa423fcd7fe546ab0d71c282949170ea62707d5d3cdc7c42707c71367c0ee033b48d1e9183de63f72e94d82f2a6d7342a8c8e595f7b3ed6c8b4e4d2055b68c1c49fb1b42c1556e8f90f3718d06332bb3c16ad49b02fd2a5ac566015b8af742ae4acf6f3eb729567a9491fc3b0bdfccc86b7fd884c23f098ae9e4fde7165eee23ea9110796a67c5ca5dc00ba19e50f46ca0e0f2a77f64d255b1f080fdc1df4eabdc0043be5c47483fc70c176569018d15b6b99cf3edcb53e53ea12aa41ed0716afaec2e759c293d624a6c4b6435a9861046afae57adb4787f0623ed419d91dd8d28e4fecdc8129dfc444ace63b82b28fde00dbede75673d38742c66f6a83ac4e10961d6a3347b747bde68e88c7fac308f053f638c72f7b52b5217c36dcc151f9ac68603d83732d541c09d4d953d3dce548e69fc005600e817aea37d2eaa5afe65c593e3f047b4968826092b6a1f9f29ec0cb252045d062c4d125d4f86a67699b9722f1b3ca9a2c5d1c0a58cbbf52246606ae33db7f4fc244e8a9f11b05bc83e5e818aa7a5edc50c9967aa4cc92be923760c2022eb5a1c4bc563e4e4c0b26c170b5404760d106ce3d15212da8fda8b4a8d6b8a3bdb452225371bb25d2f7c3cdcf15f4d6865813fbacf0cd727ad3839ac436076a9c11079ff1f81ae02c51d535f4475cb5d0818710d562decb0dc2d3d94d149aae0e2d39bf45eca395054cf35fb3f31e6a6777a223785b6fcb4fa13d7708699bd838541a9c735278aad476fdd5b82b9b37536491db6599ed1a2a760d19f259e8e9b0e774bbdc64f6fd35185d8c87a9d182f5755c66be82981c1e7355e4c159b576f663688479f1397411cc7a955d43e4c7fc1f993a129bee4dfe4282760fc39ef8c481915e5465e31dc08cae555faed7974c18658e352d352ce3c1ddf0ad71767209f59db3197d7b4caa27fa7f56d711772e440c8abdcc8d561fb03de1fe866289f78fa4ac7b947636e65772d29955ccac8f2f49b9cb9d907ed590f3905486127d23aa48aca94b3fabe4e0c166d96d470e00438e6345cdf8d5f912611c000356862cc6cfac6bf46aeea82ab7be970e18d693d2a1bdbbb6ae19ec9565c4ba1e8deda9442de076626d190c3da95327b72c8332fae7f0c019172fee2f0e5fda232681b22eab18ccc8d8c2330494e6eb80a8d4c5321053802010dc39b8caec6b8885bf6a4ce92fee00480887a11fa4f4587620a93d1ab041607fc23c0c908286b03a1d8f2b9becef33182429bf947b227823db7c38aee67b5d3abd709468939e454d989cad26e7081f6507168870c34c07b0b577853f0535791032eda41a994021fc31bcfea7d15ce2a086c18619d9782177165492bc01c885ed41f6387bd8d94789a82bdef28ea2748eac849113d9786d308ddbfffb124224f00b3da272f8c69c7076c4a2074aba831c45e11fd3d1d1404bb75833950dc28d2212ec51df60944fb1d68ae5f4f52e76db8010af6334daaef51445bc40d9d143d5e8ec90d86e892e21c995399ad8e9dbf94480c46403a736d8f603393f807aaa93e58406dde1fa862fb702fef1564023b616292c177ee089f2ed360c6f618b5dcb98a9c419270e9030ae74c4da8e02ba0a54393ae149ae21e78d8120070086dd4d429b36d986d50b61d4c3f1f48b4b715a6fd5ce20f03d6fc8430df913e569a13c837b6c6d321c017da619df0ab8f66fed22fe683a78dd24e9f9515639b96d4a309ec943fd299d16193c97e6f01067aba3adcea58edb87b1ded5c0916c28bcd8a0716d6181c04aeee03a8279b21490bd709a333821c9cfd8139ebbd02cc51648da3bf61f01d25834ca4346fce010a138c3086a5e2378b561fb4006d49fbf92bef5b110043fb8bbec2b18be8e69ea2511efb9c8aef6b1dcd13d220c239cdfa6e1b1f356e2e06406fdbd05bdd2e6ab75e4993c103cc475f0135cc389a4bbad0cef3da3ac8ef1d19d6d779b3264ede5c3f876d8d5521840df3a1462a95bb59ba81ae9f983479abc6cd4a399bc2d38d3c95e9f8146301dc4077ee02707d44575ab5c4e9428a0ba8c78c32f328ff62901e6b2a9c4259a11628a932227e4348f4b1876312a2e8eebc02817417825ec4228ed856f5a5e5dbf20a1c1f2967446cc6c6ea169144236382c21d5497b82e778754721e0b7fade25cdc8faa457c0c27fe88da1ef5e3f4ed161eacb0ad09d62a288a8b7ce9bc20ff879f3d04a1fd503fea8968f7ab941e637fdbf3f09271ef9634234206b794223ddb825ec790718b9a1ab0e151c2c5c3aa6bc4e4c4701c4146e5663c22792122ab4b2a552b5153952dfa83897f7868def9c59c4a1eae6a97e99e924e76f4d5310c2cb809281bd58723ebe2999e06368adc1a26f0103aa9c43349e77a25e6abde84b41f345cba6d2fbadb37e5d4424882412174a3735e225f92a8699627277c0401e9b166bb0663efe58b45fb14a53883fc21ff3bb4196ebbfc3920523ca6b6510d89ae110a5c3992cecc9053bc70b9137e4942b0295b68769d118dec9113ee36227769ce919577496cce21684a55b23671042cf46a1be36ca7a75587bc3eec679c6af86d4c55b26d61b0fd2d85698dec03895900d0ce205c61365543a3d485fcfc1beae9e14cab88a211f1ad592d9dbc4e428a70526fc80cbce31697eb050647d03769462ea02d2f1d9859e3efe1db114fc0ce67095fb12196381e0fca062e5b16851bbc0e1f1bb493e2ba819987f5293c87eb8acab404bc15d63cf1953a9115e5f9d73ac230fcd3823db802895b54c9d4d523fb04a8878b9a72398189955604d99022ba6fabf86e1a63775d6051f05b112bb088d07e2ca2ce41cacd58a1fa6a180a159071eebf2a05a6badee1c4eb2ffcc446f84a962f0d200b627a4bc0e3baefceb120c299d8bccde7d742c5d3ade9eef9f39cb1ba84d9e97b294bf48cbf534c99bd5f16d85f2c61693eb8aa6f17db23aefc6c84dea4769fe08944232b4f59de0da5683a38128d2328206bd4f7f7e97fce294f71997b131ff6941fa8c8cb70192ac234c5ce7beffb45bd259dcef9f36dfee429e3287657479813c6dd9c12daa8df0dc318f6aff10c2f9105ab6e1481cae2790c4e800ea1e8b734c1493dba32f4bed6a32b3c3faed6d6b78ec45afe4b81bade9bbaee8233b8f879ea7bba8df004ff2a4f4c683db5861dfbb8f9e2645fca65ea3158da43d20cbcb1ee4245830c87c924e8a4a5f5508eb0eb58d39f3cd6743efa35db2ba2e263fd10d0b58da36fe40bf893a2b7c5e9e857f136cc944324ec6462247ee4f96b65377dfe7a31d7afd39050aea325aa7a652f664de13d10ab854bd5617885944b6591bb6b6f50b02554c1bff6c8be617343204445c4dc4ecd9320cdcec3a2aeafaea104b18fc32e2a50e99cbad4e8e2d7d1316ede755b0f3c84362f2c40a93b239750cd69547a36965e565c307fa595d80834c599305b88166401efde9139530127616344da215b109db5cc5a58fa08a0c3da648deed6fa08758f2f3912e348ec81ed6ea293daa2ce72eb00fd3be80d9fdc12ec59cc46dbcdc0d366339f0d89d3ed941db5bf183d7ad4e621f850748ed7c4c74e5b76476ebf846353ff9ca9621b26bbb2808374a522c04b79cc66d7ff25201bffaa3c1a5778450806fd4c3a43505c21d98acc12992cc50f1ed1d0775313dedc84ee506a9cf8cb8419312cdfc868cc2ffcceffdb9728b5aaec575027af99f21060ad305a80bce9abba0a8ce7cb817ea5aa9006a8972e8c54418068ac5f7c9775e3da852dbd0d1454765e6569c2cc530a7d536b34be4bd641954604afd5ac8cc61967c87c455a354ac2d10f141c2"}], 0x2020, 0x4000}, 0x2}, {{&(0x7f0000002540)=@ipx={0x4, 0x1, 0x800, "21acaeec6f53", 0x1}, 0x80, &(0x7f00000026c0)=[{&(0x7f00000025c0)="6ba57032347b3e4f78ed344323f12fc618dce00cd6704f425b23f4537efd9c9f5ef2174accea67f2a3efe95f38ea9c913d39a085d4df270785f26679ef9888789307a637e6b067f2bcc4848e1ee4a76eb81b026ddaed724aaf90bb82daa067b64ba1a5c777f47436589efc97e47dad36d20625382af4077bc24495fd080cad723e36714b1f07cbdd712205719b788d06e2ca20b67afd0b772f31a139712f1262ad3ca64c8e24f5cc252c1b3e97fdc672459cd8382fe88c0656207c4a405745e0c5ccd80ad650319741fd427fbc9486e807bd0339", 0xd4}], 0x1, &(0x7f0000002700)=[{0xd0, 0x11b, 0x6, "5418b9f70875f561cd74dc5134d5886e1d83dccb55355273e095d1b6aec7bb47b71ca26d6bbee5a06466f6845f6db495274049e32b27a94ffa87766a8142c6719978499bb9a4789fd890a158e0585769cad37a87d4025f766c373fa6ef437be19a85b6a810ffa41f377776e7338ffe2ad94296274b8ca265080de518e403311deac130ca898d7cb09f3c2b23077eb3fdda2e640ef5ddd6d8c0d89fbaa9b4739b4a7a0ec4afc1e271edc311e92a2fb8805e00967493d5702cc381c45034f724"}, {0xe8, 0x108, 0x38000000000, "d30825c0f6ccfef8b9705b31dd5c2fa9889cd769292a1d06947c875d69138e3c4c899559914c6962fe93c78a057e898383a179485ee73f303257b32fd4b9ed571d349358b45d60fde735b020604f0bcedf66c31c9acd86240ea2c31eadb1b088e7ac86800c03ac9e723e9a31ee8d769a1941691dd1cde9878b463df3f40be6770e3bbf2597729faa698a5e162d912e65d89dae4298ef0b6b3db6ef3697dc4af00461539d2fea3579c2f67a9a7523c00ce21b5866c37a6829bb835b8eb09494cf26c1f9f0daa16c2c1d53bfdd0c7a4d3f9b1e"}, {0x28, 0x1ff, 0x7, "d95a2f8853c25100002b29b07afa6657198f611568e8"}, {0xe8, 0x10b, 0xffffffffffffff80, "12df617309b2a45d435f221d75aded37eb413451576cf2165a09667c8fc110941e3198c8d812846676c0017a83fbe079981847d4219839257e0c8f664ec230c35bf2b75f63f8eca004cb500559dbe0e7d8532c221351eeb85d167e147c3ffc4c825a8d7a2e1f0e5f04f7914eb48491565d3543df708119ed83135fa2d745a2978cfdc6411afaf1d6772372ff985562e4eb8b59a172005378fb050bb60c7237b0b573e83792ec41aa77721ba6b2280fe4e706d8e72eb4603ada8ab69042890cfbebbbb20ce6ab05deab1b0b39a803bf6273"}, {0x20, 0x0, 0x3, "ee977b7693bb1570df54a5"}, {0x110, 0x11f, 0x80000001, "10ffcf49e7f2704e8aa98e8befab7e7809e79b87fc62b94a1ee384bfbbd40f2cfd972f55fd808b4525f361eb1219a543473442cbd633a821264335acde98405c7899f4f6543ad2eaa5b2b361d899aebc67f70966e9ffd0e09a46e79dda1f6aad81e79be50cd69f582a19d1ace5d10c9c7e452e4ae7079f1aece568276989ee0a028c8921ee40431be30e16ddc0bf34d7a6fa8798770697001c20a389d7bc301df54acfaac4cf40a793f109c044e8728f519360a283cae4727a290c0537da818bfab199f35b0059c82d32351290857817825fa3edb074a4f8fa5f5bd9e57346f84ad99f10c4222a47f9cd9b32021e834025ed25c9ac49e48b46bd"}], 0x3f8, 0x20000000}, 0x7ff}, {{&(0x7f0000002b00)=@rc={0x1f, {0x6, 0x524, 0x8001, 0x5, 0x0, 0x800}, 0x2}, 0x80, &(0x7f0000003dc0)=[{&(0x7f0000002b80)="e8f163ecdaa3aaa23c1ba981773efe50deebf93b9c4a02412849827b55cc896e30984187a14a6ff1bb91ec79", 0x2c}, {&(0x7f0000002bc0)="1c49295709b58aeb5e3a1a39b0333c17f97d3c9373602645de452ef414061851bded1a226409715b88544d832edcfd7986580151c71c87f3ffe2efbbc716c487aff508935570e02005a4066ce6c34ce4ff7c8e1c9415e2ead37615d49a8273d8e213710b86e03f4bbeb901df61b176758f60c554afaa09109eeaec4f0e4dbe899247d464e9989c4d26000f167b3e9df7e8d7acb461f33bb017343722c29d5bb186bd5cbff640796521cfb7fff1fd7e6ec4f5afb84183858764a6311aae3e5b8733c61f84c824d4e5", 0xc8}, {&(0x7f0000002cc0)="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", 0x1000}, {&(0x7f0000003cc0)="60d43bd0014afb319ea316e677bf0f0c94b9cf2f7df40b18910dbc322f69134388e17a0a3c1943a417535d56d9d6b28cc0783257faf21e8caa2f1fb1dd49f18becedf4b8137effb669ff48b5e0f3b51fd7073daa7f250991556949f1ea35f9116b7c272c47c2f1f8e49a678b1bfbd4a68b8f2a0f3213e4d4d64cf8a90978f26de52f16fd5de76c838d2451f579b1d6444651621f3e5526626490058336f3d11bcc0e45e5f283d48a5572fdd22c9c5935e0e50f49672d6d30accce049f62aa083a5a9de387d2a87d5dd4bff", 0xcb}], 0x4, &(0x7f0000003e00)=[{0xc0, 0x139, 0x3f, "b0afe94f01633a01c9008cf8830f9595b65a1c1e827094ac1ff9062ddfb89b70ac1e081518a94237affbd574ce555a017832e9dd49b8f37883c4fba3ffa859a7b16c0ddb541f07151ebcd7976ae6d165089a82784bf17047d1bb2f7fc85cd97a00c3c0c4fa9b1e153a7da8c3cc91b332256df950ff048a8c6a8c93b3a3c6023884aad10fcdfe3c4379c9877ede613536c81a8718bfd5d2f0341866dc1fa65e1c793082cce029c77cc9d5b6589c487f29"}, {0x30, 0x109, 0xffffffffffffffff, "29491ba730b6cf1ab943ea8c6b5d9f1ae4d95709a78b0696e908d44b"}, {0x40, 0x1, 0x0, "c4a7bbd65be169f43f73c2bff15fd2d4969405b3a763b93a3ee8d6f95c8bf6da0c2d03d8018144e6769f70aa"}, {0x58, 0x11b, 0x5, "059323ac4679c73b9e56dfbd4fc240356fcc333e00c26076a1cf039bfb3c2efcba59c940e69693de04adce307c5cac0745b91082f2f1c8811441ce2fab7c6cb5411cd1a2"}], 0x188, 0x40044}, 0x3}], 0x3, 0x1) ioctl$SG_SET_FORCE_PACK_ID(r2, 0x227b, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x5, 0x5f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={&(0x7f0000000000), 0x1}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) getsockopt$netlink(r1, 0x10e, 0x5, &(0x7f00008f9000)=""/12, &(0x7f0000000000)=0xc) 2018/05/26 12:22:11 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x891d, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:22:11 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000100, 0x8000000000000]}) [ 485.525775] R13: 0000000000000744 R14: 00000000006fef00 R15: 000000000000000e 2018/05/26 12:22:11 executing program 0 (fault-call:2 fault-nth:15): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:22:11 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f00001fefe4)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$inet(0x10, 0x3, 0x4) sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f000000d000)=[{&(0x7f0000008000)="4c0000001200ff09fffefd956fa283b724a6008000000000000000683540150024001d001fc41180b598bc593ab6821148a730de33a49868c62b2ca654a6613b6aabf35d0f1cbc882b079881", 0x4c}], 0x1}, 0x0) 2018/05/26 12:22:11 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0xf000000, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') [ 485.985976] FAULT_INJECTION: forcing a failure. [ 485.985976] name failslab, interval 1, probability 0, space 0, times 0 [ 485.997283] CPU: 1 PID: 29120 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 486.004552] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 486.013908] Call Trace: [ 486.016511] dump_stack+0x1b9/0x294 [ 486.020153] ? dump_stack_print_info.cold.2+0x52/0x52 [ 486.025352] ? lock_downgrade+0x8e0/0x8e0 [ 486.029499] should_fail.cold.4+0xa/0x1a [ 486.033559] ? __lock_is_held+0xb5/0x140 [ 486.037617] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 486.042740] ? graph_lock+0x170/0x170 [ 486.046535] ? __lock_is_held+0xb5/0x140 [ 486.050591] ? find_held_lock+0x36/0x1c0 [ 486.054643] ? __lock_is_held+0xb5/0x140 [ 486.058726] ? check_same_owner+0x320/0x320 [ 486.063056] ? loop_init_request+0x7b/0x170 [ 486.067379] ? rcu_note_context_switch+0x710/0x710 [ 486.072312] ? vfs_open+0x139/0x230 [ 486.075944] ? path_openat+0x1676/0x4e20 [ 486.080013] __should_failslab+0x124/0x180 [ 486.084258] should_failslab+0x9/0x14 [ 486.088063] kmem_cache_alloc_node+0x272/0x780 [ 486.092667] ? mark_held_locks+0xc9/0x160 [ 486.096833] ? debug_mutex_init+0x1c/0x60 [ 486.100980] blk_alloc_queue_node+0xe5/0xe40 [ 486.105398] ? blk_init_allocated_queue+0x620/0x620 [ 486.110419] ? __mutex_init+0x1ef/0x280 [ 486.114385] ? __ia32_sys_membarrier+0x150/0x150 [ 486.119154] ? blk_mq_alloc_rq_map+0x142/0x220 [ 486.123750] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 486.129281] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 486.134045] ? blk_mq_alloc_tag_set+0x506/0xab0 [ 486.138714] ? idr_alloc+0x145/0x1a0 [ 486.142419] ? blk_mq_update_nr_hw_queues+0x4f0/0x4f0 [ 486.147614] blk_mq_init_queue+0x4b/0xb0 [ 486.151674] loop_add+0x32b/0x9c0 [ 486.155129] ? loop_lookup+0x102/0x220 [ 486.159021] ? loop_queue_rq+0x640/0x640 [ 486.163083] ? module_unload_free+0x5b0/0x5b0 [ 486.167570] loop_probe+0x185/0x1c0 [ 486.171187] ? loop_control_ioctl+0x500/0x500 [ 486.175686] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 486.180877] kobj_lookup+0x269/0x460 [ 486.184581] ? loop_control_ioctl+0x500/0x500 [ 486.189066] get_gendisk+0x4c/0x380 [ 486.193187] __blkdev_get+0x45f/0x13a0 [ 486.197075] ? blkdev_get_block+0xc0/0xc0 [ 486.201238] blkdev_get+0xb9/0xb30 [ 486.204769] ? bdget+0x5c0/0x5c0 [ 486.208132] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 486.212718] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 486.218245] ? errseq_sample+0xe3/0x120 [ 486.222212] ? _copy_to_user+0x110/0x110 [ 486.226265] ? _raw_spin_unlock+0x22/0x30 [ 486.230404] blkdev_open+0x1fb/0x280 [ 486.234111] do_dentry_open+0x7ef/0xf10 [ 486.238078] ? bd_acquire+0x2c0/0x2c0 [ 486.241874] vfs_open+0x139/0x230 [ 486.245329] path_openat+0x1676/0x4e20 [ 486.249222] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 486.253963] ? find_held_lock+0x36/0x1c0 [ 486.258022] ? lock_downgrade+0x8e0/0x8e0 [ 486.262160] ? do_sys_open+0x39a/0x740 [ 486.266047] ? kasan_check_read+0x11/0x20 [ 486.270180] ? do_raw_spin_unlock+0x9e/0x2e0 [ 486.274573] ? __lock_is_held+0xb5/0x140 [ 486.278626] ? _raw_spin_unlock+0x22/0x30 [ 486.282757] ? __alloc_fd+0x346/0x700 [ 486.286539] ? usercopy_warn+0x120/0x120 [ 486.290593] do_filp_open+0x249/0x350 [ 486.294376] ? may_open_dev+0x100/0x100 [ 486.298341] ? strncpy_from_user+0x3b6/0x500 [ 486.302766] ? mpi_free.cold.1+0x19/0x19 [ 486.306831] ? get_unused_fd_flags+0x121/0x190 [ 486.311400] ? getname_flags+0xd0/0x5a0 [ 486.315357] ? getname_flags+0x26e/0x5a0 [ 486.319420] do_sys_open+0x56f/0x740 [ 486.323118] ? mm_fault_error+0x314/0x380 [ 486.327247] ? filp_open+0x80/0x80 [ 486.330773] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 486.336297] __x64_sys_open+0x7e/0xc0 [ 486.340602] do_syscall_64+0x1b1/0x800 [ 486.344474] ? finish_task_switch+0x1ca/0x840 [ 486.348964] ? syscall_return_slowpath+0x5c0/0x5c0 [ 486.353883] ? syscall_return_slowpath+0x30f/0x5c0 [ 486.358797] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 486.364325] ? retint_user+0x18/0x18 [ 486.368042] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 486.372891] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 486.378060] RIP: 0033:0x40fc61 [ 486.381226] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 486.388916] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 486.396165] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 [ 486.403414] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 [ 486.410669] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 [ 486.417926] R13: 0000000000000744 R14: 00000000006fef00 R15: 000000000000000f 2018/05/26 12:22:12 executing program 7: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100)=0xe) ioctl$TCFLSH(r0, 0x80047437, 0x6f3000) 2018/05/26 12:22:12 executing program 2: r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000540)='/dev/autofs\x00', 0x10000, 0x0) symlinkat(&(0x7f0000000480)='./file0\x00', r0, &(0x7f0000000580)='./file0\x00') capset(&(0x7f0000000240)={0x20071026}, &(0x7f0000000080)) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x64100, 0x0) ioctl$EVIOCSREP(r2, 0x40084503, &(0x7f00000002c0)=[0x3, 0x9]) ioctl$KVM_SET_BOOT_CPU_ID(r2, 0xae78, &(0x7f00000005c0)) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="0ee545cf000000000000006f388000006a0a00fffffff6005d"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0xce, &(0x7f0000000180)=""/206}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x8, 0x5, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000000000005001b00000000eb41fe98054683693e2dde9a0000040000e8000000002903ae59ca35f46fbf45bc36de278cc4489b5e52d864b22370a69bfbbf6cc3623e2bd6cc95b4806cedee4887899b630104d0ea22aa2aa2b2a6d7626f12dfc2cb1bdaa3424efce59ca667610000000000000000000000000000000000000000000000"], &(0x7f00000004c0)="73797a6b584e3e2f9afed6d0ee3d5d5de2f791e4545b69c564e359a02949ab535c1b25caa665b968d2f1a32e3febe4189befa5f044722bae83e5b6959e392e8d24e41b4ce153c97b5a23e135e38d3b1d14ad7a9eeb7069347fee053569544f1a0000000000000000", 0x80000001, 0x466, &(0x7f0000000300)=""/187}, 0x48) 2018/05/26 12:22:12 executing program 3: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000d28000)={0xaa}) r1 = epoll_create1(0x80000) r2 = socket(0xa, 0x1, 0x0) ioctl(r2, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) r3 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r3, 0xc0145401, &(0x7f0000013000)) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r3, 0x54a3) readv(r3, &(0x7f000042bff8)=[{&(0x7f0000e3b000)=""/61, 0x3d}], 0x1) dup3(r1, r0, 0x0) 2018/05/26 12:22:12 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000100, 0x801004000000000]}) 2018/05/26 12:22:12 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x5450, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:22:12 executing program 0 (fault-call:2 fault-nth:16): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:22:12 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x20000000, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:22:12 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f00001fefe4)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$inet(0x10, 0x3, 0x4) sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f000000d000)=[{&(0x7f0000008000)="4c0000001200ff09fffefd956fa283b724a6008000000000000000683540150024001d001fc41180b598bc593ab6821148a730de33a49868c62b2ca654a6613b6aabf35d0f1cbc882b079881", 0x4c}], 0x1}, 0x0) 2018/05/26 12:22:12 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f00001fefe4)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) sendto$inet6(0xffffffffffffffff, &(0x7f0000000100), 0xffffffffffffffd6, 0x20000004, &(0x7f000031e000)={0xa, 0x4e22}, 0x1c) r1 = socket$inet(0x10, 0x3, 0x4) sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f000000d000)=[{&(0x7f0000008000)="4c0000001200ff09fffefd956fa283b724a6008000000000000000683540150024001d001fc41180b598bc593ab6821148a730de33a49868c62b2ca654a6613b6aabf35d0f1cbc882b079881", 0x4c}], 0x1}, 0x0) 2018/05/26 12:22:12 executing program 7: r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhost-net\x00', 0x2, 0x0) ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0) r1 = syz_open_dev$vcsa(&(0x7f0000000100)='/dev/vcsa#\x00', 0x200, 0x406000) ioctl$PPPIOCGL2TPSTATS(r1, 0x80487436, &(0x7f0000000140)="f6ed6ab174eff5842dca423fa09c721311341b0e7b5d4bead1122dd23c81b853d1cb") r2 = syz_open_dev$sndpcmc(&(0x7f0000000040)='/dev/snd/pcmC#D#c\x00', 0x101, 0x248500) setsockopt$inet6_opts(r2, 0x29, 0x36, &(0x7f0000000080)=@hopopts={0x0, 0x2, [], [@padn={0x1, 0xa, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @jumbo={0xc2, 0x4, 0x8bc}]}, 0x20) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000400)={0x0, 0x0, 0x0}, &(0x7f0000000440)=0xc) ioctl$TUNSETGROUP(r1, 0x400454ce, r3) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f00000006c0)={0x6, 0x0, [{0x2, 0xa3, &(0x7f00000002c0)=""/163}, {0x100000, 0x51, &(0x7f0000000380)=""/81}, {0x0, 0x96, &(0x7f0000000500)=""/150}, {0x7001, 0xa4, &(0x7f00000001c0)=""/164}, {0x100000, 0x3d5, &(0x7f00000000c0)}, {0x2, 0xffffffffffffff92, &(0x7f0000000680)=""/17}]}) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000180)={0x0, 0x0, 0x0}, &(0x7f0000000280)=0xc) setgid(r4) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYBLOB="0000ffe408010020"]) [ 486.929639] FAULT_INJECTION: forcing a failure. [ 486.929639] name failslab, interval 1, probability 0, space 0, times 0 [ 486.941109] CPU: 0 PID: 29144 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 486.948413] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 486.957777] Call Trace: [ 486.960390] dump_stack+0x1b9/0x294 [ 486.964052] ? dump_stack_print_info.cold.2+0x52/0x52 [ 486.969252] ? perf_trace_lock_acquire+0xe3/0x980 [ 486.974094] ? __might_sleep+0x95/0x190 [ 486.978068] should_fail.cold.4+0xa/0x1a [ 486.982128] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 486.987222] ? mutex_trylock+0x2a0/0x2a0 [ 486.991274] ? graph_lock+0x170/0x170 [ 486.995060] ? find_held_lock+0x36/0x1c0 [ 486.999110] ? find_held_lock+0x36/0x1c0 [ 487.003162] ? __lock_is_held+0xb5/0x140 [ 487.007216] ? check_same_owner+0x320/0x320 [ 487.011520] ? print_usage_bug+0xc0/0xc0 [ 487.015565] ? graph_lock+0x170/0x170 [ 487.019369] ? __lock_is_held+0xb5/0x140 [ 487.023419] ? rcu_note_context_switch+0x710/0x710 [ 487.028346] __should_failslab+0x124/0x180 [ 487.032570] should_failslab+0x9/0x14 [ 487.036360] kmem_cache_alloc_node_trace+0x26f/0x770 [ 487.041455] ? mempool_free+0x370/0x370 [ 487.045421] mempool_create_node+0x84/0x610 [ 487.049730] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 487.054752] ? mempool_alloc_slab+0x60/0x60 [ 487.059060] ? mempool_free+0x370/0x370 [ 487.063023] ? mempool_alloc_slab+0x60/0x60 [ 487.067330] mempool_create+0x37/0x40 [ 487.071121] bioset_create+0x477/0x900 [ 487.074998] ? bioset_free+0x320/0x320 [ 487.078878] ? debug_mutex_init+0x1c/0x60 [ 487.083039] blk_alloc_queue_node+0x16e/0xe40 [ 487.087532] ? blk_init_allocated_queue+0x620/0x620 [ 487.092533] ? __mutex_init+0x1ef/0x280 [ 487.096492] ? __ia32_sys_membarrier+0x150/0x150 [ 487.101241] ? blk_mq_alloc_rq_map+0x142/0x220 [ 487.105811] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 487.111332] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 487.116076] ? blk_mq_alloc_tag_set+0x506/0xab0 [ 487.120731] ? idr_alloc+0x145/0x1a0 [ 487.124443] ? blk_mq_update_nr_hw_queues+0x4f0/0x4f0 [ 487.129622] blk_mq_init_queue+0x4b/0xb0 [ 487.133672] loop_add+0x32b/0x9c0 [ 487.137113] ? loop_lookup+0x102/0x220 [ 487.140985] ? loop_queue_rq+0x640/0x640 [ 487.145034] ? module_unload_free+0x5b0/0x5b0 [ 487.149517] loop_probe+0x185/0x1c0 [ 487.153127] ? loop_control_ioctl+0x500/0x500 [ 487.157609] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 487.162790] kobj_lookup+0x269/0x460 [ 487.166492] ? loop_control_ioctl+0x500/0x500 [ 487.170972] get_gendisk+0x4c/0x380 [ 487.174586] __blkdev_get+0x45f/0x13a0 [ 487.178466] ? blkdev_get_block+0xc0/0xc0 [ 487.182603] blkdev_get+0xb9/0xb30 [ 487.186134] ? bdget+0x5c0/0x5c0 [ 487.189488] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 487.194059] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 487.199587] ? errseq_sample+0xe3/0x120 [ 487.203549] ? _copy_to_user+0x110/0x110 [ 487.207601] ? _raw_spin_unlock+0x22/0x30 [ 487.211738] blkdev_open+0x1fb/0x280 [ 487.215444] do_dentry_open+0x7ef/0xf10 [ 487.219411] ? bd_acquire+0x2c0/0x2c0 [ 487.223202] vfs_open+0x139/0x230 [ 487.226642] path_openat+0x1676/0x4e20 [ 487.230527] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 487.235269] ? find_held_lock+0x36/0x1c0 [ 487.239320] ? lock_downgrade+0x8e0/0x8e0 [ 487.243480] ? kasan_check_read+0x11/0x20 [ 487.247616] ? do_raw_spin_unlock+0x9e/0x2e0 [ 487.252024] ? __lock_is_held+0xb5/0x140 [ 487.256106] ? _raw_spin_unlock+0x22/0x30 [ 487.260242] ? __alloc_fd+0x346/0x700 [ 487.264030] ? usercopy_warn+0x120/0x120 [ 487.268084] do_filp_open+0x249/0x350 [ 487.271880] ? may_open_dev+0x100/0x100 [ 487.275840] ? strncpy_from_user+0x3b6/0x500 [ 487.280237] ? mpi_free.cold.1+0x19/0x19 [ 487.284289] ? get_unused_fd_flags+0x121/0x190 [ 487.288852] ? getname_flags+0xd0/0x5a0 [ 487.292811] ? getname_flags+0x26e/0x5a0 [ 487.296869] do_sys_open+0x56f/0x740 [ 487.300572] ? mm_fault_error+0x314/0x380 [ 487.304706] ? filp_open+0x80/0x80 [ 487.308239] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 487.313073] __x64_sys_open+0x7e/0xc0 [ 487.316862] do_syscall_64+0x1b1/0x800 [ 487.320738] ? syscall_return_slowpath+0x5c0/0x5c0 [ 487.325668] ? syscall_return_slowpath+0x30f/0x5c0 [ 487.330585] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 487.336128] ? retint_user+0x18/0x18 [ 487.339829] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 487.344669] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 487.349842] RIP: 0033:0x40fc61 [ 487.353016] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 487.361219] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 487.368473] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 2018/05/26 12:22:13 executing program 0 (fault-call:2 fault-nth:17): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:22:13 executing program 2: socketpair$inet_sctp(0x2, 0x5, 0x84, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$inet_sctp_SCTP_AUTOCLOSE(r0, 0x84, 0x4, &(0x7f0000000040)=0x3, 0x4) r2 = fcntl$dupfd(r1, 0x0, r0) ioctl$EVIOCGID(r2, 0x80084502, &(0x7f0000000080)=""/246) setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f0000000180)='tls\x00', 0x4) ioctl$GIO_CMAP(r2, 0x4b70, &(0x7f00000001c0)) ioctl$SIOCSIFMTU(r2, 0x8922, &(0x7f0000000200)={'bond_slave_0\x00'}) ioctl$sock_FIOGETOWN(r2, 0x8903, &(0x7f0000000300)=0x0) perf_event_open(&(0x7f0000000280)={0x3, 0x70, 0x7, 0x3f, 0x4, 0x1, 0x0, 0x6, 0x10000, 0xb, 0xffff, 0x1f64, 0x3, 0x1ff, 0x6, 0x80000001, 0x6, 0x8, 0x562, 0x9, 0xfff, 0x8, 0xfffffffffffffffe, 0x6, 0x100000000, 0x1, 0x401, 0x9, 0x1, 0xfc, 0x6, 0x4, 0x0, 0x0, 0x1781, 0x1, 0x7fffffff, 0x5, 0x0, 0x1, 0x0, @perf_bp={&(0x7f0000000240), 0x9}, 0x80, 0x9, 0x8, 0x7, 0x0, 0x5, 0x5}, r3, 0xf, r2, 0xa) r4 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000340)='/dev/cuse\x00', 0x800, 0x0) getsockopt$inet_IP_XFRM_POLICY(r4, 0x0, 0x11, &(0x7f00000003c0)={{{@in=@dev, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@remote}, 0x0, @in6=@dev}}, &(0x7f00000004c0)=0xe8) sendmsg$nl_route(r2, &(0x7f0000000580)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000540)={&(0x7f0000000500)=@ipv6_getaddr={0x40, 0x16, 0x21, 0x70bd29, 0x25dfdbff, {0xa, 0x40, 0x200, 0xff, r5}, [@IFA_LOCAL={0x14, 0x2, @dev={0xfe, 0x80, [], 0x16}}, @IFA_LOCAL={0x14, 0x2, @loopback={0x0, 0x1}}]}, 0x40}, 0x1, 0x0, 0x0, 0x80}, 0xc0) setsockopt$IPT_SO_SET_REPLACE(r2, 0x0, 0x40, &(0x7f0000000640)=@nat={'nat\x00', 0x1b, 0x5, 0x4b8, 0x350, 0x0, 0xffffffff, 0x350, 0x160, 0x420, 0x420, 0xffffffff, 0x420, 0x420, 0x5, &(0x7f00000005c0), {[{{@ip={@multicast1=0xe0000001, @remote={0xac, 0x14, 0x14, 0xbb}, 0xffffff00, 0x0, 'veth1_to_bridge\x00', 'irlan0\x00', {0xff}, {0xff}, 0x62, 0x1, 0x19}, 0x0, 0x100, 0x160, 0x0, {}, [@common=@ttl={0x28, 'ttl\x00'}, @common=@set={0x40, 'set\x00', 0x0, {{0x800, [0x10001, 0x1, 0x1a, 0x8, 0xfffffffffffffffb, 0x2], 0x5, 0x3, 0x7}}}]}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv6=@ipv4={[], [0xff, 0xff], @remote={0xac, 0x14, 0x14, 0xbb}}, [0xff000000, 0x0, 0xffffffff, 0xff], 0x4e20, 0x4e20, 0x4e22, 0x4e24, 0xec, 0x3be7, 0x3, 0x675, 0x7fffffff}}}, {{@ip={@dev={0xac, 0x14, 0x14, 0x20}, @multicast1=0xe0000001, 0xffffffff, 0xffffffff, 'ipddp0\x00', 'ip6tnl0\x00', {0xff}, {0xff}, 0x8d, 0x1, 0x40}, 0x0, 0xe8, 0x120, 0x0, {}, [@common=@icmp={0x28, 'icmp\x00', 0x0, {0xf, 0x7, 0x21d, 0x1}}, @common=@ttl={0x28, 'ttl\x00', 0x0, {0x3, 0x9}}]}, @SNAT0={0x38, 'SNAT\x00', 0x0, {0x1, {0x0, @empty, @local={0xac, 0x14, 0x14, 0xaa}, @port=0x4e22, @icmp_id=0x65}}}}, {{@uncond, 0x0, 0x98, 0xd0}, @REDIRECT={0x38, 'REDIRECT\x00', 0x0, {0x1, {0xf, @dev={0xac, 0x14, 0x14, 0x21}, @loopback=0x7f000001, @gre_key=0x2, @gre_key=0x4}}}}, {{@ip={@local={0xac, 0x14, 0x14, 0xaa}, @local={0xac, 0x14, 0x14, 0xaa}, 0xff000000, 0xff0000ff, 'dummy0\x00', 'veth1_to_bond\x00', {0xff}, {0xff}, 0xfe, 0x0, 0x21}, 0x0, 0x98, 0xd0}, @MASQUERADE={0x38, 'MASQUERADE\x00', 0x0, {0x1, {0x12, @broadcast=0xffffffff, @remote={0xac, 0x14, 0x14, 0xbb}, @port=0x4e22, @port=0x4e21}}}}], {{[], 0x0, 0x70, 0x98}, {0x28, '\x00', 0x0, 0xfffffffffffffffe}}}}, 0x518) setsockopt$inet_int(r2, 0x0, 0x32, &(0x7f0000000b80)=0x7ff, 0x4) ioctl$TIOCSCTTY(r1, 0x540e, 0x2f) ioctl$TIOCNXCL(r4, 0x540d) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f0000000c00)={0x0, 0x1, 0x8, &(0x7f0000000bc0)=0x5}) ioctl$TIOCGETD(r4, 0x5424, &(0x7f0000000c40)) ioctl$sock_inet_SIOCSIFNETMASK(r2, 0x891c, &(0x7f0000000c80)={'eql\x00', {0x2, 0x4e24, @multicast2=0xe0000002}}) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000cc0)={'team_slave_1\x00', r5}) ioctl$sock_inet_udp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000d00)) ioctl$DRM_IOCTL_GEM_OPEN(r2, 0xc010640b, &(0x7f0000000d40)={0x0, 0x0, 0x2}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r2, 0xc00c642e, &(0x7f0000000d80)={0x0, 0x80000, r2}) ioctl$DRM_IOCTL_GEM_OPEN(r4, 0xc010640b, &(0x7f0000000dc0)={r6, r7, 0xa9}) ioctl$TUNSETTXFILTER(r2, 0x400454d1, &(0x7f0000000e00)={0x1, 0x1, [@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0x15}]}) ioctl$EVIOCGKEY(r4, 0x80404518, &(0x7f0000000e40)=""/108) r8 = syz_open_dev$mice(&(0x7f0000000ec0)='/dev/input/mice\x00', 0x0, 0x80) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r1, 0x84, 0x7c, &(0x7f0000000f00)={0x0, 0xffffffff, 0xfff}, &(0x7f0000000f40)=0x8) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r8, 0x84, 0x6d, &(0x7f0000000f80)={r9, 0xa9, "636ddcce0655fce09d95ae5096efd76eae51de4e1d718e10d9c2ca77a6ad7d7133e190cc88edcc684ac70879c79fafd020bafae3be9d213c5a2bb16041e2d54e6c9f04953e6a44e18e649a9941f2f8049f459fffc7ae1a90cccf0d5e8802acae3de5e1672006c697bee66d0e2e0fe4e3efbe971f1c8e5f1e30d4fb037c9d4ca9de70f488b22350caac15ae49b725e7aeaf91d5845f4c6f779350e27be75a304f5920dec90030d904e3"}, &(0x7f0000001040)=0xb1) sendmsg$alg(r4, &(0x7f0000001140)={0x0, 0x0, &(0x7f00000010c0)=[{&(0x7f0000001080)="d69ba9b15ba93c75ab062383d84f1ec852106a5034595a269aa26f1492afeb23e5353fed52d21e116774786054bf9128736e4d592687e0e79938f9", 0x3b}], 0x1, &(0x7f0000001100)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18, 0x4000000}, 0x1) 2018/05/26 12:22:13 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8920, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) [ 487.375727] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 [ 487.382982] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 [ 487.390259] R13: 0000000000000744 R14: 00000000006fef00 R15: 0000000000000010 2018/05/26 12:22:13 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000100, 0x1c000000000]}) 2018/05/26 12:22:13 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x4000000, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:22:13 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f00001fefe4)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) sendto$inet6(0xffffffffffffffff, &(0x7f0000000100), 0xffffffffffffffd6, 0x20000004, &(0x7f000031e000)={0xa, 0x4e22}, 0x1c) r1 = socket$inet(0x10, 0x3, 0x4) sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f000000d000)=[{&(0x7f0000008000)="4c0000001200ff09fffefd956fa283b724a6008000000000000000683540150024001d001fc41180b598bc593ab6821148a730de33a49868c62b2ca654a6613b6aabf35d0f1cbc882b079881", 0x4c}], 0x1}, 0x0) [ 487.732981] FAULT_INJECTION: forcing a failure. [ 487.732981] name failslab, interval 1, probability 0, space 0, times 0 [ 487.744757] CPU: 0 PID: 29175 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 487.752054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 487.761430] Call Trace: [ 487.764037] dump_stack+0x1b9/0x294 [ 487.767692] ? dump_stack_print_info.cold.2+0x52/0x52 [ 487.772886] ? __might_sleep+0x95/0x190 [ 487.776869] should_fail.cold.4+0xa/0x1a [ 487.780939] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 487.786052] ? mutex_trylock+0x2a0/0x2a0 [ 487.790379] ? graph_lock+0x170/0x170 [ 487.794165] ? find_held_lock+0x36/0x1c0 [ 487.798227] ? find_held_lock+0x36/0x1c0 [ 487.802284] ? __lock_is_held+0xb5/0x140 [ 487.806340] ? check_same_owner+0x320/0x320 [ 487.810649] ? print_usage_bug+0xc0/0xc0 [ 487.814706] ? graph_lock+0x170/0x170 [ 487.818502] ? __lock_is_held+0xb5/0x140 [ 487.822560] ? rcu_note_context_switch+0x710/0x710 [ 487.827495] __should_failslab+0x124/0x180 [ 487.831723] should_failslab+0x9/0x14 [ 487.835524] kmem_cache_alloc_node_trace+0x26f/0x770 [ 487.840632] ? mempool_free+0x370/0x370 [ 487.844595] mempool_create_node+0x84/0x610 [ 487.848916] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 487.853921] ? mempool_alloc_slab+0x60/0x60 [ 487.858233] ? mempool_free+0x370/0x370 [ 487.862199] ? mempool_alloc_slab+0x60/0x60 [ 487.866519] mempool_create+0x37/0x40 [ 487.870321] bioset_create+0x477/0x900 [ 487.874208] ? bioset_free+0x320/0x320 [ 487.878095] ? debug_mutex_init+0x1c/0x60 [ 487.882232] blk_alloc_queue_node+0x16e/0xe40 [ 487.886713] ? blk_init_allocated_queue+0x620/0x620 [ 487.891712] ? __mutex_init+0x1ef/0x280 [ 487.895677] ? __ia32_sys_membarrier+0x150/0x150 [ 487.900424] ? blk_mq_alloc_rq_map+0x142/0x220 [ 487.905000] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 487.910536] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 487.915283] ? blk_mq_alloc_tag_set+0x506/0xab0 [ 487.919933] ? idr_alloc+0x145/0x1a0 [ 487.923631] ? blk_mq_update_nr_hw_queues+0x4f0/0x4f0 [ 487.928806] blk_mq_init_queue+0x4b/0xb0 [ 487.932851] loop_add+0x32b/0x9c0 [ 487.936286] ? loop_lookup+0x102/0x220 [ 487.940154] ? loop_queue_rq+0x640/0x640 [ 487.944197] ? module_unload_free+0x5b0/0x5b0 [ 487.948680] loop_probe+0x185/0x1c0 [ 487.952296] ? loop_control_ioctl+0x500/0x500 [ 487.956776] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 487.961951] kobj_lookup+0x269/0x460 [ 487.965665] ? loop_control_ioctl+0x500/0x500 [ 487.970164] get_gendisk+0x4c/0x380 [ 487.973776] __blkdev_get+0x45f/0x13a0 [ 487.977650] ? blkdev_get_block+0xc0/0xc0 [ 487.981785] blkdev_get+0xb9/0xb30 [ 487.985311] ? bdget+0x5c0/0x5c0 [ 487.988662] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 487.993245] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 487.998788] ? errseq_sample+0xe3/0x120 [ 488.002753] ? _copy_to_user+0x110/0x110 [ 488.006802] ? _raw_spin_unlock+0x22/0x30 [ 488.010943] blkdev_open+0x1fb/0x280 [ 488.014645] do_dentry_open+0x7ef/0xf10 [ 488.018604] ? bd_acquire+0x2c0/0x2c0 [ 488.022395] vfs_open+0x139/0x230 [ 488.025853] path_openat+0x1676/0x4e20 [ 488.029736] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 488.034479] ? find_held_lock+0x36/0x1c0 [ 488.038537] ? lock_downgrade+0x8e0/0x8e0 [ 488.042670] ? do_sys_open+0x39a/0x740 [ 488.046542] ? kasan_check_read+0x11/0x20 [ 488.050687] ? do_raw_spin_unlock+0x9e/0x2e0 [ 488.055093] ? __lock_is_held+0xb5/0x140 [ 488.059151] ? _raw_spin_unlock+0x22/0x30 [ 488.063295] ? __alloc_fd+0x346/0x700 [ 488.067097] ? usercopy_warn+0x120/0x120 [ 488.071151] do_filp_open+0x249/0x350 [ 488.074947] ? may_open_dev+0x100/0x100 [ 488.078915] ? strncpy_from_user+0x3b6/0x500 [ 488.083310] ? mpi_free.cold.1+0x19/0x19 [ 488.087360] ? get_unused_fd_flags+0x121/0x190 [ 488.091941] ? getname_flags+0xd0/0x5a0 [ 488.095914] ? getname_flags+0x26e/0x5a0 [ 488.099970] do_sys_open+0x56f/0x740 [ 488.103677] ? mm_fault_error+0x314/0x380 [ 488.107808] ? filp_open+0x80/0x80 [ 488.111337] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 488.116190] __x64_sys_open+0x7e/0xc0 [ 488.119990] do_syscall_64+0x1b1/0x800 [ 488.123867] ? finish_task_switch+0x1ca/0x840 [ 488.128348] ? syscall_return_slowpath+0x5c0/0x5c0 [ 488.133273] ? syscall_return_slowpath+0x30f/0x5c0 [ 488.138222] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 488.143751] ? retint_user+0x18/0x18 [ 488.147456] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 488.152299] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 488.157472] RIP: 0033:0x40fc61 [ 488.160655] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 488.168344] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 488.175596] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 2018/05/26 12:22:13 executing program 7: r0 = memfd_create(&(0x7f0000001fcd)="776c616e302a6d696d655f747970652d7472757374651d0fe17f6c616eee74418a23a825a2747275737465647b5c7b47504c00", 0x0) openat$cgroup_procs(r0, &(0x7f0000000080)='tasks\x00', 0x2, 0x0) mmap(&(0x7f0000004000/0x4000)=nil, 0x4000, 0x2, 0x4011, r0, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x0, 0xffffffffffffffff) writev(r0, &(0x7f0000000000)=[{&(0x7f0000b23000)="82aaabfc6c5b1c7a6718badabd246d62c80270e00d637af19152d09e59a695e5ecb4b013dea5c5ab0458f38fca8bbf1404fe615f1e536e0f35664718", 0x3c}], 0x0) symlink(&(0x7f0000004000)='./file0\x00', &(0x7f0000000340)='./control\x00') r1 = socket(0x2, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") rename(&(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='./control\x00') setsockopt$RDS_CONG_MONITOR(r1, 0x114, 0x6, &(0x7f00000000c0)=0x1, 0x4) 2018/05/26 12:22:13 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x891e, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) [ 488.182854] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 [ 488.190114] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 [ 488.197377] R13: 0000000000000744 R14: 00000000006fef00 R15: 0000000000000011 2018/05/26 12:22:14 executing program 0 (fault-call:2 fault-nth:18): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:22:14 executing program 2: r0 = socket$inet6(0xa, 0x2, 0x0) getsockopt$IP6T_SO_GET_REVISION_TARGET(r0, 0x29, 0x21, &(0x7f0000000000)={'icmp\x00'}, &(0x7f0000000040)=0xfe56) r1 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x5, 0x109001) getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffff9c, 0x84, 0x18, &(0x7f00000001c0)={0x0, 0xf07}, &(0x7f0000000200)=0x8) setsockopt$inet_sctp_SCTP_RESET_STREAMS(r1, 0x84, 0x77, &(0x7f0000000240)={r2, 0x10001, 0x7, [0xe528, 0x2, 0x0, 0x9, 0x2, 0x429, 0x1]}, 0x16) fsetxattr(r0, &(0x7f0000000080)=@known='system.sockprotoname\x00', &(0x7f00000000c0)='icmp\x00', 0x5, 0x2) r3 = syz_open_dev$sndpcmp(&(0x7f0000000100)='/dev/snd/pcmC#D#p\x00', 0xfffffffffffffff7, 0x40) setsockopt$inet_sctp_SCTP_EVENTS(r3, 0x84, 0xb, &(0x7f0000000140)={0xd7, 0x0, 0x40, 0x1759, 0x2, 0x4, 0x0, 0x4, 0x8, 0x200, 0x4}, 0xb) 2018/05/26 12:22:14 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000100, 0x7b01000000000000]}) 2018/05/26 12:22:14 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x0, 0xf, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:22:14 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f00001fefe4)={0xa, 0x4e22}, 0x1c) listen(r0, 0x1) sendto$inet6(0xffffffffffffffff, &(0x7f0000000100), 0xffffffffffffffd6, 0x20000004, &(0x7f000031e000)={0xa, 0x4e22}, 0x1c) r1 = socket$inet(0x10, 0x3, 0x4) sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f000000d000)=[{&(0x7f0000008000)="4c0000001200ff09fffefd956fa283b724a6008000000000000000683540150024001d001fc41180b598bc593ab6821148a730de33a49868c62b2ca654a6613b6aabf35d0f1cbc882b079881", 0x4c}], 0x1}, 0x0) 2018/05/26 12:22:14 executing program 3: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000d28000)={0xaa}) r1 = epoll_create1(0x0) r2 = socket(0xa, 0x1, 0x0) ioctl(r2, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") fcntl$setlease(r2, 0x400, 0x2) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) r3 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r3, 0xc0145401, &(0x7f0000013000)) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r3, 0x54a3) readv(r3, &(0x7f000042bff8)=[{&(0x7f0000e3b000)=""/61, 0x3d}], 0x1) dup3(r1, r0, 0x0) 2018/05/26 12:22:14 executing program 7: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000100)={0x26, 'hash\x00', 0x0, 0x0, 'hmac(md5-generic)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380)="b8493bd609070000221c3e63f9ecc652273b1e309c501cb8232568b139b57569c97b518bf47d664655a8f5a7a2796b23260e24aeccc99ff5cbd57beaf7f17e1926", 0x41) r1 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x3, 0x4040) ioctl$sock_netrom_TIOCINQ(r1, 0x541b, &(0x7f0000000040)) 2018/05/26 12:22:14 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8918, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) [ 488.679930] FAULT_INJECTION: forcing a failure. [ 488.679930] name failslab, interval 1, probability 0, space 0, times 0 [ 488.691247] CPU: 1 PID: 29210 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 488.698526] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 488.707869] Call Trace: [ 488.710451] dump_stack+0x1b9/0x294 [ 488.714070] ? dump_stack_print_info.cold.2+0x52/0x52 [ 488.719249] ? perf_trace_lock_acquire+0xe3/0x980 [ 488.724075] ? is_bpf_text_address+0xd7/0x170 [ 488.728556] ? kernel_text_address+0x79/0xf0 [ 488.732953] should_fail.cold.4+0xa/0x1a [ 488.737002] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 488.742101] ? graph_lock+0x170/0x170 [ 488.745889] ? save_stack+0xa9/0xd0 [ 488.749506] ? kasan_kmalloc+0xc4/0xe0 [ 488.753378] ? find_held_lock+0x36/0x1c0 [ 488.757430] ? __lock_is_held+0xb5/0x140 [ 488.761497] ? check_same_owner+0x320/0x320 [ 488.765813] ? rcu_note_context_switch+0x710/0x710 [ 488.770729] ? __lockdep_init_map+0x105/0x590 [ 488.775210] __should_failslab+0x124/0x180 [ 488.779430] ? mempool_free+0x370/0x370 [ 488.783389] should_failslab+0x9/0x14 [ 488.787179] kmem_cache_alloc+0x2af/0x760 [ 488.791315] ? init_wait_entry+0x1b0/0x1b0 [ 488.795541] ? mempool_free+0x370/0x370 [ 488.799507] mempool_alloc_slab+0x44/0x60 [ 488.803653] mempool_create_node+0x2cf/0x610 [ 488.808051] ? mempool_free+0x370/0x370 [ 488.812012] ? mempool_alloc_slab+0x60/0x60 [ 488.816324] mempool_create+0x37/0x40 [ 488.820114] bioset_create+0x477/0x900 [ 488.823994] ? bioset_free+0x320/0x320 [ 488.827873] ? debug_mutex_init+0x1c/0x60 [ 488.832012] blk_alloc_queue_node+0x16e/0xe40 [ 488.836502] ? blk_init_allocated_queue+0x620/0x620 [ 488.841505] ? __mutex_init+0x1ef/0x280 [ 488.845464] ? __ia32_sys_membarrier+0x150/0x150 [ 488.850245] ? blk_mq_alloc_rq_map+0x142/0x220 [ 488.854816] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 488.860344] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 488.865089] ? blk_mq_alloc_tag_set+0x506/0xab0 [ 488.869750] ? idr_alloc+0x145/0x1a0 [ 488.873460] ? blk_mq_update_nr_hw_queues+0x4f0/0x4f0 [ 488.878641] blk_mq_init_queue+0x4b/0xb0 [ 488.882689] loop_add+0x32b/0x9c0 [ 488.886128] ? loop_lookup+0x102/0x220 [ 488.890004] ? loop_queue_rq+0x640/0x640 [ 488.894065] loop_probe+0x185/0x1c0 [ 488.897674] ? loop_control_ioctl+0x500/0x500 [ 488.902155] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 488.907342] kobj_lookup+0x269/0x460 [ 488.911048] ? loop_control_ioctl+0x500/0x500 [ 488.915533] get_gendisk+0x4c/0x380 [ 488.919147] __blkdev_get+0x45f/0x13a0 [ 488.923037] ? blkdev_get_block+0xc0/0xc0 [ 488.927176] blkdev_get+0xb9/0xb30 [ 488.930704] ? bdget+0x5c0/0x5c0 [ 488.934059] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 488.938632] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 488.944163] ? errseq_sample+0xe3/0x120 [ 488.948121] ? _copy_to_user+0x110/0x110 [ 488.952181] ? _raw_spin_unlock+0x22/0x30 [ 488.956318] blkdev_open+0x1fb/0x280 [ 488.960028] do_dentry_open+0x7ef/0xf10 [ 488.963987] ? bd_acquire+0x2c0/0x2c0 [ 488.967781] vfs_open+0x139/0x230 [ 488.971224] path_openat+0x1676/0x4e20 [ 488.975115] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 488.979860] ? find_held_lock+0x36/0x1c0 [ 488.983911] ? lock_downgrade+0x8e0/0x8e0 [ 488.988051] ? kasan_check_read+0x11/0x20 [ 488.992194] ? do_raw_spin_unlock+0x9e/0x2e0 [ 488.996587] ? __lock_is_held+0xb5/0x140 [ 489.000639] ? _raw_spin_unlock+0x22/0x30 [ 489.004783] ? __alloc_fd+0x346/0x700 [ 489.008571] ? usercopy_warn+0x120/0x120 [ 489.012624] do_filp_open+0x249/0x350 [ 489.016409] ? may_open_dev+0x100/0x100 [ 489.020369] ? strncpy_from_user+0x3b6/0x500 [ 489.024768] ? mpi_free.cold.1+0x19/0x19 [ 489.029424] ? get_unused_fd_flags+0x121/0x190 [ 489.033993] ? getname_flags+0xd0/0x5a0 [ 489.037958] ? getname_flags+0x26e/0x5a0 [ 489.042012] do_sys_open+0x56f/0x740 [ 489.045717] ? mm_fault_error+0x314/0x380 [ 489.049849] ? filp_open+0x80/0x80 [ 489.053383] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 489.058913] __x64_sys_open+0x7e/0xc0 [ 489.062705] do_syscall_64+0x1b1/0x800 [ 489.066580] ? finish_task_switch+0x1ca/0x840 [ 489.071064] ? syscall_return_slowpath+0x5c0/0x5c0 [ 489.075980] ? syscall_return_slowpath+0x30f/0x5c0 [ 489.080900] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 489.086422] ? retint_user+0x18/0x18 [ 489.090123] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 489.094958] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 489.100140] RIP: 0033:0x40fc61 [ 489.103317] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 489.111017] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 489.118276] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 2018/05/26 12:22:14 executing program 2: recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000000)=@pppol2tpin6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @local}}}, 0x80, &(0x7f0000000180), 0x0, &(0x7f00000001c0)=""/47, 0x2f, 0x3d}, 0x40) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f0000000240)={0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}, &(0x7f0000000280)=0x18) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f0000000080)={@in={{0x2, 0x0, @dev={0xac, 0x14, 0x14}}}, 0x0, 0x6, 0x0, "b6f73b6e690dfa12c023fe736a343f8b70bbfadd0b2b7917794acb5f197a68d966aa0b5a5f41ca2b6204d8bac209c26d4b213ba809a1c6e983a2b18c3657b1710a93895ee1e98fb8566092d73d71d352"}, 0xd8) setsockopt$inet_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f00000014c0)={@in={{0x2, 0x0, @dev={0xac, 0x14, 0x14}}}, 0x0, 0x4b, 0x0, "4ae9645a4bdbefd0187f1e35cba955127c7ca8b982f7408054208a36ee7b341bc01b6d8d52e8ee57c61ec7f041e965466b7a2d4cec6a16d568c9683cac6791e3bef5d31b03d40e4f5f68137e44379c3b"}, 0xd8) 2018/05/26 12:22:14 executing program 0 (fault-call:2 fault-nth:19): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) [ 489.125538] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 [ 489.132792] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 [ 489.140045] R13: 0000000000000744 R14: 00000000006fef00 R15: 0000000000000012 2018/05/26 12:22:15 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000100, 0x2a00]}) 2018/05/26 12:22:15 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8947, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:22:15 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f00001fefe4)={0xa, 0x4e22}, 0x1c) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(r1, &(0x7f0000000100), 0xffffffffffffffd6, 0x20000004, &(0x7f000031e000)={0xa, 0x4e22}, 0x1c) r2 = socket$inet(0x10, 0x3, 0x4) sendmsg(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f000000d000)=[{&(0x7f0000008000)="4c0000001200ff09fffefd956fa283b724a6008000000000000000683540150024001d001fc41180b598bc593ab6821148a730de33a49868c62b2ca654a6613b6aabf35d0f1cbc882b079881", 0x4c}], 0x1}, 0x0) 2018/05/26 12:22:15 executing program 7: r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)={0xb, 0x7e, 0x6, 0x1, 0x1}, 0x2c) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={0xffffffffffffff9c, 0x3, 0x1, 0x6, &(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0], 0x4}, 0x20) getdents64(r1, &(0x7f0000000140)=""/121, 0x79) mount(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000000)='./file0\x00', &(0x7f00000001c0)='bpf\x00', 0x0, &(0x7f0000000040)) gettid() bpf$OBJ_PIN_MAP(0x6, &(0x7f00000004c0)={&(0x7f0000000280)='./file0/file0\x00', r0}, 0x10) mount(&(0x7f0000000080)='./file0/file0\x00', &(0x7f0000000240)='./file0/file0\x00', &(0x7f0000000300)='rpc_pipefs\x00', 0x0, &(0x7f0000000340)) 2018/05/26 12:22:15 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x0, 0xfffffffe, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') [ 489.441263] FAULT_INJECTION: forcing a failure. [ 489.441263] name failslab, interval 1, probability 0, space 0, times 0 [ 489.452613] CPU: 0 PID: 29238 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 489.459884] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 489.469224] Call Trace: [ 489.471808] dump_stack+0x1b9/0x294 [ 489.475434] ? dump_stack_print_info.cold.2+0x52/0x52 [ 489.480617] ? __save_stack_trace+0x7e/0xd0 [ 489.484941] should_fail.cold.4+0xa/0x1a [ 489.488998] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 489.494095] ? kasan_kmalloc+0xc4/0xe0 [ 489.497972] ? kasan_slab_alloc+0x12/0x20 [ 489.502110] ? kmem_cache_alloc+0x12e/0x760 [ 489.506432] ? mempool_alloc_slab+0x44/0x60 [ 489.510749] ? mempool_create_node+0x2cf/0x610 [ 489.515320] ? mempool_create+0x37/0x40 [ 489.519278] ? bioset_create+0x477/0x900 [ 489.523327] ? graph_lock+0x170/0x170 [ 489.527112] ? kobj_lookup+0x269/0x460 [ 489.530985] ? get_gendisk+0x4c/0x380 [ 489.534776] ? __blkdev_get+0x45f/0x13a0 [ 489.538825] ? blkdev_get+0xb9/0xb30 [ 489.542521] ? blkdev_open+0x1fb/0x280 [ 489.546397] ? do_dentry_open+0x7ef/0xf10 [ 489.550549] ? find_held_lock+0x36/0x1c0 [ 489.554600] ? __lock_is_held+0xb5/0x140 [ 489.558658] ? check_same_owner+0x320/0x320 [ 489.562981] ? rcu_note_context_switch+0x710/0x710 [ 489.567910] __should_failslab+0x124/0x180 [ 489.572171] ? mempool_free+0x370/0x370 [ 489.576139] should_failslab+0x9/0x14 [ 489.579937] kmem_cache_alloc+0x2af/0x760 [ 489.584085] ? init_wait_entry+0x1b0/0x1b0 [ 489.588315] ? mempool_alloc_slab+0x44/0x60 [ 489.592624] ? mempool_free+0x370/0x370 [ 489.596591] mempool_alloc_slab+0x44/0x60 [ 489.600727] mempool_create_node+0x2cf/0x610 [ 489.605127] ? mempool_free+0x370/0x370 [ 489.609089] ? mempool_alloc_slab+0x60/0x60 [ 489.613410] mempool_create+0x37/0x40 [ 489.617203] bioset_create+0x477/0x900 [ 489.621089] ? bioset_free+0x320/0x320 [ 489.624966] ? debug_mutex_init+0x1c/0x60 [ 489.629102] blk_alloc_queue_node+0x16e/0xe40 [ 489.633596] ? blk_init_allocated_queue+0x620/0x620 [ 489.638601] ? __mutex_init+0x1ef/0x280 [ 489.642566] ? __ia32_sys_membarrier+0x150/0x150 [ 489.647318] ? blk_mq_alloc_rq_map+0x142/0x220 [ 489.651898] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 489.657436] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 489.662182] ? blk_mq_alloc_tag_set+0x506/0xab0 [ 489.666850] ? idr_alloc+0x145/0x1a0 [ 489.670566] ? blk_mq_update_nr_hw_queues+0x4f0/0x4f0 [ 489.675745] blk_mq_init_queue+0x4b/0xb0 [ 489.679798] loop_add+0x32b/0x9c0 [ 489.683235] ? loop_lookup+0x102/0x220 [ 489.687113] ? loop_queue_rq+0x640/0x640 [ 489.691166] ? module_unload_free+0x5b0/0x5b0 [ 489.695651] loop_probe+0x185/0x1c0 [ 489.699280] ? loop_control_ioctl+0x500/0x500 [ 489.703768] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 489.708964] kobj_lookup+0x269/0x460 [ 489.712670] ? loop_control_ioctl+0x500/0x500 [ 489.717151] get_gendisk+0x4c/0x380 [ 489.720766] __blkdev_get+0x45f/0x13a0 [ 489.724645] ? blkdev_get_block+0xc0/0xc0 [ 489.728783] blkdev_get+0xb9/0xb30 [ 489.732313] ? bdget+0x5c0/0x5c0 [ 489.735666] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 489.740237] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 489.745760] ? errseq_sample+0xe3/0x120 [ 489.749736] ? _copy_to_user+0x110/0x110 [ 489.753796] ? _raw_spin_unlock+0x22/0x30 [ 489.757939] blkdev_open+0x1fb/0x280 [ 489.761640] do_dentry_open+0x7ef/0xf10 [ 489.765601] ? bd_acquire+0x2c0/0x2c0 [ 489.769388] vfs_open+0x139/0x230 [ 489.772833] path_openat+0x1676/0x4e20 [ 489.776716] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 489.781458] ? find_held_lock+0x36/0x1c0 [ 489.785509] ? lock_downgrade+0x8e0/0x8e0 [ 489.789643] ? do_sys_open+0x39a/0x740 [ 489.793523] ? kasan_check_read+0x11/0x20 [ 489.797655] ? do_raw_spin_unlock+0x9e/0x2e0 [ 489.802049] ? __lock_is_held+0xb5/0x140 [ 489.806101] ? _raw_spin_unlock+0x22/0x30 [ 489.810245] ? __alloc_fd+0x346/0x700 [ 489.814033] ? usercopy_warn+0x120/0x120 [ 489.818088] do_filp_open+0x249/0x350 [ 489.821878] ? may_open_dev+0x100/0x100 [ 489.825850] ? strncpy_from_user+0x3b6/0x500 [ 489.830247] ? mpi_free.cold.1+0x19/0x19 [ 489.834295] ? get_unused_fd_flags+0x121/0x190 [ 489.838869] ? getname_flags+0xd0/0x5a0 [ 489.842838] ? getname_flags+0x26e/0x5a0 [ 489.846888] do_sys_open+0x56f/0x740 [ 489.850598] ? mm_fault_error+0x314/0x380 [ 489.854732] ? filp_open+0x80/0x80 [ 489.858264] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 489.863107] __x64_sys_open+0x7e/0xc0 [ 489.866898] do_syscall_64+0x1b1/0x800 [ 489.870774] ? finish_task_switch+0x1ca/0x840 [ 489.875256] ? syscall_return_slowpath+0x5c0/0x5c0 [ 489.880169] ? syscall_return_slowpath+0x30f/0x5c0 [ 489.885091] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 489.890614] ? retint_user+0x18/0x18 [ 489.894325] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 489.899157] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 489.904330] RIP: 0033:0x40fc61 [ 489.907505] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 489.915198] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 489.922452] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 [ 489.929707] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 [ 489.936961] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 [ 489.944213] R13: 0000000000000744 R14: 00000000006fef00 R15: 0000000000000013 2018/05/26 12:22:16 executing program 2: r0 = gettid() rt_sigprocmask(0x0, &(0x7f0000037ff8)={0xfffffffffffffffe}, 0x0, 0x8) alarm(0x3) timer_create(0x7, &(0x7f0000000000)={0x0, 0x3b, 0x0, @tid=r0}, &(0x7f0000000040)) rt_sigtimedwait(&(0x7f0000000180)={0xfffffffffffff6b1}, &(0x7f00000001c0), &(0x7f0000000080)={0x0, 0x1c9c380}, 0xfffffffffffffe06) rt_sigqueueinfo(r0, 0xe, &(0x7f00000000c0)={0x0, 0x0, 0xfffffffffffffffe}) 2018/05/26 12:22:16 executing program 1: socket$inet6_tcp(0xa, 0x1, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(r0, &(0x7f0000000100), 0xffffffffffffffd6, 0x20000004, &(0x7f000031e000)={0xa, 0x4e22}, 0x1c) r1 = socket$inet(0x10, 0x3, 0x4) sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f000000d000)=[{&(0x7f0000008000)="4c0000001200ff09fffefd956fa283b724a6008000000000000000683540150024001d001fc41180b598bc593ab6821148a730de33a49868c62b2ca654a6613b6aabf35d0f1cbc882b079881", 0x4c}], 0x1}, 0x0) 2018/05/26 12:22:16 executing program 0 (fault-call:2 fault-nth:20): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:22:16 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000100, 0x820000c0]}) 2018/05/26 12:22:16 executing program 3: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000d28000)={0xaa}) r1 = epoll_create1(0x0) r2 = socket(0xa, 0x1, 0x0) ioctl(r2, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) r3 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0) finit_module(r3, &(0x7f0000000080)='{\x00', 0x1) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r3, 0xc0145401, &(0x7f0000013000)) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r3, 0x54a3) readv(r3, &(0x7f000042bff8)=[{&(0x7f0000e3b000)=""/61, 0x3d}], 0x1) poll(&(0x7f0000000040)=[{r1, 0x1030}], 0x1, 0x7f) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000000)=0x5) dup3(r1, r0, 0x0) 2018/05/26 12:22:16 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x0, 0xd00000000000000, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:22:16 executing program 7: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000023c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'ctr(aes-generic)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000ff8000)="0a0775b005e381e5b3b60ced5c54dbb7", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000002380)={0x0, 0x0, &(0x7f0000002300)=[{&(0x7f0000000180)="83f642149bd536d73d51244701d68bc4c2", 0x11}], 0x1, &(0x7f0000000100)}, 0x0) recvmsg(r1, &(0x7f0000000000)={&(0x7f0000f7ffa8)=@alg, 0x80, &(0x7f0000000140)=[{&(0x7f0000000200)=""/4096, 0x329}], 0x1, &(0x7f0000fb3fa9)=""/87, 0x57}, 0x0) r2 = syz_open_dev$amidi(&(0x7f0000000040)='/dev/amidi#\x00', 0x800, 0x400000) setsockopt$inet6_udp_encap(r2, 0x11, 0x64, &(0x7f0000000080)=0x3, 0x4) 2018/05/26 12:22:16 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0xc0045878, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:22:16 executing program 2: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = socket$vsock_stream(0x28, 0x1, 0x0) connect$vsock_stream(r1, &(0x7f0000000080)={0x28, 0x0, 0x0, @my}, 0x10) getsockopt$nfc_llcp(r0, 0x118, 0x3, &(0x7f0000000140)=""/125, 0x7d) r2 = syz_open_dev$dmmidi(&(0x7f0000000000)='/dev/dmmidi#\x00', 0x8b29, 0x4cee09fee7c42f18) ioctl$DRM_IOCTL_GET_MAGIC(r2, 0x80046402, &(0x7f00000001c0)=0x8e0) listen(r1, 0x0) ppoll(&(0x7f0000000040)=[{r1}], 0x1, &(0x7f00000000c0)={0x0, 0x1c9c380}, &(0x7f0000000100), 0x8) [ 491.141536] FAULT_INJECTION: forcing a failure. [ 491.141536] name failslab, interval 1, probability 0, space 0, times 0 [ 491.153057] CPU: 0 PID: 29282 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 491.160349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 491.169716] Call Trace: [ 491.172320] dump_stack+0x1b9/0x294 [ 491.175959] ? dump_stack_print_info.cold.2+0x52/0x52 [ 491.181159] ? perf_trace_lock_acquire+0xe3/0x980 [ 491.186021] ? __kernel_text_address+0xd/0x40 [ 491.190537] ? unwind_get_return_address+0x61/0xa0 [ 491.195481] should_fail.cold.4+0xa/0x1a [ 491.199557] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 491.204682] ? save_stack+0xa9/0xd0 [ 491.208321] ? graph_lock+0x170/0x170 [ 491.212115] ? mempool_create+0x37/0x40 [ 491.216077] ? bioset_create+0x6b3/0x900 [ 491.220123] ? blk_alloc_queue_node+0x16e/0xe40 [ 491.224776] ? blk_mq_init_queue+0x4b/0xb0 [ 491.228999] ? loop_probe+0x185/0x1c0 [ 491.232815] ? find_held_lock+0x36/0x1c0 [ 491.236867] ? __lock_is_held+0xb5/0x140 [ 491.240917] ? path_parent_directory+0x1c0/0x220 [ 491.245667] ? check_same_owner+0x320/0x320 [ 491.250081] ? rcu_note_context_switch+0x710/0x710 [ 491.255005] __should_failslab+0x124/0x180 [ 491.259251] should_failslab+0x9/0x14 [ 491.263046] kmem_cache_alloc_node_trace+0x26f/0x770 [ 491.268138] ? rcu_read_lock_sched_held+0x108/0x120 [ 491.273142] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 491.278408] ? init_wait_entry+0x1b0/0x1b0 [ 491.282640] __kmalloc_node+0x33/0x70 [ 491.286430] ? mempool_free+0x370/0x370 [ 491.290399] mempool_create_node+0x111/0x610 [ 491.294805] ? mempool_alloc_slab+0x60/0x60 [ 491.299125] ? mempool_free+0x370/0x370 [ 491.303084] ? mempool_alloc_slab+0x60/0x60 [ 491.307394] mempool_create+0x37/0x40 [ 491.311184] bioset_create+0x6b3/0x900 [ 491.315061] ? bioset_free+0x320/0x320 [ 491.318936] ? debug_mutex_init+0x1c/0x60 [ 491.323081] blk_alloc_queue_node+0x16e/0xe40 [ 491.327562] ? blk_init_allocated_queue+0x620/0x620 [ 491.332562] ? __mutex_init+0x1ef/0x280 [ 491.336522] ? __ia32_sys_membarrier+0x150/0x150 [ 491.341272] ? blk_mq_alloc_rq_map+0x142/0x220 [ 491.345847] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 491.351368] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 491.356113] ? blk_mq_alloc_tag_set+0x506/0xab0 [ 491.361364] ? idr_alloc+0x145/0x1a0 [ 491.365074] ? blk_mq_update_nr_hw_queues+0x4f0/0x4f0 [ 491.370271] blk_mq_init_queue+0x4b/0xb0 [ 491.374322] loop_add+0x32b/0x9c0 [ 491.377761] ? loop_lookup+0x102/0x220 [ 491.381634] ? loop_queue_rq+0x640/0x640 [ 491.385681] ? module_unload_free+0x5b0/0x5b0 [ 491.390172] loop_probe+0x185/0x1c0 [ 491.393785] ? loop_control_ioctl+0x500/0x500 [ 491.398270] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 491.403453] kobj_lookup+0x269/0x460 [ 491.407160] ? loop_control_ioctl+0x500/0x500 [ 491.411645] get_gendisk+0x4c/0x380 [ 491.415260] __blkdev_get+0x45f/0x13a0 [ 491.419142] ? blkdev_get_block+0xc0/0xc0 [ 491.423284] blkdev_get+0xb9/0xb30 [ 491.426817] ? bdget+0x5c0/0x5c0 [ 491.430172] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 491.434752] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 491.440281] ? errseq_sample+0xe3/0x120 [ 491.444243] ? _copy_to_user+0x110/0x110 [ 491.448291] ? _raw_spin_unlock+0x22/0x30 [ 491.452427] blkdev_open+0x1fb/0x280 [ 491.456137] do_dentry_open+0x7ef/0xf10 [ 491.460095] ? bd_acquire+0x2c0/0x2c0 [ 491.463886] vfs_open+0x139/0x230 [ 491.467326] path_openat+0x1676/0x4e20 [ 491.471211] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 491.476043] ? find_held_lock+0x36/0x1c0 [ 491.480104] ? lock_downgrade+0x8e0/0x8e0 [ 491.484241] ? kasan_check_read+0x11/0x20 [ 491.488378] ? do_raw_spin_unlock+0x9e/0x2e0 [ 491.492776] ? __lock_is_held+0xb5/0x140 [ 491.496827] ? _raw_spin_unlock+0x22/0x30 [ 491.500963] ? __alloc_fd+0x346/0x700 [ 491.504933] ? usercopy_warn+0x120/0x120 [ 491.508987] do_filp_open+0x249/0x350 [ 491.512779] ? may_open_dev+0x100/0x100 [ 491.516741] ? strncpy_from_user+0x3b6/0x500 [ 491.521141] ? mpi_free.cold.1+0x19/0x19 [ 491.525189] ? get_unused_fd_flags+0x121/0x190 [ 491.529770] ? getname_flags+0xd0/0x5a0 [ 491.533731] ? getname_flags+0x26e/0x5a0 [ 491.537787] do_sys_open+0x56f/0x740 [ 491.541491] ? mm_fault_error+0x314/0x380 [ 491.545631] ? filp_open+0x80/0x80 [ 491.549160] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 491.554691] __x64_sys_open+0x7e/0xc0 [ 491.558478] do_syscall_64+0x1b1/0x800 [ 491.562349] ? finish_task_switch+0x1ca/0x840 [ 491.566830] ? syscall_return_slowpath+0x5c0/0x5c0 [ 491.571747] ? syscall_return_slowpath+0x30f/0x5c0 [ 491.576675] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 491.582197] ? retint_user+0x18/0x18 [ 491.585899] ? trace_hardirqs_off_thunk+0x1a/0x1c 2018/05/26 12:22:17 executing program 7: r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") setsockopt$sock_attach_bpf(r0, 0x1, 0xc, &(0x7f0000000140), 0x4) r1 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x7fff, 0x402900) ioctl$sock_kcm_SIOCKCMUNATTACH(r1, 0x89e1, &(0x7f0000000080)={r0}) ioctl$KVM_GET_MP_STATE(r1, 0x8004ae98, &(0x7f0000000040)) 2018/05/26 12:22:17 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0xc020660b, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:22:17 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000100, 0x34000000]}) 2018/05/26 12:22:17 executing program 0 (fault-call:2 fault-nth:21): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) [ 491.590729] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 491.595901] RIP: 0033:0x40fc61 [ 491.599074] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 491.606860] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 491.614113] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 [ 491.621366] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 [ 491.628619] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 [ 491.635872] R13: 0000000000000744 R14: 00000000006fef00 R15: 0000000000000014 2018/05/26 12:22:17 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x0, 0x8040000, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') [ 492.001517] FAULT_INJECTION: forcing a failure. [ 492.001517] name failslab, interval 1, probability 0, space 0, times 0 [ 492.012909] CPU: 1 PID: 29309 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 492.020191] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 492.029553] Call Trace: [ 492.032137] dump_stack+0x1b9/0x294 [ 492.035752] ? dump_stack_print_info.cold.2+0x52/0x52 [ 492.040932] ? perf_trace_lock_acquire+0xe3/0x980 [ 492.045759] ? __kernel_text_address+0xd/0x40 [ 492.050265] ? unwind_get_return_address+0x61/0xa0 [ 492.055186] should_fail.cold.4+0xa/0x1a [ 492.059238] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 492.064333] ? save_stack+0xa9/0xd0 [ 492.067950] ? graph_lock+0x170/0x170 [ 492.071741] ? mempool_create+0x37/0x40 [ 492.075702] ? bioset_create+0x6b3/0x900 [ 492.079746] ? blk_alloc_queue_node+0x16e/0xe40 [ 492.084400] ? blk_mq_init_queue+0x4b/0xb0 [ 492.088635] ? loop_probe+0x185/0x1c0 [ 492.092426] ? find_held_lock+0x36/0x1c0 [ 492.096475] ? __lock_is_held+0xb5/0x140 [ 492.100533] ? check_same_owner+0x320/0x320 [ 492.104842] ? rcu_note_context_switch+0x710/0x710 [ 492.109759] __should_failslab+0x124/0x180 [ 492.113990] should_failslab+0x9/0x14 [ 492.117785] kmem_cache_alloc_node_trace+0x26f/0x770 [ 492.122876] ? rcu_read_lock_sched_held+0x108/0x120 [ 492.127878] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 492.133144] ? init_wait_entry+0x1b0/0x1b0 [ 492.137367] __kmalloc_node+0x33/0x70 [ 492.141157] ? mempool_free+0x370/0x370 [ 492.145125] mempool_create_node+0x111/0x610 [ 492.149522] ? mempool_alloc_slab+0x60/0x60 [ 492.153838] ? mempool_free+0x370/0x370 [ 492.157795] ? mempool_alloc_slab+0x60/0x60 [ 492.162105] mempool_create+0x37/0x40 [ 492.165896] bioset_create+0x6b3/0x900 [ 492.169772] ? bioset_free+0x320/0x320 [ 492.173648] ? debug_mutex_init+0x1c/0x60 [ 492.177786] blk_alloc_queue_node+0x16e/0xe40 [ 492.182267] ? blk_init_allocated_queue+0x620/0x620 [ 492.187266] ? __mutex_init+0x1ef/0x280 [ 492.191995] ? __ia32_sys_membarrier+0x150/0x150 [ 492.196767] ? blk_mq_alloc_rq_map+0x142/0x220 [ 492.201345] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 492.206869] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 492.211614] ? blk_mq_alloc_tag_set+0x506/0xab0 [ 492.216270] ? idr_alloc+0x145/0x1a0 [ 492.219970] ? blk_mq_update_nr_hw_queues+0x4f0/0x4f0 [ 492.225148] blk_mq_init_queue+0x4b/0xb0 [ 492.229198] loop_add+0x32b/0x9c0 [ 492.232639] ? loop_lookup+0x102/0x220 [ 492.236519] ? loop_queue_rq+0x640/0x640 [ 492.240568] ? module_unload_free+0x5b0/0x5b0 [ 492.245053] loop_probe+0x185/0x1c0 [ 492.248663] ? loop_control_ioctl+0x500/0x500 [ 492.253147] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 492.258413] kobj_lookup+0x269/0x460 [ 492.262114] ? loop_control_ioctl+0x500/0x500 [ 492.266595] get_gendisk+0x4c/0x380 [ 492.270212] __blkdev_get+0x45f/0x13a0 [ 492.274092] ? blkdev_get_block+0xc0/0xc0 [ 492.278233] blkdev_get+0xb9/0xb30 [ 492.281761] ? bdget+0x5c0/0x5c0 [ 492.285118] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 492.289692] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 492.295220] ? errseq_sample+0xe3/0x120 [ 492.299178] ? _copy_to_user+0x110/0x110 [ 492.303229] ? _raw_spin_unlock+0x22/0x30 [ 492.307365] blkdev_open+0x1fb/0x280 [ 492.311077] do_dentry_open+0x7ef/0xf10 [ 492.315040] ? bd_acquire+0x2c0/0x2c0 [ 492.318832] vfs_open+0x139/0x230 [ 492.322426] path_openat+0x1676/0x4e20 [ 492.326309] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 492.331052] ? find_held_lock+0x36/0x1c0 [ 492.335104] ? lock_downgrade+0x8e0/0x8e0 [ 492.339243] ? kasan_check_read+0x11/0x20 [ 492.343376] ? do_raw_spin_unlock+0x9e/0x2e0 [ 492.347769] ? __lock_is_held+0xb5/0x140 [ 492.351822] ? _raw_spin_unlock+0x22/0x30 [ 492.355965] ? __alloc_fd+0x346/0x700 [ 492.359750] ? usercopy_warn+0x120/0x120 [ 492.363813] do_filp_open+0x249/0x350 [ 492.367599] ? may_open_dev+0x100/0x100 [ 492.371560] ? strncpy_from_user+0x3b6/0x500 [ 492.375957] ? mpi_free.cold.1+0x19/0x19 [ 492.380008] ? get_unused_fd_flags+0x121/0x190 [ 492.384576] ? getname_flags+0xd0/0x5a0 [ 492.388537] ? getname_flags+0x26e/0x5a0 [ 492.392588] do_sys_open+0x56f/0x740 [ 492.396290] ? mm_fault_error+0x314/0x380 [ 492.400435] ? filp_open+0x80/0x80 [ 492.403963] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 492.408795] __x64_sys_open+0x7e/0xc0 [ 492.412581] do_syscall_64+0x1b1/0x800 [ 492.416453] ? syscall_return_slowpath+0x5c0/0x5c0 [ 492.421368] ? syscall_return_slowpath+0x30f/0x5c0 [ 492.426287] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 492.431817] ? retint_user+0x18/0x18 [ 492.435519] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 492.440351] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 492.445527] RIP: 0033:0x40fc61 [ 492.448699] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 492.456392] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 492.463648] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 [ 492.470900] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 [ 492.478154] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 [ 492.485407] R13: 0000000000000744 R14: 00000000006fef00 R15: 0000000000000015 2018/05/26 12:22:18 executing program 7: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$dmmidi(&(0x7f0000000040)='/dev/dmmidi#\x00', 0x0, 0x800) getsockopt$inet_sctp_SCTP_NODELAY(r0, 0x84, 0x3, &(0x7f0000000080), &(0x7f00000000c0)=0x4) r1 = getpid() perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r1, 0x0, 0xffffffffffffffff, 0x0) 2018/05/26 12:22:18 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000100, 0xe006]}) 2018/05/26 12:22:18 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x891b, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:22:18 executing program 3: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000d28000)={0xaa}) pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$GIO_UNIMAP(r2, 0x4b66, &(0x7f0000000100)={0x4, &(0x7f00000000c0)=[{}, {}, {}, {}]}) r3 = epoll_create1(0x80000) r4 = socket(0xa, 0x1, 0x0) ioctl(r4, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r2, 0x54a3) r5 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r5, 0xc0145401, &(0x7f0000013000)={0x0, 0x0, 0x100000000000, 0x800000000004}) setsockopt$netrom_NETROM_T1(r1, 0x103, 0x1, &(0x7f0000000180)=0x4, 0x4) r6 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x40, 0x80800) ioctl$GIO_CMAP(r6, 0x4b70, &(0x7f0000000040)) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r5, 0x54a3) ioctl$KDGKBENT(r2, 0x4b46, &(0x7f0000000140)={0x7, 0x7b85c503, 0x5}) readv(r5, &(0x7f000042bff8)=[{&(0x7f0000e3b000)=""/61, 0x3d}], 0x1) dup3(r3, r0, 0x0) 2018/05/26 12:22:18 executing program 0 (fault-call:2 fault-nth:22): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:22:18 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(r0, &(0x7f0000000100), 0xffffffffffffffd6, 0x20000004, &(0x7f000031e000)={0xa, 0x4e22}, 0x1c) r1 = socket$inet(0x10, 0x3, 0x4) sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f000000d000)=[{&(0x7f0000008000)="4c0000001200ff09fffefd956fa283b724a6008000000000000000683540150024001d001fc41180b598bc593ab6821148a730de33a49868c62b2ca654a6613b6aabf35d0f1cbc882b079881", 0x4c}], 0x1}, 0x0) 2018/05/26 12:22:18 executing program 2: socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffff9c, 0x29, 0x22, &(0x7f00000000c0)={{{@in=@loopback, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@remote}, 0x0, @in6=@dev}}, &(0x7f00000001c0)=0xe8) stat(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0}) setsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f00000002c0)={{{@in=@multicast1=0xe0000001, @in6=@mcast2={0xff, 0x2, [], 0x1}, 0x4e23, 0x0, 0x4e21, 0x0, 0xa, 0x20, 0xa0, 0x3c, r1, r2}, {0x80, 0x7f, 0xfff, 0x6, 0x9b, 0x7fff, 0x0, 0x6}, {0x1, 0x91, 0x400, 0x81}, 0x499, 0x6e6bb9, 0x3, 0x1, 0x1, 0x1}, {{@in6=@remote={0xfe, 0x80, [], 0xbb}, 0x4d3}, 0xa, @in, 0x0, 0x1, 0x3, 0x3, 0x5, 0x40, 0xdfc73bd}}, 0xe8) syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x800, 0x280) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vga_arbiter\x00', 0x400000, 0x0) 2018/05/26 12:22:18 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x0, 0xff01, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') [ 492.931167] FAULT_INJECTION: forcing a failure. [ 492.931167] name failslab, interval 1, probability 0, space 0, times 0 [ 492.942682] CPU: 0 PID: 29335 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 492.949966] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 492.959313] Call Trace: [ 492.961905] dump_stack+0x1b9/0x294 [ 492.965528] ? dump_stack_print_info.cold.2+0x52/0x52 [ 492.970706] ? perf_trace_lock_acquire+0xe3/0x980 [ 492.975545] ? is_bpf_text_address+0xd7/0x170 [ 492.980032] ? kernel_text_address+0x79/0xf0 [ 492.984430] should_fail.cold.4+0xa/0x1a [ 492.988484] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 492.993577] ? graph_lock+0x170/0x170 [ 492.997366] ? save_stack+0xa9/0xd0 [ 493.000982] ? kasan_kmalloc+0xc4/0xe0 [ 493.004858] ? find_held_lock+0x36/0x1c0 [ 493.008910] ? __lock_is_held+0xb5/0x140 [ 493.012968] ? check_same_owner+0x320/0x320 [ 493.017280] ? rcu_note_context_switch+0x710/0x710 [ 493.022197] ? __lockdep_init_map+0x105/0x590 [ 493.026685] __should_failslab+0x124/0x180 [ 493.030907] ? mempool_free+0x370/0x370 [ 493.034866] should_failslab+0x9/0x14 [ 493.038656] kmem_cache_alloc+0x2af/0x760 [ 493.042791] ? init_wait_entry+0x1b0/0x1b0 [ 493.047021] ? mempool_free+0x370/0x370 [ 493.050990] mempool_alloc_slab+0x44/0x60 [ 493.055128] mempool_create_node+0x2cf/0x610 [ 493.059529] ? mempool_free+0x370/0x370 [ 493.063490] ? mempool_alloc_slab+0x60/0x60 [ 493.067800] mempool_create+0x37/0x40 [ 493.071590] bioset_create+0x6b3/0x900 [ 493.075467] ? bioset_free+0x320/0x320 [ 493.079340] ? debug_mutex_init+0x1c/0x60 [ 493.083475] blk_alloc_queue_node+0x16e/0xe40 [ 493.087958] ? blk_init_allocated_queue+0x620/0x620 [ 493.092962] ? __mutex_init+0x1ef/0x280 [ 493.096922] ? __ia32_sys_membarrier+0x150/0x150 [ 493.101671] ? blk_mq_alloc_rq_map+0x142/0x220 [ 493.106244] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 493.111764] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 493.116511] ? blk_mq_alloc_tag_set+0x506/0xab0 [ 493.121165] ? idr_alloc+0x145/0x1a0 [ 493.124866] ? blk_mq_update_nr_hw_queues+0x4f0/0x4f0 [ 493.130045] blk_mq_init_queue+0x4b/0xb0 [ 493.134091] loop_add+0x32b/0x9c0 [ 493.137528] ? loop_lookup+0x102/0x220 [ 493.141401] ? loop_queue_rq+0x640/0x640 [ 493.145461] ? module_unload_free+0x5b0/0x5b0 [ 493.149945] loop_probe+0x185/0x1c0 [ 493.153558] ? loop_control_ioctl+0x500/0x500 [ 493.158043] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 493.163231] kobj_lookup+0x269/0x460 [ 493.166940] ? loop_control_ioctl+0x500/0x500 [ 493.171428] get_gendisk+0x4c/0x380 [ 493.175045] __blkdev_get+0x45f/0x13a0 [ 493.178927] ? blkdev_get_block+0xc0/0xc0 [ 493.183068] blkdev_get+0xb9/0xb30 [ 493.186600] ? bdget+0x5c0/0x5c0 [ 493.189954] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 493.194530] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 493.200062] ? errseq_sample+0xe3/0x120 [ 493.204030] ? _copy_to_user+0x110/0x110 [ 493.208089] ? _raw_spin_unlock+0x22/0x30 [ 493.212228] blkdev_open+0x1fb/0x280 [ 493.215936] do_dentry_open+0x7ef/0xf10 [ 493.219896] ? bd_acquire+0x2c0/0x2c0 [ 493.223686] vfs_open+0x139/0x230 [ 493.227130] path_openat+0x1676/0x4e20 [ 493.231023] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 493.235766] ? find_held_lock+0x36/0x1c0 [ 493.239819] ? lock_downgrade+0x8e0/0x8e0 [ 493.243958] ? kasan_check_read+0x11/0x20 [ 493.248093] ? do_raw_spin_unlock+0x9e/0x2e0 [ 493.252494] ? __lock_is_held+0xb5/0x140 [ 493.256543] ? _raw_spin_unlock+0x22/0x30 [ 493.260682] ? __alloc_fd+0x346/0x700 [ 493.264466] ? usercopy_warn+0x120/0x120 [ 493.268523] do_filp_open+0x249/0x350 [ 493.272308] ? may_open_dev+0x100/0x100 [ 493.276267] ? strncpy_from_user+0x3b6/0x500 [ 493.280663] ? mpi_free.cold.1+0x19/0x19 [ 493.284712] ? get_unused_fd_flags+0x121/0x190 [ 493.289279] ? getname_flags+0xd0/0x5a0 [ 493.293241] ? getname_flags+0x26e/0x5a0 [ 493.297285] ? retint_kernel+0x10/0x10 [ 493.301168] do_sys_open+0x56f/0x740 [ 493.304872] ? filp_open+0x80/0x80 [ 493.308402] __x64_sys_open+0x7e/0xc0 [ 493.312281] ? do_syscall_64+0xc2/0x800 [ 493.316249] do_syscall_64+0x1b1/0x800 [ 493.320122] ? finish_task_switch+0x1ca/0x840 [ 493.324603] ? syscall_return_slowpath+0x5c0/0x5c0 [ 493.329521] ? syscall_return_slowpath+0x30f/0x5c0 [ 493.334441] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 493.339963] ? retint_user+0x18/0x18 [ 493.343665] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 493.348495] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 493.353670] RIP: 0033:0x40fc61 [ 493.356844] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 493.365249] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 493.372516] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 2018/05/26 12:22:19 executing program 2: r0 = accept(0xffffffffffffff9c, &(0x7f00000001c0)=@rc, &(0x7f00000000c0)=0x80) getpeername$packet(0xffffffffffffff9c, &(0x7f0000000340)={0x0, 0x0, 0x0}, &(0x7f0000000380)=0x14) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffff9c, 0x0, 0x11, &(0x7f00000003c0)={{{@in6=@dev, @in6=@ipv4={[], [], @dev}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@ipv4={[], [], @dev}}, 0x0, @in=@broadcast}}, &(0x7f00000004c0)=0xe8) setsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000500)={{{@in=@loopback=0x7f000001, @in6=@mcast1={0xff, 0x1, [], 0x1}, 0x4e21, 0x5, 0x4e21, 0x10001, 0xa, 0x80, 0x80, 0x33, r1, r2}, {0x0, 0x0, 0x7, 0x4, 0x5, 0x2, 0x6, 0x36}, {0xfffffffffffffffb, 0x9, 0x84, 0x1}, 0x4, 0x6e6bb8, 0x1, 0x1, 0x1, 0x3}, {{@in6=@mcast2={0xff, 0x2, [], 0x1}, 0x4d2, 0x3c}, 0xa, @in=@remote={0xac, 0x14, 0x14, 0xbb}, 0x0, 0x0, 0x3, 0x4, 0x6, 0x7, 0x7}}, 0xe8) r3 = socket(0xa, 0x2, 0x0) ioctl(r3, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$ext4(&(0x7f0000000040)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000080)=[{&(0x7f0000000140)="000100000008000081000000c9030000f4000204000000000000000000000000002000000020000000010000000000016e5fbe5a0000ffff53efaf9548e56c36c0b1195b87b92a6cbe3c967b2d3d579a82457ac97736cd1db5e7c5169468f9e078d4", 0x62, 0x400}], 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="c2d66a3d112b1a05ae5d00000000000000f4fd9732f3110a440afc87530f585efdd71957e7cd993296195fd059fd138431d3b759236e29293ebb0d79c0ea6f82ec8dda9754f32f83039c22bac3c1979c3f9be9d2c47391cb2a7dd6000000000000000032ac29d8b66fd7f14a249e7cf240056229ad04b66006175836c93a47655524e30a36ad54397f3722c77f766a9bd240b117233e779ca80741a38d3129"]) openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x80, 0x0) 2018/05/26 12:22:19 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x4020940d, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:22:19 executing program 0 (fault-call:2 fault-nth:23): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) [ 493.379777] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 [ 493.387030] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 [ 493.394284] R13: 0000000000000744 R14: 00000000006fef00 R15: 0000000000000016 2018/05/26 12:22:19 executing program 7: r0 = eventfd(0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='gid_map\x00') read$eventfd(r0, &(0x7f00000000c0), 0x8) getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x180000000}, &(0x7f0000000100)=0xc) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r1, 0x84, 0x71, &(0x7f0000000140)={r2, 0x180000000}, &(0x7f0000000180)=0x8) ppoll(&(0x7f0000000240)=[{r0}], 0x1, &(0x7f0000000540)={0x77359400}, &(0x7f0000000580), 0x8) sendfile(r0, r1, &(0x7f0000000000), 0x1000000008) 2018/05/26 12:22:19 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000100, 0x2a]}) 2018/05/26 12:22:19 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x0, 0x8000000000000000, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') [ 493.699369] EXT4-fs (loop2): Unrecognized