kvm_mmu_load+0x21/0x10e0
[  450.165398]  ? vcpu_enter_guest+0x3aa1/0x6070
[  450.170000]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  450.175041]  ? graph_lock+0x170/0x170
[  450.178855]  ? do_syscall_64+0x29e/0x9d0
[  450.182937]  ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  450.188456]  ? find_held_lock+0x36/0x1c0
[  450.192541]  ? __lock_is_held+0xb5/0x140
[  450.196625]  ? check_same_owner+0x320/0x320
[  450.200958]  ? rcu_note_context_switch+0x710/0x710
[  450.205911]  __should_failslab+0x124/0x180
[  450.210162]  should_failslab+0x9/0x14
[  450.213983]  kmem_cache_alloc+0x2af/0x760
[  450.218155]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  450.223108]  mmu_topup_memory_caches+0x2fa/0x3a0
[  450.227991]  kvm_mmu_load+0x21/0x10e0
[  450.231806]  ? __might_sleep+0x95/0x190
[  450.235801]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  450.241363]  vcpu_enter_guest+0x3aa1/0x6070
[  450.245702]  ? kvm_vcpu_ioctl+0x1e2/0x12e0
[  450.249966]  ? perf_trace_lock+0xd6/0x900
[  450.254130]  ? print_usage_bug+0xc0/0xc0
[  450.258215]  ? kvm_set_msr_common+0x2660/0x2660
[  450.262904]  ? zap_class+0x720/0x720
[  450.266638]  ? vmx_vcpu_load+0xaed/0xff0
[  450.270715]  ? __lock_acquire+0x7f5/0x5130
[  450.274974]  ? vmx_vcpu_reset+0x1030/0x1030
[  450.279315]  ? graph_lock+0x170/0x170
[  450.283138]  ? __lock_acquire+0x7f5/0x5130
[  450.287402]  ? debug_check_no_locks_freed+0x310/0x310
[  450.292608]  ? print_usage_bug+0xc0/0xc0
[  450.296695]  ? __lock_is_held+0xb5/0x140
[  450.300775]  ? lock_acquire+0x1dc/0x520
[  450.304758]  ? kvm_arch_vcpu_ioctl_run+0x234/0x1690
[  450.309819]  ? lock_release+0xa10/0xa10
[  450.313813]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  450.319109]  ? kvm_arch_dev_ioctl+0x5f0/0x5f0
[  450.323618]  ? preempt_notifier_dec+0x20/0x20
[  450.328141]  kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  450.333003]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
2018/04/11 00:13:25 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1}, 0x0)

2018/04/11 00:13:25 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = syz_open_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0x8, 0x200000)
ioctl(r0, 0x7ff, &(0x7f0000000240)="98d695be55f593aa9e84ad90402b273f903dc767c17074aea0a646ba1201e60dc2105871f3db686ddb713368889a3724079be1221c4f32f14147da347f02176a7a41962c5db1d4219246733bc076bcf86a2031e6963f92acf928195a65673d89ee8d7c925bb03b937a924fd7d12ec8bb229597ece33e65440e2c4b4fb822974d8d0d3dff725b094c257109f1824b007a6fe46f2b34749a7644cda096eecf3654d79d2187449ed61c12311a28d9a77f9ddf972b458175d6fe9fef02f002249f251f9424a73c4aa00982d82f")
sendmsg$IPVS_CMD_NEW_DAEMON(r0, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x48, 0x0, 0x100, 0x70bd28, 0x25dfdbff, {0x9}, [@IPVS_CMD_ATTR_DEST={0x34, 0x2, [@IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x20}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x4}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x4}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0xffff}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x4}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x3}]}]}, 0x48}, 0x1, 0x0, 0x0, 0x20000000}, 0x4008000)
ioctl$KVM_ARM_SET_DEVICE_ADDR(r1, 0x4010aeab, &(0x7f0000000040)={0x1f, 0x5002})
writev(r0, &(0x7f0000bafff0)=[{&(0x7f0000000100)="29000000200019fff63d89170c4df109ca64000d15de0005190000040d000c000000800000f900001e", 0x29}], 0x1)

2018/04/11 00:13:26 executing program 1:
syz_open_dev$loop(&(0x7f0000000100)='/dev/loop#\x00', 0x0, 0x0)
r0 = syz_open_dev$sndseq(&(0x7f000082a000)='/dev/snd/seq\x00', 0x0, 0x0)
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x200002, 0x0)
ioctl$TIOCSTI(r1, 0x5412, 0x8)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000000040)={{0x80}, "00800000009a000000f9010000ef9b3fd4cec307e8033d13eb790ec9c65abaf90d229db692542e5b78f8549e0a27800f00000000000000090042f376589701a4"})

2018/04/11 00:13:26 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1}, 0x0)

2018/04/11 00:13:26 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x40, 0x0)
mmap(&(0x7f0000000000/0xfbf000)=nil, 0xfbf000, 0x0, 0x32, 0xffffffffffffffff, 0x0)
ioctl$TCSETSF(r0, 0x5404, &(0x7f0000ccb000))

[  450.338049]  kvm_vcpu_ioctl+0x79d/0x12e0
[  450.342135]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  450.347861]  ? graph_lock+0x170/0x170
[  450.351674]  ? find_held_lock+0x36/0x1c0
[  450.355763]  ? lock_downgrade+0x8e0/0x8e0
[  450.359934]  ? rcu_is_watching+0x85/0x140
[  450.364111]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  450.369322]  ? __fget+0x40c/0x650
[  450.372792]  ? match_held_lock+0x881/0x8b0
[  450.377044]  ? expand_files.part.8+0x9a0/0x9a0
[  450.382020]  ? kasan_check_write+0x14/0x20
[  450.386277]  ? __mutex_unlock_slowpath+0x180/0x8a0
[  450.391234]  ? wait_for_completion+0x870/0x870
[  450.395838]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  450.401053]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  450.406758]  do_vfs_ioctl+0x1cf/0x1650
[  450.410641]  ? ioctl_preallocate+0x2e0/0x2e0
[  450.415129]  ? fget_raw+0x20/0x20
[  450.418573]  ? __sb_end_write+0xac/0xe0
[  450.422537]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  450.428070]  ? fput+0x130/0x1a0
[  450.431337]  ? ksys_write+0x1a6/0x250
[  450.435129]  ? security_file_ioctl+0x94/0xc0
[  450.439526]  ksys_ioctl+0xa9/0xd0
[  450.442971]  SyS_ioctl+0x24/0x30
[  450.446321]  ? ksys_ioctl+0xd0/0xd0
[  450.449942]  do_syscall_64+0x29e/0x9d0
[  450.453819]  ? vmalloc_sync_all+0x30/0x30
[  450.457959]  ? _raw_spin_unlock_irq+0x27/0x70
[  450.462445]  ? finish_task_switch+0x1ca/0x820
[  450.466938]  ? syscall_return_slowpath+0x5c0/0x5c0
[  450.471862]  ? syscall_return_slowpath+0x30f/0x5c0
[  450.476793]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  450.482155]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  450.487234]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  450.492408] RIP: 0033:0x455259
[  450.495581] RSP: 002b:00007f45bbc7bc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  450.503277] RAX: ffffffffffffffda RBX: 00007f45bbc7c6d4 RCX: 0000000000455259
[  450.510530] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000017
[  450.517784] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  450.525038] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000019
[  450.532294] R13: 0000000000000251 R14: 00000000006f6838 R15: 0000000000000035
2018/04/11 00:13:26 executing program 5:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0xc08c5336, &(0x7f00000000c0)={0x0, 0x0, 0x0, "71756575653000000000000000000000000000000000000000000000000000001f00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer2\x00', 0x0, 0x0)

2018/04/11 00:13:26 executing program 4:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0x80045300, &(0x7f00000000c0)={0x0, 0x0, 0x0, "717565756530000000000000000000000000000000000000fffffdfd00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))

2018/04/11 00:13:26 executing program 2 (fault-call:26 fault-nth:54):
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/pfkey\x00', 0x1, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_GET_MSR_INDEX_LIST(r1, 0xc004ae02, &(0x7f0000000440)=ANY=[@ANYBLOB="010000e8a806846728a902d7836e000000000090c8bb2c64ee855b03d6b79f01fd689aefd896253378642249ab91395ab66a034c399ce7623518b671b773347d0fd26ec81ac69a995c8ce192812ee8050c3814b9781ac68ebaded833a2c6c838d8647586e9c6e9a5856a915e647163631e9ebb8c6af6c63986f87e1cb1e65dda52219878b2bf0aa3c41d7257b9b338d3de7e2930af343b00807a9f0f1508f564e7be9484af85b8deea898a0e15d4e59917a706dff1d6eb4d00000000000000000000"])
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
pipe2(&(0x7f0000000700)={<r3=>0x0, <r4=>0x0}, 0x0)
ioctl$KVM_SET_XSAVE(r2, 0x5000aea5, &(0x7f0000000740)={"821c059ceb3c1a4b565cba916ba4cfe805163ba44e5dbef061fe0302945e42db54da3f05792113b780f3efb176690c8b67a4a17d8eae46cfb5eda672a90b88c0fffc17223e428569632b728bee37f4076374f505127edb8b822bd97d7c2f365fccb858450dfdf95ee07aaaf0a2c0136eed7fb5d14f5298b788d36b009d57a7de914fc02a489daf7c75f37d0ee20c2cde218d30661a4702f06301ab93f72d09911254d39a2fa5c6611ade75a7f534b90f49bfcb548589c975c0f56724df4f35816c4a83d2f9b106570bf065387c7769361f0ac9d641eec9d2107feaf8a65aada58f689c5aafc869c8ce6447fa017e357949d836daaa4d323c710fc314b6345a4da62e25f581c6ff59365a9bf8b6f3732d3b23fa543d7dca7c758d403c726814f72c0304ea5694ccf90468ab91e4b4238655023b7ff2db190e92e7b6ddd4b850147bcbeb69b5b17b2939e69c6a117ff3aa3ec0d44fc64ddd7431ba8397effc54df00c9b7afb061f2aa5eb0fa7c0e010bf22da72fd45e1406e6abf9da38eb4e86f0f67706877b24e4ee61b1185f46d4740579a7d2f28e34cfd1e4365358e49bf25c327c2298d89f78cf6fd717254e18d492ce2e09151abb74a9d0ca7d2290879e0e87264307cbeefb7420d7b6451462bc39a8361eba00b6760b723f4b03141e31c402b36fe6e90752393e66d5897bec98b856592c114e16a8f150117a29e890286e845324779aea566e472a1ecf201cb36a64b0472b4dfdcab391ed2356d1eb646adc71e1bf1df38daeadf199e93616e3f8da94574df04629e9b355e60edc1075ab2afc1fbffdc901d8b6091d15fcdeca25199439ccd63320667d9fe382f8174676c6435cc08ce09833d0eb4cee3cbee55af63c6d060c6f5153a862b28fda51dd5fcc6daca8f571cc87da9aab50a1f7daed9497f49535c1f499db0724c16bcf94730190c91134149e32fc57c14290d9a255d027813517b42bfbfa485493558477a14a26741613141a55237bba1fe3a4f68b8d3df7935a63a683488cd7539cbc404d8968616657af33ecfef04d2e0f41fd52523319892decf7b63ae9f9cdb6847eaa0d2af35bb71577c3cfc6b9705da1a0712e50a7a90063601763af4efd1f559e20b5e78340dd5454d6a3f726a0cd3b218375a54822ade6c69e2d98ea3f43e3bc736177ee0615590ff84dfb50e78d118abf8361d7c90d2f0672e87a1dd349562c70543e89ba93d58c57c1189799766b45819ac197993d575c0ec11028be5751b5115dfb27c39bd96856bb54f39643fdd7326108ec9f830f805e6e90787f09f20b56b98000a946b1eb2e80777135415e79d233d6e0905e1188cfed7fefb03fe5b9a21e87d63196095f89abf5c562956076a5487afad22b1afbc54efdb3a56e6994ec0294c473b73f52073560eb1e2810c2b9f45b5bef9b26801822514932c9019d2f"})
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
shmget(0x0, 0x3000, 0x1, &(0x7f000075a000/0x3000)=nil)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000600)={<r6=>0x0, @in={{0x2, 0x4e23, @multicast2=0xe0000002}}, 0x5, 0x6, 0x1, 0xfff, 0x8}, &(0x7f0000000080)=0x98)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000b40)={r6, @in={{0x2, 0x4e24, @rand_addr=0x10000}}, 0x5, 0x101, 0x6, 0xea, 0x72}, &(0x7f00000002c0)=0x98)
r7 = dup3(r5, r4, 0x0)
munlockall()
r8 = shmget$private(0x0, 0x3000, 0x10, &(0x7f0000760000/0x3000)=nil)
shmctl$IPC_RMID(r8, 0x0)
clock_gettime(0x7, &(0x7f0000000000))
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f0000460fe4)={0x0, 0x7, 0x2, 0x0, 0x4, 0x8, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x805})
ioctl$SNDRV_TIMER_IOCTL_GINFO(r4, 0xc0f85403, &(0x7f0000000c00)={{0xffffffffffffffff, 0x0, 0x3, 0x3, 0x2}, 0x81, 0x3, 'id0\x00', 'timer0\x00', 0x0, 0x6, 0x1, 0x6, 0x3})
ioctl$sock_inet6_tcp_SIOCINQ(r3, 0x541b, &(0x7f0000000040))
socket(0xf, 0x6, 0x5)
ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000280)={0x81, 0x1})
ioctl$EVIOCSABS2F(r7, 0x401845ef, &(0x7f0000000240)={0x9, 0x0, 0xfffffffffffffffd, 0x1ff, 0x4, 0x7f})
getsockopt$ax25_buf(r4, 0x101, 0x19, &(0x7f0000000140)=""/53, &(0x7f0000000180)=0x35)
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/enforce\x00', 0x10000, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000753000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, &(0x7f00000000c0)="0fc7280f080f20030f01727166ba4200b834000000ef66bad10466edb81da1fb500f23d00f21f835300000050f23f8c4c3194bfc360f20030fc76d08", 0x3c}], 0x1, 0x7, &(0x7f0000000380), 0x10000181)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r2, 0x8008ae9d, &(0x7f0000000340)=""/250)

2018/04/11 00:13:26 executing program 7:
mmap(&(0x7f0000000000/0xf9a000)=nil, 0xf9a000, 0x0, 0x32, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x1, 0x0)
getsockopt$sock_timeval(r0, 0x1, 0x15, &(0x7f0000f80000), &(0x7f0000f9affc)=0x10)
prctl$getreaper(0xb, &(0x7f0000000080))
getsockopt$inet6_mreq(r0, 0x29, 0x1c, &(0x7f0000000000)={@loopback}, &(0x7f0000000040)=0x14)

2018/04/11 00:13:26 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1}, 0x0)

2018/04/11 00:13:26 executing program 1:
r0 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_GSI_ROUTING(r0, 0x4008ae6a, &(0x7f0000000380)={0x4, 0x0, [{0x1, 0x1, 0x0, 0x0, @irqchip={0x1, 0x100}}, {0x3d, 0x7, 0x0, 0x0, @irqchip={0x7, 0x4}}, {0x0, 0x4, 0x0, 0x0, @msi={0x10001, 0x4a, 0x7}}, {0x10000, 0x3, 0x0, 0x0, @irqchip={0xd6, 0x616c}}]})
r1 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cuse\x00', 0x800, 0x0)
io_setup(0x9, &(0x7f0000000040)=<r2=>0x0)
io_submit(r2, 0x3, &(0x7f0000000340)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x3, 0x2, r1, &(0x7f0000000080)="75405790fd53e658bc483a2530ea3d1eb7e0cba83f1ff85b056e675274246591ea21e478644a5cb8b89acf638143b5ef6bc3f1ea328176246034b28430e5069445a420f061458d68f14631c2255f31f275dac7f0b21b7de06699a3519dc1f39bdb108af90891099b88448af0504ff74fdde8662228b6ab762ba8cb", 0x7b, 0x5, 0x0, 0x1, r1}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x888f69a4344c27cc, 0xffffffff7fffffff, r1, &(0x7f0000000140)="d0086f9ba1959f108ee2409a9e83862e0850e301f26060028d0222c65a02557509b9447da9920bf3716bab661701a9d57d18835e69433d7b34ed180c4048031a879d0b5fd592c9b3e25a78e3e752fcadfef2e11d6be9fcb77ac071abb3d54d5caa6fc0c10ab52ec1a4d406d02cef708e92f4e878e0ab875fbf79deff838d7c82a40be9152862adc940968b36df0c38848d3d77c54af1e443fd20f277", 0x9c, 0x4, 0x0, 0x1, r1}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0xf, 0x1, r1, &(0x7f0000000240)="2f01d0655afd75fe15bab75e0283e8d543df08cdd05a13a26383d39fc8e6f55f12e3956a8b9e5f221a92d7dd5dc2e75d9bae3f22838386c688c1f8d2367875fe3cbc182613763a1bb5520c9cbc286a371dabfc54bf54c42cec9d9c203f0cf98dd2547a5ad4833d61db7272714eface9ccbbad759db6c79c95fca0e8c33aab6d8c6e7af33ab3710c3da5acb195d8db51e01ba769ffb61fa32ee", 0x99, 0x0, 0x0, 0x1, r1}])
io_submit(0x0, 0x1, &(0x7f000044b000)=[&(0x7f0000403fc0)={0x0, 0x0, 0x0, 0x0, 0x0, r1, &(0x7f0000e27fd9)}])

2018/04/11 00:13:26 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c746572000000000000009000", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:26 executing program 0:
r0 = open(&(0x7f0000000000)='./file0\x00', 0x200, 0x2)
setsockopt$inet6_dccp_buf(r0, 0x21, 0x0, &(0x7f0000000080)="5f6cce71834840e6f1ffa5c518615b24173e59ae40", 0x15)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00006a4ff7)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f0000000040))
ioctl$KVM_SET_BOOT_CPU_ID(r2, 0x4018aebd, &(0x7f00000000c0)=0x80fffcfffffffc)
ioctl$VHOST_SET_VRING_ENDIAN(r0, 0x4008af13, &(0x7f0000000100)={0x3, 0x3})

2018/04/11 00:13:26 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1}, 0x0)

2018/04/11 00:13:26 executing program 7:
r0 = perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket(0x1e, 0x805, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000b89fe4)=@req3={0x10001, 0x0, 0x1, 0x1df9}, 0x1c)
listen(r1, 0x0)
sendmsg(r1, &(0x7f0000030000)={&(0x7f00004f5000)=ANY=[@ANYBLOB="1e000100000900000000000000000226cc573c080000003724c71e14dd6a739effea1b48006be61ffe0000e103000000f8000004003f010039d8f986ff01000300000004af50d50700000000000017e3c5316a198300000002000000000000001e27800000100076c3979ac40000bd15020078a1dfd300711a8365b1b16d7436"], 0x1, &(0x7f0000000240), 0x0, &(0x7f00006e9c68)}, 0x0)
accept4$nfc_llcp(r1, &(0x7f0000000000), &(0x7f0000000100)=0x60, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x80000000, @mcast1={0xff, 0x1, [], 0x1}, 0x80}, @in6={0xa, 0x4e20, 0x9, @mcast1={0xff, 0x1, [], 0x1}, 0x5}, @in={0x2, 0x4e22, @broadcast=0xffffffff}, @in={0x2, 0x4e24}, @in6={0xa, 0x4e20, 0x4, @loopback={0x0, 0x1}, 0x100000000}, @in={0x2, 0x4e20, @multicast2=0xe0000002}, @in6={0xa, 0x4e20, 0x7, @empty, 0x1}], 0xa0)
getsockname$inet6(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, @remote}, &(0x7f00000000c0)=0x1c)
getsockopt$IPT_SO_GET_ENTRIES(r1, 0x0, 0x41, &(0x7f0000000140)={'security\x00', 0xa5, "33ccd9f295cb43dd15d57404e1e3f8b98f2bedf51c956ec2e89f1db9278c21053fdbee655d2bbae68368a857544df63295aa92affdc04463296772b495cfce1237f9321e6aca7e8aecbaaefd12a8b7f76e64a4862f9817d7a6d3804bb6cda606b0e4de975069ece4a1e912f9409f8e50e26166db8cd7b7ef9a4d094d9e7c1741bd4fe50276581094d5da4a2d8a58807f3e7c3801e9e902ee0093c9229e23d0061517a61e17"}, &(0x7f0000000240)=0xc9)

2018/04/11 00:13:26 executing program 1:
capset(&(0x7f00000fc000)={0x19980330}, &(0x7f000047efe8))
r0 = socket$inet_icmp(0x2, 0x2, 0x1)
accept$packet(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, <r1=>0x0, 0x0, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x14)
fstat(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
setsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000180)={{{@in6=@ipv4={[], [0xff, 0xff], @broadcast=0xffffffff}, @in=@local={0xac, 0x14, 0x14, 0xaa}, 0x4e24, 0x9, 0x4e21, 0x9, 0xa, 0x20, 0x20, 0x3c, r1, r2}, {0x5, 0x7, 0xc00, 0x9, 0xffff, 0x280d, 0x80000001, 0x7fffffff}, {0x248e, 0x1, 0x9, 0x4}, 0x4, 0x6e6bb7, 0x0, 0x0, 0x2, 0x1}, {{@in=@multicast1=0xe0000001, 0x4d5, 0x32}, 0xa, @in6=@mcast2={0xff, 0x2, [], 0x1}, 0x3500, 0x7, 0x3, 0x5, 0x7f, 0x6b, 0x6}}, 0xe8)
r3 = socket(0x1e, 0x1, 0x0)
setsockopt$packet_tx_ring(r3, 0x10f, 0x87, &(0x7f0000540ff0)=@req={0x3fc, 0x0, 0x1}, 0x10)
r4 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r4, 0x10f, 0x87, &(0x7f0000000040)=@req={0x3fc, 0x0, 0x1}, 0x10)
r5 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r5, 0x10f, 0x87, &(0x7f0000265000)=@req={0x3fc, 0x0, 0x1, 0xfffffffffffffff7}, 0x10)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000280)="3a9b5e6daf8e01db66ed3732327335607a08f81146d8654a4dcdbef6382564c9fd4adcc9a457423aa6661887e99d1a1ae983b3d4e2f579646b4b34b56e2b51f653f85e9d24533ffe31403adf2b11452f6652ef0a2a114190010ac0d113111da3a560fb5713d814", 0x67)
sendmsg$netlink(r5, &(0x7f00003aefc8)={0x0, 0x0, &(0x7f0000847000), 0x0, &(0x7f000048a000)}, 0x0)
sendmmsg$alg(r5, &(0x7f0000f3ff58)=[{0x0, 0x0, &(0x7f0000511000), 0x0, &(0x7f0000000080), 0x3c1}], 0x1, 0x0)
connect$inet6(r4, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @ipv4={[], [0xff, 0xff], @multicast1=0xe0000001}, 0x3}, 0x1c)
r6 = socket$inet6_sctp(0xa, 0x5, 0x84)
ioctl$sock_ifreq(r6, 0x89f2, &(0x7f0000000080)={'bond0\x00', @ifru_data=&(0x7f0000000140)="219800525d01e014753528130df66ac6e329e00b235ed1d304326763abcfef53"})
pipe2(&(0x7f0000000000)={0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x84800)
ioctl$GIO_UNISCRNMAP(r7, 0x4b69, &(0x7f0000000180)=""/164)

2018/04/11 00:13:26 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c746572000000000000000400", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

[  450.735224] FAULT_INJECTION: forcing a failure.
[  450.735224] name failslab, interval 1, probability 0, space 0, times 0
[  450.746580] CPU: 1 PID: 30036 Comm: syz-executor2 Not tainted 4.16.0+ #18
[  450.753512] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  450.762871] Call Trace:
[  450.765472]  dump_stack+0x1b9/0x294
[  450.769117]  ? dump_stack_print_info.cold.2+0x52/0x52
[  450.774320]  ? __save_stack_trace+0x7e/0xd0
[  450.778663]  should_fail.cold.4+0xa/0x1a
[  450.782744]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  450.787864]  ? kasan_kmalloc+0xc4/0xe0
[  450.791765]  ? kasan_slab_alloc+0x12/0x20
[  450.795925]  ? kmem_cache_alloc+0x12e/0x760
[  450.800262]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  450.805205]  ? kvm_mmu_load+0x21/0x10e0
[  450.809194]  ? vcpu_enter_guest+0x3aa1/0x6070
[  450.813701]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  450.818828]  ? graph_lock+0x170/0x170
[  450.822653]  ? do_syscall_64+0x29e/0x9d0
[  450.826730]  ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  450.832111]  ? find_held_lock+0x36/0x1c0
[  450.836189]  ? __lock_is_held+0xb5/0x140
[  450.840278]  ? check_same_owner+0x320/0x320
[  450.844618]  ? rcu_note_context_switch+0x710/0x710
[  450.849573]  __should_failslab+0x124/0x180
[  450.853824]  should_failslab+0x9/0x14
[  450.857638]  kmem_cache_alloc+0x2af/0x760
[  450.861803]  ? alloc_pages_current+0x114/0x210
[  450.866403]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  450.871357]  mmu_topup_memory_caches+0x2fa/0x3a0
[  450.876137]  kvm_mmu_load+0x21/0x10e0
[  450.879958]  ? __might_sleep+0x95/0x190
2018/04/11 00:13:26 executing program 0:
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x44000, 0x0)
ioctl$KVM_GET_FPU(r0, 0x81a0ae8c, &(0x7f00000001c0))
r1 = socket$packet(0x11, 0x2, 0x300)
syz_open_dev$dmmidi(&(0x7f0000000000)='/dev/dmmidi#\x00', 0x7, 0x0)
setsockopt$packet_int(r1, 0x107, 0x14, &(0x7f0000012000)=0x6, 0x4)
sendto$inet6(r1, &(0x7f0000000040), 0x0, 0x0, &(0x7f0000000180)={0xa, 0x0, 0x1, @mcast2={0xff, 0x2, [], 0x1}}, 0x1c)

2018/04/11 00:13:26 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f0000000000000000ff", 0x24}], 0x1}, 0x0)

2018/04/11 00:13:26 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1}, 0x0)

[  450.883951]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  450.889517]  vcpu_enter_guest+0x3aa1/0x6070
[  450.893855]  ? kvm_vcpu_ioctl+0x1e2/0x12e0
[  450.898109]  ? print_usage_bug+0xc0/0xc0
[  450.902198]  ? kvm_set_msr_common+0x2660/0x2660
[  450.906885]  ? vmx_vcpu_load+0xaed/0xff0
[  450.910963]  ? __lock_acquire+0x7f5/0x5130
[  450.915211]  ? vmx_vcpu_reset+0x1030/0x1030
[  450.919552]  ? graph_lock+0x170/0x170
[  450.923360]  ? __lock_acquire+0x7f5/0x5130
[  450.927615]  ? debug_check_no_locks_freed+0x310/0x310
2018/04/11 00:13:26 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1}, 0x0)