mount option "ÂÖj=+®]" or missing value [ 493.741537] FAULT_INJECTION: forcing a failure. [ 493.741537] name failslab, interval 1, probability 0, space 0, times 0 [ 493.753084] CPU: 0 PID: 29366 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 493.760378] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 493.769733] Call Trace: [ 493.772324] dump_stack+0x1b9/0x294 [ 493.775956] ? dump_stack_print_info.cold.2+0x52/0x52 [ 493.781149] ? perf_trace_lock_acquire+0xe3/0x980 [ 493.785985] ? __kernel_text_address+0xd/0x40 [ 493.790472] ? unwind_get_return_address+0x61/0xa0 [ 493.795391] should_fail.cold.4+0xa/0x1a [ 493.799440] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 493.804533] ? save_stack+0xa9/0xd0 [ 493.808162] ? graph_lock+0x170/0x170 [ 493.811949] ? mempool_create+0x37/0x40 [ 493.815909] ? bioset_create+0x6b3/0x900 [ 493.819956] ? blk_alloc_queue_node+0x16e/0xe40 [ 493.824731] ? blk_mq_init_queue+0x4b/0xb0 [ 493.828953] ? loop_probe+0x185/0x1c0 [ 493.832740] ? find_held_lock+0x36/0x1c0 [ 493.836792] ? __lock_is_held+0xb5/0x140 [ 493.840864] ? check_same_owner+0x320/0x320 [ 493.845175] ? rcu_note_context_switch+0x710/0x710 [ 493.850093] __should_failslab+0x124/0x180 [ 493.854322] should_failslab+0x9/0x14 [ 493.858110] kmem_cache_alloc_node_trace+0x26f/0x770 [ 493.863198] ? rcu_read_lock_sched_held+0x108/0x120 [ 493.868200] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 493.873470] ? init_wait_entry+0x1b0/0x1b0 [ 493.877695] __kmalloc_node+0x33/0x70 [ 493.881484] ? mempool_free+0x370/0x370 [ 493.885451] mempool_create_node+0x111/0x610 [ 493.889849] ? mempool_alloc_slab+0x60/0x60 [ 493.894154] ? mempool_free+0x370/0x370 [ 493.898112] ? mempool_alloc_slab+0x60/0x60 [ 493.902422] mempool_create+0x37/0x40 [ 493.906214] bioset_create+0x6b3/0x900 [ 493.910093] ? bioset_free+0x320/0x320 [ 493.913967] ? debug_mutex_init+0x1c/0x60 [ 493.918105] blk_alloc_queue_node+0x16e/0xe40 [ 493.922591] ? blk_init_allocated_queue+0x620/0x620 [ 493.927591] ? __mutex_init+0x1ef/0x280 [ 493.931551] ? __ia32_sys_membarrier+0x150/0x150 [ 493.936309] ? blk_mq_alloc_rq_map+0x142/0x220 [ 493.940884] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 493.946406] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 493.951149] ? blk_mq_alloc_tag_set+0x506/0xab0 [ 493.955813] ? idr_alloc+0x145/0x1a0 [ 493.959518] ? blk_mq_update_nr_hw_queues+0x4f0/0x4f0 [ 493.964698] blk_mq_init_queue+0x4b/0xb0 [ 493.968745] loop_add+0x32b/0x9c0 [ 493.972183] ? loop_lookup+0x102/0x220 [ 493.976056] ? loop_queue_rq+0x640/0x640 [ 493.980105] ? module_unload_free+0x5b0/0x5b0 [ 493.984593] loop_probe+0x185/0x1c0 [ 493.988207] ? loop_control_ioctl+0x500/0x500 [ 493.992688] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 493.997866] kobj_lookup+0x269/0x460 [ 494.001567] ? loop_control_ioctl+0x500/0x500 [ 494.006051] get_gendisk+0x4c/0x380 [ 494.009668] __blkdev_get+0x45f/0x13a0 [ 494.013551] ? blkdev_get_block+0xc0/0xc0 [ 494.017691] blkdev_get+0xb9/0xb30 [ 494.021218] ? bdget+0x5c0/0x5c0 [ 494.024573] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 494.029150] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 494.034674] ? errseq_sample+0xe3/0x120 [ 494.038633] ? _copy_to_user+0x110/0x110 [ 494.042682] ? _raw_spin_unlock+0x22/0x30 [ 494.046820] blkdev_open+0x1fb/0x280 [ 494.050523] do_dentry_open+0x7ef/0xf10 [ 494.054485] ? bd_acquire+0x2c0/0x2c0 [ 494.058275] vfs_open+0x139/0x230 [ 494.061719] path_openat+0x1676/0x4e20 [ 494.065603] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 494.070346] ? find_held_lock+0x36/0x1c0 [ 494.074398] ? lock_downgrade+0x8e0/0x8e0 [ 494.078535] ? kasan_check_read+0x11/0x20 [ 494.082670] ? do_raw_spin_unlock+0x9e/0x2e0 [ 494.087072] ? __lock_is_held+0xb5/0x140 [ 494.091122] ? _raw_spin_unlock+0x22/0x30 [ 494.095258] ? __alloc_fd+0x346/0x700 [ 494.099044] ? usercopy_warn+0x120/0x120 [ 494.103101] do_filp_open+0x249/0x350 [ 494.106891] ? may_open_dev+0x100/0x100 [ 494.110857] ? strncpy_from_user+0x3b6/0x500 [ 494.115252] ? mpi_free.cold.1+0x19/0x19 [ 494.119300] ? get_unused_fd_flags+0x121/0x190 [ 494.123872] ? getname_flags+0xd0/0x5a0 [ 494.127832] ? getname_flags+0x26e/0x5a0 [ 494.131881] do_sys_open+0x56f/0x740 [ 494.135588] ? mm_fault_error+0x314/0x380 [ 494.139720] ? filp_open+0x80/0x80 [ 494.143247] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 494.148080] __x64_sys_open+0x7e/0xc0 [ 494.151872] do_syscall_64+0x1b1/0x800 [ 494.155751] ? finish_task_switch+0x1ca/0x840 [ 494.160234] ? syscall_return_slowpath+0x5c0/0x5c0 [ 494.165148] ? syscall_return_slowpath+0x30f/0x5c0 [ 494.170069] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 494.175591] ? retint_user+0x18/0x18 [ 494.179293] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 494.184126] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 494.189298] RIP: 0033:0x40fc61 [ 494.192477] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 494.200175] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 494.207426] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 [ 494.214678] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 [ 494.221930] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 [ 494.229182] R13: 0000000000000744 R14: 00000000006fef00 R15: 0000000000000017 2018/05/26 12:22:20 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8995, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:22:20 executing program 0 (fault-call:2 fault-nth:24): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:22:20 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000100, 0x130101c000000000]}) 2018/05/26 12:22:20 executing program 2: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$tun(&(0x7f0000000200)='/dev/net/tun\x00', 0x0, 0x0) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000100)='/dev/hwrng\x00', 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffff9c, 0xc00c642e, &(0x7f0000000140)={0x0, 0x80000, 0xffffffffffffffff}) r4 = syz_open_dev$vcsn(&(0x7f0000000240)='/dev/vcs#\x00', 0x3bf, 0x80180) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r1, 0xc00c642d, &(0x7f0000000280)={r2, 0x85024919077704b, r4}) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@remote={0xfe, 0x80, [], 0xbb}, 0x800, 0x0, 0x0, 0x1}, 0x20) r5 = syz_open_dev$admmidi(&(0x7f0000000040)='/dev/admmidi#\x00', 0x1000, 0x880) openat$cgroup_int(r4, &(0x7f00000003c0)='cpuset.cpu_exclusive\x00', 0x2, 0x0) ioctl$sock_inet6_udp_SIOCOUTQ(r5, 0x5411, &(0x7f00000000c0)) fcntl$setstatus(r0, 0x4, 0x2c00) connect$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback={0x0, 0x1}}, 0x1c) setsockopt$inet6_tcp_TCP_MD5SIG(r3, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x4e21, @local={0xac, 0x14, 0x14, 0xaa}}}, 0xb38d, 0x80, 0x1, "c484d1e4dbe154907559f2a055aca4d924bea19f961fefb8aa8182dbe0bdbb3eedc0fab72bd31a707b29ab2cad7e63addec6007062cd422c81b2b8a8d41f0b46f1dce3c3c2fb815c1bf9004ec4bf1442"}, 0xd8) [ 494.264433] EXT4-fs (loop2): Unrecognized mount option "ÂÖj=+®]" or missing value 2018/05/26 12:22:20 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x0, 0xf000000, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:22:20 executing program 3: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000d28000)={0xaa}) ioctl$int_out(r0, 0x5462, &(0x7f0000000180)) write$binfmt_script(r0, &(0x7f0000000480)=ANY=[@ANYBLOB="2321202e2f66696c65302074696d65723000202074696d65723000206d643573756d5d5c2069643000202f6465762f6175746f66730020202f6465762f6175746f6673000a1e0b0c558cee399de9213ebe07c549eddbf29c575c8ca082df45a2b1d5d4eea22b4356700ed8d06e0574d45e1fb1b5090f1e08afd70000000017b0e9c357c06f3167afa1f845da55bbb91e13bd615fcab20497b9c9faf057e93a1ff6c1116ce9d4533dcc217bfdffddd57170c5928dcf7295e05aa454c8ee1f829b41ecd8ce8556b501c31eda8bf8cb7abff29e31606172a75a8f136dd3352d0a15cac8a0dc45fcced22073784223a10aa97dfcf7bc0a77646cdb5c3d449b78ae41fc54f8e68211dbfd5a1409a5c87eb9d437246cea29db9833e17f50a71ce89f625dbc4189f7153cc60986ac05a45da82dbd15d201071c22a99f779c8bc7e7613b34f6ece0cf94fd33eab7a28a4378ebc47d1a36f25112cabece9f5b8368440bb0fd00"], 0x13a) r1 = epoll_create1(0x0) r2 = socket(0xa, 0x1, 0x0) ioctl(r2, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) r3 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x10000) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r3, 0xc0145401, &(0x7f0000013000)) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r3, 0x54a3) ioctl$SNDRV_TIMER_IOCTL_GINFO(r3, 0xc0f85403, &(0x7f0000000040)={{0x3, 0x3, 0x9, 0x3, 0x1f}, 0x10001, 0x6, 'id0\x00', 'timer0\x00', 0x0, 0xfe2, 0x10000, 0x1, 0xfffffffffffffff7}) openat$autofs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/autofs\x00', 0x0, 0x0) readv(r3, &(0x7f000042bff8)=[{&(0x7f0000e3b000)=""/61, 0x3d}], 0x1) syz_open_dev$sndtimer(&(0x7f0000000000)='/dev/snd/timer\x00', 0x0, 0x0) dup3(r1, r0, 0x80000) stat(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$SNDRV_TIMER_IOCTL_SELECT(r3, 0x40345410, &(0x7f0000000200)={{0xffffffffffffffff, 0x2, 0x1f, 0x0, 0x72}}) setfsgid(r4) 2018/05/26 12:22:20 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(0xffffffffffffffff, &(0x7f0000000100), 0xffffffffffffffd6, 0x20000004, &(0x7f000031e000)={0xa, 0x4e22}, 0x1c) r1 = socket$inet(0x10, 0x3, 0x4) sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f000000d000)=[{&(0x7f0000008000)="4c0000001200ff09fffefd956fa283b724a6008000000000000000683540150024001d001fc41180b598bc593ab6821148a730de33a49868c62b2ca654a6613b6aabf35d0f1cbc882b079881", 0x4c}], 0x1}, 0x0) [ 494.563666] FAULT_INJECTION: forcing a failure. [ 494.563666] name failslab, interval 1, probability 0, space 0, times 0 [ 494.575134] CPU: 0 PID: 29389 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 494.582419] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 494.591767] Call Trace: [ 494.594351] dump_stack+0x1b9/0x294 [ 494.597967] ? dump_stack_print_info.cold.2+0x52/0x52 [ 494.603146] ? perf_trace_lock_acquire+0xe3/0x980 [ 494.607983] should_fail.cold.4+0xa/0x1a [ 494.612041] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 494.617132] ? kasan_kmalloc+0xc4/0xe0 [ 494.621039] ? kasan_slab_alloc+0x12/0x20 [ 494.625183] ? kmem_cache_alloc+0x12e/0x760 [ 494.629497] ? mempool_alloc_slab+0x44/0x60 [ 494.633808] ? mempool_create_node+0x2cf/0x610 [ 494.638376] ? mempool_create+0x37/0x40 [ 494.642337] ? bioset_create+0x6b3/0x900 [ 494.646387] ? graph_lock+0x170/0x170 [ 494.650180] ? kobj_lookup+0x269/0x460 [ 494.654053] ? get_gendisk+0x4c/0x380 [ 494.657841] ? __blkdev_get+0x45f/0x13a0 [ 494.661889] ? blkdev_get+0xb9/0xb30 [ 494.665587] ? do_dentry_open+0x7ef/0xf10 [ 494.669724] ? find_held_lock+0x36/0x1c0 [ 494.673777] ? __lock_is_held+0xb5/0x140 [ 494.677831] ? check_same_owner+0x320/0x320 [ 494.682145] ? rcu_note_context_switch+0x710/0x710 [ 494.687070] __should_failslab+0x124/0x180 [ 494.691295] ? mempool_free+0x370/0x370 [ 494.695262] should_failslab+0x9/0x14 [ 494.699049] kmem_cache_alloc+0x2af/0x760 [ 494.703182] ? init_wait_entry+0x1b0/0x1b0 [ 494.707407] ? mempool_alloc_slab+0x44/0x60 [ 494.711714] ? mempool_free+0x370/0x370 [ 494.715683] mempool_alloc_slab+0x44/0x60 [ 494.719817] mempool_create_node+0x2cf/0x610 [ 494.724214] ? mempool_free+0x370/0x370 [ 494.728175] ? mempool_alloc_slab+0x60/0x60 [ 494.732484] mempool_create+0x37/0x40 [ 494.736282] bioset_create+0x6b3/0x900 [ 494.740156] ? bioset_free+0x320/0x320 [ 494.744035] ? debug_mutex_init+0x1c/0x60 [ 494.748170] blk_alloc_queue_node+0x16e/0xe40 [ 494.752653] ? blk_init_allocated_queue+0x620/0x620 [ 494.757653] ? __mutex_init+0x1ef/0x280 [ 494.761629] ? __ia32_sys_membarrier+0x150/0x150 [ 494.766380] ? blk_mq_alloc_rq_map+0x142/0x220 [ 494.770949] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 494.776477] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 494.781223] ? blk_mq_alloc_tag_set+0x506/0xab0 [ 494.785878] ? idr_alloc+0x145/0x1a0 [ 494.789579] ? blk_mq_update_nr_hw_queues+0x4f0/0x4f0 [ 494.794758] blk_mq_init_queue+0x4b/0xb0 [ 494.798807] loop_add+0x32b/0x9c0 [ 494.802253] ? loop_lookup+0x102/0x220 [ 494.806123] ? loop_queue_rq+0x640/0x640 [ 494.810168] ? module_unload_free+0x5b0/0x5b0 [ 494.814651] loop_probe+0x185/0x1c0 [ 494.818275] ? loop_control_ioctl+0x500/0x500 [ 494.822759] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 494.827937] kobj_lookup+0x269/0x460 [ 494.831639] ? loop_control_ioctl+0x500/0x500 [ 494.836122] get_gendisk+0x4c/0x380 [ 494.839738] __blkdev_get+0x45f/0x13a0 [ 494.844054] ? blkdev_get_block+0xc0/0xc0 [ 494.848202] blkdev_get+0xb9/0xb30 [ 494.851731] ? bdget+0x5c0/0x5c0 [ 494.855082] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 494.859650] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 494.865176] ? errseq_sample+0xe3/0x120 [ 494.869136] ? _copy_to_user+0x110/0x110 [ 494.873183] ? _raw_spin_unlock+0x22/0x30 [ 494.877330] blkdev_open+0x1fb/0x280 [ 494.881040] do_dentry_open+0x7ef/0xf10 [ 494.884999] ? bd_acquire+0x2c0/0x2c0 [ 494.888794] vfs_open+0x139/0x230 [ 494.892235] path_openat+0x1676/0x4e20 [ 494.896117] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 494.900859] ? find_held_lock+0x36/0x1c0 [ 494.904914] ? lock_downgrade+0x8e0/0x8e0 [ 494.909056] ? kasan_check_read+0x11/0x20 [ 494.913190] ? do_raw_spin_unlock+0x9e/0x2e0 [ 494.917583] ? __lock_is_held+0xb5/0x140 [ 494.921636] ? _raw_spin_unlock+0x22/0x30 [ 494.925771] ? __alloc_fd+0x346/0x700 [ 494.929558] ? usercopy_warn+0x120/0x120 [ 494.933611] do_filp_open+0x249/0x350 [ 494.937398] ? may_open_dev+0x100/0x100 [ 494.941364] ? strncpy_from_user+0x3b6/0x500 [ 494.945760] ? mpi_free.cold.1+0x19/0x19 [ 494.949812] ? get_unused_fd_flags+0x121/0x190 [ 494.954375] ? getname_flags+0xd0/0x5a0 [ 494.958335] ? getname_flags+0x26e/0x5a0 [ 494.962390] do_sys_open+0x56f/0x740 [ 494.966090] ? mm_fault_error+0x314/0x380 [ 494.970221] ? filp_open+0x80/0x80 [ 494.973752] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 494.978594] __x64_sys_open+0x7e/0xc0 [ 494.982478] do_syscall_64+0x1b1/0x800 [ 494.986356] ? syscall_return_slowpath+0x5c0/0x5c0 [ 494.991269] ? syscall_return_slowpath+0x30f/0x5c0 [ 494.996189] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 495.001713] ? retint_user+0x18/0x18 [ 495.005418] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 495.010249] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 495.015420] RIP: 0033:0x40fc61 [ 495.018595] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 495.026297] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 495.033549] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 [ 495.040801] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 [ 495.048053] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 [ 495.055311] R13: 0000000000000744 R14: 00000000006fef00 R15: 0000000000000018 2018/05/26 12:22:21 executing program 7: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sndpcmp(&(0x7f0000000040)='/dev/snd/pcmC#D#p\x00', 0x0, 0x0) ioctl$KVM_SET_CLOCK(r0, 0x4030ae7b, &(0x7f0000000080)={0x5}) r1 = socket$inet6(0xa, 0x80003, 0xff) setsockopt$inet6_int(r1, 0x29, 0x16, &(0x7f0000fcb000), 0x4) close(r1) 2018/05/26 12:22:21 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x890c, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:22:21 executing program 0 (fault-call:2 fault-nth:25): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:22:21 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000100, 0x2a00000000000000]}) 2018/05/26 12:22:21 executing program 2: r0 = socket(0xa, 0x1, 0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) readahead(r0, 0x0, 0xfffffffffffffffc) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_emit_ethernet(0x66, &(0x7f0000000040)={@link_local={0x1, 0x80, 0xc2}, @random="b42d87402e52", [], {@ipv6={0x86dd, {0x0, 0x6, "06f526", 0x30, 0x3a, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @mcast2={0xff, 0x2, [], 0x1}, {[], @icmpv6=@pkt_toobig={0xffffff80, 0xfffffff5, 0x0, 0x0, {0x0, 0x6, "0a07ec", 0x0, 0x0, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @ipv4={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2], [0xff, 0xff], @dev={0xac, 0x14}}}}}}}}}, &(0x7f0000000000)={0x1, 0x1}) 2018/05/26 12:22:21 executing program 3: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000d28000)={0xaa}) r1 = epoll_create1(0x0) r2 = openat$cuse(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/cuse\x00', 0x100, 0x0) setsockopt$inet_dccp_buf(r2, 0x21, 0xc0, &(0x7f0000000040)="a3b44776c987d26732350c06f5d9ec5c83c991eb94306178a85f163b2ed3536918bc8ac94613d7cf6dfaf3301910a14806aa797b8897d3d628b6d1d43b9d23101204a258d0194b969256fe881eef5685697da0204fffc0067bab472f6a945e01255672da0fecc8082cd097215ced10ed2137477b08c844aaccc01d949cfb29b40a8d9b83bdfc41c75feb732142e022ea8bc4b642162a9b619b65ccd3b4c28279a5061b0fabb619cada879996", 0xac) r3 = socket(0xa, 0x1, 0x0) ioctl(r3, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$KVM_REINJECT_CONTROL(r2, 0xae71, &(0x7f0000000000)={0x101}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) r4 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r4, 0xc0145401, &(0x7f0000013000)) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r4, 0x54a3) pwrite64(r0, &(0x7f0000000100)="2adc99422972b5c7f7ae1391033280570658150941ad90da858513c90d075a6e737ff034980ecb63d83839ddf091d9aae09c51b769edc4df897c53f2c3a2b1a3a7f3d2863d79671477dab7e6c2ab09883671a7bb6f022e81f2d9c931f43a567e21ffd40e89b9ba8ff6c173ebb4fe76a114992e856fbd120aa4086dc2c69d18ace8f8457e8345e5410fd2501a27ce6bf8ac5f4765647671016012f89013fa9c", 0x9f, 0xa) readv(r4, &(0x7f000042bff8)=[{&(0x7f0000e3b000)=""/61, 0x3d}], 0x1) dup3(r1, r0, 0x0) 2018/05/26 12:22:21 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(0xffffffffffffffff, &(0x7f0000000100), 0xffffffffffffffd6, 0x20000004, &(0x7f000031e000)={0xa, 0x4e22}, 0x1c) r1 = socket$inet(0x10, 0x3, 0x4) sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f000000d000)=[{&(0x7f0000008000)="4c0000001200ff09fffefd956fa283b724a6008000000000000000683540150024001d001fc41180b598bc593ab6821148a730de33a49868c62b2ca654a6613b6aabf35d0f1cbc882b079881", 0x4c}], 0x1}, 0x0) 2018/05/26 12:22:21 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x0, 0xff0f0000, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') [ 495.535612] FAULT_INJECTION: forcing a failure. [ 495.535612] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 495.547490] CPU: 0 PID: 29423 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 495.554749] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 495.564089] Call Trace: [ 495.566689] dump_stack+0x1b9/0x294 [ 495.570325] ? dump_stack_print_info.cold.2+0x52/0x52 [ 495.575507] ? find_held_lock+0x36/0x1c0 [ 495.579584] should_fail.cold.4+0xa/0x1a [ 495.583649] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 495.588744] ? debug_check_no_locks_freed+0x310/0x310 [ 495.593927] ? lock_downgrade+0x8e0/0x8e0 [ 495.598066] ? rcu_is_watching+0x85/0x140 [ 495.602200] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 495.607380] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 495.612571] ? perf_trace_lock+0xd6/0x900 [ 495.616722] ? perf_trace_lock_acquire+0xe3/0x980 [ 495.621564] ? is_bpf_text_address+0xd7/0x170 [ 495.626059] ? zap_class+0x720/0x720 [ 495.629770] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 495.635301] ? should_fail+0x21b/0xbcd [ 495.639178] ? __save_stack_trace+0x7e/0xd0 [ 495.643500] __alloc_pages_nodemask+0x34e/0xd70 [ 495.648160] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 495.653163] ? kasan_kmalloc+0xc4/0xe0 [ 495.657054] ? find_held_lock+0x36/0x1c0 [ 495.661111] ? __lock_is_held+0xb5/0x140 [ 495.665163] ? check_same_owner+0x320/0x320 [ 495.669479] cache_grow_begin+0x6e/0x6c0 [ 495.673541] kmem_cache_alloc+0x689/0x760 [ 495.677694] ? init_wait_entry+0x1b0/0x1b0 [ 495.681942] ? mempool_free+0x370/0x370 [ 495.685922] mempool_alloc_slab+0x44/0x60 [ 495.690065] mempool_create_node+0x2cf/0x610 [ 495.694467] ? mempool_free+0x370/0x370 [ 495.698428] ? mempool_alloc_slab+0x60/0x60 [ 495.702741] mempool_create+0x37/0x40 [ 495.706541] bioset_create+0x6b3/0x900 [ 495.710418] ? bioset_free+0x320/0x320 [ 495.714298] ? debug_mutex_init+0x1c/0x60 [ 495.718441] blk_alloc_queue_node+0x16e/0xe40 [ 495.722925] ? blk_init_allocated_queue+0x620/0x620 [ 495.727929] ? __mutex_init+0x1ef/0x280 [ 495.731890] ? __ia32_sys_membarrier+0x150/0x150 [ 495.736642] ? blk_mq_alloc_rq_map+0x142/0x220 [ 495.741215] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 495.746736] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 495.751482] ? blk_mq_alloc_tag_set+0x506/0xab0 [ 495.756141] ? idr_alloc+0x145/0x1a0 [ 495.759842] ? blk_mq_update_nr_hw_queues+0x4f0/0x4f0 [ 495.765029] blk_mq_init_queue+0x4b/0xb0 [ 495.769079] loop_add+0x32b/0x9c0 [ 495.772517] ? loop_lookup+0x102/0x220 [ 495.776398] ? loop_queue_rq+0x640/0x640 [ 495.780448] ? module_unload_free+0x5b0/0x5b0 [ 495.784933] loop_probe+0x185/0x1c0 [ 495.788543] ? loop_control_ioctl+0x500/0x500 [ 495.793031] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 495.798215] kobj_lookup+0x269/0x460 [ 495.801918] ? loop_control_ioctl+0x500/0x500 [ 495.806410] get_gendisk+0x4c/0x380 [ 495.810036] __blkdev_get+0x45f/0x13a0 [ 495.813920] ? blkdev_get_block+0xc0/0xc0 [ 495.818064] blkdev_get+0xb9/0xb30 [ 495.821598] ? bdget+0x5c0/0x5c0 [ 495.824951] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 495.829523] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 495.835049] ? errseq_sample+0xe3/0x120 [ 495.839014] ? _copy_to_user+0x110/0x110 [ 495.843069] ? _raw_spin_unlock+0x22/0x30 [ 495.847208] blkdev_open+0x1fb/0x280 [ 495.850916] do_dentry_open+0x7ef/0xf10 [ 495.854886] ? bd_acquire+0x2c0/0x2c0 [ 495.858680] vfs_open+0x139/0x230 [ 495.862126] path_openat+0x1676/0x4e20 [ 495.866017] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 495.870763] ? find_held_lock+0x36/0x1c0 [ 495.874828] ? lock_downgrade+0x8e0/0x8e0 [ 495.878968] ? kasan_check_read+0x11/0x20 [ 495.883105] ? do_raw_spin_unlock+0x9e/0x2e0 [ 495.887502] ? __lock_is_held+0xb5/0x140 [ 495.891554] ? _raw_spin_unlock+0x22/0x30 [ 495.895706] ? __alloc_fd+0x346/0x700 [ 495.899494] ? usercopy_warn+0x120/0x120 [ 495.903551] do_filp_open+0x249/0x350 [ 495.907342] ? may_open_dev+0x100/0x100 [ 495.911308] ? strncpy_from_user+0x3b6/0x500 [ 495.915706] ? mpi_free.cold.1+0x19/0x19 [ 495.919754] ? get_unused_fd_flags+0x121/0x190 [ 495.924322] ? getname_flags+0xd0/0x5a0 [ 495.928286] ? getname_flags+0x26e/0x5a0 [ 495.932346] do_sys_open+0x56f/0x740 [ 495.936051] ? mm_fault_error+0x314/0x380 [ 495.940184] ? filp_open+0x80/0x80 [ 495.943716] __x64_sys_open+0x7e/0xc0 [ 495.947506] do_syscall_64+0x1b1/0x800 [ 495.951381] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 495.956296] ? syscall_return_slowpath+0x5c0/0x5c0 [ 495.961215] ? syscall_return_slowpath+0x30f/0x5c0 [ 495.966132] ? retint_user+0x18/0x18 [ 495.969840] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 495.974673] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 495.979848] RIP: 0033:0x40fc61 2018/05/26 12:22:21 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8909, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) [ 495.983025] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 495.990724] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 495.997979] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 [ 496.005232] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 [ 496.012486] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 [ 496.019741] R13: 0000000000000744 R14: 00000000006fef00 R15: 0000000000000019 2018/05/26 12:22:21 executing program 2: r0 = socket$kcm(0xa, 0x322000000003, 0x11) setsockopt$sock_attach_bpf(r0, 0x29, 0x24, &(0x7f0000000100), 0x364) setsockopt$inet_tcp_TCP_FASTOPEN_KEY(r0, 0x6, 0x21, &(0x7f0000000080)="c5cd24b9438f47a3fd5f1ea3d7e48f58", 0x10) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = socket(0xa, 0x1, 0x0) ioctl(r3, 0x8912, &(0x7f0000000380)="c626262c8523bf012cf66f") ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f00000002c0)={0x54bc}) ioctl$KVM_SET_PIT2(r2, 0xae71, &(0x7f0000000000)) ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f0000000200)={0x1bd}) getsockname$packet(0xffffffffffffff9c, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @remote}, &(0x7f0000000240)=0x14) sendmsg$kcm(r0, &(0x7f0000000380)={&(0x7f0000000140)=@hci={0x1f, r4, 0x1}, 0xc, &(0x7f0000000000)=[{&(0x7f00000000c0)="235db874f80e004a36422016c7d846ed2fa163e11483ff4fff60e4059829b85eca00000000800000", 0x28}], 0x0, 0x0, 0xffffffffffffffad}, 0x20008800) 2018/05/26 12:22:21 executing program 0 (fault-call:2 fault-nth:26): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:22:21 executing program 7: r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffff9c, 0xae41, 0x0) ioctl(r0, 0x2, &(0x7f00000001c0)="7163643569a24b8933a637591842961e4374edbef3b6e6b1844f759c86b126c99b1e5e927e07800045169544cbedb6462ebb5eb75b447a641a78dbb709c95353074309e16e554652875dd0") r1 = socket(0x10, 0x2, 0x0) fgetxattr(r0, &(0x7f00000002c0)=@random={'system.', '/dev/snd/controlC#\x00'}, &(0x7f0000000300)=""/44, 0x2c) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000000)={0xfffffffffffffefc, {{0x2, 0x4e24, @loopback=0x7f000001}}, {{0x2, 0x4e21, @rand_addr=0x400}}}, 0xe9) ioctl$sock_bt_cmtp_CMTPCONNDEL(r1, 0x400443c9, &(0x7f0000000240)={{0x4, 0x2, 0x7fffffff, 0x1, 0x3, 0x1f}, 0x9}) ioctl(r1, 0x8912, &(0x7f0000000180)="c626262c8523bf012cf66f") r2 = syz_open_dev$sndctrl(&(0x7f0000000000)='/dev/snd/controlC#\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r2, 0x80045530, &(0x7f0000000100)={0xfdfdffff}) socketpair$unix(0x1, 0x1, 0x0, &(0x7f00001caff8)={0xffffffffffffffff}) ioctl$VHOST_GET_VRING_ENDIAN(r2, 0x4008af14, &(0x7f0000000280)={0x0, 0x7}) getsockopt$sock_int(r3, 0x1, 0x3b, &(0x7f000059dffc), &(0x7f0000d8cffc)=0x4) 2018/05/26 12:22:21 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000100, 0x187]}) [ 496.316380] FAULT_INJECTION: forcing a failure. [ 496.316380] name failslab, interval 1, probability 0, space 0, times 0 [ 496.327826] CPU: 0 PID: 29451 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 496.335100] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 496.344454] Call Trace: [ 496.347058] dump_stack+0x1b9/0x294 [ 496.350705] ? dump_stack_print_info.cold.2+0x52/0x52 [ 496.355902] ? do_filp_open+0x249/0x350 [ 496.359884] ? do_sys_open+0x56f/0x740 [ 496.363763] ? __x64_sys_open+0x7e/0xc0 [ 496.367735] ? do_syscall_64+0x1b1/0x800 [ 496.371805] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 496.377183] should_fail.cold.4+0xa/0x1a [ 496.381251] ? __lock_is_held+0xb5/0x140 [ 496.385310] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 496.390427] ? kasan_check_read+0x11/0x20 [ 496.394579] ? do_raw_spin_unlock+0x9e/0x2e0 [ 496.398975] ? graph_lock+0x170/0x170 [ 496.402758] ? __lock_is_held+0xb5/0x140 [ 496.406806] ? find_held_lock+0x36/0x1c0 [ 496.410855] ? __lock_is_held+0xb5/0x140 [ 496.414908] ? check_same_owner+0x320/0x320 [ 496.419216] ? rcu_note_context_switch+0x710/0x710 [ 496.424135] __should_failslab+0x124/0x180 [ 496.428357] should_failslab+0x9/0x14 [ 496.432145] kmem_cache_alloc_node_trace+0x26f/0x770 [ 496.437234] ? bioset_free+0x320/0x320 [ 496.441115] bdi_alloc_node+0x67/0xe0 [ 496.444904] blk_alloc_queue_node+0x1c1/0xe40 [ 496.449389] ? blk_init_allocated_queue+0x620/0x620 [ 496.454395] ? __mutex_init+0x1ef/0x280 [ 496.458354] ? __ia32_sys_membarrier+0x150/0x150 [ 496.463104] ? blk_mq_alloc_rq_map+0x142/0x220 [ 496.467676] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 496.473206] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 496.477947] ? blk_mq_alloc_tag_set+0x506/0xab0 [ 496.482603] ? idr_alloc+0x145/0x1a0 [ 496.486303] ? blk_mq_update_nr_hw_queues+0x4f0/0x4f0 [ 496.491479] blk_mq_init_queue+0x4b/0xb0 [ 496.495526] loop_add+0x32b/0x9c0 [ 496.498961] ? loop_lookup+0x102/0x220 [ 496.502830] ? loop_queue_rq+0x640/0x640 [ 496.506878] ? module_unload_free+0x5b0/0x5b0 [ 496.511362] loop_probe+0x185/0x1c0 [ 496.514974] ? loop_control_ioctl+0x500/0x500 [ 496.519455] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 496.524632] kobj_lookup+0x269/0x460 [ 496.528333] ? loop_control_ioctl+0x500/0x500 [ 496.532814] get_gendisk+0x4c/0x380 [ 496.536427] __blkdev_get+0x45f/0x13a0 [ 496.540305] ? blkdev_get_block+0xc0/0xc0 [ 496.544457] blkdev_get+0xb9/0xb30 [ 496.547984] ? bdget+0x5c0/0x5c0 [ 496.551340] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 496.555917] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 496.561439] ? errseq_sample+0xe3/0x120 [ 496.565396] ? _copy_to_user+0x110/0x110 [ 496.569453] ? _raw_spin_unlock+0x22/0x30 [ 496.573588] blkdev_open+0x1fb/0x280 [ 496.577294] do_dentry_open+0x7ef/0xf10 [ 496.581254] ? bd_acquire+0x2c0/0x2c0 [ 496.585047] vfs_open+0x139/0x230 [ 496.588485] path_openat+0x1676/0x4e20 [ 496.592371] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 496.597112] ? find_held_lock+0x36/0x1c0 [ 496.601164] ? lock_downgrade+0x8e0/0x8e0 [ 496.605293] ? do_sys_open+0x39a/0x740 [ 496.609178] ? kasan_check_read+0x11/0x20 [ 496.613311] ? do_raw_spin_unlock+0x9e/0x2e0 [ 496.617702] ? __lock_is_held+0xb5/0x140 [ 496.621748] ? _raw_spin_unlock+0x22/0x30 [ 496.625882] ? __alloc_fd+0x346/0x700 [ 496.629667] ? usercopy_warn+0x120/0x120 [ 496.633717] do_filp_open+0x249/0x350 [ 496.637504] ? may_open_dev+0x100/0x100 [ 496.641463] ? strncpy_from_user+0x3b6/0x500 [ 496.645858] ? mpi_free.cold.1+0x19/0x19 [ 496.649905] ? get_unused_fd_flags+0x121/0x190 [ 496.654468] ? getname_flags+0xd0/0x5a0 [ 496.658427] ? getname_flags+0x26e/0x5a0 [ 496.662473] do_sys_open+0x56f/0x740 [ 496.666172] ? mm_fault_error+0x314/0x380 [ 496.670391] ? filp_open+0x80/0x80 [ 496.673917] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 496.678746] __x64_sys_open+0x7e/0xc0 [ 496.682539] do_syscall_64+0x1b1/0x800 [ 496.686410] ? finish_task_switch+0x1ca/0x840 [ 496.690888] ? syscall_return_slowpath+0x5c0/0x5c0 [ 496.695801] ? syscall_return_slowpath+0x30f/0x5c0 [ 496.700716] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 496.706236] ? retint_user+0x18/0x18 [ 496.709935] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 496.714767] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 496.719940] RIP: 0033:0x40fc61 [ 496.723111] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 496.730804] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 496.738055] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 [ 496.745308] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 [ 496.752565] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 [ 496.759818] R13: 0000000000000744 R14: 00000000006fef00 R15: 000000000000001a 2018/05/26 12:22:22 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(0xffffffffffffffff, &(0x7f0000000100), 0xffffffffffffffd6, 0x20000004, &(0x7f000031e000)={0xa, 0x4e22}, 0x1c) r1 = socket$inet(0x10, 0x3, 0x4) sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f000000d000)=[{&(0x7f0000008000)="4c0000001200ff09fffefd956fa283b724a6008000000000000000683540150024001d001fc41180b598bc593ab6821148a730de33a49868c62b2ca654a6613b6aabf35d0f1cbc882b079881", 0x4c}], 0x1}, 0x0) 2018/05/26 12:22:22 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x0, 0xf4ffffff, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:22:22 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8983, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:22:22 executing program 7: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000680), 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f757569642c7773796e632c005221be0e5a8ced32920a575359f15a45f1d5fa08f2b84d17923a4366835ac724c6a7f8d30846c9220c0035779b3ec4263e79ea357f7467efcf0f"]) socket(0x1b, 0x80000, 0x0) 2018/05/26 12:22:22 executing program 2: r0 = socket(0xa, 0x802, 0x88) r1 = socket$netlink(0x10, 0x3, 0x4) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @ipv4={[], [0xff, 0xff], @loopback=0x7f000001}}, 0x1c) writev(r1, &(0x7f0000fb1000)=[{&(0x7f0000000180)="480000001400197f09004b0101048c590a88ffffff010001000000000028213ee20600d4ff5bffff00c7e5ed5e00000000000000000000eaf60d18125d4b18857a9eace3dbe8b12c", 0x48}], 0x1) openat$dsp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x4a082, 0x0) 2018/05/26 12:22:22 executing program 0 (fault-call:2 fault-nth:27): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:22:22 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000100, 0x800000c000000000]}) 2018/05/26 12:22:22 executing program 3: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000d28000)={0xaa}) r1 = epoll_create1(0x0) r2 = socket(0xa, 0x1, 0x0) r3 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x101000, 0x0) ioctl$BLKDISCARD(r3, 0x1277, &(0x7f0000000040)=0x80000001) ioctl(r2, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) r4 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r4, 0xc0145401, &(0x7f0000013000)) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r4, 0x54a3) readv(r4, &(0x7f000042bff8)=[{&(0x7f0000e3b000)=""/61, 0x3d}], 0x1) dup3(r1, r0, 0x0) [ 497.238902] FAULT_INJECTION: forcing a failure. [ 497.238902] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 497.250776] CPU: 1 PID: 29481 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 497.258070] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 497.267440] Call Trace: [ 497.270058] dump_stack+0x1b9/0x294 [ 497.273718] ? dump_stack_print_info.cold.2+0x52/0x52 [ 497.278932] ? find_held_lock+0x36/0x1c0 [ 497.282998] should_fail.cold.4+0xa/0x1a [ 497.287075] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 497.292187] ? debug_check_no_locks_freed+0x310/0x310 [ 497.297384] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 497.302592] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 497.307804] ? is_bpf_text_address+0xd7/0x170 [ 497.312324] ? kernel_text_address+0x79/0xf0 [ 497.316750] ? __unwind_start+0x166/0x330 [ 497.320903] ? __kernel_text_address+0xd/0x40 [ 497.325404] ? unwind_get_return_address+0x61/0xa0 [ 497.330350] ? perf_trace_lock_acquire+0xe3/0x980 [ 497.335218] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 497.340768] ? should_fail+0x21b/0xbcd [ 497.344678] __alloc_pages_nodemask+0x34e/0xd70 [ 497.349364] ? kmem_cache_alloc+0x12e/0x760 [ 497.353706] ? mempool_alloc_slab+0x44/0x60 [ 497.358034] ? mempool_create_node+0x2cf/0x610 [ 497.362624] ? mempool_create+0x37/0x40 [ 497.366592] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 497.371609] ? get_gendisk+0x4c/0x380 [ 497.375423] ? blkdev_get+0xb9/0xb30 [ 497.379140] ? do_dentry_open+0x7ef/0xf10 [ 497.383294] ? find_held_lock+0x36/0x1c0 [ 497.387365] ? __lock_is_held+0xb5/0x140 [ 497.391427] ? i915_gem_create+0x210/0x210 [ 497.395667] ? check_same_owner+0x320/0x320 [ 497.399989] cache_grow_begin+0x6e/0x6c0 [ 497.404058] kmem_cache_alloc+0x689/0x760 [ 497.408198] ? init_wait_entry+0x1b0/0x1b0 [ 497.412440] ? mempool_free+0x370/0x370 [ 497.416427] mempool_alloc_slab+0x44/0x60 [ 497.420573] mempool_create_node+0x2cf/0x610 [ 497.424976] ? mempool_free+0x370/0x370 [ 497.428940] ? mempool_alloc_slab+0x60/0x60 [ 497.433260] mempool_create+0x37/0x40 [ 497.437075] bioset_create+0x6b3/0x900 [ 497.440966] ? bioset_free+0x320/0x320 [ 497.444856] ? debug_mutex_init+0x1c/0x60 [ 497.449009] blk_alloc_queue_node+0x16e/0xe40 [ 497.453510] ? blk_init_allocated_queue+0x620/0x620 [ 497.458536] ? __mutex_init+0x1ef/0x280 [ 497.462504] ? __ia32_sys_membarrier+0x150/0x150 [ 497.467262] ? blk_mq_alloc_rq_map+0x142/0x220 [ 497.471856] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 497.477385] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 497.482144] ? blk_mq_alloc_tag_set+0x506/0xab0 [ 497.486830] ? idr_alloc+0x145/0x1a0 [ 497.490556] ? blk_mq_update_nr_hw_queues+0x4f0/0x4f0 [ 497.495753] blk_mq_init_queue+0x4b/0xb0 [ 497.499813] loop_add+0x32b/0x9c0 [ 497.503264] ? loop_lookup+0x102/0x220 [ 497.507141] ? loop_queue_rq+0x640/0x640 [ 497.511191] ? module_unload_free+0x5b0/0x5b0 [ 497.515681] loop_probe+0x185/0x1c0 [ 497.519304] ? loop_control_ioctl+0x500/0x500 [ 497.523802] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 497.528986] kobj_lookup+0x269/0x460 [ 497.532700] ? loop_control_ioctl+0x500/0x500 [ 497.537190] get_gendisk+0x4c/0x380 [ 497.540814] __blkdev_get+0x45f/0x13a0 [ 497.544701] ? blkdev_get_block+0xc0/0xc0 [ 497.548841] blkdev_get+0xb9/0xb30 [ 497.552377] ? bdget+0x5c0/0x5c0 [ 497.555752] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 497.560352] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 497.565892] ? errseq_sample+0xe3/0x120 [ 497.569868] ? _copy_to_user+0x110/0x110 [ 497.573933] ? _raw_spin_unlock+0x22/0x30 [ 497.578088] blkdev_open+0x1fb/0x280 [ 497.581813] do_dentry_open+0x7ef/0xf10 [ 497.585800] ? bd_acquire+0x2c0/0x2c0 [ 497.589603] vfs_open+0x139/0x230 [ 497.593058] path_openat+0x1676/0x4e20 [ 497.596948] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 497.601705] ? find_held_lock+0x36/0x1c0 [ 497.605769] ? lock_downgrade+0x8e0/0x8e0 [ 497.609909] ? kasan_check_read+0x11/0x20 [ 497.614054] ? do_raw_spin_unlock+0x9e/0x2e0 [ 497.618453] ? __lock_is_held+0xb5/0x140 [ 497.622520] ? _raw_spin_unlock+0x22/0x30 [ 497.626661] ? __alloc_fd+0x346/0x700 [ 497.630452] ? usercopy_warn+0x120/0x120 [ 497.634512] do_filp_open+0x249/0x350 [ 497.638305] ? may_open_dev+0x100/0x100 [ 497.642267] ? strncpy_from_user+0x3b6/0x500 [ 497.646671] ? mpi_free.cold.1+0x19/0x19 [ 497.650724] ? get_unused_fd_flags+0x121/0x190 [ 497.655301] ? getname_flags+0xd0/0x5a0 [ 497.659275] ? getname_flags+0x26e/0x5a0 [ 497.663338] do_sys_open+0x56f/0x740 [ 497.667052] ? mm_fault_error+0x314/0x380 [ 497.671197] ? filp_open+0x80/0x80 [ 497.674731] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 497.679565] __x64_sys_open+0x7e/0xc0 [ 497.683355] do_syscall_64+0x1b1/0x800 [ 497.687240] ? finish_task_switch+0x1ca/0x840 [ 497.691719] ? syscall_return_slowpath+0x5c0/0x5c0 [ 497.696630] ? syscall_return_slowpath+0x30f/0x5c0 [ 497.701550] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 497.707087] ? retint_user+0x18/0x18 [ 497.710806] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 497.715659] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 497.720830] RIP: 0033:0x40fc61 [ 497.724005] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 497.731707] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 2018/05/26 12:22:23 executing program 2: r0 = syz_init_net_socket$llc(0x1a, 0x4, 0x0) io_setup(0x3, &(0x7f0000000340)=0x0) r2 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000280)='/dev/sequencer\x00', 0x40000, 0x0) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080)='IPVS\x00') fcntl$F_GET_RW_HINT(r0, 0x40b, &(0x7f0000000200)) sendmsg$IPVS_CMD_SET_SERVICE(r2, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200ce48}, 0xc, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="000126bd7000fbdbde250200000008000600ff0000001c00030008000300030072d9080008004300000008000300020000003400010008000600727200000800050003000000080002007f000000080005000100000008000b007369700008000600727200001c00030008000500e0000001080007004e240000080003000200000008000500fffffeff"], 0x90}, 0x1, 0x0, 0x0, 0x4840}, 0x4000090) io_submit(r1, 0x1, &(0x7f0000000b00)=[&(0x7f0000000440)={0x0, 0x0, 0x0, 0x8, 0x0, r0, &(0x7f0000000380)}]) setsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r2, 0x84, 0xc, &(0x7f0000000240)=0x4, 0x4) 2018/05/26 12:22:23 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x891f, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) [ 497.738959] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 [ 497.746214] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 [ 497.753483] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 [ 497.760738] R13: 0000000000000744 R14: 00000000006fef00 R15: 000000000000001b 2018/05/26 12:22:23 executing program 0 (fault-call:2 fault-nth:28): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:22:23 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000100, 0xd901]}) 2018/05/26 12:22:23 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x0, 0xffffffffffffffff, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') [ 497.854548] XFS (loop7): Invalid superblock magic number 2018/05/26 12:22:23 executing program 2: r0 = socket$inet(0x2, 0x5, 0x0) getsockopt$sock_buf(r0, 0x1, 0x1c, &(0x7f0000000480)=""/4096, &(0x7f0000001480)=0x1000) 2018/05/26 12:22:23 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(r0, &(0x7f0000000100), 0xffffffffffffffd6, 0x0, &(0x7f000031e000)={0xa, 0x4e22}, 0x1c) r1 = socket$inet(0x10, 0x3, 0x4) sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f000000d000)=[{&(0x7f0000008000)="4c0000001200ff09fffefd956fa283b724a6008000000000000000683540150024001d001fc41180b598bc593ab6821148a730de33a49868c62b2ca654a6613b6aabf35d0f1cbc882b079881", 0x4c}], 0x1}, 0x0) 2018/05/26 12:22:23 executing program 7: socket$packet(0x11, 0x3, 0x300) syz_emit_ethernet(0x36, &(0x7f0000000040)={@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, @local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x4, 0x0, @remote={0xac, 0x14, 0x14, 0xbb}, @local={0xac, 0x14, 0x14, 0xaa}}, @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, &(0x7f00000002c0)) [ 497.920157] XFS (loop7): Invalid superblock magic number [ 498.085012] FAULT_INJECTION: forcing a failure. [ 498.085012] name failslab, interval 1, probability 0, space 0, times 0 [ 498.096596] CPU: 0 PID: 29529 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 498.103878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 498.113237] Call Trace: [ 498.115852] dump_stack+0x1b9/0x294 [ 498.119507] ? dump_stack_print_info.cold.2+0x52/0x52 [ 498.124709] ? perf_trace_lock_acquire+0xe3/0x980 [ 498.129564] should_fail.cold.4+0xa/0x1a [ 498.133616] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 498.138706] ? perf_trace_lock+0x900/0x900 [ 498.143037] ? graph_lock+0x170/0x170 [ 498.146826] ? graph_lock+0x170/0x170 [ 498.150618] ? find_held_lock+0x36/0x1c0 [ 498.154667] ? __lock_is_held+0xb5/0x140 [ 498.158724] ? check_same_owner+0x320/0x320 [ 498.163037] ? rcu_note_context_switch+0x710/0x710 [ 498.167954] __should_failslab+0x124/0x180 [ 498.172178] should_failslab+0x9/0x14 [ 498.175966] kmem_cache_alloc_trace+0x2cb/0x780 [ 498.180620] ? _raw_spin_unlock_irqrestore+0x74/0xc0 [ 498.185707] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 498.190728] wb_congested_get_create+0x1ca/0x450 [ 498.195556] ? wb_wakeup_delayed+0xf0/0xf0 [ 498.199781] ? __lockdep_init_map+0x105/0x590 [ 498.204268] wb_init+0x62e/0x9e0 [ 498.207641] ? bdi_put+0x180/0x180 [ 498.211186] ? mark_held_locks+0xc9/0x160 [ 498.215319] ? __blkdev_get+0x45f/0x13a0 [ 498.219369] ? __raw_spin_lock_init+0x1c/0x100 [ 498.223940] ? mark_held_locks+0xc9/0x160 [ 498.228074] ? __raw_spin_lock_init+0x1c/0x100 [ 498.232639] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 498.237650] ? lockdep_init_map+0x9/0x10 [ 498.241699] bdi_init+0x353/0x510 [ 498.245136] ? wb_init+0x9e0/0x9e0 [ 498.248663] ? bdi_alloc_node+0x67/0xe0 [ 498.252620] ? bdi_alloc_node+0x67/0xe0 [ 498.256579] ? rcu_read_lock_sched_held+0x108/0x120 [ 498.261585] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 498.266850] ? bioset_free+0x320/0x320 [ 498.270724] bdi_alloc_node+0x81/0xe0 [ 498.274514] blk_alloc_queue_node+0x1c1/0xe40 [ 498.278997] ? blk_init_allocated_queue+0x620/0x620 [ 498.284005] ? __mutex_init+0x1ef/0x280 [ 498.287970] ? __ia32_sys_membarrier+0x150/0x150 [ 498.292717] ? blk_mq_alloc_rq_map+0x142/0x220 [ 498.297289] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 498.302813] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 498.307560] ? blk_mq_alloc_tag_set+0x506/0xab0 [ 498.312215] ? idr_alloc+0x145/0x1a0 [ 498.315918] ? blk_mq_update_nr_hw_queues+0x4f0/0x4f0 [ 498.321096] blk_mq_init_queue+0x4b/0xb0 [ 498.325152] loop_add+0x32b/0x9c0 [ 498.328587] ? loop_lookup+0x102/0x220 [ 498.332458] ? loop_queue_rq+0x640/0x640 [ 498.336935] ? module_unload_free+0x5b0/0x5b0 [ 498.341416] loop_probe+0x185/0x1c0 [ 498.345029] ? loop_control_ioctl+0x500/0x500 [ 498.349510] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 498.354691] kobj_lookup+0x269/0x460 [ 498.358393] ? loop_control_ioctl+0x500/0x500 [ 498.362874] get_gendisk+0x4c/0x380 [ 498.366490] __blkdev_get+0x45f/0x13a0 [ 498.370374] ? blkdev_get_block+0xc0/0xc0 [ 498.374513] blkdev_get+0xb9/0xb30 [ 498.378043] ? bdget+0x5c0/0x5c0 [ 498.381398] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 498.385968] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 498.391495] ? errseq_sample+0xe3/0x120 [ 498.395455] ? _copy_to_user+0x110/0x110 [ 498.399502] ? _raw_spin_unlock+0x22/0x30 [ 498.403644] blkdev_open+0x1fb/0x280 [ 498.407349] do_dentry_open+0x7ef/0xf10 [ 498.411309] ? bd_acquire+0x2c0/0x2c0 [ 498.415102] vfs_open+0x139/0x230 [ 498.418546] path_openat+0x1676/0x4e20 [ 498.422429] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 498.427174] ? find_held_lock+0x36/0x1c0 [ 498.431230] ? lock_downgrade+0x8e0/0x8e0 [ 498.435368] ? kasan_check_read+0x11/0x20 [ 498.439509] ? do_raw_spin_unlock+0x9e/0x2e0 [ 498.443902] ? __lock_is_held+0xb5/0x140 [ 498.447954] ? _raw_spin_unlock+0x22/0x30 [ 498.452089] ? __alloc_fd+0x346/0x700 [ 498.455875] ? usercopy_warn+0x120/0x120 [ 498.459928] do_filp_open+0x249/0x350 [ 498.463715] ? may_open_dev+0x100/0x100 [ 498.467677] ? strncpy_from_user+0x3b6/0x500 [ 498.472076] ? mpi_free.cold.1+0x19/0x19 [ 498.476124] ? get_unused_fd_flags+0x121/0x190 [ 498.480688] ? getname_flags+0xd0/0x5a0 [ 498.484647] ? getname_flags+0x26e/0x5a0 [ 498.488697] do_sys_open+0x56f/0x740 [ 498.492398] ? mm_fault_error+0x314/0x380 [ 498.496533] ? filp_open+0x80/0x80 [ 498.500060] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 498.504890] __x64_sys_open+0x7e/0xc0 [ 498.508676] do_syscall_64+0x1b1/0x800 [ 498.512549] ? syscall_return_slowpath+0x5c0/0x5c0 [ 498.517466] ? syscall_return_slowpath+0x30f/0x5c0 [ 498.522382] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 498.527901] ? retint_user+0x18/0x18 [ 498.531605] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 498.536438] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 498.541609] RIP: 0033:0x40fc61 [ 498.544781] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 498.552475] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 498.559730] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 [ 498.566983] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 [ 498.574235] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 [ 498.581487] R13: 0000000000000744 R14: 00000000006fef00 R15: 000000000000001c 2018/05/26 12:22:24 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8982, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:22:24 executing program 3: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000d28000)={0xaa}) r1 = epoll_create1(0x0) r2 = socket(0xa, 0x1, 0x0) ioctl(r2, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) r3 = syz_open_dev$sndtimer(&(0x7f0000000000)='/dev/snd/timer\x00', 0x0, 0xffffffffffffffff) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r3, 0xc0145401, &(0x7f0000013000)) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r3, 0x54a3) socket$bt_hidp(0x1f, 0x3, 0x6) readv(r3, &(0x7f000042bff8)=[{&(0x7f0000e3b000)=""/61, 0x3d}], 0x1) dup3(r1, r0, 0x0) 2018/05/26 12:22:24 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000100, 0x8004000000000000]}) 2018/05/26 12:22:24 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(r0, &(0x7f0000000100), 0xffffffffffffffd6, 0x0, &(0x7f000031e000)={0xa, 0x4e22}, 0x1c) r1 = socket$inet(0x10, 0x3, 0x4) sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f000000d000)=[{&(0x7f0000008000)="4c0000001200ff09fffefd956fa283b724a6008000000000000000683540150024001d001fc41180b598bc593ab6821148a730de33a49868c62b2ca654a6613b6aabf35d0f1cbc882b079881", 0x4c}], 0x1}, 0x0) 2018/05/26 12:22:24 executing program 0 (fault-call:2 fault-nth:29): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:22:24 executing program 2: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) mount(&(0x7f0000000200)='./file0/file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)='sysfs\x00', 0x1, &(0x7f0000000280)) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ustat(0x9, &(0x7f0000000000)) prctl$getreaper(0x1b, &(0x7f0000000080)) syz_fuseblk_mount(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) 2018/05/26 12:22:24 executing program 7: r0 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$inet_tcp_int(r0, 0x6, 0x1f, &(0x7f0000000080), &(0x7f00000002c0)=0x4) r1 = socket$packet(0x11, 0x3, 0x300) getsockopt$IP_VS_SO_GET_SERVICE(r1, 0x0, 0x483, &(0x7f0000000000), &(0x7f00000000c0)=0x68) 2018/05/26 12:22:24 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x0, 0x10000000000000, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') [ 499.050624] FAULT_INJECTION: forcing a failure. [ 499.050624] name failslab, interval 1, probability 0, space 0, times 0 [ 499.061979] CPU: 0 PID: 29561 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 499.069266] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 499.078622] Call Trace: [ 499.081241] dump_stack+0x1b9/0x294 [ 499.084896] ? dump_stack_print_info.cold.2+0x52/0x52 [ 499.090103] ? perf_trace_lock_acquire+0xe3/0x980 [ 499.094957] should_fail.cold.4+0xa/0x1a [ 499.099013] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 499.104110] ? print_usage_bug+0xc0/0xc0 [ 499.108156] ? graph_lock+0x170/0x170 [ 499.111963] ? find_held_lock+0x36/0x1c0 [ 499.116021] ? __lock_is_held+0xb5/0x140 [ 499.120080] ? check_same_owner+0x320/0x320 [ 499.124390] ? rcu_note_context_switch+0x710/0x710 [ 499.129311] __should_failslab+0x124/0x180 [ 499.133533] should_failslab+0x9/0x14 [ 499.137320] kmem_cache_alloc_node_trace+0x26f/0x770 [ 499.142427] ? lock_downgrade+0x8e0/0x8e0 [ 499.146568] throtl_pd_alloc+0xd7/0x970 [ 499.150531] ? blk_throtl_dispatch_work_fn+0x480/0x480 [ 499.155795] ? _raw_spin_unlock_irq+0x27/0x70 [ 499.160291] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 499.165296] ? trace_hardirqs_on+0xd/0x10 [ 499.169435] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 499.174958] ? blk_throtl_dispatch_work_fn+0x480/0x480 [ 499.180228] blkcg_activate_policy+0xf4/0x580 [ 499.184715] blk_throtl_init+0x3d0/0x630 [ 499.188761] ? blk_throtl_drain+0x7e0/0x7e0 [ 499.193070] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 499.198072] blkcg_init_queue+0x1ef/0x480 [ 499.202207] blk_alloc_queue_node+0x8bd/0xe40 [ 499.206692] ? blk_init_allocated_queue+0x620/0x620 [ 499.211701] ? __mutex_init+0x1ef/0x280 [ 499.215678] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 499.221201] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 499.225946] ? idr_alloc+0x145/0x1a0 [ 499.229649] ? blk_mq_update_nr_hw_queues+0x4f0/0x4f0 [ 499.234826] blk_mq_init_queue+0x4b/0xb0 [ 499.238877] loop_add+0x32b/0x9c0 [ 499.242315] ? loop_lookup+0x102/0x220 [ 499.246195] ? loop_queue_rq+0x640/0x640 [ 499.250244] ? module_unload_free+0x5b0/0x5b0 [ 499.254728] loop_probe+0x185/0x1c0 [ 499.258339] ? loop_control_ioctl+0x500/0x500 [ 499.262823] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 499.268002] kobj_lookup+0x269/0x460 [ 499.271710] ? loop_control_ioctl+0x500/0x500 [ 499.276192] get_gendisk+0x4c/0x380 [ 499.279808] __blkdev_get+0x45f/0x13a0 [ 499.283691] ? blkdev_get_block+0xc0/0xc0 [ 499.287833] blkdev_get+0xb9/0xb30 [ 499.291364] ? bdget+0x5c0/0x5c0 [ 499.294718] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 499.299289] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 499.304822] ? errseq_sample+0xe3/0x120 [ 499.308783] ? _copy_to_user+0x110/0x110 [ 499.312838] ? _raw_spin_unlock+0x22/0x30 [ 499.316975] blkdev_open+0x1fb/0x280 [ 499.320680] do_dentry_open+0x7ef/0xf10 [ 499.324638] ? bd_acquire+0x2c0/0x2c0 [ 499.328428] vfs_open+0x139/0x230 [ 499.331872] path_openat+0x1676/0x4e20 [ 499.335757] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 499.340503] ? find_held_lock+0x36/0x1c0 [ 499.344557] ? lock_downgrade+0x8e0/0x8e0 [ 499.348697] ? kasan_check_read+0x11/0x20 [ 499.352832] ? do_raw_spin_unlock+0x9e/0x2e0 [ 499.357227] ? __lock_is_held+0xb5/0x140 [ 499.361802] ? _raw_spin_unlock+0x22/0x30 [ 499.365939] ? __alloc_fd+0x346/0x700 [ 499.369727] ? usercopy_warn+0x120/0x120 [ 499.373783] do_filp_open+0x249/0x350 [ 499.377569] ? may_open_dev+0x100/0x100 [ 499.381528] ? strncpy_from_user+0x3b6/0x500 [ 499.385923] ? mpi_free.cold.1+0x19/0x19 [ 499.389971] ? get_unused_fd_flags+0x121/0x190 [ 499.394536] ? getname_flags+0xd0/0x5a0 [ 499.398495] ? getname_flags+0x26e/0x5a0 [ 499.402545] do_sys_open+0x56f/0x740 [ 499.406247] ? mm_fault_error+0x314/0x380 [ 499.410379] ? filp_open+0x80/0x80 [ 499.413908] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 499.419436] __x64_sys_open+0x7e/0xc0 [ 499.423223] do_syscall_64+0x1b1/0x800 [ 499.427095] ? finish_task_switch+0x1ca/0x840 [ 499.431575] ? syscall_return_slowpath+0x5c0/0x5c0 [ 499.436490] ? syscall_return_slowpath+0x30f/0x5c0 [ 499.441408] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 499.446943] ? retint_user+0x18/0x18 [ 499.450646] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 499.455478] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 499.460652] RIP: 0033:0x40fc61 [ 499.463825] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 499.471521] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 499.478773] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 [ 499.486031] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 [ 499.493283] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 2018/05/26 12:22:25 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8993, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:22:25 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000100, 0xd0040000]}) 2018/05/26 12:22:25 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(r0, &(0x7f0000000100), 0xffffffffffffffd6, 0x0, &(0x7f000031e000)={0xa, 0x4e22}, 0x1c) r1 = socket$inet(0x10, 0x3, 0x4) sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f000000d000)=[{&(0x7f0000008000)="4c0000001200ff09fffefd956fa283b724a6008000000000000000683540150024001d001fc41180b598bc593ab6821148a730de33a49868c62b2ca654a6613b6aabf35d0f1cbc882b079881", 0x4c}], 0x1}, 0x0) 2018/05/26 12:22:25 executing program 0 (fault-call:2 fault-nth:30): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) [ 499.500533] R13: 0000000000000744 R14: 00000000006fef00 R15: 000000000000001d 2018/05/26 12:22:25 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f00000000c0)="c4824da82b66ba2100b801000000efb9270900000f323640a7650f30c4e2899c8e02000000f02046452ef3440f6fb800f0ff7fc42101dbc40f2047"}], 0x0, 0x0, &(0x7f0000000080), 0x0) ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f0000000380)=ANY=[@ANYRES32=r2]) bind$netrom(r1, &(0x7f00000001c0)=@full={{0x3, {"07b6955a643865"}, 0x2}, [{"59b4660c86f2c0"}, {"b2bb7880668ecc"}, {"24db2e787e8b12"}, {"b996277035ae9d"}, {"f51a43e583f808"}, {"b92dbda7bbb018"}, {"b462959cac35a8"}, {"75401fba5b95fc"}]}, 0x48) ioctl$KVM_ENABLE_CAP_CPU(r3, 0xc008ae88, &(0x7f0000000140)={0x2, 0x0, [0xda0]}) setsockopt$inet_udp_encap(r1, 0x11, 0x64, &(0x7f0000000040)=0x2, 0x4) 2018/05/26 12:22:25 executing program 7: r0 = creat(&(0x7f0000001380)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f00000013c0)=ANY=[], 0x0) linkat(r0, &(0x7f0000000100)='./file0\x00', r0, &(0x7f0000000140)='./file0\x00', 0x1400) ioctl$fiemap(r0, 0x40086602, &(0x7f00000000c0)=ANY=[]) syz_init_net_socket$nfc_raw(0x27, 0x1, 0x0) ioctl$DRM_IOCTL_GET_MAGIC(r0, 0x80046402, &(0x7f0000000000)=0x1) ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_CLIENT(r0, 0xc0bc5351, &(0x7f0000000040)={0x5313, 0x3, 'client0\x00', 0x5, "1ca552282b83f086", "30a5cd5bf2d67cd5d437391164d47210e622baad0714f7ea867f62e484169c8e", 0x5, 0xfff}) 2018/05/26 12:22:25 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_buf(r0, 0x29, 0x20000000008, &(0x7f0000000000), 0x0) [ 499.892662] FAULT_INJECTION: forcing a failure. [ 499.892662] name failslab, interval 1, probability 0, space 0, times 0 [ 499.903995] CPU: 1 PID: 29595 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 499.911285] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 499.920647] Call Trace: [ 499.923254] dump_stack+0x1b9/0x294 [ 499.926904] ? dump_stack_print_info.cold.2+0x52/0x52 [ 499.932103] ? perf_trace_lock_acquire+0xe3/0x980 [ 499.936939] ? save_stack+0x43/0xd0 [ 499.940552] ? __kasan_slab_free+0x11a/0x170 [ 499.944947] ? kasan_slab_free+0xe/0x10 [ 499.948906] ? kfree+0xd9/0x260 [ 499.952183] ? throtl_pd_free+0x21/0x30 [ 499.956158] should_fail.cold.4+0xa/0x1a [ 499.960212] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 499.965308] ? print_usage_bug+0xc0/0xc0 [ 499.969369] ? do_raw_spin_lock+0xc1/0x200 [ 499.973594] ? graph_lock+0x170/0x170 [ 499.977386] ? trace_hardirqs_off+0xd/0x10 [ 499.981611] ? _raw_spin_unlock_irqrestore+0x63/0xc0 [ 499.986705] ? find_held_lock+0x36/0x1c0 [ 499.990757] ? __lock_is_held+0xb5/0x140 [ 499.994818] ? check_same_owner+0x320/0x320 [ 499.999135] ? rcu_note_context_switch+0x710/0x710 [ 500.004052] ? blkcg_activate_policy+0x3db/0x580 [ 500.008809] __should_failslab+0x124/0x180 [ 500.013037] should_failslab+0x9/0x14 [ 500.016828] kmem_cache_alloc_trace+0x2cb/0x780 [ 500.021483] ? blk_throtl_init+0x3e6/0x630 [ 500.025708] ? blk_throtl_drain+0x7e0/0x7e0 [ 500.030028] ? blk_mq_can_queue+0x50/0x50 [ 500.034160] ? plug_ctx_cmp+0x110/0x110 [ 500.038127] blk_stat_alloc_callback+0x5b/0x280 [ 500.042790] blk_mq_init_allocated_queue+0x125/0x1580 [ 500.047972] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 500.053497] ? blk_alloc_queue_node+0x8d3/0xe40 [ 500.058160] ? blk_mq_map_swqueue+0xaa0/0xaa0 [ 500.062645] ? __mutex_init+0x1ef/0x280 [ 500.066645] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 500.072167] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 500.076918] ? idr_alloc+0x145/0x1a0 [ 500.080626] ? blk_mq_update_nr_hw_queues+0x4f0/0x4f0 [ 500.085816] blk_mq_init_queue+0x63/0xb0 [ 500.089875] loop_add+0x32b/0x9c0 [ 500.093313] ? loop_lookup+0x102/0x220 [ 500.097196] ? loop_queue_rq+0x640/0x640 [ 500.101244] ? module_unload_free+0x5b0/0x5b0 [ 500.105730] loop_probe+0x185/0x1c0 [ 500.109343] ? loop_control_ioctl+0x500/0x500 [ 500.113828] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 500.119016] kobj_lookup+0x269/0x460 [ 500.122725] ? loop_control_ioctl+0x500/0x500 [ 500.127212] get_gendisk+0x4c/0x380 [ 500.130831] __blkdev_get+0x45f/0x13a0 [ 500.134716] ? blkdev_get_block+0xc0/0xc0 [ 500.138858] blkdev_get+0xb9/0xb30 [ 500.142391] ? bdget+0x5c0/0x5c0 [ 500.145745] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 500.150317] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 500.155841] ? errseq_sample+0xe3/0x120 [ 500.159803] ? _copy_to_user+0x110/0x110 [ 500.163853] ? _raw_spin_unlock+0x22/0x30 [ 500.167996] blkdev_open+0x1fb/0x280 [ 500.171710] do_dentry_open+0x7ef/0xf10 [ 500.175691] ? bd_acquire+0x2c0/0x2c0 [ 500.179485] vfs_open+0x139/0x230 [ 500.182933] path_openat+0x1676/0x4e20 [ 500.186825] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 500.192239] ? find_held_lock+0x36/0x1c0 [ 500.196302] ? lock_downgrade+0x8e0/0x8e0 [ 500.200443] ? kasan_check_read+0x11/0x20 [ 500.204577] ? do_raw_spin_unlock+0x9e/0x2e0 [ 500.208979] ? __lock_is_held+0xb5/0x140 [ 500.213042] ? _raw_spin_unlock+0x22/0x30 [ 500.217194] ? __alloc_fd+0x346/0x700 [ 500.220982] ? usercopy_warn+0x120/0x120 [ 500.225047] do_filp_open+0x249/0x350 [ 500.228840] ? may_open_dev+0x100/0x100 [ 500.232801] ? strncpy_from_user+0x3b6/0x500 [ 500.237202] ? mpi_free.cold.1+0x19/0x19 [ 500.241254] ? get_unused_fd_flags+0x121/0x190 [ 500.245819] ? getname_flags+0xd0/0x5a0 [ 500.249781] ? getname_flags+0x26e/0x5a0 [ 500.253835] do_sys_open+0x56f/0x740 [ 500.257542] ? mm_fault_error+0x314/0x380 [ 500.261677] ? filp_open+0x80/0x80 [ 500.265214] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 500.270048] __x64_sys_open+0x7e/0xc0 [ 500.273836] do_syscall_64+0x1b1/0x800 [ 500.277713] ? finish_task_switch+0x1ca/0x840 [ 500.282199] ? syscall_return_slowpath+0x5c0/0x5c0 [ 500.287119] ? syscall_return_slowpath+0x30f/0x5c0 [ 500.292042] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 500.297565] ? retint_user+0x18/0x18 [ 500.301277] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 500.306115] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 500.311289] RIP: 0033:0x40fc61 [ 500.314466] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 500.322166] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 500.329420] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 [ 500.336676] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 2018/05/26 12:22:26 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x0, 0x80000000000000, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:22:26 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000100, 0x7a01]}) [ 500.343932] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 [ 500.351185] R13: 0000000000000744 R14: 00000000006fef00 R15: 000000000000001e 2018/05/26 12:22:26 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x0, 0xfbffffff, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:22:26 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(r0, &(0x7f0000000100), 0xffffffffffffffd6, 0x20000004, &(0x7f000031e000)={0xa}, 0x1c) r1 = socket$inet(0x10, 0x3, 0x4) sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f000000d000)=[{&(0x7f0000008000)="4c0000001200ff09fffefd956fa283b724a6008000000000000000683540150024001d001fc41180b598bc593ab6821148a730de33a49868c62b2ca654a6613b6aabf35d0f1cbc882b079881", 0x4c}], 0x1}, 0x0) 2018/05/26 12:22:26 executing program 3: r0 = memfd_create(&(0x7f000088f000)='\x00\x00\x00', 0x0) write$vnet(r0, &(0x7f00000001c0)={0x1, {&(0x7f0000000140)=""/67, 0x43, &(0x7f0000000280)=""/254}}, 0x68) socket$bt_cmtp(0x1f, 0x3, 0x5) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000000)="c626262c8523bf012cf66f") ftruncate(r0, 0x68) 2018/05/26 12:22:26 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x6f3000, 0x2000, &(0x7f0000000000/0x2000)=nil}) 2018/05/26 12:22:26 executing program 0 (fault-call:2 fault-nth:31): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:22:26 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r0, 0x5452, &(0x7f0000000000)=0x10000) shutdown(r1, 0x2) 2018/05/26 12:22:26 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000100, 0xcd00]}) 2018/05/26 12:22:26 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8933, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) [ 500.728396] FAULT_INJECTION: forcing a failure. [ 500.728396] name failslab, interval 1, probability 0, space 0, times 0 [ 500.739871] CPU: 0 PID: 29630 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 500.747159] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 500.756515] Call Trace: [ 500.759122] dump_stack+0x1b9/0x294 [ 500.762769] ? dump_stack_print_info.cold.2+0x52/0x52 [ 500.767979] ? save_stack+0x43/0xd0 [ 500.771622] ? __kasan_slab_free+0x11a/0x170 [ 500.776049] ? kasan_slab_free+0xe/0x10 [ 500.780034] ? kfree+0xd9/0x260 [ 500.783325] ? throtl_pd_free+0x21/0x30 [ 500.787290] should_fail.cold.4+0xa/0x1a [ 500.791342] ? __blkdev_get+0x45f/0x13a0 [ 500.795402] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 500.800514] ? print_usage_bug+0xc0/0xc0 [ 500.804561] ? kasan_check_write+0x14/0x20 [ 500.808778] ? do_raw_spin_lock+0xc1/0x200 [ 500.813001] ? graph_lock+0x170/0x170 [ 500.816789] ? trace_hardirqs_off+0xd/0x10 [ 500.821014] ? _raw_spin_unlock_irqrestore+0x63/0xc0 [ 500.826122] ? find_held_lock+0x36/0x1c0 [ 500.830169] ? __lock_is_held+0xb5/0x140 [ 500.834223] ? check_same_owner+0x320/0x320 [ 500.838534] ? rcu_note_context_switch+0x710/0x710 [ 500.843452] ? blkcg_activate_policy+0x3db/0x580 [ 500.848195] __should_failslab+0x124/0x180 [ 500.852419] should_failslab+0x9/0x14 [ 500.856203] kmem_cache_alloc_trace+0x2cb/0x780 [ 500.860858] ? blk_throtl_init+0x3e6/0x630 [ 500.865081] ? blk_throtl_drain+0x7e0/0x7e0 [ 500.869387] ? blk_mq_can_queue+0x50/0x50 [ 500.873515] ? plug_ctx_cmp+0x110/0x110 [ 500.877472] blk_stat_alloc_callback+0x5b/0x280 [ 500.882129] blk_mq_init_allocated_queue+0x125/0x1580 [ 500.887304] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 500.892824] ? blk_alloc_queue_node+0x8d3/0xe40 [ 500.897479] ? blk_mq_map_swqueue+0xaa0/0xaa0 [ 500.901968] ? __mutex_init+0x1ef/0x280 [ 500.905940] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 500.911461] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 500.916205] ? idr_alloc+0x145/0x1a0 [ 500.919906] ? blk_mq_update_nr_hw_queues+0x4f0/0x4f0 [ 500.925085] blk_mq_init_queue+0x63/0xb0 [ 500.929131] loop_add+0x32b/0x9c0 [ 500.932565] ? loop_lookup+0x102/0x220 [ 500.936433] ? loop_queue_rq+0x640/0x640 [ 500.940477] ? module_unload_free+0x5b0/0x5b0 [ 500.944959] loop_probe+0x185/0x1c0 [ 500.948568] ? loop_control_ioctl+0x500/0x500 [ 500.953051] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 500.958237] kobj_lookup+0x269/0x460 [ 500.961944] ? loop_control_ioctl+0x500/0x500 [ 500.966425] get_gendisk+0x4c/0x380 [ 500.970043] __blkdev_get+0x45f/0x13a0 [ 500.973920] ? blkdev_get_block+0xc0/0xc0 [ 500.978064] blkdev_get+0xb9/0xb30 [ 500.981594] ? bdget+0x5c0/0x5c0 [ 500.984947] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 500.989521] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 500.995046] ? errseq_sample+0xe3/0x120 [ 500.999008] ? _copy_to_user+0x110/0x110 [ 501.003064] ? _raw_spin_unlock+0x22/0x30 [ 501.007197] blkdev_open+0x1fb/0x280 [ 501.010897] do_dentry_open+0x7ef/0xf10 [ 501.014856] ? bd_acquire+0x2c0/0x2c0 [ 501.018642] vfs_open+0x139/0x230 [ 501.022089] path_openat+0x1676/0x4e20 [ 501.025970] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 501.030712] ? find_held_lock+0x36/0x1c0 [ 501.034763] ? lock_downgrade+0x8e0/0x8e0 [ 501.038892] ? do_sys_open+0x39a/0x740 [ 501.042767] ? kasan_check_read+0x11/0x20 [ 501.046905] ? do_raw_spin_unlock+0x9e/0x2e0 [ 501.051299] ? __lock_is_held+0xb5/0x140 [ 501.055350] ? _raw_spin_unlock+0x22/0x30 [ 501.059483] ? __alloc_fd+0x346/0x700 [ 501.063266] ? usercopy_warn+0x120/0x120 [ 501.067316] do_filp_open+0x249/0x350 [ 501.071102] ? may_open_dev+0x100/0x100 [ 501.075061] ? strncpy_from_user+0x3b6/0x500 [ 501.079458] ? mpi_free.cold.1+0x19/0x19 [ 501.083509] ? get_unused_fd_flags+0x121/0x190 [ 501.088075] ? getname_flags+0xd0/0x5a0 [ 501.092041] ? getname_flags+0x26e/0x5a0 [ 501.096091] do_sys_open+0x56f/0x740 [ 501.099793] ? mm_fault_error+0x314/0x380 [ 501.103927] ? filp_open+0x80/0x80 [ 501.107452] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 501.112280] __x64_sys_open+0x7e/0xc0 [ 501.116064] do_syscall_64+0x1b1/0x800 [ 501.119939] ? finish_task_switch+0x1ca/0x840 [ 501.124418] ? syscall_return_slowpath+0x5c0/0x5c0 [ 501.129329] ? syscall_return_slowpath+0x30f/0x5c0 [ 501.134249] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 501.139770] ? retint_user+0x18/0x18 [ 501.143472] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 501.148302] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 501.153473] RIP: 0033:0x40fc61 [ 501.156643] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 501.164334] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 501.171595] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 2018/05/26 12:22:26 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x57d047b85db48ddd) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'ip_vti0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000240)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="29ee2b59270db3f81b8437655403000007000000", @ANYRES32=r1, @ANYBLOB="ffff03000a000200aaaaaaaaaaaa0000"], 0x28}, 0x1}, 0x0) r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x181000, 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r2, 0xc018620b, &(0x7f0000000100)={0x0}) ioctl$BINDER_GET_NODE_DEBUG_INFO(r0, 0xc018620b, &(0x7f0000000140)={r3}) ioctl$BLKBSZSET(r2, 0x40081271, &(0x7f00000001c0)=0x1) ioctl$sock_netrom_TIOCOUTQ(r2, 0x5411, &(0x7f00000000c0)) ioctl$PPPOEIOCSFWD(r2, 0x4008b100, &(0x7f0000000280)={0x18, 0x0, {0x4, @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0x13}, 'veth0\x00'}}) 2018/05/26 12:22:26 executing program 3: r0 = socket(0xa, 0x5, 0x0) getsockopt$inet6_opts(r0, 0x29, 0x3b, &(0x7f0000000440)=""/209, &(0x7f0000000000)=0xd1) socket(0x17, 0x0, 0x42b8) setsockopt$inet6_icmp_ICMP_FILTER(r0, 0x1, 0x1, &(0x7f0000000040)={0x101}, 0x3) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f00000001c0)=@nat={'nat\x00', 0x19, 0x1, 0x1a0, [0x20000280, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x0, &(0x7f00000000c0), &(0x7f0000000280)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x11, 0x0, 0x0, 'veth1\x00', 'sit0\x00', 'ipddp0\x00', 'veth0_to_bridge\x00', @empty, [], @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], [], 0x70, 0xa8, 0xe0}, [@snat={'snat\x00', 0x10, {{@link_local={0x1, 0x80, 0xc2}, 0xfffffffffffffffc}}}]}, @snat={'snat\x00', 0x10}}]}, {0x0, '\x00', 0x1, 0xfffffffffffffffe}]}, 0x218) 2018/05/26 12:22:26 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x890f, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:22:26 executing program 7: mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x3, 0x31, 0xffffffffffffffff, 0x0) futex(&(0x7f0000000380), 0x0, 0xfffffffffffffffe, &(0x7f00000002c0)={0x77359400}, &(0x7f0000000280)=0x1, 0x0) r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000080)='/dev/null\x00', 0x4000, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffff9c, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x48, &(0x7f0000000140)=[@in6={0xa, 0x4e24, 0x0, @mcast1={0xff, 0x1, [], 0x1}, 0x101}, @in6={0xa, 0x4e23, 0x1, @loopback={0x0, 0x1}, 0x87}, @in={0x2, 0x4e22, @local={0xac, 0x14, 0x14, 0xaa}}]}, &(0x7f0000000200)=0x10) setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000240)=@assoc_id=r1, 0x4) r2 = getpgid(0xffffffffffffffff) sched_setattr(r2, &(0x7f0000000040)={0x30, 0x3, 0x0, 0x9, 0x1, 0x10000, 0x3, 0x6}, 0x0) futex(&(0x7f000000cffc), 0x0, 0x0, &(0x7f0000001000)={0x77359400}, &(0x7f0000048000), 0x0) futex(&(0x7f000000cffc), 0x3, 0x0, &(0x7f00000000c0), &(0x7f0000000100), 0x0) 2018/05/26 12:22:26 executing program 0 (fault-call:2 fault-nth:32): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) [ 501.178845] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 [ 501.186097] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 [ 501.193350] R13: 0000000000000744 R14: 00000000006fef00 R15: 000000000000001f 2018/05/26 12:22:27 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000100, 0x12]}) 2018/05/26 12:22:27 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_dev$sndmidi(&(0x7f0000000100)='/dev/snd/midiC#D#\x00', 0x3, 0x2) request_key(&(0x7f0000000040)='asymmetric\x00', &(0x7f0000000080)={0x73, 0x79, 0x7a}, &(0x7f00000000c0)='keyring\x00', 0x0) [ 501.603951] FAULT_INJECTION: forcing a failure. [ 501.603951] name failslab, interval 1, probability 0, space 0, times 0 [ 501.615369] CPU: 1 PID: 29662 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 501.622647] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 501.632013] Call Trace: [ 501.634620] dump_stack+0x1b9/0x294 [ 501.638255] ? dump_stack_print_info.cold.2+0x52/0x52 [ 501.643454] ? lock_downgrade+0x8e0/0x8e0 [ 501.647628] should_fail.cold.4+0xa/0x1a [ 501.651696] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 501.656819] ? graph_lock+0x170/0x170 [ 501.660638] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 501.666181] ? pcpu_alloc+0x188/0x1380 [ 501.670085] ? find_held_lock+0x36/0x1c0 [ 501.674151] ? __lock_is_held+0xb5/0x140 [ 501.678226] ? check_same_owner+0x320/0x320 [ 501.682557] ? blk_mq_can_queue+0x50/0x50 [ 501.686708] ? rcu_note_context_switch+0x710/0x710 [ 501.691645] ? kobject_init+0x226/0x2d0 [ 501.695622] __should_failslab+0x124/0x180 [ 501.699866] should_failslab+0x9/0x14 [ 501.703670] kmem_cache_alloc_node_trace+0x26f/0x770 [ 501.708768] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 501.713774] ? find_next_bit+0x104/0x130 [ 501.717832] __kmalloc_node+0x33/0x70 [ 501.721638] blk_mq_init_allocated_queue+0x220/0x1580 [ 501.726837] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 501.732377] ? blk_alloc_queue_node+0x8d3/0xe40 [ 501.737063] ? blk_mq_map_swqueue+0xaa0/0xaa0 [ 501.741573] ? __mutex_init+0x1ef/0x280 [ 501.745568] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 501.751099] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 501.755860] ? idr_alloc+0x145/0x1a0 [ 501.759574] ? blk_mq_update_nr_hw_queues+0x4f0/0x4f0 [ 501.764752] blk_mq_init_queue+0x63/0xb0 [ 501.768802] loop_add+0x32b/0x9c0 [ 501.772248] ? loop_lookup+0x102/0x220 [ 501.776133] ? loop_queue_rq+0x640/0x640 [ 501.780183] ? module_unload_free+0x5b0/0x5b0 [ 501.784669] loop_probe+0x185/0x1c0 [ 501.788282] ? loop_control_ioctl+0x500/0x500 [ 501.792762] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 501.797960] kobj_lookup+0x269/0x460 [ 501.801668] ? loop_control_ioctl+0x500/0x500 [ 501.806153] get_gendisk+0x4c/0x380 [ 501.809764] __blkdev_get+0x45f/0x13a0 [ 501.813643] ? blkdev_get_block+0xc0/0xc0 [ 501.817788] blkdev_get+0xb9/0xb30 [ 501.821318] ? bdget+0x5c0/0x5c0 [ 501.824670] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 501.829255] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 501.834801] ? errseq_sample+0xe3/0x120 [ 501.838773] ? _copy_to_user+0x110/0x110 [ 501.842818] ? _raw_spin_unlock+0x22/0x30 [ 501.846952] blkdev_open+0x1fb/0x280 [ 501.850659] do_dentry_open+0x7ef/0xf10 [ 501.854631] ? bd_acquire+0x2c0/0x2c0 [ 501.858424] vfs_open+0x139/0x230 [ 501.861877] path_openat+0x1676/0x4e20 [ 501.865766] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 501.870509] ? find_held_lock+0x36/0x1c0 [ 501.874583] ? lock_downgrade+0x8e0/0x8e0 [ 501.878735] ? do_sys_open+0x39a/0x740 [ 501.882612] ? kasan_check_read+0x11/0x20 [ 501.886761] ? do_raw_spin_unlock+0x9e/0x2e0 [ 501.891173] ? __lock_is_held+0xb5/0x140 [ 501.895241] ? _raw_spin_unlock+0x22/0x30 [ 501.899386] ? __alloc_fd+0x346/0x700 [ 501.903178] ? usercopy_warn+0x120/0x120 [ 501.907232] do_filp_open+0x249/0x350 [ 501.911029] ? may_open_dev+0x100/0x100 [ 501.915011] ? strncpy_from_user+0x3b6/0x500 [ 501.919419] ? mpi_free.cold.1+0x19/0x19 [ 501.923480] ? get_unused_fd_flags+0x121/0x190 [ 501.928050] ? getname_flags+0xd0/0x5a0 [ 501.932016] ? getname_flags+0x26e/0x5a0 [ 501.936080] do_sys_open+0x56f/0x740 [ 501.939794] ? mm_fault_error+0x314/0x380 [ 501.943943] ? filp_open+0x80/0x80 [ 501.947485] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 501.952325] __x64_sys_open+0x7e/0xc0 [ 501.956113] do_syscall_64+0x1b1/0x800 [ 501.960000] ? finish_task_switch+0x1ca/0x840 [ 501.964494] ? syscall_return_slowpath+0x5c0/0x5c0 [ 501.969432] ? syscall_return_slowpath+0x30f/0x5c0 [ 501.974371] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 501.979904] ? retint_user+0x18/0x18 [ 501.983618] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 501.988460] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 501.993640] RIP: 0033:0x40fc61 [ 501.996821] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 502.004515] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 502.011777] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 [ 502.019041] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 [ 502.026300] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 [ 502.033556] R13: 0000000000000744 R14: 00000000006fef00 R15: 0000000000000020 2018/05/26 12:22:28 executing program 2: getpid() ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000180)=0x0) r1 = syz_open_procfs(r0, &(0x7f00000000c0)="20dd3939000000006c65737300e8494edcf216b26c72f7c5e6b4ea2c11e59796a015d6b8734a7b3658747643ef7688c859fc303402ca595234d4c1ed6605c010a9c4009dc72bb49e4f0b2def206996efa182813e0143c9ed46d8ee081f4abc0d7a59d7a4a32fcc08306933d74cdbf8c02478cf6b1ca03d94b947a44726c985d8a822c83eb4dc6ebb8023fb18b61c610bbcdd1c01ec06f0687b") preadv(r1, &(0x7f0000000480)=[{&(0x7f0000000380)=""/242, 0xf2}], 0x1, 0x10400003) 2018/05/26 12:22:28 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x0, 0x10, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:22:28 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(r0, &(0x7f0000000100), 0xffffffffffffffd6, 0x20000004, &(0x7f000031e000)={0xa}, 0x1c) r1 = socket$inet(0x10, 0x0, 0x4) sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f000000d000)=[{&(0x7f0000008000)="4c0000001200ff09fffefd956fa283b724a6008000000000000000683540150024001d001fc41180b598bc593ab6821148a730de33a49868c62b2ca654a6613b6aabf35d0f1cbc882b079881", 0x4c}], 0x1}, 0x0) 2018/05/26 12:22:28 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8970, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:22:28 executing program 0 (fault-call:2 fault-nth:33): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:22:28 executing program 3: r0 = syz_open_dev$tun(&(0x7f0000001580)='/dev/net/tun\x00', 0x0, 0xfffffffffffffffc) ioctl$TUNSETIFINDEX(r0, 0x400454da, &(0x7f0000000240)=0x20000005) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000180)={"643071300000000000000020001600", 0x3}) r1 = socket$nl_route(0x10, 0x3, 0x0) recvmsg(r1, &(0x7f0000001680)={0x0, 0x0, &(0x7f0000001540), 0x0, &(0x7f00000015c0)=""/184, 0xb8}, 0x0) recvmsg(r1, &(0x7f0000000140)={&(0x7f0000000080)=@vsock={0x0, 0x0, 0x0, @host}, 0x80, &(0x7f0000000100), 0x0, &(0x7f0000000340)=""/4096, 0x1000}, 0x0) r2 = socket(0xa, 0x1, 0x0) ioctl(r2, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r2, 0x84, 0x6c, &(0x7f0000000280)={0x0, 0x7f, "ba071ea3c165537a50096c38a2dcadfcb607e540cc6a9f051c9ccc670fbc7604629e97f3ca14917d726a6b4aedbd96c121ff8fcc7985b3978123b478c018489339309ad9aac4ddd4d85a44bccc49bc3a2070f603bbc91ad514d4dd3a08542915f7c5ba7110de85ad02ae13e825cdeefd34da29880425c369526b47fd429e9b"}, &(0x7f0000000100)=0x87) getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000000200)={r3, 0xffff}, &(0x7f0000001340)=0x8) sendmsg$nl_route(r1, &(0x7f0000001400)={&(0x7f00000001c0)={0x10}, 0xc, &(0x7f00000013c0)={&(0x7f0000000040)=@getnetconf={0x14, 0x52, 0x7c3324e99b989539}, 0x14}, 0x1}, 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000001440)={'vcan0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f0000001500)={&(0x7f0000001380)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000014c0)={&(0x7f0000001480)=@newqdisc={0x2c, 0x24, 0x30, 0x70bd29, 0x25dfdbfd, {0x0, r4, {0xd, 0xffff}, {0xc, 0xf}, {0x10, 0x10}}, [@TCA_RATE={0x8, 0x5, {0x32f, 0x400}}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40}, 0x880) 2018/05/26 12:22:28 executing program 7: r0 = dup3(0xffffffffffffffff, 0xffffffffffffff9c, 0x80000) ioctl$SG_GET_SG_TABLESIZE(r0, 0x227f, &(0x7f0000000040)) r1 = socket(0xa, 0x1, 0x0) getsockopt$IP_VS_SO_GET_SERVICES(r1, 0x0, 0x50, &(0x7f0000000180)=""/8, &(0x7f0000000000)=0x8) readahead(r1, 0x100000000, 0x1) 2018/05/26 12:22:28 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000100, 0x9f00004000000000]}) [ 502.664074] FAULT_INJECTION: forcing a failure. [ 502.664074] name failslab, interval 1, probability 0, space 0, times 0 [ 502.675856] CPU: 1 PID: 29692 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 502.683137] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 502.692494] Call Trace: [ 502.695093] dump_stack+0x1b9/0x294 [ 502.698712] ? dump_stack_print_info.cold.2+0x52/0x52 [ 502.703891] ? __save_stack_trace+0x7e/0xd0 [ 502.708221] should_fail.cold.4+0xa/0x1a [ 502.712281] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 502.717374] ? save_stack+0x43/0xd0 [ 502.720989] ? kasan_kmalloc+0xc4/0xe0 [ 502.724866] ? throtl_pd_alloc+0xd7/0x970 [ 502.729005] ? blkcg_activate_policy+0xf4/0x580 [ 502.733673] ? do_dentry_open+0x7ef/0xf10 [ 502.737808] ? perf_trace_lock_acquire+0xe3/0x980 [ 502.742643] ? __lockdep_init_map+0x105/0x590 [ 502.747128] ? perf_trace_lock+0x900/0x900 [ 502.751356] ? throtl_pd_offline+0x210/0x210 [ 502.755748] ? init_timer_on_stack_key+0xe0/0xe0 [ 502.760499] ? __lock_is_held+0xb5/0x140 [ 502.764552] __should_failslab+0x124/0x180 [ 502.768788] should_failslab+0x9/0x14 [ 502.772588] kmem_cache_alloc_node_trace+0x5a/0x770 [ 502.777595] ? lock_acquire+0x1dc/0x520 [ 502.781564] ? blkcg_activate_policy+0x12c/0x580 [ 502.786319] throtl_pd_alloc+0xd7/0x970 [ 502.790285] ? blk_throtl_dispatch_work_fn+0x480/0x480 [ 502.795549] ? _raw_spin_unlock_irq+0x27/0x70 [ 502.800047] ? kasan_check_write+0x14/0x20 [ 502.804276] ? do_raw_spin_lock+0xc1/0x200 [ 502.808515] ? blk_throtl_dispatch_work_fn+0x480/0x480 [ 502.813794] blkcg_activate_policy+0x221/0x580 [ 502.818374] blk_throtl_init+0x3d0/0x630 [ 502.822431] ? blk_throtl_drain+0x7e0/0x7e0 [ 502.826751] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 502.831771] blkcg_init_queue+0x1ef/0x480 [ 502.835911] blk_alloc_queue_node+0x8bd/0xe40 [ 502.840396] ? blk_init_allocated_queue+0x620/0x620 [ 502.845405] ? __mutex_init+0x1ef/0x280 [ 502.849374] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 502.854898] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 502.859642] ? idr_alloc+0x145/0x1a0 [ 502.863343] ? blk_mq_update_nr_hw_queues+0x4f0/0x4f0 [ 502.868522] blk_mq_init_queue+0x4b/0xb0 [ 502.872580] loop_add+0x32b/0x9c0 [ 502.876030] ? loop_lookup+0x102/0x220 [ 502.879916] ? loop_queue_rq+0x640/0x640 [ 502.883981] ? module_unload_free+0x5b0/0x5b0 [ 502.888469] loop_probe+0x185/0x1c0 [ 502.892087] ? loop_control_ioctl+0x500/0x500 [ 502.896583] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 502.901770] kobj_lookup+0x269/0x460 [ 502.905476] ? loop_control_ioctl+0x500/0x500 [ 502.909964] get_gendisk+0x4c/0x380 [ 502.913588] __blkdev_get+0x45f/0x13a0 [ 502.917467] ? blkdev_get_block+0xc0/0xc0 [ 502.921604] blkdev_get+0xb9/0xb30 [ 502.925129] ? bdget+0x5c0/0x5c0 [ 502.928479] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 502.933059] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 502.938592] ? errseq_sample+0xe3/0x120 [ 502.942552] ? _copy_to_user+0x110/0x110 [ 502.946599] ? _raw_spin_unlock+0x22/0x30 [ 502.950737] blkdev_open+0x1fb/0x280 [ 502.954459] do_dentry_open+0x7ef/0xf10 [ 502.958439] ? bd_acquire+0x2c0/0x2c0 [ 502.962249] vfs_open+0x139/0x230 [ 502.965696] path_openat+0x1676/0x4e20 [ 502.969578] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 502.974329] ? find_held_lock+0x36/0x1c0 [ 502.978402] ? lock_downgrade+0x8e0/0x8e0 [ 502.982552] ? kasan_check_read+0x11/0x20 [ 502.986708] ? do_raw_spin_unlock+0x9e/0x2e0 [ 502.991129] ? __lock_is_held+0xb5/0x140 [ 502.995207] ? _raw_spin_unlock+0x22/0x30 [ 502.999362] ? __alloc_fd+0x346/0x700 [ 503.003156] ? usercopy_warn+0x120/0x120 [ 503.007221] do_filp_open+0x249/0x350 [ 503.011024] ? may_open_dev+0x100/0x100 [ 503.014987] ? strncpy_from_user+0x3b6/0x500 [ 503.019391] ? mpi_free.cold.1+0x19/0x19 [ 503.023445] ? get_unused_fd_flags+0x121/0x190 [ 503.028013] ? getname_flags+0xd0/0x5a0 [ 503.031982] ? getname_flags+0x26e/0x5a0 [ 503.036045] do_sys_open+0x56f/0x740 [ 503.039746] ? mm_fault_error+0x314/0x380 [ 503.043881] ? filp_open+0x80/0x80 [ 503.047412] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 503.052252] __x64_sys_open+0x7e/0xc0 [ 503.056044] do_syscall_64+0x1b1/0x800 [ 503.059918] ? syscall_return_slowpath+0x5c0/0x5c0 [ 503.064836] ? syscall_return_slowpath+0x30f/0x5c0 [ 503.069758] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 503.075287] ? retint_user+0x18/0x18 [ 503.078992] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 503.083828] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 503.089002] RIP: 0033:0x40fc61 [ 503.092190] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 503.099892] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 503.107145] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 2018/05/26 12:22:28 executing program 2: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = memfd_create(&(0x7f0000000200)='ramfs\x00', 0x0) ioctl$TCSETA(r1, 0x4030582a, &(0x7f00000000c0)={0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000000000d8}) openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) 2018/05/26 12:22:28 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8941, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) [ 503.114399] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 [ 503.121651] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 [ 503.128902] R13: 0000000000000744 R14: 00000000006fef00 R15: 0000000000000021 2018/05/26 12:22:28 executing program 0 (fault-call:2 fault-nth:34): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:22:28 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000100, 0x70001c000000000]}) 2018/05/26 12:22:28 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x0, 0x2, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:22:29 executing program 7: r0 = socket(0x11, 0x100000803, 0x0) rename(&(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='./file0\x00') r1 = syz_open_dev$tun(&(0x7f00000000c0)='/dev/net/tun\x00', 0x0, 0x20000000002) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={"6966623000faffffffffffffff00", 0x5001}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000000)={'ifb0\x00', 0xa201}) write$tun(r1, &(0x7f00000004c0)={@void, @val={0x0, 0x0, 0x3}, @ipv6={0x0, 0x6, "af04ca", 0x108, 0x2f, 0x0, @ipv4={[], [0xff, 0xff], @remote={0xac, 0x14, 0x14, 0xbb}}, @mcast2={0xff, 0x2, [], 0x1}, {[], @gre={{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x6558}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x86dd}, {0x8, 0x88be, 0x0, {{0x0, 0x1}, 0x1}}, {0x8, 0x22eb, 0x0, {{0x0, 0x2}, 0x2}}, {0x8, 0x6558}}}}}, 0xfdef) 2018/05/26 12:22:29 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x2) ioctl(r0, 0x4000000002283, &(0x7f0000139000)='4') readv(r0, &(0x7f00001b4fb0)=[{&(0x7f0000607fed)=""/19, 0xfffffef3}], 0x1) write$evdev(r0, &(0x7f0000b5df88)=[{}, {}, {}, {{0x77359400}}], 0x60) r1 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000040)='/dev/urandom\x00', 0x30000, 0x0) ioctl$sock_bt_cmtp_CMTPCONNDEL(r1, 0x400443c9, &(0x7f0000000140)={{0xb91, 0x4, 0x1, 0x3ff, 0xd38b, 0x2}, 0x1}) accept$nfc_llcp(r1, &(0x7f0000000080), &(0x7f0000000100)=0x60) [ 503.428404] FAULT_INJECTION: forcing a failure. [ 503.428404] name failslab, interval 1, probability 0, space 0, times 0 [ 503.439712] CPU: 1 PID: 29721 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 503.446983] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 503.456344] Call Trace: [ 503.458946] dump_stack+0x1b9/0x294 [ 503.462590] ? dump_stack_print_info.cold.2+0x52/0x52 [ 503.467793] ? perf_trace_lock_acquire+0xe3/0x980 [ 503.472651] ? save_stack+0x43/0xd0 [ 503.476290] ? __kasan_slab_free+0x11a/0x170 [ 503.480709] ? kasan_slab_free+0xe/0x10 [ 503.484681] ? kfree+0xd9/0x260 [ 503.487948] ? throtl_pd_free+0x21/0x30 [ 503.491916] should_fail.cold.4+0xa/0x1a [ 503.495966] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 503.501057] ? print_usage_bug+0xc0/0xc0 [ 503.505105] ? do_raw_spin_lock+0xc1/0x200 [ 503.509330] ? graph_lock+0x170/0x170 [ 503.513118] ? trace_hardirqs_off+0xd/0x10 [ 503.517348] ? _raw_spin_unlock_irqrestore+0x63/0xc0 [ 503.522443] ? find_held_lock+0x36/0x1c0 [ 503.526494] ? __lock_is_held+0xb5/0x140 [ 503.530551] ? check_same_owner+0x320/0x320 [ 503.534879] ? rcu_note_context_switch+0x710/0x710 [ 503.539802] ? blkcg_activate_policy+0x3db/0x580 [ 503.544549] __should_failslab+0x124/0x180 [ 503.548780] should_failslab+0x9/0x14 [ 503.552568] kmem_cache_alloc_trace+0x2cb/0x780 [ 503.557224] ? blk_throtl_init+0x3e6/0x630 [ 503.561449] ? blk_throtl_drain+0x7e0/0x7e0 [ 503.565760] ? blk_mq_can_queue+0x50/0x50 [ 503.569904] ? plug_ctx_cmp+0x110/0x110 [ 503.573876] blk_stat_alloc_callback+0x5b/0x280 [ 503.578533] blk_mq_init_allocated_queue+0x125/0x1580 [ 503.583718] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 503.589248] ? blk_alloc_queue_node+0x8d3/0xe40 [ 503.593909] ? blk_mq_map_swqueue+0xaa0/0xaa0 [ 503.598390] ? __mutex_init+0x1ef/0x280 [ 503.602361] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 503.607882] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 503.612626] ? idr_alloc+0x145/0x1a0 [ 503.616339] ? blk_mq_update_nr_hw_queues+0x4f0/0x4f0 [ 503.621521] blk_mq_init_queue+0x63/0xb0 [ 503.625571] loop_add+0x32b/0x9c0 [ 503.629009] ? loop_lookup+0x102/0x220 [ 503.632883] ? loop_queue_rq+0x640/0x640 [ 503.636935] ? module_unload_free+0x5b0/0x5b0 [ 503.641417] loop_probe+0x185/0x1c0 [ 503.645031] ? loop_control_ioctl+0x500/0x500 [ 503.649518] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 503.654697] kobj_lookup+0x269/0x460 [ 503.658401] ? loop_control_ioctl+0x500/0x500 [ 503.662884] get_gendisk+0x4c/0x380 [ 503.666501] __blkdev_get+0x45f/0x13a0 [ 503.670988] ? blkdev_get_block+0xc0/0xc0 [ 503.675132] blkdev_get+0xb9/0xb30 [ 503.678661] ? bdget+0x5c0/0x5c0 [ 503.682023] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 503.686596] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 503.692118] ? errseq_sample+0xe3/0x120 [ 503.696080] ? _copy_to_user+0x110/0x110 [ 503.700127] ? _raw_spin_unlock+0x22/0x30 [ 503.704264] blkdev_open+0x1fb/0x280 [ 503.707968] do_dentry_open+0x7ef/0xf10 [ 503.711931] ? bd_acquire+0x2c0/0x2c0 [ 503.715721] vfs_open+0x139/0x230 [ 503.719162] path_openat+0x1676/0x4e20 [ 503.723048] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 503.727790] ? find_held_lock+0x36/0x1c0 [ 503.731843] ? lock_downgrade+0x8e0/0x8e0 [ 503.735992] ? kasan_check_read+0x11/0x20 [ 503.740132] ? do_raw_spin_unlock+0x9e/0x2e0 [ 503.744535] ? __lock_is_held+0xb5/0x140 [ 503.748586] ? _raw_spin_unlock+0x22/0x30 [ 503.752719] ? __alloc_fd+0x346/0x700 [ 503.756512] ? usercopy_warn+0x120/0x120 [ 503.760565] do_filp_open+0x249/0x350 [ 503.764351] ? may_open_dev+0x100/0x100 [ 503.768314] ? strncpy_from_user+0x3b6/0x500 [ 503.772713] ? mpi_free.cold.1+0x19/0x19 [ 503.776764] ? get_unused_fd_flags+0x121/0x190 [ 503.781331] ? getname_flags+0xd0/0x5a0 [ 503.785293] ? getname_flags+0x26e/0x5a0 [ 503.789348] do_sys_open+0x56f/0x740 [ 503.793050] ? mm_fault_error+0x314/0x380 [ 503.797183] ? filp_open+0x80/0x80 [ 503.800725] __x64_sys_open+0x7e/0xc0 [ 503.804517] do_syscall_64+0x1b1/0x800 [ 503.808390] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 503.813220] ? syscall_return_slowpath+0x5c0/0x5c0 [ 503.818137] ? syscall_return_slowpath+0x30f/0x5c0 [ 503.823053] ? retint_user+0x18/0x18 [ 503.826754] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 503.831590] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 503.836762] RIP: 0033:0x40fc61 [ 503.839944] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 503.847639] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 503.854892] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 [ 503.862147] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 [ 503.869398] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 [ 503.876652] R13: 0000000000000744 R14: 00000000006fef00 R15: 0000000000000022 [ 504.021653] ip6_tunnel: non-ECT from 0000:0000:0000:0000:0000:ffff:ac14:14bb with DS=0xa 2018/05/26 12:22:30 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8922, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:22:30 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(r0, &(0x7f0000000100), 0xffffffffffffffd6, 0x20000004, &(0x7f000031e000)={0xa}, 0x1c) r1 = socket$inet(0x10, 0x0, 0x4) sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f000000d000)=[{&(0x7f0000008000)="4c0000001200ff09fffefd956fa283b724a6008000000000000000683540150024001d001fc41180b598bc593ab6821148a730de33a49868c62b2ca654a6613b6aabf35d0f1cbc882b079881", 0x4c}], 0x1}, 0x0) 2018/05/26 12:22:30 executing program 0 (fault-call:2 fault-nth:35): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:22:30 executing program 3: r0 = socket(0xa, 0x1, 0x0) r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/sync_ports\x00', 0x2, 0x0) ioctl$BLKFRASET(r1, 0x1264, &(0x7f0000000040)=0x81) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") r2 = socket$netlink(0x10, 0x3, 0xc) bind$netlink(r2, &(0x7f0000000280)={0x10, 0x0, 0x0, 0x10}, 0xc) 2018/05/26 12:22:30 executing program 2: getsockopt$inet_pktinfo(0xffffffffffffff9c, 0x0, 0x8, &(0x7f00000001c0)={0x0, @multicast2, @multicast1}, &(0x7f0000000200)=0xc) accept4$packet(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @dev}, &(0x7f0000000100)=0x14, 0x800) bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x7, 0x1, &(0x7f0000000240)=ANY=[@ANYBLOB="85ef0000070000000000"], &(0x7f0000000000)='GPL\x00', 0x5, 0xc3, &(0x7f0000000300)=""/195, 0xfffffffffffffffb, 0x1, [], r0, 0xffffffffffffffff}, 0x48) 2018/05/26 12:22:30 executing program 7: r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x4100, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000100)="9c70707031212e766d6e65743147504c00") r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = dup2(r1, r1) recvfrom$ax25(r2, &(0x7f0000002600)=""/238, 0xee, 0x21, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r2, 0x84, 0x6c, &(0x7f0000000000)=ANY=[@ANYRES32=0x0, @ANYBLOB="2d000000a8350997f71d2a4e1b37cbe85d5cdc20ea4bdb7418bd9f0199a2e569e31ace2e203e8b45da88ff291688730000"], &(0x7f0000000040)=0x35) setsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000080)={0x0, 0x5, 0x8206, 0xe00000, 0x7, 0x1ff, 0xfa, 0xa27, r3}, 0x20) 2018/05/26 12:22:30 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x0, 0xfeffffff00000000, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:22:30 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000100, 0x9901000000000000]}) 2018/05/26 12:22:30 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8948, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) [ 505.037284] FAULT_INJECTION: forcing a failure. [ 505.037284] name failslab, interval 1, probability 0, space 0, times 0 [ 505.049144] CPU: 0 PID: 29755 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 505.056430] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 505.065789] Call Trace: [ 505.068379] dump_stack+0x1b9/0x294 [ 505.072001] ? dump_stack_print_info.cold.2+0x52/0x52 [ 505.077193] ? perf_trace_lock_acquire+0xe3/0x980 [ 505.082039] should_fail.cold.4+0xa/0x1a [ 505.086089] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 505.091179] ? lock_downgrade+0x8e0/0x8e0 [ 505.095312] ? graph_lock+0x170/0x170 [ 505.099102] ? kasan_check_read+0x11/0x20 [ 505.103235] ? find_held_lock+0x36/0x1c0 [ 505.107287] ? __lock_is_held+0xb5/0x140 [ 505.111345] ? check_same_owner+0x320/0x320 [ 505.115653] ? rcu_note_context_switch+0x710/0x710 [ 505.120570] __should_failslab+0x124/0x180 [ 505.124795] should_failslab+0x9/0x14 [ 505.128586] kmem_cache_alloc_node_trace+0x26f/0x770 [ 505.133678] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 505.139203] ? find_next_bit+0x104/0x130 [ 505.143254] __kmalloc_node+0x33/0x70 [ 505.147043] blk_mq_realloc_hw_ctxs+0x28d/0x1250 [ 505.151793] ? blk_mq_free_map_and_requests+0x160/0x160 [ 505.157144] ? __kmalloc_node+0x33/0x70 [ 505.161102] ? __kmalloc_node+0x33/0x70 [ 505.165061] ? rcu_read_lock_sched_held+0x108/0x120 [ 505.170064] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 505.175325] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 505.180328] ? kasan_unpoison_shadow+0x35/0x50 [ 505.184896] ? kasan_kmalloc+0xc4/0xe0 [ 505.188777] blk_mq_init_allocated_queue+0x2b8/0x1580 [ 505.193958] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 505.199482] ? blk_alloc_queue_node+0x8d3/0xe40 [ 505.204139] ? blk_mq_map_swqueue+0xaa0/0xaa0 [ 505.208620] ? __mutex_init+0x1ef/0x280 [ 505.212592] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 505.218116] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 505.222863] ? idr_alloc+0x145/0x1a0 [ 505.226564] ? blk_mq_update_nr_hw_queues+0x4f0/0x4f0 [ 505.231744] blk_mq_init_queue+0x63/0xb0 [ 505.235794] loop_add+0x32b/0x9c0 [ 505.239231] ? loop_lookup+0x102/0x220 [ 505.243102] ? loop_queue_rq+0x640/0x640 [ 505.247150] ? module_unload_free+0x5b0/0x5b0 [ 505.251632] loop_probe+0x185/0x1c0 [ 505.255241] ? loop_control_ioctl+0x500/0x500 [ 505.259724] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 505.264901] kobj_lookup+0x269/0x460 [ 505.268603] ? loop_control_ioctl+0x500/0x500 [ 505.273085] get_gendisk+0x4c/0x380 [ 505.276704] __blkdev_get+0x45f/0x13a0 [ 505.280584] ? blkdev_get_block+0xc0/0xc0 [ 505.284723] blkdev_get+0xb9/0xb30 [ 505.288251] ? bdget+0x5c0/0x5c0 [ 505.291609] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 505.296188] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 505.301710] ? errseq_sample+0xe3/0x120 [ 505.305669] ? _copy_to_user+0x110/0x110 [ 505.309717] ? _raw_spin_unlock+0x22/0x30 [ 505.313852] blkdev_open+0x1fb/0x280 [ 505.317554] do_dentry_open+0x7ef/0xf10 [ 505.321521] ? bd_acquire+0x2c0/0x2c0 [ 505.325312] vfs_open+0x139/0x230 [ 505.328756] path_openat+0x1676/0x4e20 [ 505.332641] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 505.337386] ? find_held_lock+0x36/0x1c0 [ 505.341437] ? lock_downgrade+0x8e0/0x8e0 [ 505.345574] ? kasan_check_read+0x11/0x20 [ 505.349709] ? do_raw_spin_unlock+0x9e/0x2e0 [ 505.354106] ? __lock_is_held+0xb5/0x140 [ 505.358797] ? _raw_spin_unlock+0x22/0x30 [ 505.362936] ? __alloc_fd+0x346/0x700 [ 505.366723] ? usercopy_warn+0x120/0x120 [ 505.370779] do_filp_open+0x249/0x350 [ 505.374567] ? may_open_dev+0x100/0x100 [ 505.378528] ? strncpy_from_user+0x3b6/0x500 [ 505.382924] ? mpi_free.cold.1+0x19/0x19 [ 505.386974] ? get_unused_fd_flags+0x121/0x190 [ 505.391537] ? getname_flags+0xd0/0x5a0 [ 505.395496] ? getname_flags+0x26e/0x5a0 [ 505.399550] do_sys_open+0x56f/0x740 [ 505.403252] ? mm_fault_error+0x314/0x380 [ 505.407384] ? filp_open+0x80/0x80 [ 505.410912] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 505.416532] __x64_sys_open+0x7e/0xc0 [ 505.420318] do_syscall_64+0x1b1/0x800 [ 505.424196] ? syscall_return_slowpath+0x5c0/0x5c0 [ 505.429110] ? syscall_return_slowpath+0x30f/0x5c0 [ 505.434034] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 505.439553] ? retint_user+0x18/0x18 [ 505.443257] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 505.448090] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 505.453266] RIP: 0033:0x40fc61 [ 505.456438] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 505.464130] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 505.471384] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 [ 505.478638] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 2018/05/26 12:22:30 executing program 3: r0 = socket$inet6(0x10, 0x3, 0x0) setsockopt$inet6_tcp_buf(r0, 0x6, 0x1e, &(0x7f0000000080)="7e83b04441c7a338b06c27cd6471cf017fa0eb5e23b7ef8bfc787db1cc4d933c503cb3ab393304fd91b0d2af72d84a4c92ea65e8c5390c82d7391ddffc01489d1bf916ec0d596f51e462bd67d05843e92373af74fa1d5e01f7d0f136923c91abf0f7d8f62d184e021c151638b943a5b118792003b9d27fd38f8e77db940c87e6702e9be14a25a3de2b9764423fb351567f3e67874d2fd803a5dddf215891453fd57fb87fc655c490f2773113a2d4e70e711e17f60e7fabbea2d0ec7d35aec4230cdb2e563fd1965172ef44c3801bccb1a747239a8549f9ad2b514a75", 0xdc) sendmsg(r0, &(0x7f000000bfc8)={&(0x7f0000000000)=@nl=@proc={0x10}, 0x80, &(0x7f0000002000)=[{&(0x7f00000001c0)="5500000018007fafb72d1cb2a4a280930206000000a843096c2623692500060004000a00080000000000a3c728f1c46b7b31afdc1338d54400009b84136ef75afb83de448daa7227c43ab8220000bf0cec6bab91d4", 0x55}], 0x1, &(0x7f0000000080)}, 0x0) 2018/05/26 12:22:31 executing program 7: r0 = syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x3, 0x80) ioctl$sock_inet_SIOCGIFDSTADDR(r0, 0x8917, &(0x7f00000000c0)={'syzkaller1\x00', {0x2, 0x4e24, @remote={0xac, 0x14, 0x14, 0xbb}}}) ioctl$sock_FIOGETOWN(0xffffffffffffff9c, 0x8903, &(0x7f0000000040)=0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e4, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x8000}, r1, 0x0, 0xffffffffffffffff, 0x0) r2 = bpf$MAP_CREATE(0x0, &(0x7f000039a000)={0x5, 0x81, 0x100, 0x2, 0x0, 0xffffffffffffff9c}, 0x2c) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f00000003c0)={r2, &(0x7f0000000200), &(0x7f00000002c0)=""/230}, 0x18) 2018/05/26 12:22:31 executing program 0 (fault-call:2 fault-nth:36): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) [ 505.485894] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 [ 505.493148] R13: 0000000000000744 R14: 00000000006fef00 R15: 0000000000000023 2018/05/26 12:22:31 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000100, 0xce00000000000000]}) 2018/05/26 12:22:31 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x0, 0x800800000000, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:22:31 executing program 2: syz_mount_image$nfs4(&(0x7f00000014c0)='nfs4\x00', &(0x7f0000001500)='./file0\x00', 0xffffffffffffffff, 0x0, &(0x7f0000002600), 0x0, &(0x7f0000000200)='acl') r0 = accept$ax25(0xffffffffffffff9c, &(0x7f0000000180), &(0x7f00000001c0)=0x10) r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/net/pfkey\x00', 0x1, 0x0) recvmsg(r0, &(0x7f00000004c0)={&(0x7f0000000340)=@hci={0x0, 0x0}, 0x80, &(0x7f0000000440)=[{&(0x7f00000003c0)=""/77, 0x4d}], 0x1, &(0x7f0000000480)=""/5, 0x5, 0x2}, 0x40000001) setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f0000000500)={r2, 0x1, 0x6, @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff]}, 0x10) r3 = syz_open_dev$midi(&(0x7f0000000240)='/dev/midi#\x00', 0x4, 0x20001) ioctl$EVIOCGSW(r3, 0x8040451b, &(0x7f0000000280)=""/66) fcntl$setsig(r0, 0xa, 0x28) r4 = memfd_create(&(0x7f0000000000)='\x00', 0x2) statx(r4, &(0x7f0000000040)='./file0\x00', 0x2000, 0x0, &(0x7f0000000080)) 2018/05/26 12:22:31 executing program 3: r0 = syz_open_dev$ndb(&(0x7f0000000040)='/dev/nbd#\x00', 0x0, 0x0) ioctl$BLKBSZSET(r0, 0x40081271, &(0x7f0000000080)=0x40000000800) 2018/05/26 12:22:31 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8981, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) [ 505.841893] netlink: 'syz-executor3': attribute type 6 has an invalid length. [ 505.852670] netlink: 'syz-executor3': attribute type 6 has an invalid length. [ 505.911726] FAULT_INJECTION: forcing a failure. [ 505.911726] name failslab, interval 1, probability 0, space 0, times 0 [ 505.923544] CPU: 0 PID: 29785 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 505.930839] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 505.940188] Call Trace: [ 505.942786] dump_stack+0x1b9/0x294 [ 505.946465] ? dump_stack_print_info.cold.2+0x52/0x52 [ 505.951654] ? perf_trace_lock_acquire+0xe3/0x980 [ 505.956490] should_fail.cold.4+0xa/0x1a [ 505.960540] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 505.965645] ? lock_downgrade+0x8e0/0x8e0 [ 505.969780] ? graph_lock+0x170/0x170 [ 505.973573] ? kasan_check_read+0x11/0x20 [ 505.977709] ? find_held_lock+0x36/0x1c0 [ 505.981759] ? __lock_is_held+0xb5/0x140 [ 505.985816] ? check_same_owner+0x320/0x320 [ 505.990128] ? rcu_note_context_switch+0x710/0x710 [ 505.995046] __should_failslab+0x124/0x180 [ 505.999271] should_failslab+0x9/0x14 [ 506.003057] kmem_cache_alloc_node_trace+0x26f/0x770 [ 506.008146] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 506.013669] ? find_next_bit+0x104/0x130 [ 506.017722] __kmalloc_node+0x33/0x70 [ 506.021515] blk_mq_realloc_hw_ctxs+0x28d/0x1250 [ 506.026266] ? blk_mq_free_map_and_requests+0x160/0x160 [ 506.031620] ? __kmalloc_node+0x33/0x70 [ 506.035583] ? __kmalloc_node+0x33/0x70 [ 506.039548] ? rcu_read_lock_sched_held+0x108/0x120 [ 506.044547] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 506.049810] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 506.054813] ? kasan_unpoison_shadow+0x35/0x50 [ 506.059379] ? kasan_kmalloc+0xc4/0xe0 [ 506.063260] blk_mq_init_allocated_queue+0x2b8/0x1580 [ 506.068440] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 506.073963] ? blk_alloc_queue_node+0x8d3/0xe40 [ 506.078621] ? blk_mq_map_swqueue+0xaa0/0xaa0 [ 506.083106] ? __mutex_init+0x1ef/0x280 [ 506.087080] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 506.092606] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 506.097354] ? idr_alloc+0x145/0x1a0 [ 506.101054] ? blk_mq_update_nr_hw_queues+0x4f0/0x4f0 [ 506.106232] blk_mq_init_queue+0x63/0xb0 [ 506.110280] loop_add+0x32b/0x9c0 [ 506.113717] ? loop_lookup+0x102/0x220 [ 506.117589] ? loop_queue_rq+0x640/0x640 [ 506.121641] ? module_unload_free+0x5b0/0x5b0 [ 506.126124] loop_probe+0x185/0x1c0 [ 506.129734] ? loop_control_ioctl+0x500/0x500 [ 506.134218] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 506.139395] kobj_lookup+0x269/0x460 [ 506.143099] ? loop_control_ioctl+0x500/0x500 [ 506.147583] get_gendisk+0x4c/0x380 [ 506.151201] __blkdev_get+0x45f/0x13a0 [ 506.155082] ? blkdev_get_block+0xc0/0xc0 [ 506.159220] blkdev_get+0xb9/0xb30 [ 506.162748] ? bdget+0x5c0/0x5c0 [ 506.166099] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 506.170679] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 506.176201] ? errseq_sample+0xe3/0x120 [ 506.180163] ? _copy_to_user+0x110/0x110 [ 506.184217] ? _raw_spin_unlock+0x22/0x30 [ 506.188355] blkdev_open+0x1fb/0x280 [ 506.192073] do_dentry_open+0x7ef/0xf10 [ 506.196039] ? bd_acquire+0x2c0/0x2c0 [ 506.199834] vfs_open+0x139/0x230 [ 506.203277] path_openat+0x1676/0x4e20 [ 506.207164] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 506.211908] ? find_held_lock+0x36/0x1c0 [ 506.215961] ? lock_downgrade+0x8e0/0x8e0 [ 506.220101] ? kasan_check_read+0x11/0x20 [ 506.224237] ? do_raw_spin_unlock+0x9e/0x2e0 [ 506.228634] ? __lock_is_held+0xb5/0x140 [ 506.232687] ? _raw_spin_unlock+0x22/0x30 [ 506.236820] ? __alloc_fd+0x346/0x700 [ 506.240606] ? usercopy_warn+0x120/0x120 [ 506.244665] do_filp_open+0x249/0x350 [ 506.248451] ? may_open_dev+0x100/0x100 [ 506.252409] ? strncpy_from_user+0x3b6/0x500 [ 506.256805] ? mpi_free.cold.1+0x19/0x19 [ 506.260854] ? get_unused_fd_flags+0x121/0x190 [ 506.265417] ? getname_flags+0xd0/0x5a0 [ 506.269378] ? getname_flags+0x26e/0x5a0 [ 506.273429] do_sys_open+0x56f/0x740 [ 506.277130] ? mm_fault_error+0x314/0x380 [ 506.281264] ? filp_open+0x80/0x80 [ 506.284795] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 506.289630] __x64_sys_open+0x7e/0xc0 [ 506.293415] do_syscall_64+0x1b1/0x800 [ 506.297299] ? finish_task_switch+0x1ca/0x840 [ 506.301781] ? syscall_return_slowpath+0x5c0/0x5c0 [ 506.306702] ? syscall_return_slowpath+0x30f/0x5c0 [ 506.311625] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 506.317147] ? retint_user+0x18/0x18 [ 506.320847] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 506.325677] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 506.330851] RIP: 0033:0x40fc61 [ 506.334026] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 506.341720] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 506.348974] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 [ 506.356227] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 [ 506.363478] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 [ 506.370732] R13: 0000000000000744 R14: 00000000006fef00 R15: 0000000000000024 2018/05/26 12:22:32 executing program 7: r0 = socket(0x11, 0x2, 0x0) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") r2 = syz_open_dev$tun(&(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={"6966623000faffffffffffffff00", 0x20100f}) ioctl$TUNSETOWNER(r2, 0x400454cc, 0x0) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000000)={'ifb0\x00\x00\x00\x00\x00\x00\x00!\x00', 0xa201}) syz_mount_image$ceph(&(0x7f0000000040)='ceph\x00', &(0x7f0000000100)='./file0\x00', 0x3, 0x8, &(0x7f0000000780)=[{&(0x7f0000000140)="21720cded1", 0x5, 0x7f}, {&(0x7f0000000280)="d575cbe5b75e85738aa195c67404785315adb5e8eb9682976a1bdabbaa91aae667bc264a0063ad9cc2ebdeed37a22943f6973e1d1904c69452983223e0bc1cfa8aab7af1302e14ef425d63fdba5e2c6a70a381989c76f68c498e3ce6528d8828e9e76602e0b012e88d8d5890380e5fd09feb1e027fe1427ad50c925b786f1e475dbc9a5739944e1783561fedc874d27f4f2ead81ba1d25fcba9005798c7b7124e9638808ea08be329f85413dd444b61d0a3a261cdd1131a61e383059a3af8e3d93cdf5", 0xc3, 0x200}, {&(0x7f0000000380)="b75cac053276b88a249b9983be1b9ecbd95ce094aab3ef5d6030ba1925b23f3edfffd603c709cb0ecd2d02ef5d2718cd6d6b4c9cb468691f46c7c8990d97b8521fb8e418dbf231617fa1ac80d21c28982a8c9d5a00f858303a0e602682eba85d077458931d0a4ffe12449a2c5edcfda059842ef6651c26927800b38cadb61123729579a1bcf82742d5c2d32af644bae8f51dc358731d89c494a46c99c4059eac8a2d7098f194cd5757539628a490d6a29f84958e4aed6da5dd4775cf17914efb61ab7da4fa898b4a02ff6f9de50ea0816e08ff3fbbdcac0acd6c19f99a14783006122f60db", 0xe5}, {&(0x7f0000000180)="93030d28856a535cb75bc1790e5afc27186f10aa9642584b60720bbc545752b73da26d9d00a3b577", 0x28, 0x1f11}, {&(0x7f0000000480)="c4b7672e060754a4674ad0ef621122f1729f83c69a6e52ee9d0c7189fb145b65d95a9ce4acdbf8de3592d2b60c83bbb4850ae56f5b5db1e9970944a7ffe9b2d20085f5ab00a1e6ecbade8e93db17ccee95010e34f43a96f1c30e6a199c0bb17bc2110c369f3dec5bd221470584de84176770a7f15ab73d7631c40cfa344846b498da805cf996176d20d272af2b270403e0e05a561cd857ffaeba1858bb0133ea906fc4da41add985e12c8bbee20d0921afc471db1ec8772ea5047c7a30145ee043719e3bcc356ab05e5e45a74463a64328515f82949b5749c26f061267", 0xdd, 0x3ff}, {&(0x7f00000001c0)="b32d5646df7b8e3b3fa2ed7ba2050fb27692be2fa6138deba0cec1f88c8ac81788f7fc5378299af4df37d66ec931f4a9782b3d08f053bbf82043c177b3dc570a518c5d29c3284f9a2dbb7a9e0ab33f943a198cab2b77a605dbc93c4e6ac2411b608f27a1222ee04082a7cd71cc5f518c954b9adc183fbf4df5", 0x79, 0x57}, {&(0x7f0000000580)="029fbdd2dc971b8c68d993907e77823bf254c4f2670fcd1deb1ccfb98f5fd572932fa79344ada7b51a63dc30040cfa54960fc6510d800f52aaefab3ee7cfaeb0f5624faccd5cf2e75f10e830c848093813f5ab73a58b726ebac032d3370754bf847055e8da3f4d5a0aa39a2b67bcff24a8883922f3e913dd27abe1d4dc8df32c8dec171ac65aa98fe0a2f833053c5307fd1ac4ebbcc3030a56343c7704b08d56701c4979a813fc8985dd6279fb93c85743d4a85e4696b3ed794c4e9ed044230a5434413aa77be48b2450eafd1e2fb4c2ac4dd6381e2476b39ccc24344c0c8af5ac2548ff82ca5d427d36d94e0d77b8c8865acf80f8e71b", 0xf7, 0x6}, {&(0x7f0000000680)="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", 0xfa, 0x7f}], 0x40, &(0x7f0000000840)='wlan0\x00') accept$packet(r1, &(0x7f00000009c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast}, &(0x7f0000000a00)=0x14) recvfrom$packet(r0, &(0x7f0000000880)=""/65, 0x41, 0x40000000, &(0x7f0000000a40)={0x11, 0x0, r3, 0x1, 0x400, 0x6, @random="5cc521dbe9f6"}, 0x14) 2018/05/26 12:22:32 executing program 0 (fault-call:2 fault-nth:37): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:22:32 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(r0, &(0x7f0000000100), 0xffffffffffffffd6, 0x20000004, &(0x7f000031e000)={0xa}, 0x1c) r1 = socket$inet(0x10, 0x3, 0x0) sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f000000d000)=[{&(0x7f0000008000)="4c0000001200ff09fffefd956fa283b724a6008000000000000000683540150024001d001fc41180b598bc593ab6821148a730de33a49868c62b2ca654a6613b6aabf35d0f1cbc882b079881", 0x4c}], 0x1}, 0x0) 2018/05/26 12:22:32 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000100, 0x91040000]}) 2018/05/26 12:22:32 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x0, 0x200000000000000, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:22:32 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x10000000ff, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="000100000008000066000000c9030000ec000000010000000100000000000000002000000020000000010000000000006e5fbe5a0000ffff53ef", 0x3a, 0x400}], 0x1, &(0x7f0000000180)) r0 = syz_open_dev$mouse(&(0x7f0000000080)='/dev/input/mouse#\x00', 0x100000001, 0x840) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ppp\x00', 0x200005, 0x0) renameat2(r0, &(0x7f0000000100)='./file0\x00', r1, &(0x7f00000001c0)='./file0\x00', 0x4) 2018/05/26 12:22:32 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8915, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:22:32 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") syz_fuse_mount(&(0x7f0000000340)='./file0\x00', 0x4000, 0x0, 0x0, 0x0, 0x0) r1 = inotify_init() inotify_add_watch(r1, &(0x7f0000000200)='./file0\x00', 0x80000002) umount2(&(0x7f0000000040)='./file0\x00', 0x0) [ 506.868994] FAULT_INJECTION: forcing a failure. [ 506.868994] name failslab, interval 1, probability 0, space 0, times 0 [ 506.880394] CPU: 1 PID: 29822 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 506.887672] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 506.897023] Call Trace: [ 506.899613] dump_stack+0x1b9/0x294 [ 506.903242] ? dump_stack_print_info.cold.2+0x52/0x52 [ 506.908416] ? perf_trace_lock_acquire+0xe3/0x980 [ 506.913246] ? lock_downgrade+0x8e0/0x8e0 [ 506.917389] should_fail.cold.4+0xa/0x1a [ 506.921436] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 506.926527] ? graph_lock+0x170/0x170 [ 506.930321] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 506.935847] ? find_held_lock+0x36/0x1c0 [ 506.939896] ? __lock_is_held+0xb5/0x140 [ 506.943941] ? br_manage_promisc+0x2e0/0x3c0 [ 506.948353] ? check_same_owner+0x320/0x320 [ 506.952660] ? blk_mq_can_queue+0x50/0x50 [ 506.956802] ? rcu_note_context_switch+0x710/0x710 [ 506.961724] ? kobject_init+0x226/0x2d0 [ 506.965686] __should_failslab+0x124/0x180 [ 506.969909] should_failslab+0x9/0x14 [ 506.973696] kmem_cache_alloc_node_trace+0x26f/0x770 [ 506.978790] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 506.983810] ? find_next_bit+0x104/0x130 [ 506.987870] __kmalloc_node+0x33/0x70 [ 506.991660] blk_mq_init_allocated_queue+0x220/0x1580 [ 506.996836] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 507.002359] ? blk_alloc_queue_node+0x8d3/0xe40 [ 507.007024] ? blk_mq_map_swqueue+0xaa0/0xaa0 [ 507.011510] ? __mutex_init+0x1ef/0x280 [ 507.015487] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 507.021012] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 507.025764] ? idr_alloc+0x145/0x1a0 [ 507.029469] ? blk_mq_update_nr_hw_queues+0x4f0/0x4f0 [ 507.034646] blk_mq_init_queue+0x63/0xb0 [ 507.038695] loop_add+0x32b/0x9c0 [ 507.042130] ? loop_lookup+0x102/0x220 [ 507.046004] ? loop_queue_rq+0x640/0x640 [ 507.050058] ? module_unload_free+0x5b0/0x5b0 [ 507.054541] loop_probe+0x185/0x1c0 [ 507.058155] ? loop_control_ioctl+0x500/0x500 [ 507.062642] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 507.067821] kobj_lookup+0x269/0x460 [ 507.071524] ? loop_control_ioctl+0x500/0x500 [ 507.076007] get_gendisk+0x4c/0x380 [ 507.079627] __blkdev_get+0x45f/0x13a0 [ 507.083513] ? blkdev_get_block+0xc0/0xc0 [ 507.088089] blkdev_get+0xb9/0xb30 [ 507.091618] ? bdget+0x5c0/0x5c0 [ 507.094971] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 507.099550] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 507.105083] ? errseq_sample+0xe3/0x120 [ 507.109049] ? _copy_to_user+0x110/0x110 [ 507.113098] ? _raw_spin_unlock+0x22/0x30 [ 507.117234] blkdev_open+0x1fb/0x280 [ 507.120938] do_dentry_open+0x7ef/0xf10 [ 507.124900] ? bd_acquire+0x2c0/0x2c0 [ 507.128691] vfs_open+0x139/0x230 [ 507.132134] path_openat+0x1676/0x4e20 [ 507.136025] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 507.140776] ? find_held_lock+0x36/0x1c0 [ 507.144832] ? lock_downgrade+0x8e0/0x8e0 [ 507.148972] ? kasan_check_read+0x11/0x20 [ 507.153112] ? do_raw_spin_unlock+0x9e/0x2e0 [ 507.157504] ? __lock_is_held+0xb5/0x140 [ 507.161554] ? _raw_spin_unlock+0x22/0x30 [ 507.165690] ? __alloc_fd+0x346/0x700 [ 507.169473] ? usercopy_warn+0x120/0x120 [ 507.173526] do_filp_open+0x249/0x350 [ 507.177315] ? may_open_dev+0x100/0x100 [ 507.181276] ? strncpy_from_user+0x3b6/0x500 [ 507.185676] ? mpi_free.cold.1+0x19/0x19 [ 507.189727] ? get_unused_fd_flags+0x121/0x190 [ 507.194292] ? getname_flags+0xd0/0x5a0 [ 507.198254] ? getname_flags+0x26e/0x5a0 [ 507.202308] do_sys_open+0x56f/0x740 [ 507.206012] ? mm_fault_error+0x314/0x380 [ 507.210161] ? filp_open+0x80/0x80 [ 507.213687] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 507.219217] __x64_sys_open+0x7e/0xc0 [ 507.223009] do_syscall_64+0x1b1/0x800 [ 507.226892] ? finish_task_switch+0x1ca/0x840 [ 507.231373] ? syscall_return_slowpath+0x5c0/0x5c0 [ 507.236288] ? syscall_return_slowpath+0x30f/0x5c0 [ 507.241205] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 507.246727] ? retint_user+0x18/0x18 [ 507.250429] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 507.255263] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 507.260436] RIP: 0033:0x40fc61 [ 507.263610] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 507.271303] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 507.278554] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 [ 507.285807] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 [ 507.293062] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 [ 507.300317] R13: 0000000000000744 R14: 00000000006fef00 R15: 0000000000000025 [ 507.341835] EXT4-fs warning (device loop2): ext4_fill_super:3891: fragment/cluster size (1024) != block size (2048) [ 507.366142] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock [ 507.375347] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 507.376197] ceph: device name is missing path (no : separator in /dev/loop7) 2018/05/26 12:22:33 executing program 0 (fault-call:2 fault-nth:38): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:22:33 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000100, 0xff0b0000]}) [ 507.384803] EXT4-fs (loop2): group descriptors corrupted! [ 507.426219] ceph: device name is missing path (no : separator in /dev/loop7) 2018/05/26 12:22:33 executing program 7: r0 = socket$inet6(0x10, 0x804, 0x0) sendmsg(r0, &(0x7f000000bfc8)={&(0x7f00000000c0)=@nl=@proc={0x10}, 0x1f7, &(0x7f0000002000), 0x0, &(0x7f0000000080)}, 0x0) r1 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x5, 0x131000) getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000040)={0x0, 0x4}, &(0x7f0000000080)=0x8) setsockopt$inet_sctp_SCTP_RESET_STREAMS(r1, 0x84, 0x77, &(0x7f0000000140)={r2, 0x0, 0x3, [0x30a8, 0x80000000, 0x61051ec2]}, 0xe) 2018/05/26 12:22:33 executing program 2: r0 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r0, &(0x7f0000000200)={0x1d}, 0x10) sendmsg$can_bcm(r0, &(0x7f00000003c0)={&(0x7f0000000280)={0x1d}, 0x10, &(0x7f0000000380)={&(0x7f0000000300)={0x5, 0x0, 0x0, {}, {0x0, 0x7530}, {}, 0x1, @can={{}, 0x0, 0x0, 0x0, 0x0, "388dbba2b150d176"}}, 0x48}, 0x1}, 0x0) setsockopt$sock_int(r0, 0x1, 0x23, &(0x7f0000000080)=0xc, 0x4) sendmsg$can_bcm(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x1d}, 0x10, &(0x7f0000000040)={&(0x7f00000000c0)={0x7, 0x0, 0x0, {0x0, 0x2710}, {0x77359400}, {}, 0x1, @can={{}, 0x0, 0x0, 0x0, 0x0, "c4d981aeb150d176"}}, 0x48}, 0x1}, 0x0) recvmmsg(r0, &(0x7f0000000600)=[{{&(0x7f0000000400)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f00000005c0)}}], 0x1, 0x0, &(0x7f00000006c0)) r1 = syz_open_dev$evdev(&(0x7f0000000040)='/dev/input/event#\x00', 0x0, 0x0) ioctl$int_out(r1, 0x80004537, &(0x7f00000000c0)) [ 507.449768] EXT4-fs warning (device loop2): ext4_fill_super:3891: fragment/cluster size (1024) != block size (2048) [ 507.466570] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock [ 507.475760] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 0)! [ 507.485280] EXT4-fs (loop2): group descriptors corrupted! 