[  450.932812]  ? print_usage_bug+0xc0/0xc0
[  450.936885]  ? __lock_is_held+0xb5/0x140
[  450.940963]  ? lock_acquire+0x1dc/0x520
[  450.944953]  ? kvm_arch_vcpu_ioctl_run+0x234/0x1690
[  450.949993]  ? lock_release+0xa10/0xa10
[  450.953989]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  450.959278]  ? kvm_arch_dev_ioctl+0x5f0/0x5f0
[  450.963785]  ? preempt_notifier_dec+0x20/0x20
[  450.968391]  kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  450.973250]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  450.978287]  kvm_vcpu_ioctl+0x79d/0x12e0
[  450.982361]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  450.988082]  ? graph_lock+0x170/0x170
[  450.991891]  ? find_held_lock+0x36/0x1c0
[  450.995962]  ? lock_downgrade+0x8e0/0x8e0
[  451.000123]  ? kasan_check_read+0x11/0x20
[  451.004275]  ? rcu_is_watching+0x85/0x140
[  451.008434]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  451.013641]  ? __fget+0x40c/0x650
[  451.017100]  ? match_held_lock+0x881/0x8b0
[  451.021353]  ? expand_files.part.8+0x9a0/0x9a0
[  451.025947]  ? kasan_check_write+0x14/0x20
[  451.030180]  ? __mutex_unlock_slowpath+0x180/0x8a0
[  451.035107]  ? wait_for_completion+0x870/0x870
[  451.039687]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  451.044877]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  451.050582]  do_vfs_ioctl+0x1cf/0x1650
[  451.054463]  ? ioctl_preallocate+0x2e0/0x2e0
[  451.058875]  ? fget_raw+0x20/0x20
[  451.062319]  ? __sb_end_write+0xac/0xe0
[  451.066285]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  451.071807]  ? fput+0x130/0x1a0
[  451.075078]  ? ksys_write+0x1a6/0x250
[  451.078869]  ? security_file_ioctl+0x94/0xc0
[  451.083267]  ksys_ioctl+0xa9/0xd0
[  451.086711]  SyS_ioctl+0x24/0x30
[  451.090064]  ? ksys_ioctl+0xd0/0xd0
[  451.093679]  do_syscall_64+0x29e/0x9d0
[  451.097554]  ? vmalloc_sync_all+0x30/0x30
[  451.101687]  ? _raw_spin_unlock_irq+0x27/0x70
[  451.106180]  ? finish_task_switch+0x1ca/0x820
[  451.110663]  ? syscall_return_slowpath+0x5c0/0x5c0
[  451.115580]  ? syscall_return_slowpath+0x30f/0x5c0
[  451.120511]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  451.125876]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  451.130713]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  451.135888] RIP: 0033:0x455259
[  451.139064] RSP: 002b:00007f45bbc7bc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  451.146760] RAX: ffffffffffffffda RBX: 00007f45bbc7c6d4 RCX: 0000000000455259
[  451.154027] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000017
[  451.161296] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  451.168554] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000019
[  451.175822] R13: 0000000000000251 R14: 00000000006f6838 R15: 0000000000000036
2018/04/11 00:13:27 executing program 5:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0xc08c5336, &(0x7f00000000c0)={0x0, 0x0, 0x0, "71756575653000000000000000000000000000000000000000000000000000000000000000001f00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer2\x00', 0x0, 0x0)

2018/04/11 00:13:28 executing program 4:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0x80045300, &(0x7f00000000c0)={0x0, 0x0, 0x0, "717565756530000000000000000000000000000000fffffdfd00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))

2018/04/11 00:13:28 executing program 5:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0xc08c5336, &(0x7f00000000c0)={0x0, 0x0, 0x0, "717565756530000000000000000000000000000000000000000000000000000000001f00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer2\x00', 0x0, 0x0)

2018/04/11 00:13:28 executing program 1:
r0 = socket$rds(0x15, 0x5, 0x0)
setsockopt$SO_RDS_TRANSPORT(r0, 0x114, 0x8, &(0x7f0000000000), 0x4)
setsockopt$RDS_CONG_MONITOR(r0, 0x114, 0x6, &(0x7f0000000080)=0x1, 0x4)
setsockopt$RDS_FREE_MR(r0, 0x114, 0x3, &(0x7f00000000c0)={{0x400000000}}, 0x10)

2018/04/11 00:13:28 executing program 0:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
sendmmsg(r0, &(0x7f0000003300)=[{{0x0, 0x0, &(0x7f0000001700)=[{&(0x7f0000000140)="8bc0f5afc55946277b7e87afaed819a9ef6b9d92ffc274bfa35f5ca9736007b9a5cbc197451dc88054539a84d5060ee17d1546735702886db865fcad1176a777e2ca9598fb77a2ec4f2286da3a535d6f36e629d78ea97bfeeda8ab38a874817b2c72acaffc945c7d9f417faf20169c109729446690b120", 0x77}, {&(0x7f0000000040)="d730e5cb85c3a9", 0x7}, {&(0x7f00000000c0)="8753568306e4f615ba48be3c415e9726b92a97f10c9f55763c5c0f49558825c137577b03c3c4d892e5665eb1ceb1ff35196a51aa37612a6c815c50247e", 0x3d}, {&(0x7f00000001c0)}, {&(0x7f00000002c0)="678ce6755960c52942ce1808f72f7aeedf6ca7696ede52f500872dac483a06033fbaf42576648773760933f4733952836f57db6b48d9f8de1c28e092a4f758515cb323ce68a25a6ee021fa8396a603cbe033c7ee35a60300b982eb7f1720e99ce4a9f67b5988b937df5ee226314a9734006bc37018cb3347af74b24911ee0e7b8d00c9a4a9cbac25583aa0dfdb82de1f95e52928f1726da6f2caeac1de42d8bbbd29e55e33f8bd0c315a22dc4d38d093b3c2bc964fa55c6c4ddddbd78837f9fe3d2032b4c1baa0e78eada5c4867efdd1eec9fdf69107b0", 0xd7}, {&(0x7f0000000580)="f1cef0bbd686f904bdb68fb11ca68eaf95386f6711e5343fcee1669504f969501d8eac040aec3c11c7feefc168164e3776282cd8f43430860a1e01ff86fee1a2e870f80597d0dc0c2b570778a150548d4cd2cbff1f909bfd374159f0f7cd236ab2ead9b8e9fe68e2db264dee911adfd01ccda6", 0x73}, {&(0x7f0000000600)="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", 0x1000}, {&(0x7f0000001600)="92dbd7780f8fe37bc74494d5005c36f73025db66365b96bdc36b98fdbf638e47524ca55d9f72d6676de202ba9613b93195a744148bcabfddd99a981f6034559f474626d89b295977931683e27390d4e3cd6bff52e6c8e05f70245b09231c71987dbb5b1fbb966e2bae49ebfd565e16a92a236c1295f043db2dbf012676b079c86cc9a14ebc59044208ea97eb28a043fb873ea0ed90c1661da45a53fee6f9880de68e7fa832e092313598c7cde7bb3b09f7cdfa434de26beaece8a13780c6d06c8707734d83601b34d87e71", 0xcb}, {&(0x7f0000000200)="6af5a16f04342479e26f534e6e783bf3d27a29d6cecd7cd3c958b4920fb9d068033856b4da398a5e1986", 0x2a}], 0x9, &(0x7f0000000040)}}, {{&(0x7f0000000240)=@un=@abs, 0x80, &(0x7f0000000440)=[{&(0x7f0000000100)="64f5c033c076e1c839a9c6b4c13e21e067ebae1f4fefbc1dbd1572803de59d92fed835760502566b6f0ad4f3a1c388", 0x2f}, {&(0x7f00000004c0)="f3317240077ff25290eab9f14c26e9e45a3f8daf51b3f54cb15e9afc240b0807fd926cbdaaa4edaa91eb10b86b426caa1bd4475083135d09194012425c6cbb3016925279a7e59a1b0f303ea2c70eb74e30c7a24ffb934ac86604511855e0fea41c26674f00be619b3fe22a122511c37dcaeac4dff89f5fba7d627f9e3b8371b6f99a1d51b7f85c39efa0c7ac5f1e61bbefa30c9071ab60e21d03cb600b", 0x9d}, {&(0x7f0000000400)="7ce11fcc0fa2cc8f4bee9baf03778c5cec4cfb3f7c0e684737120e1fda5c2bf0bd1689cd35546d429a", 0x29}], 0x3, &(0x7f0000000080)=[{0x28, 0x1, 0xaf20, "5cffff48f96927211ed258bbdae8d3bfd5016382"}], 0x28}}], 0x2, 0x0)

2018/04/11 00:13:28 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1}, 0x0)

2018/04/11 00:13:28 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c746572000000000000000200", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:28 executing program 2 (fault-call:26 fault-nth:55):
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/pfkey\x00', 0x1, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_GET_MSR_INDEX_LIST(r1, 0xc004ae02, &(0x7f0000000440)=ANY=[@ANYBLOB="010000e8a806846728a902d7836e000000000090c8bb2c64ee855b03d6b79f01fd689aefd896253378642249ab91395ab66a034c399ce7623518b671b773347d0fd26ec81ac69a995c8ce192812ee8050c3814b9781ac68ebaded833a2c6c838d8647586e9c6e9a5856a915e647163631e9ebb8c6af6c63986f87e1cb1e65dda52219878b2bf0aa3c41d7257b9b338d3de7e2930af343b00807a9f0f1508f564e7be9484af85b8deea898a0e15d4e59917a706dff1d6eb4d00000000000000000000"])
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
pipe2(&(0x7f0000000700)={<r3=>0x0, <r4=>0x0}, 0x0)
ioctl$KVM_SET_XSAVE(r2, 0x5000aea5, &(0x7f0000000740)={"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"})
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
shmget(0x0, 0x3000, 0x1, &(0x7f000075a000/0x3000)=nil)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000600)={<r6=>0x0, @in={{0x2, 0x4e23, @multicast2=0xe0000002}}, 0x5, 0x6, 0x1, 0xfff, 0x8}, &(0x7f0000000080)=0x98)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000b40)={r6, @in={{0x2, 0x4e24, @rand_addr=0x10000}}, 0x5, 0x101, 0x6, 0xea, 0x72}, &(0x7f00000002c0)=0x98)
r7 = dup3(r5, r4, 0x0)
munlockall()
r8 = shmget$private(0x0, 0x3000, 0x10, &(0x7f0000760000/0x3000)=nil)
shmctl$IPC_RMID(r8, 0x0)
clock_gettime(0x7, &(0x7f0000000000))
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f0000460fe4)={0x0, 0x7, 0x2, 0x0, 0x4, 0x8, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x805})
ioctl$SNDRV_TIMER_IOCTL_GINFO(r4, 0xc0f85403, &(0x7f0000000c00)={{0xffffffffffffffff, 0x0, 0x3, 0x3, 0x2}, 0x81, 0x3, 'id0\x00', 'timer0\x00', 0x0, 0x6, 0x1, 0x6, 0x3})
ioctl$sock_inet6_tcp_SIOCINQ(r3, 0x541b, &(0x7f0000000040))
socket(0xf, 0x6, 0x5)
ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000280)={0x81, 0x1})
ioctl$EVIOCSABS2F(r7, 0x401845ef, &(0x7f0000000240)={0x9, 0x0, 0xfffffffffffffffd, 0x1ff, 0x4, 0x7f})
getsockopt$ax25_buf(r4, 0x101, 0x19, &(0x7f0000000140)=""/53, &(0x7f0000000180)=0x35)
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/enforce\x00', 0x10000, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000753000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, &(0x7f00000000c0)="0fc7280f080f20030f01727166ba4200b834000000ef66bad10466edb81da1fb500f23d00f21f835300000050f23f8c4c3194bfc360f20030fc76d08", 0x3c}], 0x1, 0x7, &(0x7f0000000380), 0x10000181)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r2, 0x8008ae9d, &(0x7f0000000340)=""/250)

2018/04/11 00:13:28 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'hmac(rmd320-generic)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000100)="000000000000000000200017d4edb818d1326c3b457d1ce89bd368aa68e80db8ed46c3e0104cab924318c1c340f91508830f3396d8036461083a1a90931be8f96d", 0x41)
r1 = syz_open_dev$dspn(&(0x7f00000002c0)='/dev/dsp#\x00', 0x6, 0x8040)
setsockopt$IP_VS_SO_SET_TIMEOUT(r1, 0x0, 0x48a, &(0x7f0000000300)={0x5, 0x18a, 0x7ff}, 0xc)
close(r0)
r2 = syz_open_dev$dmmidi(&(0x7f0000000000)='/dev/dmmidi#\x00', 0x3800, 0x4000)
ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000180))

2018/04/11 00:13:28 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1}, 0x0)