2018/05/26 12:22:33 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8912, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:22:33 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x2e4}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x22, &(0x7f0000ddfffc)=0x1, 0xfe8c) setsockopt$inet_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000040)=0x1, 0x4) r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vsock\x00', 0x2a000, 0x0) ioctl$KVM_GET_TSC_KHZ(r1, 0xaea3) connect$inet(r0, &(0x7f0000d9dff0)={0x2, 0x0, @loopback=0x7f000001}, 0x10) sendmmsg(r0, &(0x7f0000004c80)=[{{0x0, 0x0, &(0x7f0000004b40), 0x218, &(0x7f0000004bc0)}}], 0x400000000000284, 0x20004bc0) bind(r0, &(0x7f00000000c0)=@sco={0x1f, {0x5, 0x20, 0x6, 0x8, 0x3, 0x101}}, 0x80) [ 507.651300] netlink: 'syz-executor1': attribute type 29 has an invalid length. [ 507.658922] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 507.672825] netlink: 'syz-executor1': attribute type 29 has an invalid length. [ 507.680580] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 2018/05/26 12:22:33 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(r0, &(0x7f0000000100), 0xffffffffffffffd6, 0x20000004, &(0x7f000031e000)={0xa}, 0x1c) r1 = socket$inet(0x10, 0x3, 0x0) sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f000000d000)=[{&(0x7f0000008000)="4c0000001200ff09fffefd956fa283b724a6008000000000000000683540150024001d001fc41180b598bc593ab6821148a730de33a49868c62b2ca654a6613b6aabf35d0f1cbc882b079881", 0x4c}], 0x1}, 0x0) [ 507.781230] device bridge_slave_1 left promiscuous mode [ 507.786859] bridge0: port 2(bridge_slave_1) entered disabled state [ 507.798739] device bridge_slave_0 left promiscuous mode [ 507.804290] bridge0: port 1(bridge_slave_0) entered disabled state [ 507.847501] FAULT_INJECTION: forcing a failure. [ 507.847501] name failslab, interval 1, probability 0, space 0, times 0 [ 507.848681] team0 (unregistering): Port device team_slave_1 removed [ 507.858917] CPU: 1 PID: 29858 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 507.858944] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 507.858950] Call Trace: [ 507.858976] dump_stack+0x1b9/0x294 [ 507.859005] ? dump_stack_print_info.cold.2+0x52/0x52 [ 507.859026] ? __kernel_text_address+0xd/0x40 [ 507.859051] ? unwind_get_return_address+0x61/0xa0 [ 507.859070] should_fail.cold.4+0xa/0x1a [ 507.906886] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 507.912011] ? save_stack+0xa9/0xd0 [ 507.915653] ? graph_lock+0x170/0x170 [ 507.919466] ? blk_mq_realloc_hw_ctxs+0x956/0x1250 [ 507.924401] ? blk_mq_init_allocated_queue+0x2b8/0x1580 [ 507.929773] ? blk_mq_init_queue+0x63/0xb0 [ 507.934020] ? loop_add+0x32b/0x9c0 [ 507.937659] ? loop_probe+0x185/0x1c0 [ 507.941450] ? kobj_lookup+0x269/0x460 2018/05/26 12:22:33 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x0, 0xe4ffffff00000000, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') [ 507.945327] ? find_held_lock+0x36/0x1c0 [ 507.949383] ? __lock_is_held+0xb5/0x140 [ 507.953443] ? tg3_setup_phy+0x2d80/0xa980 [ 507.957694] ? check_same_owner+0x320/0x320 [ 507.962027] ? rcu_note_context_switch+0x710/0x710 [ 507.966956] __should_failslab+0x124/0x180 [ 507.971192] should_failslab+0x9/0x14 [ 507.975002] kmem_cache_alloc_node_trace+0x26f/0x770 [ 507.980109] ? __raw_spin_lock_init+0x1c/0x100 [ 507.984692] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 507.989726] __kmalloc_node+0x33/0x70 [ 507.993531] blk_alloc_flush_queue+0x178/0x3d0 [ 507.998114] ? blk_insert_flush+0xaf0/0xaf0 [ 508.002434] ? kasan_unpoison_shadow+0x35/0x50 [ 508.007014] ? kasan_kmalloc+0xc4/0xe0 [ 508.010898] ? __kmalloc_node+0x47/0x70 [ 508.014863] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 508.019867] ? blk_mq_sched_init_hctx+0x117/0x1a0 [ 508.024701] blk_mq_realloc_hw_ctxs+0x956/0x1250 [ 508.029467] ? blk_mq_free_map_and_requests+0x160/0x160 [ 508.034827] ? __kmalloc_node+0x33/0x70 [ 508.038791] ? rcu_read_lock_sched_held+0x108/0x120 [ 508.043795] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 508.049069] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 508.054075] ? kasan_unpoison_shadow+0x35/0x50 [ 508.058652] ? kasan_kmalloc+0xc4/0xe0 [ 508.062536] blk_mq_init_allocated_queue+0x2b8/0x1580 [ 508.067715] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 508.073242] ? blk_alloc_queue_node+0x8d3/0xe40 [ 508.077913] ? blk_mq_map_swqueue+0xaa0/0xaa0 [ 508.082395] ? __mutex_init+0x1ef/0x280 [ 508.086379] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 508.091906] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 508.096658] ? idr_alloc+0x145/0x1a0 [ 508.100365] ? blk_mq_update_nr_hw_queues+0x4f0/0x4f0 [ 508.105546] blk_mq_init_queue+0x63/0xb0 [ 508.109598] loop_add+0x32b/0x9c0 [ 508.113040] ? loop_lookup+0x102/0x220 [ 508.116917] ? loop_queue_rq+0x640/0x640 [ 508.120985] ? module_unload_free+0x5b0/0x5b0 [ 508.125477] loop_probe+0x185/0x1c0 [ 508.129091] ? loop_control_ioctl+0x500/0x500 [ 508.133575] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 508.138758] kobj_lookup+0x269/0x460 [ 508.142469] ? loop_control_ioctl+0x500/0x500 [ 508.146954] get_gendisk+0x4c/0x380 [ 508.150582] __blkdev_get+0x45f/0x13a0 [ 508.154469] ? blkdev_get_block+0xc0/0xc0 [ 508.158614] blkdev_get+0xb9/0xb30 [ 508.162146] ? bdget+0x5c0/0x5c0 [ 508.165505] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 508.170076] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 508.175602] ? errseq_sample+0xe3/0x120 [ 508.179563] ? _copy_to_user+0x110/0x110 [ 508.183613] ? _raw_spin_unlock+0x22/0x30 [ 508.187760] blkdev_open+0x1fb/0x280 [ 508.192116] do_dentry_open+0x7ef/0xf10 [ 508.196085] ? bd_acquire+0x2c0/0x2c0 [ 508.199882] vfs_open+0x139/0x230 [ 508.203327] path_openat+0x1676/0x4e20 [ 508.207219] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 508.211975] ? find_held_lock+0x36/0x1c0 [ 508.216038] ? lock_downgrade+0x8e0/0x8e0 [ 508.220175] ? do_sys_open+0x39a/0x740 [ 508.224060] ? kasan_check_read+0x11/0x20 [ 508.228195] ? do_raw_spin_unlock+0x9e/0x2e0 [ 508.232593] ? __lock_is_held+0xb5/0x140 [ 508.236648] ? _raw_spin_unlock+0x22/0x30 [ 508.240786] ? __alloc_fd+0x346/0x700 [ 508.244573] ? usercopy_warn+0x120/0x120 [ 508.248631] do_filp_open+0x249/0x350 [ 508.252417] ? may_open_dev+0x100/0x100 [ 508.256383] ? strncpy_from_user+0x3b6/0x500 [ 508.260791] ? mpi_free.cold.1+0x19/0x19 [ 508.264841] ? get_unused_fd_flags+0x121/0x190 [ 508.269408] ? getname_flags+0xd0/0x5a0 [ 508.273373] ? getname_flags+0x26e/0x5a0 [ 508.277426] do_sys_open+0x56f/0x740 [ 508.281131] ? mm_fault_error+0x314/0x380 [ 508.285268] ? filp_open+0x80/0x80 [ 508.288799] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 508.294329] __x64_sys_open+0x7e/0xc0 [ 508.298121] do_syscall_64+0x1b1/0x800 [ 508.301999] ? syscall_return_slowpath+0x5c0/0x5c0 [ 508.306921] ? syscall_return_slowpath+0x30f/0x5c0 [ 508.311844] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 508.317371] ? retint_user+0x18/0x18 [ 508.321083] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 508.325916] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 508.331091] RIP: 0033:0x40fc61 [ 508.334267] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 508.341978] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 2018/05/26 12:22:34 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, &(0x7f0000000100)="6465260f6f4f79440f20c0350b000000440f22c00f01df0f01ca0f01c9cbc4e33578a500000080000f0766baf80cb834386785ef66bafc0c66ed660f3880a195200000", 0x43}], 0x1, 0xffffff7ffffffffd, &(0x7f0000000280), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket(0x0, 0xf, 0x3) r4 = syz_open_dev$audion(&(0x7f0000000240)='/dev/audio#\x00', 0x10000, 0x400) ioctl$VHOST_SET_VRING_ADDR(r4, 0x4028af11, &(0x7f0000000340)={0x3, 0x1, &(0x7f0000000280)=""/4, &(0x7f0000000580)=""/199, &(0x7f00000002c0)=""/2, 0xd000}) connect$vsock_stream(r3, &(0x7f0000000040)={0x28, 0x0, 0x0, @any=0xffffffff}, 0x10) r5 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x200, 0x0) ioctl$SG_EMULATED_HOST(r5, 0x2203, &(0x7f0000000080)) ioctl$KVM_SET_FPU(r2, 0x41a0ae8d, &(0x7f00000003c0)={[], 0x0, 0x2d}) ioctl$KVM_RUN(r4, 0xae80, 0x0) getsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r3, 0x84, 0x13, &(0x7f0000000740)={0x0, 0x36}, &(0x7f0000000780)=0x8) accept4$ipx(r3, &(0x7f00000006c0), &(0x7f0000000700)=0x10, 0x80800) getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r5, 0x84, 0x76, &(0x7f00000001c0)={r6, 0x1ff}, &(0x7f0000000200)=0x8) epoll_wait(r4, &(0x7f0000000680)=[{}, {}, {}, {}], 0x4, 0x6) [ 508.349239] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 [ 508.356497] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 [ 508.363753] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 [ 508.371009] R13: 0000000000000744 R14: 00000000006fef00 R15: 0000000000000026 [ 508.380182] team0 (unregistering): Port device team_slave_0 removed [ 508.427223] bond0 (unregistering): Releasing backup interface bond_slave_1 2018/05/26 12:22:34 executing program 0 (fault-call:2 fault-nth:39): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) [ 508.472763] bond0 (unregistering): Releasing backup interface bond_slave_0 2018/05/26 12:22:34 executing program 7: seccomp(0x400000000000002, 0xfffffffffffffffe, &(0x7f0000028ff0)={0x6, &(0x7f0000000000)=[{0x8000, 0xd5ff, 0x5}, {0x1a7, 0x80, 0x9, 0x10001}, {0x9, 0x1ff, 0x200, 0x100}, {0x0, 0xffff, 0x1, 0x401}, {0xffff, 0x6, 0x81, 0xe000000000000000}, {0x9, 0xff, 0x29, 0xa2}]}) [ 508.544264] bond0 (unregistering): Released all slaves [ 508.807998] FAULT_INJECTION: forcing a failure. [ 508.807998] name failslab, interval 1, probability 0, space 0, times 0 [ 508.819426] CPU: 0 PID: 29890 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 508.826700] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 508.836048] Call Trace: [ 508.838645] dump_stack+0x1b9/0x294 [ 508.842271] ? dump_stack_print_info.cold.2+0x52/0x52 [ 508.847464] ? __kernel_text_address+0xd/0x40 [ 508.851972] ? unwind_get_return_address+0x61/0xa0 [ 508.856909] should_fail.cold.4+0xa/0x1a [ 508.860972] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 508.866080] ? save_stack+0xa9/0xd0 [ 508.869708] ? graph_lock+0x170/0x170 [ 508.873506] ? blk_mq_realloc_hw_ctxs+0x956/0x1250 [ 508.878428] ? blk_mq_init_allocated_queue+0x2b8/0x1580 [ 508.883790] ? blk_mq_init_queue+0x63/0xb0 [ 508.888023] ? loop_add+0x32b/0x9c0 [ 508.891644] ? loop_probe+0x185/0x1c0 [ 508.895450] ? kobj_lookup+0x269/0x460 [ 508.899341] ? find_held_lock+0x36/0x1c0 [ 508.903409] ? __lock_is_held+0xb5/0x140 [ 508.907478] ? check_same_owner+0x320/0x320 [ 508.911802] ? rcu_note_context_switch+0x710/0x710 [ 508.916733] __should_failslab+0x124/0x180 [ 508.920969] should_failslab+0x9/0x14 [ 508.924763] kmem_cache_alloc_node_trace+0x26f/0x770 [ 508.929862] ? __raw_spin_lock_init+0x1c/0x100 [ 508.934444] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 508.939461] __kmalloc_node+0x33/0x70 [ 508.943275] blk_alloc_flush_queue+0x178/0x3d0 [ 508.947851] ? blk_insert_flush+0xaf0/0xaf0 [ 508.952168] ? kasan_unpoison_shadow+0x35/0x50 [ 508.956753] ? kasan_kmalloc+0xc4/0xe0 [ 508.960646] ? __kmalloc_node+0x47/0x70 [ 508.964620] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 508.969638] ? blk_mq_sched_init_hctx+0x117/0x1a0 [ 508.974489] blk_mq_realloc_hw_ctxs+0x956/0x1250 [ 508.979250] ? blk_mq_free_map_and_requests+0x160/0x160 [ 508.984612] ? __kmalloc_node+0x33/0x70 [ 508.988579] ? rcu_read_lock_sched_held+0x108/0x120 [ 508.993590] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 508.998861] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 509.003866] ? kasan_unpoison_shadow+0x35/0x50 [ 509.008439] ? kasan_kmalloc+0xc4/0xe0 [ 509.012330] blk_mq_init_allocated_queue+0x2b8/0x1580 [ 509.017521] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 509.023057] ? blk_alloc_queue_node+0x8d3/0xe40 [ 509.027730] ? blk_mq_map_swqueue+0xaa0/0xaa0 [ 509.032218] ? __mutex_init+0x1ef/0x280 [ 509.036204] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 509.041741] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 509.046503] ? idr_alloc+0x145/0x1a0 [ 509.050212] ? blk_mq_update_nr_hw_queues+0x4f0/0x4f0 [ 509.055405] blk_mq_init_queue+0x63/0xb0 [ 509.059473] loop_add+0x32b/0x9c0 [ 509.062923] ? loop_lookup+0x102/0x220 [ 509.066810] ? loop_queue_rq+0x640/0x640 [ 509.070863] ? module_unload_free+0x5b0/0x5b0 [ 509.075354] loop_probe+0x185/0x1c0 [ 509.078981] ? loop_control_ioctl+0x500/0x500 [ 509.083481] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 509.088670] kobj_lookup+0x269/0x460 [ 509.092387] ? loop_control_ioctl+0x500/0x500 [ 509.096889] get_gendisk+0x4c/0x380 [ 509.100526] __blkdev_get+0x45f/0x13a0 [ 509.104427] ? blkdev_get_block+0xc0/0xc0 [ 509.108582] blkdev_get+0xb9/0xb30 [ 509.112123] ? bdget+0x5c0/0x5c0 [ 509.115504] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 509.120089] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 509.125620] ? errseq_sample+0xe3/0x120 [ 509.129593] ? _copy_to_user+0x110/0x110 [ 509.133655] ? _raw_spin_unlock+0x22/0x30 [ 509.137801] blkdev_open+0x1fb/0x280 [ 509.141504] do_dentry_open+0x7ef/0xf10 [ 509.145480] ? bd_acquire+0x2c0/0x2c0 [ 509.149285] vfs_open+0x139/0x230 [ 509.152732] path_openat+0x1676/0x4e20 [ 509.156626] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 509.161391] ? find_held_lock+0x36/0x1c0 [ 509.165461] ? lock_downgrade+0x8e0/0x8e0 [ 509.169608] ? do_sys_open+0x39a/0x740 [ 509.173505] ? kasan_check_read+0x11/0x20 [ 509.177646] ? do_raw_spin_unlock+0x9e/0x2e0 [ 509.182041] ? __lock_is_held+0xb5/0x140 [ 509.186095] ? _raw_spin_unlock+0x22/0x30 [ 509.190232] ? __alloc_fd+0x346/0x700 [ 509.194042] ? usercopy_warn+0x120/0x120 [ 509.198112] do_filp_open+0x249/0x350 [ 509.201912] ? may_open_dev+0x100/0x100 [ 509.205883] ? strncpy_from_user+0x3b6/0x500 [ 509.210288] ? mpi_free.cold.1+0x19/0x19 [ 509.214356] ? get_unused_fd_flags+0x121/0x190 [ 509.218941] ? getname_flags+0xd0/0x5a0 [ 509.222921] ? getname_flags+0x26e/0x5a0 [ 509.226988] do_sys_open+0x56f/0x740 [ 509.230698] ? mm_fault_error+0x314/0x380 [ 509.234831] ? filp_open+0x80/0x80 [ 509.238362] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 509.243199] __x64_sys_open+0x7e/0xc0 [ 509.246994] do_syscall_64+0x1b1/0x800 [ 509.250875] ? finish_task_switch+0x1ca/0x840 [ 509.255361] ? syscall_return_slowpath+0x5c0/0x5c0 [ 509.260291] ? syscall_return_slowpath+0x30f/0x5c0 [ 509.265228] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 509.270768] ? retint_user+0x18/0x18 [ 509.274481] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 509.279323] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 509.284512] RIP: 0033:0x40fc61 [ 509.287691] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 509.295397] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 509.302665] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 [ 509.309932] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 [ 509.317201] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 [ 509.324464] R13: 0000000000000744 R14: 00000000006fef00 R15: 0000000000000027 [ 509.357610] netlink: 'syz-executor1': attribute type 29 has an invalid length. [ 509.365095] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 509.389064] netlink: 'syz-executor1': attribute type 29 has an invalid length. [ 509.396586] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 509.920086] IPVS: ftp: loaded support on port[0] = 21 [ 510.289347] bridge0: port 1(bridge_slave_0) entered blocking state [ 510.295745] bridge0: port 1(bridge_slave_0) entered disabled state [ 510.302862] device bridge_slave_0 entered promiscuous mode [ 510.329057] bridge0: port 2(bridge_slave_1) entered blocking state [ 510.335459] bridge0: port 2(bridge_slave_1) entered disabled state [ 510.342693] device bridge_slave_1 entered promiscuous mode [ 510.369075] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 510.395583] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 510.466219] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 510.494091] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 510.602603] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 510.609744] team0: Port device team_slave_0 added [ 510.635427] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 510.642581] team0: Port device team_slave_1 added [ 510.666282] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 510.673173] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 510.681042] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 510.701932] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 510.708821] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 510.716758] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 510.738424] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 510.745557] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 510.753640] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 510.775048] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 510.782311] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 510.790548] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 511.008597] bridge0: port 2(bridge_slave_1) entered blocking state [ 511.014995] bridge0: port 2(bridge_slave_1) entered forwarding state [ 511.021659] bridge0: port 1(bridge_slave_0) entered blocking state [ 511.028182] bridge0: port 1(bridge_slave_0) entered forwarding state [ 511.035645] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 511.647404] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 511.824336] 8021q: adding VLAN 0 to HW filter on device bond0 [ 511.901755] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 511.981360] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 511.987564] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 511.995330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 512.072253] 8021q: adding VLAN 0 to HW filter on device team0 2018/05/26 12:22:38 executing program 0 (fault-call:2 fault-nth:40): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:22:38 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8946, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:22:38 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x0, 0xff010000, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:22:38 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(r0, &(0x7f0000000100), 0xffffffffffffffd6, 0x20000004, &(0x7f000031e000)={0xa}, 0x1c) r1 = socket$inet(0x10, 0x3, 0x0) sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f000000d000)=[{&(0x7f0000008000)="4c0000001200ff09fffefd956fa283b724a6008000000000000000683540150024001d001fc41180b598bc593ab6821148a730de33a49868c62b2ca654a6613b6aabf35d0f1cbc882b079881", 0x4c}], 0x1}, 0x0) 2018/05/26 12:22:38 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = shmget$private(0x0, 0x2000, 0x200, &(0x7f0000ffe000/0x2000)=nil) r2 = getuid() r3 = getgid() r4 = geteuid() r5 = openat$zero(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/zero\x00', 0x200000, 0x0) getsockopt$inet_IP_IPSEC_POLICY(r5, 0x0, 0x10, &(0x7f0000000300)={{{@in=@broadcast, @in=@local}}, {{@in=@dev}, 0x0, @in=@multicast2}}, &(0x7f0000000200)=0xe8) r6 = getegid() ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000100)=0x0) r8 = fcntl$getown(r0, 0x9) shmctl$IPC_SET(r1, 0x1, &(0x7f0000000140)={{0x1000, r2, r3, r4, r6, 0x1, 0x7}, 0x4, 0x8, 0x2, 0x0, r7, r8, 0x20}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'bridge0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f00000018c0)={&(0x7f00000002c0)={0x10}, 0xc, &(0x7f0000001880)={&(0x7f0000000500)=@newlink={0x2c, 0x10, 0x15, 0x0, 0x0, {0x0, 0x0, 0x0, r9}, [@IFLA_ADDRESS={0xc, 0x1, @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff]}]}, 0x2c}, 0x1}, 0x0) getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)) 2018/05/26 12:22:38 executing program 3: r0 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x1000000000008912, &(0x7f0000000080)="c626262c8523bf012cf66f") accept$ipx(r0, &(0x7f0000000000), &(0x7f0000000040)=0x10) r1 = perf_event_open(&(0x7f00000000c0)={0x8, 0x70, 0x101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r1, 0x2403, 0x0) 2018/05/26 12:22:38 executing program 2: setsockopt$inet_sctp_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000001000)={0x10000, 0x4, 0x100, 0x400}, 0x6) r0 = socket(0x11, 0x80002, 0x0) setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000788000)=0x2, 0x4) bind$packet(r0, &(0x7f0000000480)={0x11, 0x3, 0x0, 0x1, 0x0, 0x6, @local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}}, 0x14) setsockopt(r0, 0x107, 0x5, &(0x7f0000001000), 0xc5) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00001fefe4)={0xa, 0x4e22}, 0x1c) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(r2, &(0x7f0000000280), 0xfffffdf7, 0x20000005, &(0x7f0000000000)={0xa, 0x4e22}, 0x1c) shutdown(r2, 0x1) 2018/05/26 12:22:38 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000100, 0xcd]}) 2018/05/26 12:22:38 executing program 7: syz_emit_ethernet(0x36, &(0x7f0000000180)={@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @remote={0xac, 0x14, 0x14, 0xbb}, @local={0xac, 0x14, 0x14, 0xaa}}, @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, &(0x7f0000000000)) getrusage(0xffffffffffffffff, &(0x7f0000000040)) [ 512.673175] FAULT_INJECTION: forcing a failure. [ 512.673175] name failslab, interval 1, probability 0, space 0, times 0 [ 512.684497] CPU: 1 PID: 30166 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 512.691779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 512.701135] Call Trace: [ 512.703751] dump_stack+0x1b9/0x294 [ 512.707412] ? dump_stack_print_info.cold.2+0x52/0x52 [ 512.712618] ? perf_trace_lock_acquire+0xe3/0x980 [ 512.717469] should_fail.cold.4+0xa/0x1a [ 512.721530] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 512.726636] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 512.731819] ? graph_lock+0x170/0x170 [ 512.735617] ? find_held_lock+0x36/0x1c0 [ 512.739671] ? __lock_is_held+0xb5/0x140 [ 512.743730] ? check_same_owner+0x320/0x320 [ 512.748044] ? kasan_kmalloc+0xc4/0xe0 [ 512.751918] ? kmem_cache_alloc_node_trace+0x150/0x770 [ 512.757180] ? blk_mq_init_tags+0x79/0x2b0 [ 512.761403] ? rcu_note_context_switch+0x710/0x710 [ 512.766318] ? elevator_init+0x3c8/0x500 [ 512.770366] ? blk_mq_sched_init+0x2b/0x40 [ 512.774588] ? blk_mq_init_allocated_queue+0xf19/0x1580 [ 512.779942] __should_failslab+0x124/0x180 [ 512.784168] should_failslab+0x9/0x14 [ 512.787957] kmem_cache_alloc_node_trace+0x26f/0x770 [ 512.793050] ? do_syscall_64+0x1b1/0x800 [ 512.797099] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 512.802460] __kmalloc_node+0x33/0x70 [ 512.806257] sbitmap_init_node+0x290/0x460 [ 512.810483] sbitmap_queue_init_node+0xaa/0x7d0 [ 512.815137] ? trace_event_raw_event_nfs4_open_event+0x130/0xc90 [ 512.821273] ? sbitmap_init_node+0x460/0x460 [ 512.825668] ? rcu_read_lock_sched_held+0x108/0x120 [ 512.830673] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 512.835937] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 512.841462] ? find_next_bit+0x104/0x130 [ 512.845524] blk_mq_init_tags+0x11b/0x2b0 [ 512.849667] blk_mq_alloc_rq_map+0x9f/0x220 [ 512.853980] blk_mq_sched_alloc_tags.isra.13+0x7b/0x160 [ 512.859349] blk_mq_init_sched+0x1e2/0x530 [ 512.863584] elevator_init+0x3c8/0x500 [ 512.867462] ? elevator_get+0x180/0x180 [ 512.871428] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 512.876426] ? blk_mq_map_swqueue+0x74b/0xaa0 [ 512.880911] blk_mq_sched_init+0x2b/0x40 [ 512.884961] blk_mq_init_allocated_queue+0xf19/0x1580 [ 512.890151] ? blk_mq_map_swqueue+0xaa0/0xaa0 [ 512.894633] ? __mutex_init+0x1ef/0x280 [ 512.898611] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 512.904132] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 512.908880] ? idr_alloc+0x145/0x1a0 [ 512.912581] ? blk_mq_update_nr_hw_queues+0x4f0/0x4f0 [ 512.917763] blk_mq_init_queue+0x63/0xb0 [ 512.921814] loop_add+0x32b/0x9c0 [ 512.925250] ? loop_lookup+0x102/0x220 [ 512.929121] ? loop_queue_rq+0x640/0x640 [ 512.933167] ? module_unload_free+0x5b0/0x5b0 [ 512.937651] loop_probe+0x185/0x1c0 [ 512.941261] ? loop_control_ioctl+0x500/0x500 [ 512.945743] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 512.950933] kobj_lookup+0x269/0x460 [ 512.954639] ? loop_control_ioctl+0x500/0x500 [ 512.959118] get_gendisk+0x4c/0x380 [ 512.962732] __blkdev_get+0x45f/0x13a0 [ 512.966614] ? blkdev_get_block+0xc0/0xc0 [ 512.970754] blkdev_get+0xb9/0xb30 [ 512.974286] ? bdget+0x5c0/0x5c0 [ 512.977642] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 512.982216] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 512.987740] ? errseq_sample+0xe3/0x120 [ 512.991702] ? _copy_to_user+0x110/0x110 [ 512.995751] ? _raw_spin_unlock+0x22/0x30 [ 512.999886] blkdev_open+0x1fb/0x280 [ 513.003594] do_dentry_open+0x7ef/0xf10 [ 513.007558] ? bd_acquire+0x2c0/0x2c0 [ 513.011352] vfs_open+0x139/0x230 [ 513.014798] path_openat+0x1676/0x4e20 [ 513.018682] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 513.023435] ? find_held_lock+0x36/0x1c0 [ 513.027489] ? lock_downgrade+0x8e0/0x8e0 [ 513.031630] ? kasan_check_read+0x11/0x20 [ 513.035765] ? do_raw_spin_unlock+0x9e/0x2e0 [ 513.040158] ? __lock_is_held+0xb5/0x140 [ 513.044219] ? _raw_spin_unlock+0x22/0x30 [ 513.048353] ? __alloc_fd+0x346/0x700 [ 513.052141] ? usercopy_warn+0x120/0x120 [ 513.056203] do_filp_open+0x249/0x350 [ 513.059991] ? may_open_dev+0x100/0x100 [ 513.063952] ? strncpy_from_user+0x3b6/0x500 [ 513.068436] ? mpi_free.cold.1+0x19/0x19 [ 513.072485] ? get_unused_fd_flags+0x121/0x190 [ 513.077055] ? getname_flags+0xd0/0x5a0 [ 513.081021] ? getname_flags+0x26e/0x5a0 [ 513.085078] do_sys_open+0x56f/0x740 [ 513.088782] ? mm_fault_error+0x314/0x380 [ 513.092913] ? filp_open+0x80/0x80 [ 513.096441] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 513.101977] __x64_sys_open+0x7e/0xc0 [ 513.105767] do_syscall_64+0x1b1/0x800 [ 513.109640] ? finish_task_switch+0x1ca/0x840 [ 513.114122] ? syscall_return_slowpath+0x5c0/0x5c0 [ 513.119043] ? syscall_return_slowpath+0x30f/0x5c0 [ 513.123964] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 513.129488] ? retint_user+0x18/0x18 [ 513.133199] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 513.138039] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 513.143214] RIP: 0033:0x40fc61 [ 513.146385] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 513.154088] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 513.161340] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 2018/05/26 12:22:38 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8927, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:22:38 executing program 0 (fault-call:2 fault-nth:41): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) [ 513.168599] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 [ 513.175851] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 [ 513.183108] R13: 0000000000000744 R14: 00000000006fef00 R15: 0000000000000028 [ 513.459826] netlink: 'syz-executor1': attribute type 29 has an invalid length. [ 513.467323] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 513.476222] netlink: 'syz-executor1': attribute type 29 has an invalid length. [ 513.483693] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 513.599659] FAULT_INJECTION: forcing a failure. [ 513.599659] name failslab, interval 1, probability 0, space 0, times 0 [ 513.610977] CPU: 1 PID: 30195 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 513.618257] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 513.627620] Call Trace: [ 513.630224] dump_stack+0x1b9/0x294 [ 513.633848] ? dump_stack_print_info.cold.2+0x52/0x52 [ 513.639052] ? find_next_zero_bit+0x111/0x140 [ 513.643557] should_fail.cold.4+0xa/0x1a [ 513.647612] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 513.652714] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 513.658256] ? graph_lock+0x170/0x170 [ 513.662068] ? find_held_lock+0x36/0x1c0 [ 513.666131] ? __lock_is_held+0xb5/0x140 [ 513.670194] ? check_same_owner+0x320/0x320 [ 513.674507] ? __kmalloc_node+0x33/0x70 [ 513.678491] ? rcu_note_context_switch+0x710/0x710 [ 513.683424] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 513.688690] ? do_syscall_64+0x1b1/0x800 [ 513.692753] __should_failslab+0x124/0x180 [ 513.697008] should_failslab+0x9/0x14 [ 513.700813] kmem_cache_alloc_node_trace+0x26f/0x770 [ 513.705907] ? __kmalloc_node+0x47/0x70 [ 513.709877] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 513.714880] ? find_next_bit+0x104/0x130 [ 513.718937] sbitmap_queue_init_node+0x3bd/0x7d0 [ 513.723691] ? sbitmap_init_node+0x460/0x460 [ 513.728092] ? rcu_read_lock_sched_held+0x108/0x120 [ 513.733100] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 513.738370] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 513.743895] ? find_next_bit+0x104/0x130 [ 513.747943] blk_mq_init_tags+0x11b/0x2b0 [ 513.752081] blk_mq_alloc_rq_map+0x9f/0x220 [ 513.756389] blk_mq_sched_alloc_tags.isra.13+0x7b/0x160 [ 513.761741] blk_mq_init_sched+0x1e2/0x530 [ 513.765964] elevator_init+0x3c8/0x500 [ 513.769832] ? elevator_get+0x180/0x180 [ 513.773796] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 513.778795] ? blk_mq_map_swqueue+0x74b/0xaa0 [ 513.783310] blk_mq_sched_init+0x2b/0x40 [ 513.787362] blk_mq_init_allocated_queue+0xf19/0x1580 [ 513.792541] ? blk_mq_map_swqueue+0xaa0/0xaa0 [ 513.797030] ? __mutex_init+0x1ef/0x280 [ 513.801012] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 513.806543] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 513.811283] ? idr_alloc+0x145/0x1a0 [ 513.814983] ? blk_mq_update_nr_hw_queues+0x4f0/0x4f0 [ 513.820160] blk_mq_init_queue+0x63/0xb0 [ 513.824206] loop_add+0x32b/0x9c0 [ 513.827648] ? loop_lookup+0x102/0x220 [ 513.831529] ? loop_queue_rq+0x640/0x640 [ 513.835572] ? module_unload_free+0x5b0/0x5b0 [ 513.840060] loop_probe+0x185/0x1c0 [ 513.843673] ? loop_control_ioctl+0x500/0x500 [ 513.848156] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 513.853332] kobj_lookup+0x269/0x460 [ 513.857044] ? loop_control_ioctl+0x500/0x500 [ 513.861538] get_gendisk+0x4c/0x380 [ 513.865152] __blkdev_get+0x45f/0x13a0 [ 513.869041] ? blkdev_get_block+0xc0/0xc0 [ 513.873183] blkdev_get+0xb9/0xb30 [ 513.876707] ? bdget+0x5c0/0x5c0 [ 513.880070] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 513.884645] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 513.890166] ? errseq_sample+0xe3/0x120 [ 513.894133] ? _copy_to_user+0x110/0x110 [ 513.898175] ? _raw_spin_unlock+0x22/0x30 [ 513.902306] blkdev_open+0x1fb/0x280 [ 513.906005] do_dentry_open+0x7ef/0xf10 [ 513.909967] ? bd_acquire+0x2c0/0x2c0 [ 513.913754] vfs_open+0x139/0x230 [ 513.917196] path_openat+0x1676/0x4e20 [ 513.921074] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 513.925814] ? find_held_lock+0x36/0x1c0 [ 513.929868] ? lock_downgrade+0x8e0/0x8e0 [ 513.933997] ? do_sys_open+0x39a/0x740 [ 513.937892] ? kasan_check_read+0x11/0x20 [ 513.942039] ? do_raw_spin_unlock+0x9e/0x2e0 [ 513.946429] ? __lock_is_held+0xb5/0x140 [ 513.950474] ? _raw_spin_unlock+0x22/0x30 [ 513.954604] ? __alloc_fd+0x346/0x700 [ 513.958387] ? usercopy_warn+0x120/0x120 [ 513.962437] do_filp_open+0x249/0x350 [ 513.966217] ? may_open_dev+0x100/0x100 [ 513.970184] ? strncpy_from_user+0x3b6/0x500 [ 513.974576] ? mpi_free.cold.1+0x19/0x19 [ 513.978621] ? get_unused_fd_flags+0x121/0x190 [ 513.983184] ? getname_flags+0xd0/0x5a0 [ 513.987138] ? getname_flags+0x26e/0x5a0 [ 513.991186] do_sys_open+0x56f/0x740 [ 513.994884] ? mm_fault_error+0x314/0x380 [ 513.999020] ? filp_open+0x80/0x80 [ 514.002552] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 514.008077] __x64_sys_open+0x7e/0xc0 [ 514.011874] do_syscall_64+0x1b1/0x800 [ 514.015745] ? syscall_return_slowpath+0x5c0/0x5c0 [ 514.020658] ? syscall_return_slowpath+0x30f/0x5c0 [ 514.025572] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 514.031091] ? retint_user+0x18/0x18 [ 514.034788] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 514.039616] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 514.044790] RIP: 0033:0x40fc61 2018/05/26 12:22:39 executing program 2: r0 = socket$inet6(0xa, 0x8000000000000802, 0x0) getsockopt(r0, 0x0, 0x2, &(0x7f0000000540)=""/4096, &(0x7f0000000000)=0x1000) sendmsg$inet_sctp(r0, &(0x7f0000000500)={&(0x7f00000000c0)=@in={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10, &(0x7f0000000080)}, 0x10008000) close(r0) 2018/05/26 12:22:39 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000100, 0x199]}) 2018/05/26 12:22:39 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x0, 0xfeffffff, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:22:39 executing program 3: syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0xe000, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270f7f8", 0x16}], 0x0, &(0x7f0000000240)=ANY=[]) mknod$loop(&(0x7f00000000c0)='./file0/file0\x00', 0x0, 0xffffffffffffffff) mkdir(&(0x7f0000000140)="2e2f66696c65302f66692e652bb5", 0x0) r0 = syz_open_dev$amidi(&(0x7f0000000100)='/dev/amidi#\x00', 0x80000001, 0x800) ioctl$TIOCMBIC(r0, 0x5417, &(0x7f00000001c0)=0x4) stat(&(0x7f00000005c0)="2e2f66696c65302f66692e652bb52f66696c653000", &(0x7f0000000600)) syz_fuse_mount(&(0x7f0000000180)="2e2f66696c65302f66692e652bb52f66696c653000", 0x0, 0x0, 0x0, 0x0, 0x0) open$dir(&(0x7f0000000080)='./file0\x00', 0x8000, 0x80) 2018/05/26 12:22:39 executing program 7: r0 = socket(0xa, 0x1, 0x0) setsockopt$inet_sctp_SCTP_DISABLE_FRAGMENTS(r0, 0x84, 0x8, &(0x7f0000000180)=0x3, 0x4) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x5, 0x3, &(0x7f0000346fc8)=ANY=[@ANYBLOB="180000000000000000000000000000000000000000000000"], &(0x7f00000001c0)='GPL\x00', 0x100000001, 0xfb, &(0x7f0000000080)=""/251}, 0x48) getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(r0, 0x84, 0x1b, &(0x7f0000000380)={0x0, 0xc4, "494d96e561b95866a586c01184e6b65c3da38a280ce23d2e8e6bdb6b034a5ca6ca5a6b41399b1abf161a0d9f816c83e40fdb5d0d4abaa33f08977616b3ee5eac524394c8f4435602860e605fd2ab7b779a33163b07f5e1639d868e016716519a347190f9d523e97428541a4e98c80f630add2b6449775f989431312d6e82f3912d2e42f2943ba2240048f744ce5fcc6197fe82e60b44a429e21723d0e014a341c3312f9b19200ecb0e37222102aa9f6c868fd5c588c391b1c3f3e403576bbcb92e125e99"}, &(0x7f0000000280)=0xcc) setsockopt$inet_sctp_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f00000002c0)={r2, 0x3, 0x1, 0x5}, 0x10) accept(r0, &(0x7f00000004c0)=@rc, &(0x7f0000000540)=0x80) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f0000000480)=0xa30, 0x4) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000200)={r1, 0x50, &(0x7f0000000300)}, 0x10) 2018/05/26 12:22:39 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x89b0, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:22:39 executing program 0 (fault-call:2 fault-nth:42): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:22:39 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(r0, &(0x7f0000000100), 0xffffffffffffffd6, 0x20000004, &(0x7f000031e000)={0xa}, 0x1c) r1 = socket$inet(0x10, 0x3, 0x4) sendmsg(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f000000d000)=[{&(0x7f0000008000)="4c0000001200ff09fffefd956fa283b724a6008000000000000000683540150024001d001fc41180b598bc593ab6821148a730de33a49868c62b2ca654a6613b6aabf35d0f1cbc882b079881", 0x4c}], 0x1}, 0x0) [ 514.047960] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 514.055658] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 514.062916] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 [ 514.070170] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 [ 514.077421] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 [ 514.084682] R13: 0000000000000744 R14: 00000000006fef00 R15: 0000000000000029 2018/05/26 12:22:40 executing program 7: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = socket(0x2, 0x1, 0x0) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") getsockopt$inet6_int(r0, 0x29, 0xd0, &(0x7f0000000040), &(0x7f00000002c0)=0x4) prctl$intptr(0x1b, 0xfff) 2018/05/26 12:22:40 executing program 2: r0 = socket$inet(0x10, 0x2000000000000005, 0x0) sendmsg(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f000000d000)=[{&(0x7f0000008000)="4c0000001200ff09fffefd956fa283b724a600800000000000000068354015002c000a0010000000b598bc593ab6821148a730de33a49868c62b2ca654a6613b6aabf35d4c1cbc882b079881", 0x4c}], 0x1}, 0x0) 2018/05/26 12:22:40 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x2, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:22:40 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x0, 0x20000000, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:22:40 executing program 3: r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = fcntl$getown(r0, 0x9) syz_open_procfs(r3, &(0x7f0000000000)='net/bnep\x00') ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) recvmmsg(r2, &(0x7f00000012c0)=[{{&(0x7f0000000400)=@ipx, 0x80, &(0x7f0000000480), 0x0, &(0x7f00000004c0)=""/72, 0x48, 0x8000000000000}, 0x50}, {{&(0x7f0000000540)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @local}}}, 0x80, &(0x7f00000006c0)=[{&(0x7f00000005c0)=""/242, 0xf2}], 0x1}, 0xfff}, {{&(0x7f0000000700)=@pppol2tpin6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @mcast1}}}, 0x80, &(0x7f0000000a80)=[{&(0x7f0000000780)=""/14, 0xe}, {&(0x7f00000007c0)=""/6, 0x6}, {&(0x7f0000000800)=""/204, 0xcc}, {&(0x7f0000000900)=""/221, 0xdd}, {&(0x7f0000000a00)=""/77, 0x4d}], 0x5, &(0x7f0000000b00)=""/40, 0x28, 0x200}, 0x1}, {{&(0x7f0000000b40)=@hci={0x0, 0x0}, 0x80, &(0x7f0000000f00)=[{&(0x7f0000000bc0)=""/249, 0xf9}, {&(0x7f0000000cc0)=""/65, 0x41}, {&(0x7f0000000d40)=""/98, 0x62}, {&(0x7f0000000dc0)=""/13, 0xd}, {&(0x7f0000000e00)=""/212, 0xd4}], 0x5, &(0x7f0000000f80)=""/52, 0x34, 0x7f}, 0x7}, {{&(0x7f0000000fc0)=@pppoe={0x0, 0x0, {0x0, @dev}}, 0x80, &(0x7f0000001180)=[{&(0x7f0000001040)=""/125, 0x7d}, {&(0x7f00000010c0)=""/90, 0x5a}, {&(0x7f0000001140)=""/60, 0x3c}], 0x3, &(0x7f00000011c0)=""/198, 0xc6, 0x4}, 0x1}], 0x5, 0x40002002, &(0x7f0000001440)={r4, r5+30000000}) setsockopt$inet_sctp_SCTP_FRAGMENT_INTERLEAVE(r0, 0x84, 0x12, &(0x7f0000000180)=0xff, 0x4) setsockopt$inet_udp_encap(r6, 0x11, 0x64, &(0x7f0000000080)=0x7, 0x4) getresuid(&(0x7f0000001480), &(0x7f00000014c0), &(0x7f0000001500)=0x0) setsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000001540)={{{@in6=@dev={0xfe, 0x80, [], 0x21}, @in6=@mcast1={0xff, 0x1, [], 0x1}, 0x4e22, 0x9, 0x4e23, 0x81, 0xa, 0xa0, 0x0, 0x0, r7, r8}, {0x7f, 0x8, 0x0, 0x0, 0x30, 0x4, 0x1, 0x401}, {0x2, 0x0, 0x1000000, 0x49}, 0x5c, 0x6e6bb7, 0x2, 0x0, 0x2, 0x1}, {{@in=@multicast1=0xe0000001, 0x4d5, 0x3f}, 0x0, @in=@local={0xac, 0x14, 0x14, 0xaa}, 0x3504, 0x2, 0x3, 0x86, 0x7a, 0x1ff, 0x2}}, 0xe8) write(r6, &(0x7f00000000c0)="91dc5aca55beafd0e1da36369503ebda4ca121a1b82fcc88754afc4cb0bf394def2b45262e9a213fafacaa92799d63779e513349b8", 0x35) r9 = eventfd(0x8001) ioctl$KVM_IRQFD(r2, 0x4020ae76, &(0x7f0000000040)={r9, 0x12}) 2018/05/26 12:22:40 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000100, 0xfe]}) [ 514.446452] FAULT_INJECTION: forcing a failure. [ 514.446452] name failslab, interval 1, probability 0, space 0, times 0 [ 514.457841] CPU: 1 PID: 30226 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 514.465115] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 514.474454] Call Trace: [ 514.477060] dump_stack+0x1b9/0x294 [ 514.480701] ? dump_stack_print_info.cold.2+0x52/0x52 [ 514.485882] ? find_next_zero_bit+0x111/0x140 [ 514.490373] should_fail.cold.4+0xa/0x1a [ 514.494421] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 514.499537] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 514.505066] ? graph_lock+0x170/0x170 [ 514.508869] ? find_held_lock+0x36/0x1c0 [ 514.512933] ? __lock_is_held+0xb5/0x140 [ 514.517010] ? check_same_owner+0x320/0x320 [ 514.521332] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 514.526349] ? rcu_note_context_switch+0x710/0x710 [ 514.531277] ? __lockdep_init_map+0x105/0x590 [ 514.535766] __should_failslab+0x124/0x180 [ 514.539996] should_failslab+0x9/0x14 [ 514.543807] kmem_cache_alloc_node_trace+0x26f/0x770 [ 514.548923] ? init_wait_entry+0x1b0/0x1b0 [ 514.553170] ? __kmalloc_node+0x47/0x70 [ 514.557133] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 514.562146] sbitmap_queue_init_node+0x3bd/0x7d0 [ 514.566891] ? sbitmap_init_node+0x460/0x460 [ 514.571288] ? rcu_read_lock_sched_held+0x108/0x120 [ 514.576295] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 514.581579] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 514.587118] ? find_next_bit+0x104/0x130 [ 514.591167] blk_mq_init_tags+0x17c/0x2b0 [ 514.595391] blk_mq_alloc_rq_map+0x9f/0x220 [ 514.599718] blk_mq_sched_alloc_tags.isra.13+0x7b/0x160 [ 514.605100] blk_mq_init_sched+0x1e2/0x530 [ 514.609329] elevator_init+0x3c8/0x500 [ 514.613206] ? elevator_get+0x180/0x180 [ 514.617179] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 514.622198] ? blk_mq_map_swqueue+0x74b/0xaa0 [ 514.626691] blk_mq_sched_init+0x2b/0x40 [ 514.630740] blk_mq_init_allocated_queue+0xf19/0x1580 [ 514.635924] ? blk_mq_map_swqueue+0xaa0/0xaa0 [ 514.640416] ? __mutex_init+0x1ef/0x280 [ 514.644411] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 514.649944] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 514.654707] ? idr_alloc+0x145/0x1a0 [ 514.658422] ? blk_mq_update_nr_hw_queues+0x4f0/0x4f0 [ 514.663605] blk_mq_init_queue+0x63/0xb0 [ 514.667671] loop_add+0x32b/0x9c0 [ 514.671290] ? loop_lookup+0x102/0x220 [ 514.675170] ? loop_queue_rq+0x640/0x640 [ 514.679214] ? module_unload_free+0x5b0/0x5b0 [ 514.683697] loop_probe+0x185/0x1c0 [ 514.687304] ? loop_control_ioctl+0x500/0x500 [ 514.691795] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 514.696985] kobj_lookup+0x269/0x460 [ 514.700696] ? loop_control_ioctl+0x500/0x500 [ 514.705177] get_gendisk+0x4c/0x380 [ 514.708791] __blkdev_get+0x45f/0x13a0 [ 514.712666] ? blkdev_get_block+0xc0/0xc0 [ 514.716813] blkdev_get+0xb9/0xb30 [ 514.720350] ? bdget+0x5c0/0x5c0 [ 514.723700] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 514.728267] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 514.733791] ? errseq_sample+0xe3/0x120 [ 514.737749] ? _copy_to_user+0x110/0x110 [ 514.741806] ? _raw_spin_unlock+0x22/0x30 [ 514.745949] blkdev_open+0x1fb/0x280 [ 514.749663] do_dentry_open+0x7ef/0xf10 [ 514.753631] ? bd_acquire+0x2c0/0x2c0 [ 514.757418] vfs_open+0x139/0x230 [ 514.760854] path_openat+0x1676/0x4e20 [ 514.764749] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 514.769497] ? find_held_lock+0x36/0x1c0 [ 514.773562] ? lock_downgrade+0x8e0/0x8e0 [ 514.777703] ? do_sys_open+0x39a/0x740 [ 514.781580] ? kasan_check_read+0x11/0x20 [ 514.785720] ? do_raw_spin_unlock+0x9e/0x2e0 [ 514.790129] ? __lock_is_held+0xb5/0x140 [ 514.794184] ? _raw_spin_unlock+0x22/0x30 [ 514.798317] ? __alloc_fd+0x346/0x700 [ 514.802098] ? usercopy_warn+0x120/0x120 [ 514.806164] do_filp_open+0x249/0x350 [ 514.809955] ? may_open_dev+0x100/0x100 [ 514.813923] ? strncpy_from_user+0x3b6/0x500 [ 514.818319] ? mpi_free.cold.1+0x19/0x19 [ 514.822366] ? get_unused_fd_flags+0x121/0x190 [ 514.826937] ? getname_flags+0xd0/0x5a0 [ 514.830909] ? getname_flags+0x26e/0x5a0 [ 514.834960] do_sys_open+0x56f/0x740 [ 514.838660] ? mm_fault_error+0x314/0x380 [ 514.842790] ? filp_open+0x80/0x80 [ 514.846327] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 514.851860] __x64_sys_open+0x7e/0xc0 [ 514.855647] do_syscall_64+0x1b1/0x800 [ 514.859524] ? syscall_return_slowpath+0x5c0/0x5c0 [ 514.864442] ? syscall_return_slowpath+0x30f/0x5c0 [ 514.869370] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 514.874913] ? retint_user+0x18/0x18 [ 514.878623] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 514.883456] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 514.888628] RIP: 0033:0x40fc61 [ 514.891807] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 514.899498] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 514.906755] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 [ 514.914021] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 [ 514.921276] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 [ 514.928527] R13: 0000000000000744 R14: 00000000006fef00 R15: 000000000000002a 2018/05/26 12:22:40 executing program 0 (fault-call:2 fault-nth:43): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:22:40 executing program 7: r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket(0x10, 0x3, 0x0) ioctl$sock_ifreq(r1, 0x89f8, &(0x7f0000000100)={"736948d08c01d41cd4af00", @ifru_mtu=0x6f3000}) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f00000001c0)={{{@in6=@loopback, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast1}, 0x0, @in=@rand_addr}}, &(0x7f0000000000)=0xe8) r3 = geteuid() setsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in=@loopback=0x7f000001, @in=@broadcast=0xffffffff, 0x4e23, 0x0, 0x4e20, 0x5fe, 0x2, 0xa0, 0x80, 0x32, r2, r3}, {0x6e1c, 0x0, 0x0, 0x2, 0x1, 0x7f, 0x2, 0x6}, {0xe7, 0x4, 0x1, 0x6}, 0x100000001, 0x6e6bb7, 0xef9e6a7d736633ff, 0x1, 0x0, 0x2}, {{@in=@rand_addr=0x1, 0x4d4, 0xff}, 0x2, @in=@loopback=0x7f000001, 0x3506, 0x0, 0x0, 0x3, 0x9, 0x3edb, 0x6}}, 0xe8) 2018/05/26 12:22:40 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) clone(0x200, &(0x7f0000b6b000), &(0x7f0000744000), &(0x7f0000fef000), &(0x7f00000001c0)) mknod(&(0x7f0000000080)='./file0\x00', 0x1040, 0x0) execve(&(0x7f0000ee6ff8)='./file0\x00', &(0x7f0000000000), &(0x7f00000088c0)) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000080)) kcmp$KCMP_EPOLL_TFD(0x0, 0x0, 0x5, 0xffffffffffffffff, &(0x7f0000000100)) io_setup(0x1, &(0x7f0000000000)=0x0) io_destroy(r3) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x0, 0x0, &(0x7f0000000040), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_INTERRUPT(0xffffffffffffffff, 0x4004ae86, &(0x7f0000000040)=0x3) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2018/05/26 12:22:40 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x894c, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:22:40 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000100, 0x10000000]}) [ 515.210459] FAULT_INJECTION: forcing a failure. [ 515.210459] name failslab, interval 1, probability 0, space 0, times 0 [ 515.221727] CPU: 1 PID: 30254 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 515.228991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 515.238339] Call Trace: [ 515.240925] dump_stack+0x1b9/0x294 [ 515.244557] ? dump_stack_print_info.cold.2+0x52/0x52 [ 515.249756] ? kobj_lookup+0x269/0x460 [ 515.253643] ? get_gendisk+0x4c/0x380 [ 515.257435] ? __blkdev_get+0x45f/0x13a0 [ 515.261505] ? blkdev_get+0xb9/0xb30 [ 515.265212] ? blkdev_open+0x1fb/0x280 [ 515.269100] ? do_dentry_open+0x7ef/0xf10 [ 515.273245] should_fail.cold.4+0xa/0x1a [ 515.277297] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 515.282396] ? mark_held_locks+0xc9/0x160 [ 515.286549] ? graph_lock+0x170/0x170 [ 515.290352] ? __raw_spin_lock_init+0x1c/0x100 [ 515.294923] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 515.299930] ? __lockdep_init_map+0x105/0x590 [ 515.304435] ? __lockdep_init_map+0x105/0x590 [ 515.308932] ? __lock_is_held+0xb5/0x140 [ 515.312995] ? __init_waitqueue_head+0x96/0x140 [ 515.317701] ? check_same_owner+0x320/0x320 [ 515.322029] ? sbitmap_queue_init_node+0xc6/0x7d0 [ 515.326863] ? rcu_note_context_switch+0x710/0x710 [ 515.331792] __should_failslab+0x124/0x180 [ 515.336018] should_failslab+0x9/0x14 [ 515.339817] kmem_cache_alloc_node_trace+0x26f/0x770 [ 515.344925] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 515.350464] ? find_next_bit+0x104/0x130 [ 515.354520] __kmalloc_node+0x33/0x70 [ 515.358319] blk_mq_alloc_rq_map+0xcc/0x220 [ 515.362639] blk_mq_sched_alloc_tags.isra.13+0x7b/0x160 [ 515.367991] blk_mq_init_sched+0x1e2/0x530 [ 515.372216] elevator_init+0x3c8/0x500 [ 515.376086] ? elevator_get+0x180/0x180 [ 515.380060] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 515.385068] ? blk_mq_map_swqueue+0x74b/0xaa0 [ 515.389566] blk_mq_sched_init+0x2b/0x40 [ 515.393639] blk_mq_init_allocated_queue+0xf19/0x1580 [ 515.398842] ? blk_mq_map_swqueue+0xaa0/0xaa0 [ 515.403326] ? __mutex_init+0x1ef/0x280 [ 515.407298] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 515.412820] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 515.417566] ? idr_alloc+0x145/0x1a0 [ 515.421270] ? blk_mq_update_nr_hw_queues+0x4f0/0x4f0 [ 515.426442] blk_mq_init_queue+0x63/0xb0 [ 515.430490] loop_add+0x32b/0x9c0 [ 515.433936] ? loop_lookup+0x102/0x220 [ 515.437808] ? loop_queue_rq+0x640/0x640 [ 515.441857] ? module_unload_free+0x5b0/0x5b0 [ 515.446339] loop_probe+0x185/0x1c0 [ 515.449950] ? loop_control_ioctl+0x500/0x500 [ 515.454441] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 515.459615] kobj_lookup+0x269/0x460 [ 515.463315] ? loop_control_ioctl+0x500/0x500 [ 515.467796] get_gendisk+0x4c/0x380 [ 515.471409] __blkdev_get+0x45f/0x13a0 [ 515.475291] ? blkdev_get_block+0xc0/0xc0 [ 515.479428] blkdev_get+0xb9/0xb30 [ 515.482952] ? bdget+0x5c0/0x5c0 [ 515.486304] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 515.490870] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 515.496392] ? errseq_sample+0xe3/0x120 [ 515.500355] ? _copy_to_user+0x110/0x110 [ 515.504413] ? _raw_spin_unlock+0x22/0x30 [ 515.508546] blkdev_open+0x1fb/0x280 [ 515.512247] do_dentry_open+0x7ef/0xf10 [ 515.516201] ? bd_acquire+0x2c0/0x2c0 [ 515.519987] vfs_open+0x139/0x230 [ 515.523426] path_openat+0x1676/0x4e20 [ 515.527303] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 515.532047] ? find_held_lock+0x36/0x1c0 [ 515.536094] ? lock_downgrade+0x8e0/0x8e0 [ 515.540220] ? do_sys_open+0x39a/0x740 [ 515.544090] ? kasan_check_read+0x11/0x20 [ 515.548225] ? do_raw_spin_unlock+0x9e/0x2e0 [ 515.552612] ? __lock_is_held+0xb5/0x140 [ 515.556660] ? _raw_spin_unlock+0x22/0x30 [ 515.560790] ? __alloc_fd+0x346/0x700 [ 515.564567] ? usercopy_warn+0x120/0x120 [ 515.568612] do_filp_open+0x249/0x350 [ 515.572395] ? may_open_dev+0x100/0x100 [ 515.576352] ? strncpy_from_user+0x3b6/0x500 [ 515.580740] ? mpi_free.cold.1+0x19/0x19 [ 515.584783] ? get_unused_fd_flags+0x121/0x190 [ 515.589349] ? getname_flags+0xd0/0x5a0 [ 515.593317] ? getname_flags+0x26e/0x5a0 [ 515.597364] do_sys_open+0x56f/0x740 [ 515.601068] ? mm_fault_error+0x314/0x380 [ 515.605195] ? filp_open+0x80/0x80 [ 515.608716] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 515.613541] __x64_sys_open+0x7e/0xc0 [ 515.617323] do_syscall_64+0x1b1/0x800 [ 515.621191] ? syscall_return_slowpath+0x5c0/0x5c0 [ 515.626099] ? syscall_return_slowpath+0x30f/0x5c0 [ 515.631016] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 515.636538] ? retint_user+0x18/0x18 [ 515.640235] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 515.645060] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 515.650234] RIP: 0033:0x40fc61 [ 515.653405] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 515.661104] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 515.668352] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 [ 515.675600] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 [ 515.682858] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 [ 515.690108] R13: 0000000000000744 R14: 00000000006fef00 R15: 000000000000002b 2018/05/26 12:22:42 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x0, 0x804, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:22:42 executing program 3: r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x1, 0x0) read(r0, &(0x7f0000000140)=""/129, 0x81) r1 = socket(0xa, 0x2, 0x0) ioctl(r0, 0x3, &(0x7f0000000040)="fa04c57b8e7761186694c2e192734e9635ec3b7ac0be98e876d855a07e8f8b2d6e9c941ba1ad8d9fb6febfa636d96d") ioctl$KVM_GET_MSR_INDEX_LIST(r0, 0xc004ae02, &(0x7f00000000c0)={0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}) ioctl(r1, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") ioctl$int_in(r0, 0x800000c0045001, &(0x7f0000000000)=0x40004) 2018/05/26 12:22:42 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(r0, &(0x7f0000000100), 0xffffffffffffffd6, 0x20000004, &(0x7f000031e000)={0xa}, 0x1c) r1 = socket$inet(0x10, 0x3, 0x4) sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f000000d000)}, 0x0) 2018/05/26 12:22:42 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8971, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:22:42 executing program 0 (fault-call:2 fault-nth:44): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:22:42 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000100, 0xc1000000]}) 2018/05/26 12:22:42 executing program 7: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'cmac(twofish-asm)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00000028c0)="b7f2288a933d66593ae164c990a0028e", 0x10) recvmsg(r0, &(0x7f0000000640)={&(0x7f00000001c0)=@alg, 0x80, &(0x7f00000005c0)=[{&(0x7f0000000240)=""/46, 0x2e}, {&(0x7f0000000280)=""/204, 0xcc}, {&(0x7f0000000380)=""/98, 0x62}, {&(0x7f0000000400)=""/188, 0xbc}, {&(0x7f00000004c0)=""/194, 0xc2}], 0x5, 0x0, 0x0, 0x6}, 0x1) r1 = accept$alg(r0, 0x0, 0x0) r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000680)='/dev/sequencer2\x00', 0x400, 0x0) ioctl$KVM_GET_PIT2(r2, 0x8070ae9f, &(0x7f00000006c0)) r3 = perf_event_open$cgroup(&(0x7f0000000140)={0x1, 0x70, 0x5, 0x5, 0x6, 0x200, 0x0, 0x100000000, 0x80042, 0x4, 0x3, 0xd977, 0xca6a, 0x10, 0x0, 0xb78, 0x81, 0x1, 0x10001, 0x2, 0x9, 0x9, 0x1, 0x7, 0x4, 0x9, 0x0, 0x800, 0xd7f, 0x8, 0x1, 0x5, 0x1, 0x3, 0xfffffffffffffff9, 0xa9, 0x400, 0xffffffff, 0x0, 0x6, 0x0, @perf_bp={&(0x7f0000000100), 0x8}, 0x20000, 0x7, 0x200, 0x5, 0x1, 0x1, 0x3dab}, 0xffffffffffffffff, 0x7, 0xffffffffffffff9c, 0xb) preadv(r0, &(0x7f0000000e80)=[{&(0x7f0000000c40)=""/97, 0x61}, {&(0x7f0000000cc0)=""/99, 0x63}, {&(0x7f0000000d40)=""/4, 0x4}, {&(0x7f0000000d80)=""/236, 0xec}], 0x4, 0x0) sendmsg$nl_netfilter(r2, &(0x7f0000000c00)={&(0x7f0000000740)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000bc0)={&(0x7f0000000780)={0x428, 0xe, 0x7, 0x600, 0x70bd26, 0x25dfdbfb, {}, [@nested={0x58, 0x42, [@generic="b81d7a6cf29577f2877847d3636e87f02e98278af26759fbcae1551d9663005c7a4242291c8ea06b2b948418ff9a9877a54fcdc748d7b46d5340ea8d808f712f5e0a1cf472866c60d4528bfd3caa5e900da22a29"]}, @typed={0x8, 0x1c, @ipv4=@broadcast=0xffffffff}, @generic="cfa46a87b7ed56f35af69ee3c76b147c76515e2d47372e76b7f3bad6cfe10318004a96fd5ca4fe84d11d46490338", @typed={0x4, 0x23}, @typed={0x14, 0x8b, @ipv6=@mcast2={0xff, 0x2, [], 0x1}}, @nested={0x140, 0x36, [@generic="16425fc3c54d412e962d5e68ca95a7ecdb57dc9a58df39b176faecaa51a979b9c3ee6b6562967c67190a84195f1a5a035827897998eefe97137fa98cf7299b0973afb1ac93fcb504c91e551524b71a27450129228aebaa7dab06aa000325cc40df9d0a05133a3be3118e2f618ce80f36158d047b335c737157ae19f1b0b33c7b3634fbfd64e657bb2b784b2ffe51d40bc871e6d4da0d4cbb16bd2eb5be61ad002791f1076d23e39f50", @generic="2bf3b0519e0235e16dcc952fa7de3028251a8f98b23964cb74f795030fa9ea307c471f23f43a23899bed5ee828f2a84cccb3c9c76f2e17e510ec3c48d04ad1f60d2cb7ebb5d905a404560904a804bcaf0b99d3d88c39639f9d352a45c510e96cd28fc9a9b9c7dd5393fb30de15beb3f30f73891bed42a99c89fdc51fc2215c8a1952283642c605a9bc921dae5b5e6e4e"]}, @nested={0x11c, 0x65, [@typed={0x8, 0x6c, @str='\x00'}, @typed={0x14, 0x3, @ipv6=@mcast2={0xff, 0x2, [], 0x1}}, @generic="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"]}, @nested={0x30, 0x6d, [@typed={0x18, 0x58, @str='cmac(twofish-asm)\x00'}, @typed={0x8, 0x1b, @ipv4=@multicast1=0xe0000001}, @typed={0xc, 0x24, @str='hash\x00'}]}, @generic="9b1ecfee6818282ef09e2c7c95c49cc4f10eadb256757461220aaab8d46ca7aed15a6e1226d8e952036630f7d33891db77058bb95ee9150c9f79ad3ea0a498b4ba9708d43c3995f638899330be72315c373441daab9aeb5fa6e279e022500976b8b33b0de9d71fe15555d8d9e27d83841540919da64fe06904e9d0cd40e3fb101a3b3b91d2bf06d2498af45592006dd712870853494641896d73f176c4109bb127fb3b7313bef845086cd562fb8999f9293217dd5d316c6bd5d72d4e302ff6945da4ec563abd67544bcc34c8ec314e52e26785944ceb06f409b193e4f1c3d1f3"]}, 0x428}, 0x1, 0x0, 0x0, 0x844}, 0x0) ioctl$PERF_EVENT_IOC_RESET(r3, 0x2403, 0x9) write$binfmt_elf64(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="7f454c46000000000000000000000000bfc6805fbc509823000000000000000040000000000000000000000000000000000000000000380000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"], 0x78) 2018/05/26 12:22:42 executing program 2: r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snapshot\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000140)={0x1, 0x70, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x675d75c6, 0x1, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x6, 0x2000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000, @perf_config_ext={0x4, 0x3}, 0x0, 0x4000000, 0x0, 0x0, 0x0, 0x20000000000}, 0x0, 0xffffffffffffffff, r0, 0x0) ioctl$sock_inet6_tcp_SIOCOUTQ(r0, 0x5411, &(0x7f0000000000)) syz_mount_image$ceph(&(0x7f0000000040)='ceph\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100)='(security/user-\x00') r1 = msgget$private(0x0, 0x10) msgctl$MSG_STAT(r1, 0xb, &(0x7f00000001c0)=""/101) getsockopt$bt_l2cap_L2CAP_OPTIONS(r0, 0x6, 0x1, &(0x7f0000000240), &(0x7f0000000280)=0xc) [ 516.977241] FAULT_INJECTION: forcing a failure. [ 516.977241] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 516.989189] CPU: 1 PID: 30301 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 516.996487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 517.005838] Call Trace: [ 517.008431] dump_stack+0x1b9/0x294 [ 517.012053] ? dump_stack_print_info.cold.2+0x52/0x52 [ 517.017231] ? find_held_lock+0x36/0x1c0 [ 517.021291] should_fail.cold.4+0xa/0x1a [ 517.025341] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 517.030430] ? graph_lock+0x170/0x170 [ 517.034221] ? lock_downgrade+0x8e0/0x8e0 [ 517.038360] ? __lock_is_held+0xb5/0x140 [ 517.042417] ? check_same_owner+0x320/0x320 [ 517.046728] ? kernel_text_address+0x79/0xf0 [ 517.051123] ? rcu_note_context_switch+0x710/0x710 [ 517.056043] ? __kernel_text_address+0xd/0x40 [ 517.060528] ? __might_sleep+0x95/0x190 [ 517.064492] __alloc_pages_nodemask+0x34e/0xd70 [ 517.069154] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 517.074156] ? save_stack+0x43/0xd0 [ 517.077767] ? kasan_kmalloc+0xc4/0xe0 [ 517.081638] ? __kmalloc_node+0x47/0x70 [ 517.085597] ? blk_mq_alloc_rq_map+0x10d/0x220 [ 517.090166] ? blk_mq_sched_alloc_tags.isra.13+0x7b/0x160 [ 517.095685] ? blk_mq_init_sched+0x1e2/0x530 [ 517.100079] ? blk_mq_sched_init+0x2b/0x40 [ 517.104297] ? blk_mq_init_allocated_queue+0xf19/0x1580 [ 517.109646] ? blk_mq_init_queue+0x63/0xb0 [ 517.113876] ? loop_add+0x32b/0x9c0 [ 517.117486] ? loop_probe+0x185/0x1c0 [ 517.121273] ? kobj_lookup+0x269/0x460 [ 517.125146] ? get_gendisk+0x4c/0x380 [ 517.128931] ? __blkdev_get+0x45f/0x13a0 [ 517.132976] ? blkdev_get+0xb9/0xb30 [ 517.136676] ? blkdev_open+0x1fb/0x280 [ 517.140548] ? do_dentry_open+0x7ef/0xf10 [ 517.144678] ? vfs_open+0x139/0x230 [ 517.148291] ? path_openat+0x1676/0x4e20 [ 517.152337] ? do_filp_open+0x249/0x350 [ 517.156295] ? do_sys_open+0x56f/0x740 [ 517.160166] ? __x64_sys_open+0x7e/0xc0 [ 517.164133] ? do_syscall_64+0x1b1/0x800 [ 517.168194] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 517.173720] ? find_next_bit+0x104/0x130 [ 517.177774] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 517.182871] ? blk_mq_hw_queue_to_node+0xd9/0x180 [ 517.187709] blk_mq_alloc_rqs+0x310/0x880 [ 517.191843] ? __kmalloc_node+0x33/0x70 [ 517.195808] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 517.201073] ? blk_mq_alloc_rq_map+0x220/0x220 [ 517.205643] ? __kmalloc_node+0x47/0x70 [ 517.209603] ? blk_mq_alloc_rq_map+0x142/0x220 [ 517.214176] blk_mq_sched_alloc_tags.isra.13+0xd8/0x160 [ 517.219527] blk_mq_init_sched+0x1e2/0x530 [ 517.223753] elevator_init+0x3c8/0x500 [ 517.227632] ? elevator_get+0x180/0x180 [ 517.231591] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 517.236601] ? blk_mq_map_swqueue+0x74b/0xaa0 [ 517.241106] blk_mq_sched_init+0x2b/0x40 [ 517.245161] blk_mq_init_allocated_queue+0xf19/0x1580 [ 517.250339] ? blk_mq_map_swqueue+0xaa0/0xaa0 [ 517.254821] ? __mutex_init+0x1ef/0x280 [ 517.258794] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 517.264315] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 517.269061] ? idr_alloc+0x145/0x1a0 [ 517.272763] ? blk_mq_update_nr_hw_queues+0x4f0/0x4f0 [ 517.277941] blk_mq_init_queue+0x63/0xb0 [ 517.281989] loop_add+0x32b/0x9c0 [ 517.285429] ? loop_lookup+0x102/0x220 [ 517.289301] ? loop_queue_rq+0x640/0x640 [ 517.293349] ? module_unload_free+0x5b0/0x5b0 [ 517.297833] loop_probe+0x185/0x1c0 [ 517.301448] ? loop_control_ioctl+0x500/0x500 [ 517.305931] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 517.311109] kobj_lookup+0x269/0x460 [ 517.314812] ? loop_control_ioctl+0x500/0x500 [ 517.319295] get_gendisk+0x4c/0x380 [ 517.322911] __blkdev_get+0x45f/0x13a0 [ 517.326790] ? blkdev_get_block+0xc0/0xc0 [ 517.330933] blkdev_get+0xb9/0xb30 [ 517.334462] ? bdget+0x5c0/0x5c0 [ 517.337817] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 517.342388] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 517.347913] ? errseq_sample+0xe3/0x120 [ 517.351873] ? _copy_to_user+0x110/0x110 [ 517.355927] ? _raw_spin_unlock+0x22/0x30 [ 517.360086] blkdev_open+0x1fb/0x280 [ 517.363794] do_dentry_open+0x7ef/0xf10 [ 517.367755] ? bd_acquire+0x2c0/0x2c0 [ 517.371545] vfs_open+0x139/0x230 [ 517.374987] path_openat+0x1676/0x4e20 [ 517.378873] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 517.383619] ? find_held_lock+0x36/0x1c0 [ 517.387673] ? lock_downgrade+0x8e0/0x8e0 [ 517.391812] ? kasan_check_read+0x11/0x20 [ 517.395946] ? do_raw_spin_unlock+0x9e/0x2e0 [ 517.400341] ? __lock_is_held+0xb5/0x140 [ 517.404395] ? _raw_spin_unlock+0x22/0x30 [ 517.408527] ? __alloc_fd+0x346/0x700 [ 517.412311] ? usercopy_warn+0x120/0x120 [ 517.416366] do_filp_open+0x249/0x350 [ 517.420169] ? may_open_dev+0x100/0x100 [ 517.424127] ? strncpy_from_user+0x3b6/0x500 [ 517.428524] ? mpi_free.cold.1+0x19/0x19 [ 517.432573] ? get_unused_fd_flags+0x121/0x190 [ 517.437140] ? getname_flags+0xd0/0x5a0 [ 517.441100] ? getname_flags+0x26e/0x5a0 [ 517.445149] do_sys_open+0x56f/0x740 [ 517.448851] ? mm_fault_error+0x314/0x380 [ 517.452983] ? filp_open+0x80/0x80 [ 517.456514] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 517.462044] __x64_sys_open+0x7e/0xc0 [ 517.465832] do_syscall_64+0x1b1/0x800 [ 517.469705] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 517.474532] ? syscall_return_slowpath+0x5c0/0x5c0 [ 517.479450] ? syscall_return_slowpath+0x30f/0x5c0 [ 517.484369] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 517.489892] ? retint_user+0x18/0x18 [ 517.493598] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 517.498430] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 517.503603] RIP: 0033:0x40fc61 [ 517.506775] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 517.514470] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 517.521722] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 2018/05/26 12:22:43 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8930, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:22:43 executing program 0 (fault-call:2 fault-nth:45): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) [ 517.528977] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 [ 517.536237] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 [ 517.543490] R13: 0000000000000744 R14: 00000000006fef00 R15: 000000000000002c 2018/05/26 12:22:43 executing program 7: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000500)='cgroup.procs\x00', 0x2, 0x0) r2 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhost-net\x00', 0x2, 0x0) ioctl$VHOST_SET_OWNER(r2, 0xaf01, 0x0) r3 = openat$md(0xffffffffffffff9c, &(0x7f0000000040)='/dev/md0\x00', 0x381003, 0x0) ioctl$EVIOCSABS3F(r1, 0x401845ff, &(0x7f00000000c0)={0x3, 0x7, 0xe4, 0x80000001, 0x96, 0x5}) r4 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ppp\x00', 0x2, 0x0) ioctl$KIOCSOUND(r4, 0x4b2f, 0x0) ioctl$IOC_PR_PREEMPT(r3, 0x401870cb, &(0x7f0000000080)={0x0, 0x8, 0x100000000, 0xffffffffffffffff}) sendfile(r1, r1, &(0x7f0000000140)=0x15, 0x10001) 2018/05/26 12:22:43 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000100, 0xd9010000]}) 2018/05/26 12:22:43 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x0, 0x900000000000000, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:22:43 executing program 3: r0 = socket(0x1e, 0x805, 0x0) setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000040)=@req3={0x80000000}, 0xfeda) setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f00000000c0)=@req3={0x80004000}, 0x1c) setxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)=@random={'security.', '\x00'}, &(0x7f0000000100)='*vboxnet1ppp1%userposix_acl_access$\\+).\x00', 0x28, 0x2) 2018/05/26 12:22:43 executing program 2: r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$TIOCSBRK(r0, 0x5427) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x101000, 0x0) epoll_create(0x7) clock_getres(0x8, &(0x7f0000000340)) fanotify_mark(r1, 0x36, 0x10000, r1, &(0x7f0000000040)='./file0\x00') [ 517.761748] ceph: device name is missing path (no : separator in /dev/loop2) [ 517.792763] ceph: device name is missing path (no : separator in /dev/loop2) [ 517.914829] FAULT_INJECTION: forcing a failure. [ 517.914829] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 517.926824] CPU: 1 PID: 30335 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 517.934110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 517.943467] Call Trace: [ 517.946053] dump_stack+0x1b9/0x294 [ 517.949673] ? dump_stack_print_info.cold.2+0x52/0x52 [ 517.954852] ? find_held_lock+0x36/0x1c0 [ 517.958903] should_fail.cold.4+0xa/0x1a [ 517.962950] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 517.968042] ? graph_lock+0x170/0x170 [ 517.971835] ? lock_downgrade+0x8e0/0x8e0 [ 517.975974] ? __lock_is_held+0xb5/0x140 [ 517.980041] ? check_same_owner+0x320/0x320 [ 517.984357] ? rcu_note_context_switch+0x710/0x710 [ 517.989275] ? __might_sleep+0x95/0x190 [ 517.993238] __alloc_pages_nodemask+0x34e/0xd70 [ 517.997896] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 518.002901] ? memset+0x31/0x40 [ 518.006167] ? loop_init_request+0x7b/0x170 [ 518.010474] ? loop_info64_from_compat+0x940/0x940 [ 518.015386] ? kobj_lookup+0x269/0x460 [ 518.019260] ? __blkdev_get+0x45f/0x13a0 [ 518.023304] ? blkdev_get+0xb9/0xb30 [ 518.027005] ? blkdev_open+0x1fb/0x280 [ 518.030887] ? do_dentry_open+0x7ef/0xf10 [ 518.035027] ? __lockdep_init_map+0x105/0x590 [ 518.039510] ? path_openat+0x1676/0x4e20 [ 518.043557] ? lockdep_init_map+0x9/0x10 [ 518.047605] ? blk_mq_init_request+0x1be/0x240 [ 518.052173] ? loop_info64_from_compat+0x940/0x940 [ 518.057097] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 518.062097] ? blk_mq_hw_queue_to_node+0xd9/0x180 [ 518.066932] blk_mq_alloc_rqs+0x310/0x880 [ 518.071071] ? blk_mq_alloc_rq_map+0x220/0x220 [ 518.075644] ? __kmalloc_node+0x47/0x70 [ 518.079607] ? blk_mq_alloc_rq_map+0x142/0x220 [ 518.084198] blk_mq_sched_alloc_tags.isra.13+0xd8/0x160 [ 518.089548] blk_mq_init_sched+0x1e2/0x530 [ 518.093775] elevator_init+0x3c8/0x500 [ 518.097647] ? elevator_get+0x180/0x180 [ 518.101606] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 518.106614] ? blk_mq_map_swqueue+0x74b/0xaa0 [ 518.111099] blk_mq_sched_init+0x2b/0x40 [ 518.115149] blk_mq_init_allocated_queue+0xf19/0x1580 [ 518.120330] ? blk_mq_map_swqueue+0xaa0/0xaa0 [ 518.124813] ? __mutex_init+0x1ef/0x280 [ 518.128788] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 518.134310] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 518.139058] ? idr_alloc+0x145/0x1a0 [ 518.142769] ? blk_mq_update_nr_hw_queues+0x4f0/0x4f0 [ 518.148040] blk_mq_init_queue+0x63/0xb0 [ 518.152091] loop_add+0x32b/0x9c0 [ 518.155527] ? loop_lookup+0x102/0x220 [ 518.159398] ? loop_queue_rq+0x640/0x640 [ 518.163445] ? module_unload_free+0x5b0/0x5b0 [ 518.167928] loop_probe+0x185/0x1c0 [ 518.171538] ? loop_control_ioctl+0x500/0x500 [ 518.176026] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 518.181210] kobj_lookup+0x269/0x460 [ 518.184912] ? loop_control_ioctl+0x500/0x500 [ 518.189894] get_gendisk+0x4c/0x380 [ 518.193511] __blkdev_get+0x45f/0x13a0 [ 518.197399] ? blkdev_get_block+0xc0/0xc0 [ 518.201540] blkdev_get+0xb9/0xb30 [ 518.205077] ? bdget+0x5c0/0x5c0 [ 518.208430] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 518.213003] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 518.218531] ? errseq_sample+0xe3/0x120 [ 518.222492] ? _copy_to_user+0x110/0x110 [ 518.226539] ? _raw_spin_unlock+0x22/0x30 [ 518.230675] blkdev_open+0x1fb/0x280 [ 518.234380] do_dentry_open+0x7ef/0xf10 [ 518.238340] ? bd_acquire+0x2c0/0x2c0 [ 518.242141] vfs_open+0x139/0x230 [ 518.245583] path_openat+0x1676/0x4e20 [ 518.249474] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 518.254223] ? find_held_lock+0x36/0x1c0 [ 518.258276] ? lock_downgrade+0x8e0/0x8e0 [ 518.262414] ? kasan_check_read+0x11/0x20 [ 518.266547] ? do_raw_spin_unlock+0x9e/0x2e0 [ 518.270941] ? __lock_is_held+0xb5/0x140 [ 518.274990] ? _raw_spin_unlock+0x22/0x30 [ 518.279130] ? __alloc_fd+0x346/0x700 [ 518.282915] ? usercopy_warn+0x120/0x120 [ 518.286967] do_filp_open+0x249/0x350 [ 518.290752] ? may_open_dev+0x100/0x100 [ 518.294720] ? strncpy_from_user+0x3b6/0x500 [ 518.299152] ? mpi_free.cold.1+0x19/0x19 [ 518.303206] ? get_unused_fd_flags+0x121/0x190 [ 518.307777] ? getname_flags+0xd0/0x5a0 [ 518.311737] ? getname_flags+0x26e/0x5a0 [ 518.315788] do_sys_open+0x56f/0x740 [ 518.319490] ? mm_fault_error+0x314/0x380 [ 518.323626] ? filp_open+0x80/0x80 [ 518.327155] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 518.332689] __x64_sys_open+0x7e/0xc0 [ 518.336479] do_syscall_64+0x1b1/0x800 [ 518.340356] ? finish_task_switch+0x1ca/0x840 [ 518.344838] ? syscall_return_slowpath+0x5c0/0x5c0 [ 518.349757] ? syscall_return_slowpath+0x30f/0x5c0 [ 518.354682] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 518.360207] ? retint_user+0x18/0x18 [ 518.363911] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 518.368745] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 518.373922] RIP: 0033:0x40fc61 [ 518.377094] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 518.384790] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 518.392048] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 [ 518.399309] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 [ 518.406566] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 [ 518.413822] R13: 0000000000000744 R14: 00000000006fef00 R15: 000000000000002d 2018/05/26 12:22:44 executing program 2: syz_mount_image$xfs(&(0x7f00000000c0)='xfs\x00', &(0x7f0000000040)='./file0\x00', 0x1000000, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="584653420000100000000000000010000000000000000000000000000000000034fb8fb9e4bf48b6ad26c597eb4f5c1900000000000000040000000000000d880000000000000d890000000000000d8a00000001000010000000000100a9a0d6904d24efe5240200040000040000000000000000000000000c090a020c", 0x7d}], 0x0, &(0x7f0000000080)={'nouuid,', {[{@gquota='gquota', 0x2c}]}}) syz_genetlink_get_family_id$ipvs(&(0x7f0000000000)='IPVS\x00') r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000140)='/dev/full\x00', 0x2000, 0x0) symlinkat(&(0x7f0000000100)='./file0\x00', r0, &(0x7f0000000180)='./file0\x00') setsockopt$inet6_IPV6_ADDRFORM(r0, 0x29, 0x1, &(0x7f00000001c0)=0x2, 0x4) setsockopt$inet_opts(r0, 0x0, 0x9, &(0x7f0000000240), 0x0) 2018/05/26 12:22:44 executing program 0 (fault-call:2 fault-nth:46): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:22:44 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000100, 0xc2000000]}) 2018/05/26 12:22:44 executing program 3: syz_emit_ethernet(0x6a, &(0x7f0000000080)=ANY=[@ANYBLOB="000000000000aaaaaaaa00ff8100380086dd60ffffe80030880000000000000000000000ffff00000000ff0200000000000000000000000000010b0090780000000060c545120000000000000000000000000000000000000000ff01000000000000000000000001000084c5039e7d8617a5"], 0x0) 2018/05/26 12:22:44 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x0, 0xf00000000000000, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:22:44 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8910, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:22:44 executing program 7: r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vhost-net\x00', 0x2, 0x0) r1 = epoll_create1(0x0) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r2, 0x6, 0x80000000000002, &(0x7f0000000180)=0x40000000000074, 0x315) r3 = socket(0xa, 0x1, 0x0) ioctl(r3, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") setsockopt$inet_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000100)='lp\x00', 0x3) bind$inet(r2, &(0x7f00000001c0)={0x2, 0x4e23, @multicast2=0xe0000002}, 0x10) ioctl$PPPIOCGFLAGS(r3, 0x8004745a, &(0x7f0000000000)) sendto$inet(r2, &(0x7f0000a88f88), 0x2f0c, 0x20008001, &(0x7f0000e68000)={0x2, 0x4e23, @loopback=0x7f000001}, 0x10) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000040)) ioctl$int_in(r0, 0x40000000af01, &(0x7f0000000300)) ioctl$VHOST_NET_SET_BACKEND(r0, 0xaf02, &(0x7f0000f1dff8)) 2018/05/26 12:22:44 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(r0, &(0x7f0000000100), 0xffffffffffffffd6, 0x20000004, &(0x7f000031e000)={0xa}, 0x1c) r1 = socket$inet(0x10, 0x3, 0x4) sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f000000d000)}, 0x0) 2018/05/26 12:22:44 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8903, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) [ 518.884547] FAULT_INJECTION: forcing a failure. [ 518.884547] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 518.896543] CPU: 1 PID: 30372 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 518.903826] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 518.913178] Call Trace: [ 518.915765] dump_stack+0x1b9/0x294 [ 518.919381] ? dump_stack_print_info.cold.2+0x52/0x52 [ 518.924558] ? find_held_lock+0x36/0x1c0 [ 518.928610] should_fail.cold.4+0xa/0x1a [ 518.932662] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 518.937753] ? graph_lock+0x170/0x170 [ 518.941542] ? lock_downgrade+0x8e0/0x8e0 [ 518.945693] ? __lock_is_held+0xb5/0x140 [ 518.949764] ? check_same_owner+0x320/0x320 [ 518.954079] ? rcu_note_context_switch+0x710/0x710 [ 518.959008] ? __might_sleep+0x95/0x190 [ 518.962983] __alloc_pages_nodemask+0x34e/0xd70 [ 518.967647] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 518.972650] ? memset+0x31/0x40 [ 518.975924] ? loop_init_request+0x7b/0x170 [ 518.980234] ? loop_info64_from_compat+0x940/0x940 [ 518.985149] ? kobj_lookup+0x269/0x460 [ 518.989031] ? __blkdev_get+0x45f/0x13a0 [ 518.993081] ? blkdev_get+0xb9/0xb30 [ 518.996779] ? blkdev_open+0x1fb/0x280 [ 519.000650] ? do_dentry_open+0x7ef/0xf10 [ 519.004782] ? __lockdep_init_map+0x105/0x590 [ 519.009265] ? path_openat+0x1676/0x4e20 [ 519.013311] ? lockdep_init_map+0x9/0x10 [ 519.017358] ? blk_mq_init_request+0x1be/0x240 [ 519.021924] ? loop_info64_from_compat+0x940/0x940 [ 519.026843] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 519.031847] ? blk_mq_hw_queue_to_node+0xd9/0x180 [ 519.036680] blk_mq_alloc_rqs+0x310/0x880 [ 519.040824] ? blk_mq_alloc_rq_map+0x220/0x220 [ 519.045398] ? __kmalloc_node+0x47/0x70 [ 519.049362] ? blk_mq_alloc_rq_map+0x142/0x220 [ 519.054025] blk_mq_sched_alloc_tags.isra.13+0xd8/0x160 [ 519.059378] blk_mq_init_sched+0x1e2/0x530 [ 519.063609] elevator_init+0x3c8/0x500 [ 519.067480] ? elevator_get+0x180/0x180 [ 519.071441] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 519.076440] ? blk_mq_map_swqueue+0x74b/0xaa0 [ 519.080927] blk_mq_sched_init+0x2b/0x40 [ 519.084975] blk_mq_init_allocated_queue+0xf19/0x1580 [ 519.090177] ? blk_mq_map_swqueue+0xaa0/0xaa0 [ 519.094671] ? __mutex_init+0x1ef/0x280 [ 519.098649] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 519.104173] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 519.108923] ? idr_alloc+0x145/0x1a0 [ 519.112638] ? blk_mq_update_nr_hw_queues+0x4f0/0x4f0 [ 519.117815] blk_mq_init_queue+0x63/0xb0 [ 519.121861] loop_add+0x32b/0x9c0 [ 519.125300] ? loop_lookup+0x102/0x220 [ 519.129170] ? loop_queue_rq+0x640/0x640 [ 519.133219] ? module_unload_free+0x5b0/0x5b0 [ 519.137701] loop_probe+0x185/0x1c0 [ 519.141312] ? loop_control_ioctl+0x500/0x500 [ 519.145795] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 519.150976] kobj_lookup+0x269/0x460 [ 519.154684] ? loop_control_ioctl+0x500/0x500 [ 519.159166] get_gendisk+0x4c/0x380 [ 519.162780] __blkdev_get+0x45f/0x13a0 [ 519.166662] ? blkdev_get_block+0xc0/0xc0 [ 519.170803] blkdev_get+0xb9/0xb30 [ 519.174330] ? bdget+0x5c0/0x5c0 [ 519.177683] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 519.182254] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 519.187775] ? errseq_sample+0xe3/0x120 [ 519.191740] ? _copy_to_user+0x110/0x110 [ 519.195787] ? _raw_spin_unlock+0x22/0x30 [ 519.199926] blkdev_open+0x1fb/0x280 [ 519.203633] do_dentry_open+0x7ef/0xf10 [ 519.207602] ? bd_acquire+0x2c0/0x2c0 [ 519.211392] vfs_open+0x139/0x230 [ 519.214835] path_openat+0x1676/0x4e20 [ 519.218720] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 519.223461] ? find_held_lock+0x36/0x1c0 [ 519.227512] ? lock_downgrade+0x8e0/0x8e0 [ 519.231654] ? kasan_check_read+0x11/0x20 [ 519.235789] ? do_raw_spin_unlock+0x9e/0x2e0 [ 519.240181] ? __lock_is_held+0xb5/0x140 [ 519.244229] ? _raw_spin_unlock+0x22/0x30 [ 519.248363] ? __alloc_fd+0x346/0x700 [ 519.252148] ? usercopy_warn+0x120/0x120 [ 519.256203] do_filp_open+0x249/0x350 [ 519.259987] ? may_open_dev+0x100/0x100 [ 519.263948] ? strncpy_from_user+0x3b6/0x500 [ 519.268347] ? mpi_free.cold.1+0x19/0x19 [ 519.272397] ? get_unused_fd_flags+0x121/0x190 [ 519.276960] ? getname_flags+0xd0/0x5a0 [ 519.280929] ? getname_flags+0x26e/0x5a0 [ 519.284981] do_sys_open+0x56f/0x740 [ 519.288685] ? mm_fault_error+0x314/0x380 [ 519.292816] ? filp_open+0x80/0x80 [ 519.296341] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 519.301876] __x64_sys_open+0x7e/0xc0 [ 519.305664] do_syscall_64+0x1b1/0x800 [ 519.309540] ? finish_task_switch+0x1ca/0x840 [ 519.314029] ? syscall_return_slowpath+0x5c0/0x5c0 [ 519.318947] ? syscall_return_slowpath+0x30f/0x5c0 [ 519.323864] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 519.329384] ? retint_user+0x18/0x18 [ 519.333094] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 519.337934] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 519.343114] RIP: 0033:0x40fc61 [ 519.346284] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 519.353977] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 519.361237] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 [ 519.368490] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 [ 519.375921] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 2018/05/26 12:22:45 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000100, 0x840000c000000000]}) 2018/05/26 12:22:45 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f00000000c0)={'lo\x00@\x00', 