[  452.754983] FAULT_INJECTION: forcing a failure.
[  452.754983] name failslab, interval 1, probability 0, space 0, times 0
[  452.766516] CPU: 0 PID: 30107 Comm: syz-executor2 Not tainted 4.16.0+ #18
[  452.773445] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  452.782799] Call Trace:
[  452.785398]  dump_stack+0x1b9/0x294
[  452.789040]  ? dump_stack_print_info.cold.2+0x52/0x52
[  452.794260]  ? __save_stack_trace+0x7e/0xd0
[  452.798633]  should_fail.cold.4+0xa/0x1a
[  452.802823]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  452.807944]  ? kasan_kmalloc+0xc4/0xe0
[  452.811849]  ? kasan_slab_alloc+0x12/0x20
[  452.816012]  ? kmem_cache_alloc+0x12e/0x760
[  452.820350]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  452.825382]  ? kvm_mmu_load+0x21/0x10e0
[  452.829383]  ? vcpu_enter_guest+0x3aa1/0x6070
[  452.833891]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  452.838924]  ? graph_lock+0x170/0x170
[  452.842745]  ? do_syscall_64+0x29e/0x9d0
[  452.846823]  ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  452.852204]  ? find_held_lock+0x36/0x1c0
[  452.856389]  ? __lock_is_held+0xb5/0x140
[  452.860470]  ? check_same_owner+0x320/0x320
[  452.864799]  ? rcu_note_context_switch+0x710/0x710
[  452.869745]  __should_failslab+0x124/0x180
[  452.873986]  should_failslab+0x9/0x14
[  452.877795]  kmem_cache_alloc+0x2af/0x760
[  452.881960]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  452.886902]  mmu_topup_memory_caches+0x2fa/0x3a0
[  452.891672]  kvm_mmu_load+0x21/0x10e0
[  452.895477]  ? __might_sleep+0x95/0x190
[  452.899461]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  452.905008]  vcpu_enter_guest+0x3aa1/0x6070
[  452.909343]  ? kvm_vcpu_ioctl+0x1e2/0x12e0
[  452.913590]  ? print_usage_bug+0xc0/0xc0
[  452.917665]  ? kvm_set_msr_common+0x2660/0x2660
[  452.922343]  ? vmx_vcpu_load+0xaed/0xff0
[  452.926414]  ? __lock_acquire+0x7f5/0x5130
[  452.930658]  ? vmx_vcpu_reset+0x1030/0x1030
[  452.935002]  ? graph_lock+0x170/0x170
[  452.938808]  ? __lock_acquire+0x7f5/0x5130
[  452.943051]  ? debug_check_no_locks_freed+0x310/0x310
[  452.948248]  ? print_usage_bug+0xc0/0xc0
[  452.952317]  ? __lock_is_held+0xb5/0x140
[  452.956371]  ? lock_acquire+0x1dc/0x520
[  452.960334]  ? kvm_arch_vcpu_ioctl_run+0x234/0x1690
[  452.965343]  ? lock_release+0xa10/0xa10
[  452.969307]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  452.974571]  ? kvm_arch_dev_ioctl+0x5f0/0x5f0
[  452.979050]  ? preempt_notifier_dec+0x20/0x20
[  452.983540]  kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  452.988370]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  452.993381]  kvm_vcpu_ioctl+0x79d/0x12e0
[  452.997434]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  453.003135]  ? graph_lock+0x170/0x170
[  453.006932]  ? find_held_lock+0x36/0x1c0
[  453.010989]  ? lock_downgrade+0x8e0/0x8e0
[  453.015137]  ? kasan_check_read+0x11/0x20
[  453.019270]  ? rcu_is_watching+0x85/0x140
[  453.023407]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  453.028593]  ? __fget+0x40c/0x650
[  453.032041]  ? match_held_lock+0x881/0x8b0
[  453.036264]  ? expand_files.part.8+0x9a0/0x9a0
[  453.040831]  ? kasan_check_write+0x14/0x20
[  453.045052]  ? __mutex_unlock_slowpath+0x180/0x8a0
[  453.049976]  ? wait_for_completion+0x870/0x870
[  453.054546]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  453.059731]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  453.065431]  do_vfs_ioctl+0x1cf/0x1650
[  453.069314]  ? ioctl_preallocate+0x2e0/0x2e0
[  453.073717]  ? fget_raw+0x20/0x20
[  453.077161]  ? __sb_end_write+0xac/0xe0
[  453.081126]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  453.086759]  ? fput+0x130/0x1a0
[  453.090034]  ? ksys_write+0x1a6/0x250
[  453.093840]  ? security_file_ioctl+0x94/0xc0
[  453.098237]  ksys_ioctl+0xa9/0xd0
[  453.101680]  SyS_ioctl+0x24/0x30
[  453.105034]  ? ksys_ioctl+0xd0/0xd0
[  453.108652]  do_syscall_64+0x29e/0x9d0
[  453.112528]  ? vmalloc_sync_all+0x30/0x30
[  453.116670]  ? _raw_spin_unlock_irq+0x27/0x70
[  453.121154]  ? finish_task_switch+0x1ca/0x820
[  453.125640]  ? syscall_return_slowpath+0x5c0/0x5c0
[  453.130557]  ? syscall_return_slowpath+0x30f/0x5c0
[  453.135477]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  453.140830]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  453.145675]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  453.150850] RIP: 0033:0x455259
2018/04/11 00:13:28 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptmx\x00', 0x4100bd, 0x0)
ioctl$int_in(r0, 0x80000080045439, &(0x7f0000000000))

2018/04/11 00:13:28 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f0000000000000000f0", 0x24}], 0x1}, 0x0)

2018/04/11 00:13:28 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f0000000000000000f0", 0x24}], 0x1}, 0x0)

2018/04/11 00:13:28 executing program 0:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000013000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
getsockopt$IP_VS_SO_GET_DAEMON(r0, 0x0, 0x487, &(0x7f0000000040), &(0x7f0000000080)=0x30)
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$lock(r0, 0x6, &(0x7f0000062000))
fcntl$lock(r0, 0x5, &(0x7f0000000000))

2018/04/11 00:13:29 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c74657200000000000300", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:29 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f0000000000000000a9", 0x24}], 0x1}, 0x0)

[  453.154026] RSP: 002b:00007f45bbc7bc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  453.161740] RAX: ffffffffffffffda RBX: 00007f45bbc7c6d4 RCX: 0000000000455259
[  453.168994] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000017
[  453.176255] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  453.183512] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000019
[  453.191724] R13: 0000000000000251 R14: 00000000006f6838 R15: 0000000000000037
2018/04/11 00:13:29 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socket$alg(0x26, 0x5, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
r3 = dup3(r2, r1, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f0000000100)="0f35260f01c80fa0b8bf008ed864643e260fc76f000f01d1f3e1490fc75f1c66b9800000c00f326635010000000f30670f2389", 0x33}], 0x1, 0x0, &(0x7f00000000c0)=[@vmwrite={0x8, 0x0, 0x7, 0x0, 0x1, 0x0, 0x9, 0x0, 0xffff}], 0x1)

2018/04/11 00:13:29 executing program 4:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0x80045300, &(0x7f00000000c0)={0x0, 0x0, 0x0, "717565756530000000000000000000000000000000fdfdffff00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))

2018/04/11 00:13:29 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'hmac(poly1305-simd)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00005c2000)="0a0775b0d5e383e5b3b60ced5c54dbb729", 0x11)
socketpair(0x10, 0x807, 0x40, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000100)='IPVS\x00')
sendmsg$IPVS_CMD_DEL_SERVICE(r1, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000040}, 0xc, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[@ANYBLOB="b5f482ecf8155ff9117f1154573fd0310000", @ANYRES16=r2, @ANYBLOB="100027bd7000fcdbdf2503000000080004000500000064000300080003000200000008000400010000001400060000000000000000000000ffffac1414bb08000800010000000800010000000000080007004e210000080003000300000008000500ffffffff1400020069705f7674693000000000000000000024000300080004000000000008000500ffffffff080007004e2400000800010002000000080004002e00000008000400ff0f000008000400090000000800060080000000"], 0xc4}, 0x1, 0x0, 0x0, 0x20040010}, 0x10)

2018/04/11 00:13:29 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={'filter\x00\x00\x00\x00\a\x00', 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:29 executing program 2 (fault-call:26 fault-nth:56):
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/pfkey\x00', 0x1, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_GET_MSR_INDEX_LIST(r1, 0xc004ae02, &(0x7f0000000440)=ANY=[@ANYBLOB="010000e8a806846728a902d7836e000000000090c8bb2c64ee855b03d6b79f01fd689aefd896253378642249ab91395ab66a034c399ce7623518b671b773347d0fd26ec81ac69a995c8ce192812ee8050c3814b9781ac68ebaded833a2c6c838d8647586e9c6e9a5856a915e647163631e9ebb8c6af6c63986f87e1cb1e65dda52219878b2bf0aa3c41d7257b9b338d3de7e2930af343b00807a9f0f1508f564e7be9484af85b8deea898a0e15d4e59917a706dff1d6eb4d00000000000000000000"])
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
pipe2(&(0x7f0000000700)={<r3=>0x0, <r4=>0x0}, 0x0)
ioctl$KVM_SET_XSAVE(r2, 0x5000aea5, &(0x7f0000000740)={"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"})
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
shmget(0x0, 0x3000, 0x1, &(0x7f000075a000/0x3000)=nil)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000600)={<r6=>0x0, @in={{0x2, 0x4e23, @multicast2=0xe0000002}}, 0x5, 0x6, 0x1, 0xfff, 0x8}, &(0x7f0000000080)=0x98)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000b40)={r6, @in={{0x2, 0x4e24, @rand_addr=0x10000}}, 0x5, 0x101, 0x6, 0xea, 0x72}, &(0x7f00000002c0)=0x98)
r7 = dup3(r5, r4, 0x0)
munlockall()
r8 = shmget$private(0x0, 0x3000, 0x10, &(0x7f0000760000/0x3000)=nil)
shmctl$IPC_RMID(r8, 0x0)
clock_gettime(0x7, &(0x7f0000000000))
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f0000460fe4)={0x0, 0x7, 0x2, 0x0, 0x4, 0x8, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x805})
ioctl$SNDRV_TIMER_IOCTL_GINFO(r4, 0xc0f85403, &(0x7f0000000c00)={{0xffffffffffffffff, 0x0, 0x3, 0x3, 0x2}, 0x81, 0x3, 'id0\x00', 'timer0\x00', 0x0, 0x6, 0x1, 0x6, 0x3})
ioctl$sock_inet6_tcp_SIOCINQ(r3, 0x541b, &(0x7f0000000040))
socket(0xf, 0x6, 0x5)
ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000280)={0x81, 0x1})
ioctl$EVIOCSABS2F(r7, 0x401845ef, &(0x7f0000000240)={0x9, 0x0, 0xfffffffffffffffd, 0x1ff, 0x4, 0x7f})
getsockopt$ax25_buf(r4, 0x101, 0x19, &(0x7f0000000140)=""/53, &(0x7f0000000180)=0x35)
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/enforce\x00', 0x10000, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000753000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, &(0x7f00000000c0)="0fc7280f080f20030f01727166ba4200b834000000ef66bad10466edb81da1fb500f23d00f21f835300000050f23f8c4c3194bfc360f20030fc76d08", 0x3c}], 0x1, 0x7, &(0x7f0000000380), 0x10000181)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r2, 0x8008ae9d, &(0x7f0000000340)=""/250)

2018/04/11 00:13:29 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1}, 0x0)

2018/04/11 00:13:29 executing program 1:
mmap(&(0x7f000053b000/0x2000)=nil, 0x2000, 0x0, 0x84132, 0xffffffffffffffff, 0x0)
munmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000)
mlock(&(0x7f000053a000/0x3000)=nil, 0x3000)
mremap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000, 0x3, &(0x7f0000ffe000/0x2000)=nil)
r0 = open(&(0x7f0000000040)='./file0\x00', 0x101000, 0x108)
ioctl$EVIOCSMASK(r0, 0x40104593, &(0x7f0000001080)={0x11, 0x1000, &(0x7f0000000080)="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"})
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/sloppy_tcp\x00', 0x2, 0x0)

2018/04/11 00:13:29 executing program 0:
perf_event_open(&(0x7f0000220000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f00006e7ff5)='net/packet\x00')
preadv(r0, &(0x7f0000000300)=[{&(0x7f0000000000)=""/211, 0xd3}], 0x1, 0x0)
r1 = syz_open_dev$audion(&(0x7f0000000100)='/dev/audio#\x00', 0x3e31, 0x80)
getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000140)={<r2=>0x0}, &(0x7f0000000180)=0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f00000001c0)={r2, 0x5}, 0x8)

2018/04/11 00:13:29 executing program 5:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0xc08c5336, &(0x7f00000000c0)={0x0, 0x0, 0x0, "7175657565300000000000000000000000000000000000000000000000000000000000000000001f00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer2\x00', 0x0, 0x0)

2018/04/11 00:13:29 executing program 7:
perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$vcsn(&(0x7f00000000c0)='/dev/vcs#\x00', 0x400, 0x111800)
ioctl$TCGETS(r0, 0x5401, &(0x7f0000000180))
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$nl_netfilter(r0, &(0x7f00000002c0)={&(0x7f0000000040)={0x10}, 0xc, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[@ANYBLOB="1d000000100000000000000000000000000000ef0700babf8998c9beafd701000400000027b05d8e0939511b690c7a8eccbaa12b7bb8d23875638d6651ad583d31a1bed94a80d88b5330564405059c5d29053aa6fdb341599b726a89212b28a9bc34f52bc23e0070c649d535e5a9343177aba16db9517d22197b0809da05000000000000008a6ae5ac20cb6aaab69e6564cb507dbb722160a6839f4635"], 0xfffffffffffffdec}, 0x1}, 0x1)