0x101}) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_mreqsrc(r0, 0x0, 0x27, &(0x7f0000000040)={@multicast2=0xe0000002, @remote={0xac, 0x14, 0x14, 0xbb}, @remote={0xac, 0x14, 0x14, 0xbb}}, 0xc) setsockopt$inet_mreqn(r1, 0x0, 0x27, &(0x7f0000683ff4)={@multicast2=0xe0000002, @loopback=0x7f000001}, 0xc) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000140)={'veth0\x00', 0x4400}) [ 519.383171] R13: 0000000000000744 R14: 00000000006fef00 R15: 000000000000002e 2018/05/26 12:22:45 executing program 0 (fault-call:2 fault-nth:47): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:22:45 executing program 7: r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vhost-net\x00', 0x2, 0x0) r1 = epoll_create1(0x0) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r2, 0x6, 0x80000000000002, &(0x7f0000000180)=0x40000000000074, 0x315) r3 = socket(0xa, 0x1, 0x0) ioctl(r3, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") setsockopt$inet_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000100)='lp\x00', 0x3) bind$inet(r2, &(0x7f00000001c0)={0x2, 0x4e23, @multicast2=0xe0000002}, 0x10) ioctl$PPPIOCGFLAGS(r3, 0x8004745a, &(0x7f0000000000)) sendto$inet(r2, &(0x7f0000a88f88), 0x2f0c, 0x20008001, &(0x7f0000e68000)={0x2, 0x4e23, @loopback=0x7f000001}, 0x10) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000040)) ioctl$int_in(r0, 0x40000000af01, &(0x7f0000000300)) ioctl$VHOST_NET_SET_BACKEND(r0, 0xaf02, &(0x7f0000f1dff8)) [ 519.559331] XFS (loop2): Mounting V4 Filesystem [ 519.565399] XFS (loop2): Log size -1873992465 blocks too large, maximum size is 1048576 blocks [ 519.574230] XFS (loop2): Log size out of supported range. [ 519.579799] XFS (loop2): Continuing onwards, but if log hangs are experienced then please report this message in the bug report. [ 519.591913] XFS (loop2): Invalid block length (0x1) for buffer [ 519.597938] XFS (loop2): empty log check failed [ 519.602643] XFS (loop2): log mount/recovery failed: error -12 [ 519.609215] XFS (loop2): log mount failed 2018/05/26 12:22:45 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8917, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:22:45 executing program 2: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = add_key(&(0x7f0000000100)='user\x00', &(0x7f0000000240)={0x73, 0x79, 0x7a, 0x0}, &(0x7f0000000280)="45ab06cc0769b43508676f9cb973add72c5bac8223b6387cab450ad91cf88df2895b33f89cb34fc54dfb346ae6ab698b82d98223d99d6dac709b15d83618da3c828bceeb42ff1661ce7cab272c82661ad5c466f1405c186d96ba017555f869a955f0410e1a4acf11f65215e4285ac0b821dd5f68440df3a40e04e4ed536c0a81", 0x80, 0xfffffffffffffff8) r1 = add_key$user(&(0x7f0000000080)='user\x00', &(0x7f00000000c0)={0x73, 0x79, 0x7a, 0x0}, &(0x7f00000001c0)="efe04416d0b76b0bdb6ad1796a24ebbc1fb0642aaa97ec3309a4408b310aa4be1b3a3ce619a5010859fc86067ea6151b598377c18127e155d338cfed2b2f854b5421c417111a5b150e1b83ec9f947d647f4fc26793174dbdb7174d594dee4a6e7e7b6df971074449b04c292423cadaea11", 0x71, r0) keyctl$invalidate(0x15, r1) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='setgroups\x00') getsockopt$IP6T_SO_GET_REVISION_MATCH(r2, 0x29, 0x44, &(0x7f0000000300)={'IDLETIMER\x00'}, &(0x7f0000000340)=0x1e) keyctl$join(0x1, &(0x7f00000003c0)={0x73, 0x79, 0x7a, 0x2}) close(r2) ioctl$DRM_IOCTL_AUTH_MAGIC(r2, 0x40046411, &(0x7f0000000380)=0xf4) bind$inet6(r2, &(0x7f0000000040)={0xa, 0x4e20, 0x7, @empty, 0x401}, 0x22d) [ 519.696423] device lo entered promiscuous mode 2018/05/26 12:22:45 executing program 3: r0 = openat$mixer(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/mixer\x00', 0x40000, 0x0) setsockopt$netrom_NETROM_T1(r0, 0x103, 0x1, &(0x7f0000000140)=0xdb1, 0x4) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x109000, 0x0) ioctl$SG_GET_SG_TABLESIZE(r1, 0x227f, &(0x7f0000000040)) rt_sigprocmask(0x3, &(0x7f0000000100)={0x40000000002}, 0x0, 0x8) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1) mq_timedreceive(0xffffffffffffffff, &(0x7f0000000080)=""/1, 0x1, 0x0, &(0x7f0000000100)) [ 519.805893] FAULT_INJECTION: forcing a failure. [ 519.805893] name failslab, interval 1, probability 0, space 0, times 0 [ 519.817213] CPU: 1 PID: 30425 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 519.824490] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 519.833841] Call Trace: [ 519.836428] dump_stack+0x1b9/0x294 [ 519.840073] ? dump_stack_print_info.cold.2+0x52/0x52 [ 519.845263] should_fail.cold.4+0xa/0x1a [ 519.849319] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 519.854410] ? blk_mq_sched_init+0x2b/0x40 [ 519.858634] ? blk_mq_init_allocated_queue+0xf19/0x1580 [ 519.863985] ? blk_mq_init_queue+0x63/0xb0 [ 519.868206] ? loop_add+0x32b/0x9c0 [ 519.871822] ? loop_probe+0x185/0x1c0 [ 519.875624] ? kobj_lookup+0x269/0x460 [ 519.879507] ? get_gendisk+0x4c/0x380 [ 519.883294] ? graph_lock+0x170/0x170 [ 519.887091] ? vfs_open+0x139/0x230 [ 519.890713] ? path_openat+0x1676/0x4e20 [ 519.894761] ? find_held_lock+0x36/0x1c0 [ 519.898825] ? __lock_is_held+0xb5/0x140 [ 519.902908] ? check_same_owner+0x320/0x320 [ 519.907238] ? __ia32_sys_membarrier+0x150/0x150 [ 519.912003] ? kasan_check_write+0x14/0x20 [ 519.916241] ? rcu_note_context_switch+0x710/0x710 [ 519.921155] ? kset_unregister+0x40/0x40 [ 519.925206] __should_failslab+0x124/0x180 [ 519.929451] should_failslab+0x9/0x14 [ 519.933267] kmem_cache_alloc_node_trace+0x26f/0x770 [ 519.938391] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 519.943944] dd_init_queue+0x109/0x5e0 [ 519.947823] ? dd_exit_queue+0x240/0x240 [ 519.951892] ? __kmalloc_node+0x47/0x70 [ 519.955871] ? blk_mq_alloc_rq_map+0x142/0x220 [ 519.960459] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 519.965997] ? blk_mq_sched_alloc_tags.isra.13+0xee/0x160 [ 519.971536] blk_mq_init_sched+0x27c/0x530 [ 519.975776] elevator_init+0x3c8/0x500 [ 519.979674] ? elevator_get+0x180/0x180 [ 519.983651] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 519.988664] ? blk_mq_map_swqueue+0x74b/0xaa0 [ 519.993169] blk_mq_sched_init+0x2b/0x40 [ 519.997225] blk_mq_init_allocated_queue+0xf19/0x1580 [ 520.002427] ? blk_mq_map_swqueue+0xaa0/0xaa0 [ 520.006917] ? __mutex_init+0x1ef/0x280 [ 520.010897] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 520.016424] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 520.021179] ? idr_alloc+0x145/0x1a0 [ 520.024876] ? blk_mq_update_nr_hw_queues+0x4f0/0x4f0 [ 520.030067] blk_mq_init_queue+0x63/0xb0 [ 520.034133] loop_add+0x32b/0x9c0 [ 520.037591] ? loop_lookup+0x102/0x220 [ 520.041473] ? loop_queue_rq+0x640/0x640 [ 520.045519] ? module_unload_free+0x5b0/0x5b0 [ 520.050015] loop_probe+0x185/0x1c0 [ 520.053655] ? loop_control_ioctl+0x500/0x500 [ 520.058139] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 520.063316] kobj_lookup+0x269/0x460 [ 520.067041] ? loop_control_ioctl+0x500/0x500 [ 520.071528] get_gendisk+0x4c/0x380 [ 520.075145] __blkdev_get+0x45f/0x13a0 [ 520.079045] ? blkdev_get_block+0xc0/0xc0 [ 520.083185] blkdev_get+0xb9/0xb30 [ 520.086722] ? bdget+0x5c0/0x5c0 [ 520.090095] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 520.094677] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 520.100201] ? errseq_sample+0xe3/0x120 [ 520.104166] ? _copy_to_user+0x110/0x110 [ 520.108212] ? _raw_spin_unlock+0x22/0x30 [ 520.112345] blkdev_open+0x1fb/0x280 [ 520.116062] do_dentry_open+0x7ef/0xf10 [ 520.120045] ? bd_acquire+0x2c0/0x2c0 [ 520.123850] vfs_open+0x139/0x230 [ 520.127302] path_openat+0x1676/0x4e20 [ 520.131197] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 520.135945] ? find_held_lock+0x36/0x1c0 [ 520.139998] ? lock_downgrade+0x8e0/0x8e0 [ 520.144141] ? do_sys_open+0x39a/0x740 [ 520.148029] ? kasan_check_read+0x11/0x20 [ 520.152167] ? do_raw_spin_unlock+0x9e/0x2e0 [ 520.156563] ? __lock_is_held+0xb5/0x140 [ 520.160613] ? _raw_spin_unlock+0x22/0x30 [ 520.164745] ? __alloc_fd+0x346/0x700 [ 520.168528] ? usercopy_warn+0x120/0x120 [ 520.172582] do_filp_open+0x249/0x350 [ 520.176368] ? may_open_dev+0x100/0x100 [ 520.180329] ? strncpy_from_user+0x3b6/0x500 [ 520.184735] ? mpi_free.cold.1+0x19/0x19 [ 520.188796] ? get_unused_fd_flags+0x121/0x190 [ 520.193713] ? getname_flags+0xd0/0x5a0 [ 520.197686] ? getname_flags+0x26e/0x5a0 [ 520.201742] do_sys_open+0x56f/0x740 [ 520.205446] ? mm_fault_error+0x314/0x380 [ 520.209581] ? filp_open+0x80/0x80 [ 520.213112] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 520.218641] __x64_sys_open+0x7e/0xc0 [ 520.222433] do_syscall_64+0x1b1/0x800 [ 520.226311] ? finish_task_switch+0x1ca/0x840 [ 520.230810] ? syscall_return_slowpath+0x5c0/0x5c0 [ 520.235738] ? syscall_return_slowpath+0x30f/0x5c0 [ 520.240672] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 520.246201] ? retint_user+0x18/0x18 [ 520.249906] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 520.254754] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 520.259937] RIP: 0033:0x40fc61 [ 520.263114] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 520.270820] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 520.278090] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 [ 520.285355] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 [ 520.292610] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 [ 520.299862] R13: 0000000000000744 R14: 00000000006fef00 R15: 000000000000002f 2018/05/26 12:22:46 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000100, 0xb700004000000000]}) 2018/05/26 12:22:46 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x0, 0x1000000000000, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:22:46 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(r0, &(0x7f0000000100), 0xffffffffffffffd6, 0x20000004, &(0x7f000031e000)={0xa}, 0x1c) r1 = socket$inet(0x10, 0x3, 0x4) sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f000000d000)}, 0x0) 2018/05/26 12:22:46 executing program 7: r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$alg(0x26, 0x5, 0x0) r2 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_create(0x3, &(0x7f0000000300)={0x0, 0x18, 0x2, @tid=r2}, &(0x7f00000003c0)) getrandom(&(0x7f0000000040)=""/44, 0xfffffebe, 0x0) timer_settime(0x0, 0x0, &(0x7f0000000080)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f00000000c0)) tkill(r2, 0x1000000000016) r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={r0, 0x0, 0x1, 0x7fff, &(0x7f0000000000)=[0x0, 0x0, 0x0], 0x3}, 0x20) setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX_OLD(r3, 0x84, 0x6b, &(0x7f0000000280)=[@in6={0xa, 0x4e22, 0xffffffffffffff01, @empty, 0x101}, @in={0x2, 0x4e20}, @in6={0xa, 0x4e20, 0x3, @mcast1={0xff, 0x1, [], 0x1}, 0xffffffff}, @in6={0xa, 0x4e20, 0x2, @dev={0xfe, 0x80, [], 0x1f}, 0x6}, @in6={0xa, 0x4e20, 0x5, @dev={0xfe, 0x80, [], 0x1a}, 0x5}], 0x80) ioctl$TUNSETFILTEREBPF(r3, 0x800454e1, &(0x7f00000001c0)=r1) ioctl$sock_inet_SIOCGARP(r3, 0x8954, &(0x7f0000000200)={{0x2, 0x4e20, @rand_addr=0x9}, {0x6, @random="e2334611d80b"}, 0x0, {0x2, 0x4e20, @multicast2=0xe0000002}, 'lo\x00'}) openat$null(0xffffffffffffff9c, &(0x7f0000000040)='/dev/null\x00', 0x0, 0x0) bind$alg(r1, &(0x7f0000000340)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(tnepres)\x00'}, 0x58) 2018/05/26 12:22:46 executing program 0 (fault-call:2 fault-nth:48): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:22:46 executing program 2: 2018/05/26 12:22:46 executing program 3: r0 = gettid() timer_create(0x0, &(0x7f0000000240)={0x0, 0x12, 0x0, @thr={&(0x7f0000000140), &(0x7f0000000080)}}, &(0x7f0000044000)) clock_nanosleep(0x2, 0x0, &(0x7f0000000000)={0x0, 0x1c9c380}, &(0x7f0000000040)) timer_settime(0x0, 0x0, &(0x7f0000000100)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) clock_gettime(0x0, &(0x7f00000002c0)={0x0, 0x0}) rt_sigtimedwait(&(0x7f0000000200), &(0x7f0000000280), &(0x7f0000000300)={0x0, r1+10000000}, 0x8) tkill(r0, 0x1000000000016) 2018/05/26 12:22:46 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8994, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:22:46 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000100, 0x170101c0]}) 2018/05/26 12:22:46 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x0, 0xffffffff00000000, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:22:46 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000040)="2f65786500000000000409004bddd9de91be10eebf000ee9a90f798058439ed554fa07424adee901d2da75af1f02acc7edbcd7a071fb35331ce39c5a") ioctl$fiemap(r0, 0xc020660b, &(0x7f0000000180)={0x0, 0x5, 0x2, 0x0, 0x1, [{}]}) [ 520.663263] FAULT_INJECTION: forcing a failure. [ 520.663263] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 520.675428] CPU: 0 PID: 30467 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 520.682717] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 520.692070] Call Trace: [ 520.694673] dump_stack+0x1b9/0x294 [ 520.698312] ? dump_stack_print_info.cold.2+0x52/0x52 [ 520.703509] ? find_held_lock+0x36/0x1c0 [ 520.707587] should_fail.cold.4+0xa/0x1a [ 520.711657] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 520.716764] ? graph_lock+0x170/0x170 [ 520.720576] ? lock_downgrade+0x8e0/0x8e0 [ 520.724741] ? __lock_is_held+0xb5/0x140 [ 520.728823] ? check_same_owner+0x320/0x320 [ 520.733150] ? rcu_note_context_switch+0x710/0x710 [ 520.738087] ? __might_sleep+0x95/0x190 [ 520.742072] __alloc_pages_nodemask+0x34e/0xd70 [ 520.746749] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 520.751775] ? memset+0x31/0x40 [ 520.755063] ? loop_init_request+0x7b/0x170 [ 520.759385] ? loop_info64_from_compat+0x940/0x940 [ 520.764314] ? kobj_lookup+0x269/0x460 [ 520.768205] ? __blkdev_get+0x45f/0x13a0 [ 520.772264] ? blkdev_get+0xb9/0xb30 [ 520.775981] ? blkdev_open+0x1fb/0x280 [ 520.779868] ? do_dentry_open+0x7ef/0xf10 [ 520.784022] ? __lockdep_init_map+0x105/0x590 [ 520.788519] ? path_openat+0x1676/0x4e20 [ 520.792582] ? lockdep_init_map+0x9/0x10 [ 520.796647] ? blk_mq_init_request+0x1be/0x240 [ 520.801337] ? loop_info64_from_compat+0x940/0x940 [ 520.806280] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 520.811304] ? blk_mq_hw_queue_to_node+0xd9/0x180 [ 520.816158] blk_mq_alloc_rqs+0x310/0x880 [ 520.820321] ? blk_mq_alloc_rq_map+0x220/0x220 [ 520.824917] ? __kmalloc_node+0x47/0x70 [ 520.828897] ? blk_mq_alloc_rq_map+0x142/0x220 [ 520.833493] blk_mq_sched_alloc_tags.isra.13+0xd8/0x160 [ 520.838863] blk_mq_init_sched+0x1e2/0x530 [ 520.843113] elevator_init+0x3c8/0x500 [ 520.847002] ? elevator_get+0x180/0x180 [ 520.850977] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 520.855990] ? blk_mq_map_swqueue+0x74b/0xaa0 [ 520.860500] blk_mq_sched_init+0x2b/0x40 [ 520.864572] blk_mq_init_allocated_queue+0xf19/0x1580 [ 520.869774] ? blk_mq_map_swqueue+0xaa0/0xaa0 [ 520.874267] ? __mutex_init+0x1ef/0x280 [ 520.878262] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 520.883800] ? __blk_mq_alloc_rq_map+0x17d/0x2e0 [ 520.888563] ? idr_alloc+0x145/0x1a0 [ 520.892281] ? blk_mq_update_nr_hw_queues+0x4f0/0x4f0 [ 520.897483] blk_mq_init_queue+0x63/0xb0 [ 520.901549] loop_add+0x32b/0x9c0 [ 520.904997] ? loop_lookup+0x102/0x220 [ 520.908887] ? loop_queue_rq+0x640/0x640 [ 520.912947] ? module_unload_free+0x5b0/0x5b0 [ 520.917479] loop_probe+0x185/0x1c0 [ 520.921107] ? loop_control_ioctl+0x500/0x500 [ 520.925608] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 520.930806] kobj_lookup+0x269/0x460 [ 520.934526] ? loop_control_ioctl+0x500/0x500 [ 520.939027] get_gendisk+0x4c/0x380 [ 520.942659] __blkdev_get+0x45f/0x13a0 [ 520.946562] ? blkdev_get_block+0xc0/0xc0 [ 520.950724] blkdev_get+0xb9/0xb30 [ 520.954273] ? bdget+0x5c0/0x5c0 [ 520.957645] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 520.962234] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 520.967773] ? errseq_sample+0xe3/0x120 [ 520.971747] ? _copy_to_user+0x110/0x110 [ 520.975812] ? _raw_spin_unlock+0x22/0x30 [ 520.979967] blkdev_open+0x1fb/0x280 [ 520.983689] do_dentry_open+0x7ef/0xf10 [ 520.987663] ? bd_acquire+0x2c0/0x2c0 [ 520.991480] vfs_open+0x139/0x230 [ 520.994940] path_openat+0x1676/0x4e20 [ 520.998847] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 521.003612] ? find_held_lock+0x36/0x1c0 [ 521.007686] ? lock_downgrade+0x8e0/0x8e0 [ 521.011833] ? do_sys_open+0x39a/0x740 [ 521.015727] ? kasan_check_read+0x11/0x20 [ 521.019876] ? do_raw_spin_unlock+0x9e/0x2e0 [ 521.024284] ? __lock_is_held+0xb5/0x140 [ 521.028355] ? _raw_spin_unlock+0x22/0x30 [ 521.032505] ? __alloc_fd+0x346/0x700 [ 521.036301] ? usercopy_warn+0x120/0x120 [ 521.040374] do_filp_open+0x249/0x350 [ 521.044179] ? may_open_dev+0x100/0x100 [ 521.048151] ? strncpy_from_user+0x3b6/0x500 [ 521.052566] ? mpi_free.cold.1+0x19/0x19 [ 521.056631] ? get_unused_fd_flags+0x121/0x190 [ 521.061209] ? getname_flags+0xd0/0x5a0 [ 521.065184] ? getname_flags+0x26e/0x5a0 [ 521.069251] do_sys_open+0x56f/0x740 [ 521.072969] ? mm_fault_error+0x314/0x380 [ 521.077117] ? filp_open+0x80/0x80 [ 521.080655] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 521.086200] __x64_sys_open+0x7e/0xc0 [ 521.090005] do_syscall_64+0x1b1/0x800 [ 521.093894] ? finish_task_switch+0x1ca/0x840 [ 521.098393] ? syscall_return_slowpath+0x5c0/0x5c0 [ 521.103324] ? syscall_return_slowpath+0x30f/0x5c0 [ 521.108258] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 521.113798] ? retint_user+0x18/0x18 [ 521.117518] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 521.122369] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 521.127553] RIP: 0033:0x40fc61 [ 521.130735] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 521.138443] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 521.145714] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 [ 521.152979] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 2018/05/26 12:22:46 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0xc0189436, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) [ 521.160245] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 [ 521.167513] R13: 0000000000000744 R14: 00000000006fef00 R15: 0000000000000030 2018/05/26 12:22:46 executing program 0 (fault-call:2 fault-nth:49): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) 2018/05/26 12:22:47 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000100, 0x34d564b]}) 2018/05/26 12:22:47 executing program 7: perf_event_open(&(0x7f0000000140)={0x0, 0xb1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhost-net\x00', 0x2, 0x0) ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0) ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af22, &(0x7f00000000c0)) 2018/05/26 12:22:47 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(r0, &(0x7f0000000100), 0xffffffffffffffd6, 0x20000004, &(0x7f000031e000)={0xa}, 0x1c) r1 = socket$inet(0x10, 0x3, 0x4) sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f000000d000)=[{&(0x7f0000008000)}], 0x1}, 0x0) 2018/05/26 12:22:47 executing program 2: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e4}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$kcm(0x10, 0x3, 0x0) sendmsg$kcm(r0, &(0x7f0000002c80)={0x0, 0x0, &(0x7f0000000000), 0x0, &(0x7f0000002cc0)=[{0x28, 0x0, 0x0, "6aa530f23850503bc9cdc3a98b7b51c883"}], 0x28}, 0x0) [ 521.491921] FAULT_INJECTION: forcing a failure. [ 521.491921] name failslab, interval 1, probability 0, space 0, times 0 [ 521.503296] CPU: 0 PID: 30489 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 521.510579] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 521.519934] Call Trace: [ 521.522515] dump_stack+0x1b9/0x294 [ 521.526140] ? dump_stack_print_info.cold.2+0x52/0x52 [ 521.531332] ? kasan_check_write+0x14/0x20 [ 521.535573] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 521.540503] should_fail.cold.4+0xa/0x1a [ 521.544571] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 521.549685] ? graph_lock+0x170/0x170 [ 521.553498] ? elevator_init+0x293/0x500 [ 521.557560] ? find_held_lock+0x36/0x1c0 [ 521.561614] ? __lock_is_held+0xb5/0x140 [ 521.565673] ? check_same_owner+0x320/0x320 [ 521.569994] ? print_usage_bug+0xc0/0xc0 [ 521.574057] ? rcu_note_context_switch+0x710/0x710 [ 521.578974] __should_failslab+0x124/0x180 [ 521.583201] should_failslab+0x9/0x14 [ 521.586994] kmem_cache_alloc_node_trace+0x26f/0x770 [ 521.592103] __alloc_disk_node+0xc1/0x500 [ 521.596250] ? disk_expand_part_tbl+0x3c0/0x3c0 [ 521.600925] ? trace_hardirqs_on+0xd/0x10 [ 521.605074] ? blk_queue_flag_set+0xf6/0x160 [ 521.609490] loop_add+0x40e/0x9c0 [ 521.612938] ? loop_queue_rq+0x640/0x640 [ 521.616989] ? module_unload_free+0x5b0/0x5b0 [ 521.621481] loop_probe+0x185/0x1c0 [ 521.625096] ? loop_control_ioctl+0x500/0x500 [ 521.629588] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 521.634784] kobj_lookup+0x269/0x460 [ 521.638498] ? loop_control_ioctl+0x500/0x500 [ 521.642990] get_gendisk+0x4c/0x380 [ 521.646616] __blkdev_get+0x45f/0x13a0 [ 521.650504] ? blkdev_get_block+0xc0/0xc0 [ 521.654651] blkdev_get+0xb9/0xb30 [ 521.658195] ? bdget+0x5c0/0x5c0 [ 521.661552] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 521.666121] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 521.671643] ? errseq_sample+0xe3/0x120 [ 521.675609] ? _copy_to_user+0x110/0x110 [ 521.679665] ? _raw_spin_unlock+0x22/0x30 [ 521.683806] blkdev_open+0x1fb/0x280 [ 521.687527] do_dentry_open+0x7ef/0xf10 2018/05/26 12:22:47 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000040)="2f65786500000000000409004bddd9de91be10eebf000ee9a90f798058439ed554fa07424adee901d2da75af1f02acc7edbcd7a071fb35331ce39c5a") ioctl$fiemap(r0, 0xc020660b, &(0x7f0000000180)={0x0, 0x5}) [ 521.691511] ? bd_acquire+0x2c0/0x2c0 [ 521.695325] vfs_open+0x139/0x230 [ 521.698785] path_openat+0x1676/0x4e20 [ 521.702689] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 521.707446] ? find_held_lock+0x36/0x1c0 [ 521.711492] ? lock_downgrade+0x8e0/0x8e0 [ 521.715628] ? do_sys_open+0x39a/0x740 [ 521.719503] ? kasan_check_read+0x11/0x20 [ 521.723647] ? do_raw_spin_unlock+0x9e/0x2e0 [ 521.728051] ? __lock_is_held+0xb5/0x140 [ 521.732118] ? _raw_spin_unlock+0x22/0x30 [ 521.736261] ? __alloc_fd+0x346/0x700 [ 521.740051] ? usercopy_warn+0x120/0x120 [ 521.744126] do_filp_open+0x249/0x350 [ 521.747918] ? may_open_dev+0x100/0x100 [ 521.751881] ? strncpy_from_user+0x3b6/0x500 [ 521.756278] ? mpi_free.cold.1+0x19/0x19 [ 521.760333] ? get_unused_fd_flags+0x121/0x190 [ 521.764895] ? getname_flags+0xd0/0x5a0 [ 521.768852] ? getname_flags+0x26e/0x5a0 [ 521.772908] do_sys_open+0x56f/0x740 [ 521.776606] ? mm_fault_error+0x314/0x380 [ 521.780735] ? filp_open+0x80/0x80 [ 521.784256] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 521.789780] __x64_sys_open+0x7e/0xc0 [ 521.793568] do_syscall_64+0x1b1/0x800 [ 521.797442] ? finish_task_switch+0x1ca/0x840 [ 521.801928] ? syscall_return_slowpath+0x5c0/0x5c0 [ 521.806841] ? syscall_return_slowpath+0x30f/0x5c0 [ 521.811758] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 521.817281] ? retint_user+0x18/0x18 [ 521.820979] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 521.825807] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 521.830978] RIP: 0033:0x40fc61 [ 521.834148] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 2018/05/26 12:22:47 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8932, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:22:47 executing program 0 (fault-call:2 fault-nth:50): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) [ 521.841838] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 521.849092] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 [ 521.856350] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 [ 521.863605] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 [ 521.870858] R13: 0000000000000744 R14: 00000000006fef00 R15: 0000000000000031 [ 522.227320] FAULT_INJECTION: forcing a failure. [ 522.227320] name failslab, interval 1, probability 0, space 0, times 0 [ 522.238787] CPU: 0 PID: 30519 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 522.246061] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 522.255403] Call Trace: [ 522.257985] dump_stack+0x1b9/0x294 [ 522.261604] ? dump_stack_print_info.cold.2+0x52/0x52 [ 522.266789] should_fail.cold.4+0xa/0x1a [ 522.270834] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 522.275923] ? lock_downgrade+0x8e0/0x8e0 [ 522.280057] ? unwind_get_return_address+0x61/0xa0 [ 522.284968] ? graph_lock+0x170/0x170 [ 522.288752] ? find_held_lock+0x36/0x1c0 [ 522.292813] ? __lock_is_held+0xb5/0x140 [ 522.296861] ? check_same_owner+0x320/0x320 [ 522.301169] ? rcu_note_context_switch+0x710/0x710 [ 522.306088] __should_failslab+0x124/0x180 [ 522.310321] should_failslab+0x9/0x14 [ 522.314118] kmem_cache_alloc_node_trace+0x26f/0x770 [ 522.319204] ? lockdep_init_map+0x9/0x10 [ 522.323251] __kmalloc_node+0x33/0x70 [ 522.327044] disk_expand_part_tbl+0x236/0x3c0 [ 522.331528] ? rcu_read_lock_sched_held+0x108/0x120 [ 522.336537] ? blk_free_devt+0x60/0x60 [ 522.340422] __alloc_disk_node+0x16f/0x500 [ 522.344639] ? disk_expand_part_tbl+0x3c0/0x3c0 [ 522.349289] ? trace_hardirqs_on+0xd/0x10 [ 522.353419] ? blk_queue_flag_set+0xf6/0x160 [ 522.357814] loop_add+0x40e/0x9c0 [ 522.361250] ? loop_queue_rq+0x640/0x640 [ 522.365291] ? module_unload_free+0x5b0/0x5b0 [ 522.369771] loop_probe+0x185/0x1c0 [ 522.373382] ? loop_control_ioctl+0x500/0x500 [ 522.377865] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 522.383047] kobj_lookup+0x269/0x460 [ 522.386756] ? loop_control_ioctl+0x500/0x500 [ 522.391233] get_gendisk+0x4c/0x380 [ 522.394847] __blkdev_get+0x45f/0x13a0 [ 522.398741] ? blkdev_get_block+0xc0/0xc0 [ 522.402882] blkdev_get+0xb9/0xb30 [ 522.406414] ? bdget+0x5c0/0x5c0 [ 522.409764] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 522.414331] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 522.419858] ? errseq_sample+0xe3/0x120 [ 522.423824] ? _copy_to_user+0x110/0x110 [ 522.427874] ? _raw_spin_unlock+0x22/0x30 [ 522.432010] blkdev_open+0x1fb/0x280 [ 522.435716] do_dentry_open+0x7ef/0xf10 [ 522.439670] ? bd_acquire+0x2c0/0x2c0 [ 522.443466] vfs_open+0x139/0x230 [ 522.446910] path_openat+0x1676/0x4e20 [ 522.450789] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 522.455543] ? find_held_lock+0x36/0x1c0 [ 522.459594] ? lock_downgrade+0x8e0/0x8e0 [ 522.463734] ? do_sys_open+0x39a/0x740 [ 522.467605] ? kasan_check_read+0x11/0x20 [ 522.471734] ? do_raw_spin_unlock+0x9e/0x2e0 [ 522.476126] ? __lock_is_held+0xb5/0x140 [ 522.480171] ? _raw_spin_unlock+0x22/0x30 [ 522.484303] ? __alloc_fd+0x346/0x700 [ 522.488087] ? usercopy_warn+0x120/0x120 [ 522.492133] do_filp_open+0x249/0x350 [ 522.495925] ? may_open_dev+0x100/0x100 [ 522.499888] ? strncpy_from_user+0x3b6/0x500 [ 522.504312] ? mpi_free.cold.1+0x19/0x19 [ 522.508379] ? get_unused_fd_flags+0x121/0x190 [ 522.512953] ? getname_flags+0xd0/0x5a0 [ 522.516911] ? getname_flags+0x26e/0x5a0 [ 522.520964] do_sys_open+0x56f/0x740 [ 522.524666] ? mm_fault_error+0x314/0x380 [ 522.528803] ? filp_open+0x80/0x80 [ 522.532328] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 522.537860] __x64_sys_open+0x7e/0xc0 [ 522.541645] do_syscall_64+0x1b1/0x800 [ 522.545512] ? finish_task_switch+0x1ca/0x840 [ 522.549999] ? syscall_return_slowpath+0x5c0/0x5c0 [ 522.554930] ? syscall_return_slowpath+0x30f/0x5c0 [ 522.559852] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 522.565373] ? retint_user+0x18/0x18 [ 522.569084] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 522.573923] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 522.579104] RIP: 0033:0x40fc61 [ 522.582271] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 522.589963] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 522.597213] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 [ 522.604462] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 [ 522.611712] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 [ 522.618964] R13: 0000000000000744 R14: 00000000006fef00 R15: 0000000000000032 2018/05/26 12:22:48 executing program 2: syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/ip6_tables_targets\x00') 2018/05/26 12:22:48 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [0x40000100, 0x1100]}) 2018/05/26 12:22:48 executing program 7: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3de, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() mkdir(&(0x7f0000000200)='./file0\x00', 0x0) 2018/05/26 12:22:48 executing program 6: getpgrp(0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) r0 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x0, 0x64, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f00000001c0)='./control\x00') 2018/05/26 12:22:48 executing program 4: r0 = socket(0x10, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000300)={'ifb0\x00', 0x3082}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x40049409, &(0x7f00000000c0)={"6966623000f7ff010000000000000076", 0x3001}) 2018/05/26 12:22:48 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(r0, &(0x7f0000000100), 0xffffffffffffffd6, 0x20000004, &(0x7f000031e000)={0xa}, 0x1c) r1 = socket$inet(0x10, 0x3, 0x4) sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f000000d000)=[{&(0x7f0000008000)}], 0x1}, 0x0) 2018/05/26 12:22:48 executing program 3: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x0, 0x32, 0xffffffffffffffff, 0x0) r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="c626262c8523bf012cf66f") r1 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r1, 0xc0145401, &(0x7f0000013000)) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) 2018/05/26 12:22:48 executing program 0 (fault-call:2 fault-nth:51): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) [ 523.041608] FAULT_INJECTION: forcing a failure. [ 523.041608] name failslab, interval 1, probability 0, space 0, times 0 [ 523.052944] CPU: 0 PID: 30537 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 523.060229] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 523.069590] Call Trace: [ 523.072193] dump_stack+0x1b9/0x294 [ 523.075835] ? dump_stack_print_info.cold.2+0x52/0x52 [ 523.081038] ? perf_trace_lock_acquire+0xe3/0x980 [ 523.085884] ? print_usage_bug+0xc0/0xc0 [ 523.090027] should_fail.cold.4+0xa/0x1a [ 523.094107] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 523.099228] ? graph_lock+0x170/0x170 [ 523.103039] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 523.107635] ? _raw_spin_unlock_irqrestore+0x74/0xc0 [ 523.112741] ? find_held_lock+0x36/0x1c0 [ 523.116797] ? __lock_is_held+0xb5/0x140 [ 523.120858] ? check_same_owner+0x320/0x320 [ 523.125167] ? rcu_note_context_switch+0x710/0x710 [ 523.130081] ? print_usage_bug+0xc0/0xc0 [ 523.134131] __should_failslab+0x124/0x180 [ 523.138353] should_failslab+0x9/0x14 [ 523.142138] kmem_cache_alloc_trace+0x2cb/0x780 [ 523.146789] ? graph_lock+0x170/0x170 [ 523.150573] ? print_usage_bug+0xc0/0xc0 [ 523.154629] device_create_groups_vargs+0xa7/0x270 [ 523.159548] device_create_vargs+0x46/0x60 [ 523.163770] bdi_register_va.part.10+0xbb/0x9b0 [ 523.168425] ? __lockdep_init_map+0x105/0x590 [ 523.172903] ? cgwb_kill+0x630/0x630 [ 523.176605] ? lockdep_init_map+0x9/0x10 [ 523.180652] ? __init_waitqueue_head+0x96/0x140 [ 523.185308] ? init_wait_entry+0x1b0/0x1b0 [ 523.189533] ? __lockdep_init_map+0x105/0x590 [ 523.194028] ? pm_runtime_init+0x451/0x540 [ 523.198253] ? update_pm_runtime_accounting+0x1b0/0x1b0 [ 523.203606] bdi_register+0x101/0x110 [ 523.207391] ? bdi_register_va+0x80/0x80 [ 523.211437] ? graph_lock+0x170/0x170 [ 523.215236] bdi_register_owner+0x5e/0x100 [ 523.219473] __device_add_disk+0xf07/0x1340 [ 523.223781] ? blk_alloc_devt+0x2a0/0x2a0 [ 523.227912] ? vsnprintf+0x242/0x1b40 [ 523.231700] ? pointer+0xa10/0xa10 [ 523.235222] ? __mutex_init+0x1ef/0x280 [ 523.239194] ? sprintf+0xa7/0xd0 [ 523.242545] ? scnprintf+0x120/0x120 [ 523.246260] ? __lockdep_init_map+0x105/0x590 [ 523.250769] device_add_disk+0x22/0x30 [ 523.254644] loop_add+0x70b/0x9c0 [ 523.258081] ? loop_queue_rq+0x640/0x640 [ 523.262126] ? module_unload_free+0x5b0/0x5b0 [ 523.266609] loop_probe+0x185/0x1c0 [ 523.270227] ? loop_control_ioctl+0x500/0x500 [ 523.274707] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 523.279886] kobj_lookup+0x269/0x460 [ 523.283587] ? loop_control_ioctl+0x500/0x500 [ 523.288067] get_gendisk+0x4c/0x380 [ 523.291681] __blkdev_get+0x45f/0x13a0 [ 523.295995] ? blkdev_get_block+0xc0/0xc0 [ 523.300142] blkdev_get+0xb9/0xb30 [ 523.303671] ? bdget+0x5c0/0x5c0 [ 523.307032] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 523.311603] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 523.317126] ? errseq_sample+0xe3/0x120 [ 523.321087] ? _copy_to_user+0x110/0x110 [ 523.325142] ? _raw_spin_unlock+0x22/0x30 [ 523.329283] blkdev_open+0x1fb/0x280 [ 523.332985] do_dentry_open+0x7ef/0xf10 [ 523.336945] ? bd_acquire+0x2c0/0x2c0 [ 523.340733] vfs_open+0x139/0x230 [ 523.344172] path_openat+0x1676/0x4e20 [ 523.348055] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 523.352803] ? find_held_lock+0x36/0x1c0 [ 523.357336] ? lock_downgrade+0x8e0/0x8e0 [ 523.361477] ? kasan_check_read+0x11/0x20 [ 523.365612] ? do_raw_spin_unlock+0x9e/0x2e0 [ 523.370011] ? __lock_is_held+0xb5/0x140 [ 523.374069] ? _raw_spin_unlock+0x22/0x30 [ 523.378203] ? __alloc_fd+0x346/0x700 [ 523.381987] ? usercopy_warn+0x120/0x120 [ 523.386048] do_filp_open+0x249/0x350 [ 523.389836] ? may_open_dev+0x100/0x100 [ 523.393795] ? strncpy_from_user+0x3b6/0x500 [ 523.398194] ? mpi_free.cold.1+0x19/0x19 [ 523.402244] ? get_unused_fd_flags+0x121/0x190 [ 523.406818] ? getname_flags+0xd0/0x5a0 [ 523.410780] ? getname_flags+0x26e/0x5a0 [ 523.414831] do_sys_open+0x56f/0x740 [ 523.418531] ? mm_fault_error+0x314/0x380 [ 523.422663] ? filp_open+0x80/0x80 [ 523.426191] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 523.431034] __x64_sys_open+0x7e/0xc0 [ 523.434819] do_syscall_64+0x1b1/0x800 [ 523.438693] ? finish_task_switch+0x1ca/0x840 [ 523.443173] ? syscall_return_slowpath+0x5c0/0x5c0 [ 523.448096] ? syscall_return_slowpath+0x30f/0x5c0 [ 523.453019] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 523.458542] ? retint_user+0x18/0x18 [ 523.462247] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 523.467078] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 523.472249] RIP: 0033:0x40fc61 [ 523.475422] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 523.483118] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 523.490369] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 [ 523.497620] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 [ 523.504871] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 [ 523.512121] R13: 0000000000000744 R14: 00000000006fef00 R15: 0000000000000033 [ 523.519923] WARNING: CPU: 0 PID: 30537 at block/genhd.c:697 __device_add_disk+0x104a/0x1340 [ 523.528676] Kernel panic - not syncing: panic_on_warn set ... [ 523.528676] [ 523.536042] CPU: 0 PID: 30537 Comm: syz-executor0 Not tainted 4.17.0-rc6+ #68 [ 523.543299] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 523.552632] Call Trace: [ 523.555213] dump_stack+0x1b9/0x294 [ 523.558828] ? dump_stack_print_info.cold.2+0x52/0x52 [ 523.564010] ? __device_add_disk+0x1020/0x1340 [ 523.568584] panic+0x22f/0x4de [ 523.571760] ? add_taint.cold.5+0x16/0x16 [ 523.575899] ? __warn.cold.8+0x148/0x1b3 [ 523.579948] ? __device_add_disk+0x104a/0x1340 [ 523.584518] __warn.cold.8+0x163/0x1b3 [ 523.588390] ? __device_add_disk+0x104a/0x1340 [ 523.592968] report_bug+0x252/0x2d0 [ 523.596587] do_error_trap+0x1de/0x490 [ 523.600461] ? math_error+0x420/0x420 [ 523.604251] ? __lockdep_init_map+0x105/0x590 [ 523.608740] ? pm_runtime_init+0x451/0x540 [ 523.612960] ? update_pm_runtime_accounting+0x1b0/0x1b0 [ 523.618310] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 523.623148] do_invalid_op+0x1b/0x20 [ 523.626847] invalid_op+0x14/0x20 [ 523.630284] RIP: 0010:__device_add_disk+0x104a/0x1340 [ 523.635451] RSP: 0018:ffff8801aa877128 EFLAGS: 00010246 [ 523.640803] RAX: 0000000000040000 RBX: ffff8801b55cc400 RCX: ffffc90001eb8000 [ 523.648055] RDX: 0000000000040000 RSI: ffffffff83439e2a RDI: 0000000000000005 [ 523.655306] RBP: ffff8801aa8772f8 R08: ffff8801b1dea2c0 R09: ffffed003b5c46d2 [ 523.662561] R10: ffffed003b5c46d2 R11: ffff8801dae23693 R12: 00000000fffffff4 [ 523.669821] R13: ffff8801aa8772d0 R14: ffff8801b55cc960 R15: ffff8801b55cc404 [ 523.677086] ? __device_add_disk+0x104a/0x1340 [ 523.681652] ? __device_add_disk+0x104a/0x1340 [ 523.686233] ? blk_alloc_devt+0x2a0/0x2a0 [ 523.690370] ? vsnprintf+0x242/0x1b40 [ 523.694159] ? pointer+0xa10/0xa10 [ 523.697684] ? __mutex_init+0x1ef/0x280 [ 523.701649] ? sprintf+0xa7/0xd0 [ 523.705008] ? scnprintf+0x120/0x120 [ 523.708716] ? __lockdep_init_map+0x105/0x590 [ 523.713196] device_add_disk+0x22/0x30 [ 523.717068] loop_add+0x70b/0x9c0 [ 523.720504] ? loop_queue_rq+0x640/0x640 [ 523.724548] ? module_unload_free+0x5b0/0x5b0 [ 523.729037] loop_probe+0x185/0x1c0 [ 523.732650] ? loop_control_ioctl+0x500/0x500 [ 523.737131] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 523.742313] kobj_lookup+0x269/0x460 [ 523.746024] ? loop_control_ioctl+0x500/0x500 [ 523.750506] get_gendisk+0x4c/0x380 [ 523.754120] __blkdev_get+0x45f/0x13a0 [ 523.757998] ? blkdev_get_block+0xc0/0xc0 [ 523.762140] blkdev_get+0xb9/0xb30 [ 523.765673] ? bdget+0x5c0/0x5c0 [ 523.769034] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 523.773606] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 523.779133] ? errseq_sample+0xe3/0x120 [ 523.783091] ? _copy_to_user+0x110/0x110 [ 523.787139] ? _raw_spin_unlock+0x22/0x30 [ 523.791274] blkdev_open+0x1fb/0x280 [ 523.794975] do_dentry_open+0x7ef/0xf10 [ 523.798938] ? bd_acquire+0x2c0/0x2c0 [ 523.802736] vfs_open+0x139/0x230 [ 523.806178] path_openat+0x1676/0x4e20 [ 523.810062] ? path_lookupat.isra.44+0xbd0/0xbd0 [ 523.814804] ? find_held_lock+0x36/0x1c0 [ 523.818856] ? lock_downgrade+0x8e0/0x8e0 [ 523.823007] ? kasan_check_read+0x11/0x20 [ 523.827154] ? do_raw_spin_unlock+0x9e/0x2e0 [ 523.831551] ? __lock_is_held+0xb5/0x140 [ 523.835600] ? _raw_spin_unlock+0x22/0x30 [ 523.839732] ? __alloc_fd+0x346/0x700 [ 523.843516] ? usercopy_warn+0x120/0x120 [ 523.847568] do_filp_open+0x249/0x350 [ 523.851360] ? may_open_dev+0x100/0x100 [ 523.855318] ? strncpy_from_user+0x3b6/0x500 [ 523.859716] ? mpi_free.cold.1+0x19/0x19 [ 523.863768] ? get_unused_fd_flags+0x121/0x190 [ 523.868332] ? getname_flags+0xd0/0x5a0 [ 523.872293] ? getname_flags+0x26e/0x5a0 [ 523.876345] do_sys_open+0x56f/0x740 [ 523.880050] ? mm_fault_error+0x314/0x380 [ 523.884183] ? filp_open+0x80/0x80 [ 523.887719] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 523.892550] __x64_sys_open+0x7e/0xc0 [ 523.896336] do_syscall_64+0x1b1/0x800 [ 523.900209] ? finish_task_switch+0x1ca/0x840 [ 523.904694] ? syscall_return_slowpath+0x5c0/0x5c0 [ 523.909610] ? syscall_return_slowpath+0x30f/0x5c0 [ 523.914529] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 523.920051] ? retint_user+0x18/0x18 [ 523.923755] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 523.928587] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 523.933759] RIP: 0033:0x40fc61 [ 523.936930] RSP: 002b:00007fd16bf067a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 523.944622] RAX: ffffffffffffffda RBX: cccccccccccccccd RCX: 000000000040fc61 [ 523.951874] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd16bf06850 [ 523.959125] RBP: 000000000072bea0 R08: 000000000000000f R09: 0000000000000000 [ 523.966376] R10: 0000000020000080 R11: 0000000000000293 R12: 0000000000000014 [ 523.973628] R13: 0000000000000744 R14: 00000000006fef00 R15: 0000000000000033 [ 523.981613] Dumping ftrace buffer: [ 523.985616] (ftrace buffer empty) [ 523.989311] Kernel Offset: disabled [ 523.992922] Rebooting in 86400 seconds..