[  453.895083] FAULT_INJECTION: forcing a failure.
[  453.895083] name failslab, interval 1, probability 0, space 0, times 0
[  453.906428] CPU: 1 PID: 30174 Comm: syz-executor2 Not tainted 4.16.0+ #18
[  453.913365] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  453.922724] Call Trace:
[  453.925326]  dump_stack+0x1b9/0x294
[  453.928973]  ? dump_stack_print_info.cold.2+0x52/0x52
[  453.934176]  ? __save_stack_trace+0x7e/0xd0
[  453.938520]  should_fail.cold.4+0xa/0x1a
[  453.942597]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  453.947839]  ? kasan_kmalloc+0xc4/0xe0
[  453.951737]  ? kasan_slab_alloc+0x12/0x20
[  453.956004]  ? kmem_cache_alloc+0x12e/0x760
[  453.960333]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  453.965266]  ? kvm_mmu_load+0x21/0x10e0
[  453.969350]  ? vcpu_enter_guest+0x3aa1/0x6070
[  453.973844]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  453.978864]  ? graph_lock+0x170/0x170
[  453.982657]  ? do_syscall_64+0x29e/0x9d0
[  453.986714]  ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  453.992071]  ? find_held_lock+0x36/0x1c0
[  453.996127]  ? __lock_is_held+0xb5/0x140
[  454.000192]  ? check_same_owner+0x320/0x320
[  454.004502]  ? rcu_note_context_switch+0x710/0x710
[  454.009428]  __should_failslab+0x124/0x180
[  454.013656]  should_failslab+0x9/0x14
[  454.017446]  kmem_cache_alloc+0x2af/0x760
[  454.021584]  ? alloc_pages_current+0x114/0x210
[  454.026158]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  454.031077]  mmu_topup_memory_caches+0x2fa/0x3a0
[  454.035827]  kvm_mmu_load+0x21/0x10e0
[  454.039613]  ? __might_sleep+0x95/0x190
[  454.043582]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  454.049113]  vcpu_enter_guest+0x3aa1/0x6070
[  454.053432]  ? kvm_vcpu_ioctl+0x1e2/0x12e0
[  454.057661]  ? graph_lock+0x170/0x170
[  454.061454]  ? print_usage_bug+0xc0/0xc0
[  454.065511]  ? kvm_set_msr_common+0x2660/0x2660
[  454.070174]  ? vmx_vcpu_load+0xaed/0xff0
[  454.074224]  ? __lock_acquire+0x7f5/0x5130
[  454.078453]  ? __lock_is_held+0xb5/0x140
[  454.082508]  ? vmx_vcpu_reset+0x1030/0x1030
[  454.086830]  ? graph_lock+0x170/0x170
[  454.090629]  ? __lock_acquire+0x7f5/0x5130
[  454.094857]  ? debug_check_no_locks_freed+0x310/0x310
[  454.100057]  ? __lock_is_held+0xb5/0x140
[  454.104128]  ? lock_acquire+0x1dc/0x520
[  454.108108]  ? kvm_arch_vcpu_ioctl_run+0x234/0x1690
[  454.113155]  ? lock_release+0xa10/0xa10
[  454.117135]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  454.122415]  ? kvm_arch_dev_ioctl+0x5f0/0x5f0
[  454.126908]  ? preempt_notifier_dec+0x20/0x20
[  454.131416]  kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  454.136260]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  454.141289]  kvm_vcpu_ioctl+0x79d/0x12e0
[  454.145358]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  454.151078]  ? graph_lock+0x170/0x170
[  454.154880]  ? find_held_lock+0x36/0x1c0
[  454.158954]  ? lock_downgrade+0x8e0/0x8e0
[  454.163193]  ? kasan_check_read+0x11/0x20
[  454.167341]  ? rcu_is_watching+0x85/0x140
[  454.171489]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  454.176689]  ? __fget+0x40c/0x650
[  454.180144]  ? match_held_lock+0x881/0x8b0
[  454.184467]  ? expand_files.part.8+0x9a0/0x9a0
[  454.189044]  ? kasan_check_write+0x14/0x20
[  454.193269]  ? __mutex_unlock_slowpath+0x180/0x8a0
[  454.198188]  ? wait_for_completion+0x870/0x870
[  454.202762]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  454.207941]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  454.213643]  do_vfs_ioctl+0x1cf/0x1650
[  454.217523]  ? ioctl_preallocate+0x2e0/0x2e0
[  454.221921]  ? fget_raw+0x20/0x20
[  454.225363]  ? __sb_end_write+0xac/0xe0
[  454.229331]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  454.234872]  ? fput+0x130/0x1a0
[  454.238147]  ? ksys_write+0x1a6/0x250
[  454.241940]  ? security_file_ioctl+0x94/0xc0
[  454.246343]  ksys_ioctl+0xa9/0xd0
[  454.249789]  SyS_ioctl+0x24/0x30
[  454.253141]  ? ksys_ioctl+0xd0/0xd0
[  454.256757]  do_syscall_64+0x29e/0x9d0
[  454.260632]  ? vmalloc_sync_all+0x30/0x30
[  454.264768]  ? _raw_spin_unlock_irq+0x27/0x70
[  454.269251]  ? finish_task_switch+0x1ca/0x820
[  454.273735]  ? syscall_return_slowpath+0x5c0/0x5c0
[  454.278656]  ? syscall_return_slowpath+0x30f/0x5c0
[  454.283576]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  454.288936]  ? trace_hardirqs_off_thunk+0x1a/0x1c
2018/04/11 00:13:30 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1}, 0x0)

2018/04/11 00:13:30 executing program 1:
r0 = socket(0x15, 0x80005, 0x0)
r1 = creat(&(0x7f00000000c0)='./file0\x00', 0x6)
mremap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x3000, 0x3, &(0x7f000000b000/0x3000)=nil)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))
r2 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x2)
ioctl(r2, 0x2283, &(0x7f0000979fff)="a6")
getpgid(0x0)
write$evdev(r2, &(0x7f0000001fdc)=[{}, {}], 0x30)
connect$rds(r0, &(0x7f0000000080)={0x2, 0x4e22, @multicast1=0xe0000001}, 0x10)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = syz_open_dev$sg(&(0x7f000028fff7)='/dev/sg#\x00', 0x0, 0x0)
ioctl(r3, 0x4000000000001276, &(0x7f0000000040))
msgget(0x2, 0x0)
getsockopt$nfc_llcp(r3, 0x118, 0x7, &(0x7f00000009c0)=""/223, 0xfffffffffffffec3)
setsockopt$inet_mreq(r3, 0x0, 0x23, &(0x7f00000002c0)={@empty, @remote={0xac, 0x14, 0x14, 0xbb}}, 0x8)
accept4$nfc_llcp(0xffffffffffffffff, &(0x7f0000000940), &(0x7f0000000080)=0x60, 0x800)
getsockopt$inet6_int(r1, 0x29, 0x4a, &(0x7f0000000240), &(0x7f0000000280)=0x4)
ioctl$SNDRV_CTL_IOCTL_ELEM_INFO(0xffffffffffffffff, 0xc1105511, &(0x7f0000000100)={{0x0, 0x0, 0x0, 0x0, "386aea20273dc03c3d18dd0dbd4a0ca15f9f580393cc4ec3b8ee256b9aa630224ba64c6ff43ee01d2996c914"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "eda422cd37591b3a5a7a683380f7e0b9e790c6b72cd0a4f3342f7431c1699a305ca3091bb2320e8df4e298a2cca26637866a68c1426ffbd8a6c7da1d8ea77d9d", &(0x7f00000000c0)='/dev/snd/controlC#\x00', 0x13})
r4 = openat$pfkey(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/self/net/pfkey\x00', 0x800, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
add_key$user(&(0x7f0000000480)='user\x00', &(0x7f00000004c0)={0x73, 0x79, 0x7a, 0x3}, &(0x7f0000000500)="d3238eea76b0470531092a0a77b0b49789a0fc97b8f8b9e23a2a5a5a0c169ed6e83480b4801dbf79db3527904ee3128c05ce2806e210237c36b88ceabe99d8784860e5d0e91fe33d38d0133e056cdd1e2910d57fc5eb1b23db3b60a7077ff33bb6c7445cd258ee25f9187269c22d1ed05acb2b9b599bd285b692257a631754ab9befebd3fdb3167361c24c5c5dcf90e476e052b9d22362c57878cb7205fe361346d6beb77b7844fe94", 0xa9, 0xfffffffffffffffe)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000300)={'gretap0\x00', {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x1a}}})
keyctl$instantiate_iov(0x14, 0x0, &(0x7f0000000780)=[{&(0x7f0000000840)="edb4a01f68d76905035a4ebdd427d31585a5a650581902b1c077f74ca8f1ce7d3e2f6e1c6760433af9664b3f3bebab3a1a1c4ef86f42c39b758accc1e7637bb18d28248dc7a1719b73388830b162613b17fd02220bd1fe2ad86adb96efcfc672d126ae58f745fba0e7534cdbae947449df767bd76a0c38b5752dcd13f7065edea86dc156c0708e76c2c99a94a95f1e93ff73cb3eb94e06d399cf48aaac7963d13e4b3a6b32bc2b19d5461545dcf3f71bb24442d286421f8d891d77a3c4c1c9435bbdf187682c22ded22b669b7790d05b4894166a2d5f33098cf908a23a2e0671d824e88942fbe0bd1416", 0xea}], 0x1, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r4, 0x4010ae68, &(0x7f0000000000)={0x0, 0x5000})
ioctl$KVM_CREATE_PIT2(r6, 0x4040ae77, &(0x7f0000000440)={0xfffffffffffffff7})
ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)

[  454.293774]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  454.298966] RIP: 0033:0x455259
[  454.302141] RSP: 002b:00007f45bbc7bc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  454.309838] RAX: ffffffffffffffda RBX: 00007f45bbc7c6d4 RCX: 0000000000455259
[  454.317096] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000017
[  454.324364] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  454.331628] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000019
[  454.338887] R13: 0000000000000251 R14: 00000000006f6838 R15: 0000000000000038
2018/04/11 00:13:30 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={'filter\x00\x00\x00\x00h\n\x00', 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:30 executing program 0:
r0 = syz_open_dev$usbmon(&(0x7f00000000c0)='/dev/usbmon#\x00', 0x1ff, 0x2)
getsockopt$IP_VS_SO_GET_INFO(r0, 0x0, 0x481, &(0x7f0000000100), &(0x7f0000000140)=0xc)
r1 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x5, 0x0)
accept$inet6(r1, &(0x7f0000000040)={0x0, 0x0, 0x0, @ipv4={[], [], @local}}, &(0x7f0000000080)=0x1c)

2018/04/11 00:13:30 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0xc0}], 0x1}, 0x0)

2018/04/11 00:13:30 executing program 0:
r0 = socket$inet(0xa, 0x2, 0x0)
perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0xe2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffeffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000380)=@broute={'broute\x00', 0x20, 0x1, 0x280, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000400], 0x2, &(0x7f0000001d80), &(0x7f0000000400)=ANY=[@ANYBLOB="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"]}, 0x2f8)

2018/04/11 00:13:30 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c746572000000000000000007fffffe00", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:30 executing program 4:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0x80045300, &(0x7f00000000c0)={0x0, 0x0, 0x0, "71756575653000000000000000000000000000000000000000fffffdfd00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))

2018/04/11 00:13:30 executing program 2 (fault-call:26 fault-nth:57):
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/pfkey\x00', 0x1, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_GET_MSR_INDEX_LIST(r1, 0xc004ae02, &(0x7f0000000440)=ANY=[@ANYBLOB="010000e8a806846728a902d7836e000000000090c8bb2c64ee855b03d6b79f01fd689aefd896253378642249ab91395ab66a034c399ce7623518b671b773347d0fd26ec81ac69a995c8ce192812ee8050c3814b9781ac68ebaded833a2c6c838d8647586e9c6e9a5856a915e647163631e9ebb8c6af6c63986f87e1cb1e65dda52219878b2bf0aa3c41d7257b9b338d3de7e2930af343b00807a9f0f1508f564e7be9484af85b8deea898a0e15d4e59917a706dff1d6eb4d00000000000000000000"])
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
pipe2(&(0x7f0000000700)={<r3=>0x0, <r4=>0x0}, 0x0)
ioctl$KVM_SET_XSAVE(r2, 0x5000aea5, &(0x7f0000000740)={"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"})
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
shmget(0x0, 0x3000, 0x1, &(0x7f000075a000/0x3000)=nil)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000600)={<r6=>0x0, @in={{0x2, 0x4e23, @multicast2=0xe0000002}}, 0x5, 0x6, 0x1, 0xfff, 0x8}, &(0x7f0000000080)=0x98)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000b40)={r6, @in={{0x2, 0x4e24, @rand_addr=0x10000}}, 0x5, 0x101, 0x6, 0xea, 0x72}, &(0x7f00000002c0)=0x98)
r7 = dup3(r5, r4, 0x0)
munlockall()
r8 = shmget$private(0x0, 0x3000, 0x10, &(0x7f0000760000/0x3000)=nil)
shmctl$IPC_RMID(r8, 0x0)
clock_gettime(0x7, &(0x7f0000000000))
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f0000460fe4)={0x0, 0x7, 0x2, 0x0, 0x4, 0x8, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x805})
ioctl$SNDRV_TIMER_IOCTL_GINFO(r4, 0xc0f85403, &(0x7f0000000c00)={{0xffffffffffffffff, 0x0, 0x3, 0x3, 0x2}, 0x81, 0x3, 'id0\x00', 'timer0\x00', 0x0, 0x6, 0x1, 0x6, 0x3})
ioctl$sock_inet6_tcp_SIOCINQ(r3, 0x541b, &(0x7f0000000040))
socket(0xf, 0x6, 0x5)
ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000280)={0x81, 0x1})
ioctl$EVIOCSABS2F(r7, 0x401845ef, &(0x7f0000000240)={0x9, 0x0, 0xfffffffffffffffd, 0x1ff, 0x4, 0x7f})
getsockopt$ax25_buf(r4, 0x101, 0x19, &(0x7f0000000140)=""/53, &(0x7f0000000180)=0x35)
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/enforce\x00', 0x10000, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000753000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, &(0x7f00000000c0)="0fc7280f080f20030f01727166ba4200b834000000ef66bad10466edb81da1fb500f23d00f21f835300000050f23f8c4c3194bfc360f20030fc76d08", 0x3c}], 0x1, 0x7, &(0x7f0000000380), 0x10000181)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r2, 0x8008ae9d, &(0x7f0000000340)=""/250)

2018/04/11 00:13:30 executing program 7:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = syz_open_dev$vcsa(&(0x7f00000001c0)='/dev/vcsa#\x00', 0xfffffffffffffffd, 0x100)
ioctl$DRM_IOCTL_SET_UNIQUE(r1, 0x40106410, &(0x7f0000000780)={0xfffffffffffffcfa, &(0x7f00000007c0)="0fcbf25d9d1d4d4c9bafc1cfc6762eefd6539f2f973c820541bacc081b522927c80bc88caa6443ac8360b3395b77808f32131cb1046b2208f536eca89c646038e6767cf389d14b232881d44d33eede5e71886f36abb5c7db1d53d524c3cd6c30fc0c36de97d672a1f3fff8c4f342f116e1db51e30932dcbe6bba0ea30cf0d8f0bd107cea37351232f18d5adbd751a59b84c027c57ca1b9e60f76f1e837d198c5a250557eaa3e196cef17208b33e6abb0d402cddfd57df6146861602732ffce11ee5d12f2764bd13d08d8e86443b07fa67ebda14ce1b09a9a710f4fca81c53087a0ae1f25b1e7a0b1708181ba1ef7c9547c80c7"})
r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x200000, 0x0)
r3 = openat(r2, &(0x7f0000000180)='./file0\x00', 0x20000, 0x10)
ioctl$KVM_GET_SREGS(r3, 0x8138ae83, &(0x7f00000004c0))
ioctl$sock_bt_hidp_HIDPCONNDEL(r2, 0x400448c9, &(0x7f0000000040)={{0x401, 0x7, 0x400, 0x2, 0x8, 0x4}, 0xfffffffffffffc00})
connect$inet6(r0, &(0x7f00008c0000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}}, 0x2)
setsockopt$netlink_NETLINK_TX_RING(r2, 0x10e, 0x7, &(0x7f0000000200)={0x1000000000000007, 0x80000001, 0x61f55bd6, 0xce9}, 0x10)

2018/04/11 00:13:30 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0xf}], 0x1}, 0x0)

2018/04/11 00:13:30 executing program 1:
r0 = socket(0x2, 0x3, 0x3)
getsockopt(r0, 0xff, 0x1, &(0x7f0000000000), &(0x7f0000000080))

2018/04/11 00:13:30 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={'filter\x00\x00\x00\x00\nh\x00', 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:30 executing program 0:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet_sctp6_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f00000001c0)=0x3f, 0x4)
connect$inet6(r0, &(0x7f000000cfe4)={0xa}, 0x1c)
sendmmsg(r0, &(0x7f0000007e00)=[{{0x0, 0x0, &(0x7f0000000380), 0x0, &(0x7f00000003c0)}}, {{&(0x7f00000004c0)=@in6={0xa, 0x4e22, 0x0, @mcast2={0xff, 0x2, [], 0x1}}, 0x1c, &(0x7f0000000040)=[{&(0x7f0000000500)}], 0x1, &(0x7f0000000000), 0x2d3}}], 0x2, 0x0)
getsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f0000000080)={<r1=>0x0, 0x7}, &(0x7f00000000c0)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f0000000100)=@assoc_value={r1, 0x80}, &(0x7f0000000140)=0x8)

2018/04/11 00:13:30 executing program 5:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0xc08c5336, &(0x7f00000000c0)={0x0, 0x0, 0x0, "71756575653000000000000000000000000000000000000000000000000000000000001f00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer2\x00', 0x0, 0x0)

2018/04/11 00:13:30 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x10}], 0x1}, 0x0)

2018/04/11 00:13:30 executing program 1:
mmap(&(0x7f000090c000/0x4000)=nil, 0x4000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc\x00', 0x2a2000, 0x0)
readlinkat(r0, &(0x7f000090fff8)='./file0\x00', &(0x7f0000728000)=""/145, 0x91)

2018/04/11 00:13:30 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$nl_netfilter(r0, &(0x7f0000d7a000)={&(0x7f0000aeaff4)={0x10}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x4, 0x6, 0x40001}, 0x14}, 0x1}, 0x0)

2018/04/11 00:13:30 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c746572000000000200", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:30 executing program 0:
r0 = msgget$private(0x0, 0x40)
msgctl$IPC_RMID(r0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000080)="6664001a000000")
fchdir(r1)
ioctl$sock_bt_cmtp_CMTPGETCONNINFO(r1, 0x800443d3, &(0x7f00000000c0)={{0x100000001, 0x1000, 0x6, 0x7, 0xfffffffffffffff8, 0x3}, 0x14eb, 0x7c8b89c8, 0x8f2})
stat(&(0x7f0000000140)='8/file0\x00', &(0x7f0000000180))
syz_fuseblk_mount(&(0x7f0000976000)='./file0\x00', &(0x7f0000dd3ff8)='8/file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_NODELAY(r1, 0x84, 0x3, &(0x7f0000000000), &(0x7f0000000040)=0x4)

2018/04/11 00:13:31 executing program 1:
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
chroot(&(0x7f0000000140)='./file0\x00')
chdir(&(0x7f00000000c0)='..')
r0 = semget(0x0, 0x3, 0x100)
semctl$SETVAL(r0, 0x0, 0x10, &(0x7f0000000000)=0x5)
mount(&(0x7f0000153000)='./file0\x00', &(0x7f0000317ffe)='..', &(0x7f0000646ffa)='ocfs2\x00', 0x84000, &(0x7f00000e3fff))

2018/04/11 00:13:31 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0xec0}], 0x1}, 0x0)

2018/04/11 00:13:31 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c74657200000000000000000000000500", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

[  455.334134] FAULT_INJECTION: forcing a failure.
[  455.334134] name failslab, interval 1, probability 0, space 0, times 0
[  455.345439] CPU: 1 PID: 30270 Comm: syz-executor2 Not tainted 4.16.0+ #18
[  455.352542] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  455.361901] Call Trace:
[  455.364505]  dump_stack+0x1b9/0x294
[  455.368149]  ? dump_stack_print_info.cold.2+0x52/0x52
[  455.373349]  ? __save_stack_trace+0x7e/0xd0
[  455.377699]  should_fail.cold.4+0xa/0x1a
[  455.381774]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  455.386891]  ? kasan_kmalloc+0xc4/0xe0
[  455.390788]  ? kasan_slab_alloc+0x12/0x20
[  455.394940]  ? kmem_cache_alloc+0x12e/0x760
[  455.399272]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  455.404203]  ? kvm_mmu_load+0x21/0x10e0
[  455.408162]  ? vcpu_enter_guest+0x3aa1/0x6070
[  455.412638]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  455.417642]  ? graph_lock+0x170/0x170
[  455.421427]  ? do_syscall_64+0x29e/0x9d0
[  455.425571]  ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  455.430931]  ? find_held_lock+0x36/0x1c0
[  455.434978]  ? __lock_is_held+0xb5/0x140
[  455.439051]  ? check_same_owner+0x320/0x320
[  455.443370]  ? rcu_note_context_switch+0x710/0x710
[  455.448295]  __should_failslab+0x124/0x180
[  455.452514]  should_failslab+0x9/0x14
[  455.456297]  kmem_cache_alloc+0x2af/0x760
[  455.460431]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  455.465342]  mmu_topup_memory_caches+0x2fa/0x3a0
[  455.470100]  kvm_mmu_load+0x21/0x10e0
[  455.473915]  ? __might_sleep+0x95/0x190
[  455.477878]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  455.483405]  vcpu_enter_guest+0x3aa1/0x6070
[  455.487713]  ? kvm_vcpu_ioctl+0x1e2/0x12e0
[  455.491948]  ? print_usage_bug+0xc0/0xc0
[  455.496011]  ? kvm_set_msr_common+0x2660/0x2660
[  455.500675]  ? vmx_vcpu_load+0xaed/0xff0
[  455.504720]  ? __lock_acquire+0x7f5/0x5130
[  455.508942]  ? vmx_vcpu_reset+0x1030/0x1030
[  455.513251]  ? graph_lock+0x170/0x170
[  455.517040]  ? __lock_acquire+0x7f5/0x5130
[  455.521268]  ? debug_check_no_locks_freed+0x310/0x310
[  455.526446]  ? print_usage_bug+0xc0/0xc0
[  455.530494]  ? __lock_is_held+0xb5/0x140
[  455.534548]  ? lock_acquire+0x1dc/0x520
[  455.538505]  ? kvm_arch_vcpu_ioctl_run+0x234/0x1690
[  455.543501]  ? lock_release+0xa10/0xa10
[  455.547462]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  455.552735]  ? kvm_arch_dev_ioctl+0x5f0/0x5f0
[  455.557211]  ? preempt_notifier_dec+0x20/0x20
[  455.561691]  kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  455.566521]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  455.571523]  kvm_vcpu_ioctl+0x79d/0x12e0
[  455.575576]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  455.581279]  ? graph_lock+0x170/0x170
[  455.585077]  ? find_held_lock+0x36/0x1c0
[  455.589131]  ? lock_downgrade+0x8e0/0x8e0
[  455.593453]  ? kasan_check_read+0x11/0x20
[  455.597592]  ? rcu_is_watching+0x85/0x140
[  455.601732]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  455.606911]  ? __fget+0x40c/0x650
[  455.610351]  ? match_held_lock+0x881/0x8b0
[  455.614571]  ? expand_files.part.8+0x9a0/0x9a0
[  455.619148]  ? kasan_check_write+0x14/0x20
[  455.623379]  ? __mutex_unlock_slowpath+0x180/0x8a0
[  455.628309]  ? wait_for_completion+0x870/0x870
[  455.632885]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  455.638072]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  455.643776]  do_vfs_ioctl+0x1cf/0x1650
[  455.647653]  ? ioctl_preallocate+0x2e0/0x2e0
[  455.652054]  ? fget_raw+0x20/0x20
[  455.655491]  ? __sb_end_write+0xac/0xe0
[  455.659463]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  455.664994]  ? fput+0x130/0x1a0
[  455.668263]  ? ksys_write+0x1a6/0x250
[  455.672063]  ? security_file_ioctl+0x94/0xc0
[  455.676460]  ksys_ioctl+0xa9/0xd0
[  455.679897]  SyS_ioctl+0x24/0x30
[  455.683258]  ? ksys_ioctl+0xd0/0xd0
[  455.687454]  do_syscall_64+0x29e/0x9d0
[  455.691331]  ? vmalloc_sync_all+0x30/0x30
[  455.695480]  ? kasan_check_write+0x14/0x20
[  455.699699]  ? syscall_return_slowpath+0x5c0/0x5c0
[  455.704610]  ? syscall_return_slowpath+0x30f/0x5c0
[  455.709529]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  455.714985]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  455.719827]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  455.725006] RIP: 0033:0x455259
[  455.728183] RSP: 002b:00007f45bbc7bc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  455.735873] RAX: ffffffffffffffda RBX: 00007f45bbc7c6d4 RCX: 0000000000455259
[  455.743139] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000017
[  455.750407] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  455.757679] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000019
[  455.764944] R13: 0000000000000251 R14: 00000000006f6838 R15: 0000000000000039
2018/04/11 00:13:32 executing program 4:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0x80045300, &(0x7f00000000c0)={0x0, 0x0, 0x0, "71756575653000000000000000000000000000000000fdfdffff00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))

2018/04/11 00:13:32 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
r1 = accept4(r0, &(0x7f0000000140)=@pppol2tpv3in6, &(0x7f00000001c0)=0x80, 0x800)
setsockopt$inet6_int(r1, 0x29, 0xce, &(0x7f0000000200)=0x7, 0x4)
bind$alg(r0, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(ecb-camellia-asm)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000ff8000)="0a0775b005e381e5b3b60ced5c54dbb7295df0df8217ad4000000000000000e6", 0x20)
r2 = accept$alg(r0, 0x0, 0x0)
sendmmsg$alg(r2, &(0x7f00000028c0)=[{0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000001540)="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", 0xf51}], 0x1, 0x0, 0x0, 0x20000084}, {0x0, 0x0, &(0x7f0000002840)=[{&(0x7f0000002c80)="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", 0x1000}, {&(0x7f0000000300)="79a83fd29daf069f67dbeec8db0b803e7f1b59b579e90d086697353da46a7d53cdccf5d6d237e66fb1f732008674b6ba128bb8c3f7ebb9ca54afe3a51cb30fa648505b335e33b4a4cb95158c5652a080656f0116e8ade8e00d15b70a569790a930fcd5e2e1", 0x65}, {&(0x7f0000000380)="3d078b1bf34f24d926956ae1b2c25813bbb197c02fe39f061b", 0x19}, {&(0x7f0000002740)="c1cb7017d371539c04b3665e42f17cad3d0b2811536a5d641cc910a2e7df3a56cdab59fbda0d29de0a4c7d90df3e602106a8b11c0481407066142dfc057ad17ff1988c8d4defae0017d404e0ed50ef1a303ae5ab372fa1a4a00a4e99cc141737f336c557df3ddda26eb1959d8bc9142c687a761a18faccd4d05a7d284503dd1b04b71e565268e4258b68a19d338f8d8a3713bbc67aa2d3bfc2c883aa035a6eff579731032a103ab43a6c56c90a869c66b1f3c929216b769139ec27815d44e8b8ce3c1c7bd25f59c43ab27a28c23d19297023bf", 0xd3}], 0x4, 0x0, 0x0, 0x80}], 0x2, 0x48001)
recvmsg(r2, &(0x7f0000001440)={&(0x7f0000000000)=@sco, 0x80, &(0x7f00000013c0)=[{&(0x7f0000001480)=""/171, 0x1c5}, {&(0x7f00000003c0)=""/4096, 0xff7c}], 0x2, &(0x7f0000001400)=""/6, 0x6}, 0x0)

2018/04/11 00:13:32 executing program 0:
perf_event_open(&(0x7f0000b5a000)={0x4000000002, 0x78, 0x1e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0x4000000000000002, &(0x7f0000f65000)=0x3fb, 0x4)
bind$inet6(r0, &(0x7f0000f65000)={0xa, 0x4e20, 0x0, @loopback={0x0, 0x1}}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f00004aaffc)=0x6, 0x4)
sendto$inet6(r0, &(0x7f00007a8fff), 0x0, 0xfffffefffffffffe, &(0x7f000006ffe4)={0xa, 0x4e20, 0x0, @loopback={0x0, 0x1}}, 0x1c)
getsockopt$inet6_buf(r0, 0x29, 0x6, &(0x7f0000c86000), &(0x7f0000d1b252))
getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(0xffffffffffffffff, 0x84, 0x13, &(0x7f0000000040)={<r1=>0x0, 0x4000000000000}, &(0x7f0000000080)=0x8)
getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000000c0)={r1, 0x7ff}, &(0x7f0000000100)=0xc)

2018/04/11 00:13:32 executing program 1:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f000001aff8)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_int(r0, 0x1, 0x22, &(0x7f00007ae000)=0x406, 0x4)
write(r1, &(0x7f0000000000)='f', 0x1)
r2 = syz_open_dev$usbmon(&(0x7f0000000040)='/dev/usbmon#\x00', 0x9, 0x1)
getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f0000000080)={<r3=>0x0, 0x7}, &(0x7f00000000c0)=0x8)
getsockopt$inet_sctp_SCTP_CONTEXT(r2, 0x84, 0x11, &(0x7f0000000100)={r3, 0x9}, &(0x7f0000000140)=0x8)
ioperm(0x8, 0x739, 0x1c00000000000000)
recvmsg(r0, &(0x7f0000000540)={&(0x7f0000000380)=@in6={0x0, 0x0, 0x0, @mcast1}, 0x80, &(0x7f00000004c0), 0x0, &(0x7f0000000500)=""/23, 0x17}, 0x0)

2018/04/11 00:13:32 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0xfffffdef}], 0x1}, 0x0)

2018/04/11 00:13:32 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={'filter\x00\x00\x00\x00\x00@\x00', 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:32 executing program 2 (fault-call:26 fault-nth:58):
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/pfkey\x00', 0x1, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_GET_MSR_INDEX_LIST(r1, 0xc004ae02, &(0x7f0000000440)=ANY=[@ANYBLOB="010000e8a806846728a902d7836e000000000090c8bb2c64ee855b03d6b79f01fd689aefd896253378642249ab91395ab66a034c399ce7623518b671b773347d0fd26ec81ac69a995c8ce192812ee8050c3814b9781ac68ebaded833a2c6c838d8647586e9c6e9a5856a915e647163631e9ebb8c6af6c63986f87e1cb1e65dda52219878b2bf0aa3c41d7257b9b338d3de7e2930af343b00807a9f0f1508f564e7be9484af85b8deea898a0e15d4e59917a706dff1d6eb4d00000000000000000000"])
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
pipe2(&(0x7f0000000700)={<r3=>0x0, <r4=>0x0}, 0x0)
ioctl$KVM_SET_XSAVE(r2, 0x5000aea5, &(0x7f0000000740)={"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"})
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
shmget(0x0, 0x3000, 0x1, &(0x7f000075a000/0x3000)=nil)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000600)={<r6=>0x0, @in={{0x2, 0x4e23, @multicast2=0xe0000002}}, 0x5, 0x6, 0x1, 0xfff, 0x8}, &(0x7f0000000080)=0x98)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000b40)={r6, @in={{0x2, 0x4e24, @rand_addr=0x10000}}, 0x5, 0x101, 0x6, 0xea, 0x72}, &(0x7f00000002c0)=0x98)
r7 = dup3(r5, r4, 0x0)
munlockall()
r8 = shmget$private(0x0, 0x3000, 0x10, &(0x7f0000760000/0x3000)=nil)
shmctl$IPC_RMID(r8, 0x0)
clock_gettime(0x7, &(0x7f0000000000))
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f0000460fe4)={0x0, 0x7, 0x2, 0x0, 0x4, 0x8, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x805})
ioctl$SNDRV_TIMER_IOCTL_GINFO(r4, 0xc0f85403, &(0x7f0000000c00)={{0xffffffffffffffff, 0x0, 0x3, 0x3, 0x2}, 0x81, 0x3, 'id0\x00', 'timer0\x00', 0x0, 0x6, 0x1, 0x6, 0x3})
ioctl$sock_inet6_tcp_SIOCINQ(r3, 0x541b, &(0x7f0000000040))
socket(0xf, 0x6, 0x5)
ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000280)={0x81, 0x1})
ioctl$EVIOCSABS2F(r7, 0x401845ef, &(0x7f0000000240)={0x9, 0x0, 0xfffffffffffffffd, 0x1ff, 0x4, 0x7f})
getsockopt$ax25_buf(r4, 0x101, 0x19, &(0x7f0000000140)=""/53, &(0x7f0000000180)=0x35)
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/enforce\x00', 0x10000, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000753000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, &(0x7f00000000c0)="0fc7280f080f20030f01727166ba4200b834000000ef66bad10466edb81da1fb500f23d00f21f835300000050f23f8c4c3194bfc360f20030fc76d08", 0x3c}], 0x1, 0x7, &(0x7f0000000380), 0x10000181)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r2, 0x8008ae9d, &(0x7f0000000340)=""/250)

2018/04/11 00:13:32 executing program 5:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0xc08c5336, &(0x7f00000000c0)={0x0, 0x0, 0x0, "7175657565300000000000000000000000000000000000000000000000000000001f00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer2\x00', 0x0, 0x0)

[  456.287211] FAULT_INJECTION: forcing a failure.
[  456.287211] name failslab, interval 1, probability 0, space 0, times 0
[  456.298539] CPU: 1 PID: 30303 Comm: syz-executor2 Not tainted 4.16.0+ #18
[  456.305474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  456.314831] Call Trace:
[  456.317437]  dump_stack+0x1b9/0x294
[  456.321088]  ? dump_stack_print_info.cold.2+0x52/0x52
[  456.326290]  ? __save_stack_trace+0x7e/0xd0
[  456.330630]  should_fail.cold.4+0xa/0x1a
[  456.334706]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  456.339812]  ? kasan_kmalloc+0xc4/0xe0
[  456.343690]  ? kasan_slab_alloc+0x12/0x20
[  456.347824]  ? kmem_cache_alloc+0x12e/0x760
[  456.352135]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  456.357048]  ? kvm_mmu_load+0x21/0x10e0
[  456.361007]  ? vcpu_enter_guest+0x3aa1/0x6070
[  456.365496]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  456.370506]  ? graph_lock+0x170/0x170
[  456.374296]  ? do_syscall_64+0x29e/0x9d0
[  456.378353]  ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  456.383707]  ? find_held_lock+0x36/0x1c0
[  456.387759]  ? __lock_is_held+0xb5/0x140
[  456.391819]  ? check_same_owner+0x320/0x320
[  456.396136]  ? rcu_note_context_switch+0x710/0x710
[  456.401120]  __should_failslab+0x124/0x180
[  456.405348]  should_failslab+0x9/0x14
[  456.409134]  kmem_cache_alloc+0x2af/0x760
[  456.413276]  ? alloc_pages_current+0x114/0x210
[  456.417860]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  456.422781]  mmu_topup_memory_caches+0x2fa/0x3a0
[  456.427531]  kvm_mmu_load+0x21/0x10e0
[  456.431316]  ? __might_sleep+0x95/0x190
[  456.435281]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  456.440810]  vcpu_enter_guest+0x3aa1/0x6070
[  456.445116]  ? kvm_vcpu_ioctl+0x1e2/0x12e0
[  456.449340]  ? perf_trace_lock+0xd6/0x900
[  456.453472]  ? print_usage_bug+0xc0/0xc0
[  456.457523]  ? kvm_set_msr_common+0x2660/0x2660
[  456.462175]  ? zap_class+0x720/0x720
[  456.465877]  ? vmx_vcpu_load+0xaed/0xff0
[  456.469924]  ? __lock_acquire+0x7f5/0x5130
[  456.474148]  ? vmx_vcpu_reset+0x1030/0x1030
[  456.478455]  ? graph_lock+0x170/0x170
[  456.482241]  ? __lock_acquire+0x7f5/0x5130
[  456.486466]  ? debug_check_no_locks_freed+0x310/0x310
[  456.491637]  ? print_usage_bug+0xc0/0xc0
[  456.495688]  ? __lock_is_held+0xb5/0x140
[  456.499738]  ? lock_acquire+0x1dc/0x520
[  456.503696]  ? kvm_arch_vcpu_ioctl_run+0x234/0x1690
[  456.508703]  ? lock_release+0xa10/0xa10
[  456.512663]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  456.517932]  ? kvm_arch_dev_ioctl+0x5f0/0x5f0
[  456.522412]  ? preempt_notifier_dec+0x20/0x20
[  456.526913]  kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  456.531745]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  456.536756]  kvm_vcpu_ioctl+0x79d/0x12e0
[  456.540811]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  456.546511]  ? graph_lock+0x170/0x170
[  456.550299]  ? find_held_lock+0x36/0x1c0
[  456.554367]  ? lock_downgrade+0x8e0/0x8e0
[  456.558507]  ? rcu_is_watching+0x85/0x140
[  456.562644]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  456.567828]  ? __fget+0x40c/0x650
[  456.571268]  ? match_held_lock+0x881/0x8b0
[  456.575495]  ? expand_files.part.8+0x9a0/0x9a0
[  456.580062]  ? kasan_check_write+0x14/0x20
[  456.584285]  ? __mutex_unlock_slowpath+0x180/0x8a0
[  456.589202]  ? wait_for_completion+0x870/0x870
[  456.593771]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  456.598959]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  456.604660]  do_vfs_ioctl+0x1cf/0x1650
[  456.608538]  ? ioctl_preallocate+0x2e0/0x2e0
[  456.612933]  ? fget_raw+0x20/0x20
[  456.616377]  ? __sb_end_write+0xac/0xe0
[  456.620340]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  456.625861]  ? fput+0x130/0x1a0
[  456.629127]  ? ksys_write+0x1a6/0x250
[  456.632922]  ? security_file_ioctl+0x94/0xc0
[  456.637317]  ksys_ioctl+0xa9/0xd0
[  456.640758]  SyS_ioctl+0x24/0x30
[  456.644108]  ? ksys_ioctl+0xd0/0xd0
[  456.647723]  do_syscall_64+0x29e/0x9d0
[  456.651596]  ? vmalloc_sync_all+0x30/0x30
[  456.655738]  ? _raw_spin_unlock_irq+0x27/0x70
[  456.660222]  ? finish_task_switch+0x1ca/0x820
[  456.664704]  ? syscall_return_slowpath+0x5c0/0x5c0
[  456.669621]  ? syscall_return_slowpath+0x30f/0x5c0
[  456.674548]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  456.679906]  ? trace_hardirqs_off_thunk+0x1a/0x1c
2018/04/11 00:13:32 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x2000f000}], 0x1}, 0x0)

2018/04/11 00:13:32 executing program 1:
r0 = socket$inet(0x2, 0x1, 0x0)
mmap(&(0x7f000092d000/0x400000)=nil, 0x400000, 0xfffffffffffffffc, 0x8972, 0xffffffffffffffff, 0x0)
bind$inet(r0, &(0x7f0000134000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10)
connect$inet(r0, &(0x7f00000000c0)={0x2, 0x4e23, @loopback=0x7f000001}, 0x10)
connect$inet(r0, &(0x7f00009322c4)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff, 0xaa}}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='vegas\x00', 0x6)
r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x0, 0x0)
ioctl$EVIOCSFF(r1, 0x40304580, &(0x7f0000000040)={0x57, 0x3768, 0x8b, {0x3}, {0x6, 0x8}, @cond=[{0x5, 0x7, 0x2, 0x0, 0x80000001, 0x1}, {0x7, 0x9, 0x7f, 0x1f, 0x6, 0x1}]})
connect$inet(r0, &(0x7f00000dcff0)={0x2, 0x4e23, @loopback=0x7f000001}, 0x10)
shutdown(r0, 0x1)
setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000080)={@multicast1=0xe0000001, @broadcast=0xffffffff, 0x0, 0x1, [@broadcast=0xffffffff]}, 0x14)

2018/04/11 00:13:32 executing program 0:
io_setup(0x80000001, &(0x7f0000000000)=<r0=>0x0)
r1 = mq_open(&(0x7f0000000040)='[nodevvmnet0\x00', 0x2, 0x10, &(0x7f0000000080)={0xfffffffffffffff9, 0x1, 0x8, 0x7fffffff, 0x2, 0x5, 0x80000001, 0x8})
r2 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/pfkey\x00', 0x80, 0x0)
io_cancel(r0, &(0x7f0000000180)={0x0, 0x0, 0x0, 0xe, 0x1, r1, &(0x7f00000000c0)="4c3e68b2dc52435147807f91358316ad50f2cc418ff5fb061fa6feaacd0b24a429f4ee5e1ccb6554666650b45afe65b38a0a94bf7b6dc2f04da0195c862af7460032c039dab5ce", 0x47, 0x2, 0x0, 0x1, r2}, &(0x7f00000001c0))
prctl$intptr(0x29, 0xffffffffffff0000)
sendmsg$inet_sctp(0xffffffffffffffff, &(0x7f0000001fc8)={&(0x7f0000005ff0)=@in={0x2, 0x4e20, @broadcast=0xffffffff}, 0x10, &(0x7f0000eff000), 0x0, &(0x7f0000000000)}, 0x0)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)

[  456.684745]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  456.689922] RIP: 0033:0x455259
[  456.693095] RSP: 002b:00007f45bbc7bc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  456.700791] RAX: ffffffffffffffda RBX: 00007f45bbc7c6d4 RCX: 0000000000455259
[  456.708048] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000017
[  456.715307] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  456.722558] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000019
[  456.729814] R13: 0000000000000251 R14: 00000000006f6838 R15: 000000000000003a
2018/04/11 00:13:32 executing program 7:
r0 = syz_open_dev$audion(&(0x7f0000000140)='/dev/audio#\x00', 0x401, 0x40400)
ioctl$EVIOCGBITKEY(r0, 0x80404521, &(0x7f0000000180)=""/5)
r1 = accept4(0xffffffffffffff9c, &(0x7f0000000000)=@nfc_llcp, &(0x7f0000000100)=0x80, 0x800)
mmap(&(0x7f0000000000/0xd99000)=nil, 0xd99000, 0x0, 0x30, r1, 0x27)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_inet6_SIOCADDRT(r2, 0x890b, &(0x7f0000000080)={@mcast2={0xff, 0x2, [], 0x1}, @mcast2={0xff, 0x2, [], 0x1}, @dev={0xfe, 0x80}, 0x0, 0x0, 0x0, 0x2})
ioctl$sock_inet6_tcp_SIOCATMARK(r0, 0x8905, &(0x7f00000001c0))

2018/04/11 00:13:32 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x33fe0}], 0x1}, 0x0)

2018/04/11 00:13:32 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c7465720000000000000000ffffffff00", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:32 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x7ffff000}], 0x1}, 0x0)

2018/04/11 00:13:32 executing program 7:
r0 = socket(0x11, 0x400080000000, 0xfffffffffffffffe)
bind$inet6(r0, &(0x7f0000236fe4)={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [], 0x1}, 0x1}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0x80000000000004c, &(0x7f0000b54ffc)=0x1000000, 0x4)

2018/04/11 00:13:33 executing program 4:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0x80045300, &(0x7f00000000c0)={0x0, 0x0, 0x0, "7175657565300000000000000000000000000000000000000000fffffdfd00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))

2018/04/11 00:13:33 executing program 1:
r0 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x7f, 0x0)
ioctl$int_in(r0, 0x8000008004500f, &(0x7f0000003ff8)=0x3c)
ioctl$ASHMEM_SET_SIZE(r0, 0x40087703, 0x7ff)

2018/04/11 00:13:33 executing program 5:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0xc08c5336, &(0x7f00000000c0)={0x0, 0x0, 0x0, "717565756530000000000000000000000000000000000000000000000000000000000000000000001f00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer2\x00', 0x0, 0x0)

2018/04/11 00:13:33 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x2}, 0x0)

2018/04/11 00:13:33 executing program 0:
write$rdma_cm(0xffffffffffffffff, &(0x7f0000000080)=ANY=[@ANYBLOB="a01280893bae560a371a78da7e0be36b4284dc1182d8be2fc058c5f10a35e6c80adf8baffc82b7ee17eb0e7e93dc94b5b417b6f23a3aca5d0f05390c717483b0646091f5cd92a6aa678b8ae39248ac346f5dce28474b30efb404040f4b0ab550fe62c275adbacdc7601f5b0bd75b9b85b112bc0e", @ANYPTR=&(0x7f0000001c40)=ANY=[@ANYRES32=0xffffffff], @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00'], 0x20)
perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0xe2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000005fd8)={'vcan0\x00', <r1=>0x0})
connect$can_bcm(r0, &(0x7f0000001ff0)={0x1d, r1}, 0x10)
sendmsg$can_raw(r0, &(0x7f0000001fc8)={&(0x7f000000a000)={0x1d}, 0x10, &(0x7f0000000040)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5f700000000000000004e2f9663a918fa1efd9b0b"}, 0x48}, 0x1}, 0x0)

2018/04/11 00:13:33 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c74657200000000000000000000009000", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:33 executing program 2 (fault-call:26 fault-nth:59):
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/pfkey\x00', 0x1, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_GET_MSR_INDEX_LIST(r1, 0xc004ae02, &(0x7f0000000440)=ANY=[@ANYBLOB="010000e8a806846728a902d7836e000000000090c8bb2c64ee855b03d6b79f01fd689aefd896253378642249ab91395ab66a034c399ce7623518b671b773347d0fd26ec81ac69a995c8ce192812ee8050c3814b9781ac68ebaded833a2c6c838d8647586e9c6e9a5856a915e647163631e9ebb8c6af6c63986f87e1cb1e65dda52219878b2bf0aa3c41d7257b9b338d3de7e2930af343b00807a9f0f1508f564e7be9484af85b8deea898a0e15d4e59917a706dff1d6eb4d00000000000000000000"])
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
pipe2(&(0x7f0000000700)={<r3=>0x0, <r4=>0x0}, 0x0)
ioctl$KVM_SET_XSAVE(r2, 0x5000aea5, &(0x7f0000000740)={"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"})
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
shmget(0x0, 0x3000, 0x1, &(0x7f000075a000/0x3000)=nil)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000600)={<r6=>0x0, @in={{0x2, 0x4e23, @multicast2=0xe0000002}}, 0x5, 0x6, 0x1, 0xfff, 0x8}, &(0x7f0000000080)=0x98)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000b40)={r6, @in={{0x2, 0x4e24, @rand_addr=0x10000}}, 0x5, 0x101, 0x6, 0xea, 0x72}, &(0x7f00000002c0)=0x98)
r7 = dup3(r5, r4, 0x0)
munlockall()
r8 = shmget$private(0x0, 0x3000, 0x10, &(0x7f0000760000/0x3000)=nil)
shmctl$IPC_RMID(r8, 0x0)
clock_gettime(0x7, &(0x7f0000000000))
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f0000460fe4)={0x0, 0x7, 0x2, 0x0, 0x4, 0x8, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x805})
ioctl$SNDRV_TIMER_IOCTL_GINFO(r4, 0xc0f85403, &(0x7f0000000c00)={{0xffffffffffffffff, 0x0, 0x3, 0x3, 0x2}, 0x81, 0x3, 'id0\x00', 'timer0\x00', 0x0, 0x6, 0x1, 0x6, 0x3})
ioctl$sock_inet6_tcp_SIOCINQ(r3, 0x541b, &(0x7f0000000040))
socket(0xf, 0x6, 0x5)
ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000280)={0x81, 0x1})
ioctl$EVIOCSABS2F(r7, 0x401845ef, &(0x7f0000000240)={0x9, 0x0, 0xfffffffffffffffd, 0x1ff, 0x4, 0x7f})
getsockopt$ax25_buf(r4, 0x101, 0x19, &(0x7f0000000140)=""/53, &(0x7f0000000180)=0x35)
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/enforce\x00', 0x10000, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000753000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, &(0x7f00000000c0)="0fc7280f080f20030f01727166ba4200b834000000ef66bad10466edb81da1fb500f23d00f21f835300000050f23f8c4c3194bfc360f20030fc76d08", 0x3c}], 0x1, 0x7, &(0x7f0000000380), 0x10000181)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r2, 0x8008ae9d, &(0x7f0000000340)=""/250)

2018/04/11 00:13:33 executing program 7:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000000)=@nat={'nat\x00', 0x19, 0x4, 0x550, [0x20001580, 0x0, 0x0, 0x20001820, 0x20001a70], 0x0, &(0x7f0000001200), &(0x7f0000000080)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff02000000030000000000000080356970646470300000000000000000000065716c00000000000000000000000000626f6e6430000000000000000000000073697430000000000000000000000000ffffffffffff0000000000000000000000000000000000000000180100001801000050010000617270000000000000000000000000001771df6b9d0000000000000000000000000000000038000000000000000000000000000000ffffffff00000000ac1414bb00000000aaaaaaaaaaaa000000000000aaaaaaaaaabb00000000000000000000000000006c696d6974000000000000000000000000000000000000000000000000000000070000000000000000000000000000000000000000000000000000000000000000000000000000006172707264706c790000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaabb0000000000000000000011000000000000000000766c616e30000000000000000000000065716c000000000000000000000000006263736630000000000000000000000073697430000000000000130000000000ffffffffffff000000000000aaaaaaaaaabb000000000000000070000000d800000020010000415544495400000000000000000000000000000000000000000000000000000008000000000000000000000000000000736e6174000000000000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaabb000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a310000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000002000000ffffffff0200000011000000000000000000697036677265746170300000000000006970365f767469300000000000000000626f6e643000000000000000000000007465716c300000000000000000000000aaaaaaaaaabb0000000000000180c20000000000000000000000080100000801000040010000706879736465760000000000000000000000000000000000000000000000000070000000000000007465716c300000000000005793637d5770a4fa0000000000000000000000000000000000000000000000000000006970366772653000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006172707265706c790000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaa00000000000000000000000500000000000000000062637368300000000000000000000000766c616e300000000000000000000000696662300000000000000000000000006e7230000000000000000000000000004e2947e4bf980000000000004d807555966a000000000000000070000000a8000000e00000006172707265706c790000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaabb00000000000000000000736e617400000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000007ed900000000000000000000000000000000000000000000000000000000000000000000000004000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000004000000fcffffff00000000"]}, 0x5cd)
getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000600)={<r1=>0x0, 0x3, 0x10}, &(0x7f0000000640)=0xc)
setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f0000000680)={r1, 0x7}, 0x8)
r2 = syz_open_dev$vcsn(&(0x7f00000006c0)='/dev/vcs#\x00', 0x0, 0x0)
ioctl$sock_ipx_SIOCIPXNCPCONN(r2, 0x89e3, &(0x7f0000000700)=0xc7)

2018/04/11 00:13:33 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x10}, 0x0)

[  457.701394] kernel msg: ebtables bug: please report to author: Wrong len argument
[  457.737296] kernel msg: ebtables bug: please report to author: Wrong len argument
[  457.751660] FAULT_INJECTION: forcing a failure.
[  457.751660] name failslab, interval 1, probability 0, space 0, times 0
[  457.763088] CPU: 1 PID: 30370 Comm: syz-executor2 Not tainted 4.16.0+ #18
[  457.770026] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  457.779380] Call Trace:
[  457.781989]  dump_stack+0x1b9/0x294
[  457.785633]  ? dump_stack_print_info.cold.2+0x52/0x52
[  457.790839]  ? __save_stack_trace+0x7e/0xd0
[  457.795183]  should_fail.cold.4+0xa/0x1a
2018/04/11 00:13:33 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={'filter\x00\x00\x00\x00\x00?\x00', 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

[  457.799260]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  457.804372]  ? kasan_kmalloc+0xc4/0xe0
[  457.808266]  ? kasan_slab_alloc+0x12/0x20
[  457.812422]  ? kmem_cache_alloc+0x12e/0x760
[  457.816752]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  457.821693]  ? kvm_mmu_load+0x21/0x10e0
[  457.825681]  ? vcpu_enter_guest+0x3aa1/0x6070
[  457.830187]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  457.835218]  ? graph_lock+0x170/0x170
[  457.839037]  ? do_syscall_64+0x29e/0x9d0
[  457.843119]  ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
2018/04/11 00:13:33 executing program 7:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
mmap(&(0x7f0000166000/0x2000)=nil, 0x2000, 0x4, 0x34, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp6_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f0000aa2000), &(0x7f0000382000)=0x14)

2018/04/11 00:13:33 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c74657200000000009000", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

[  457.848497]  ? find_held_lock+0x36/0x1c0
[  457.852574]  ? __lock_is_held+0xb5/0x140
[  457.856655]  ? check_same_owner+0x320/0x320
[  457.860990]  ? rcu_note_context_switch+0x710/0x710
[  457.865943]  __should_failslab+0x124/0x180
[  457.870194]  should_failslab+0x9/0x14
[  457.874003]  kmem_cache_alloc+0x2af/0x760
[  457.878165]  ? alloc_pages_current+0x114/0x210
[  457.882766]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  457.887716]  mmu_topup_memory_caches+0x2fa/0x3a0
[  457.892492]  kvm_mmu_load+0x21/0x10e0
[  457.896316]  ? __might_sleep+0x95/0x190
[  457.900315]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  457.905873]  vcpu_enter_guest+0x3aa1/0x6070
[  457.910211]  ? kvm_vcpu_ioctl+0x1e2/0x12e0
[  457.914461]  ? print_usage_bug+0xc0/0xc0
[  457.918548]  ? kvm_set_msr_common+0x2660/0x2660
[  457.923244]  ? vmx_vcpu_load+0xaed/0xff0
[  457.927324]  ? __lock_acquire+0x7f5/0x5130
[  457.931570]  ? vmx_vcpu_reset+0x1030/0x1030
[  457.935905]  ? graph_lock+0x170/0x170
[  457.939717]  ? __lock_acquire+0x7f5/0x5130
[  457.943967]  ? debug_check_no_locks_freed+0x310/0x310
2018/04/11 00:13:33 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c74657200000000000500", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:33 executing program 7:
perf_event_open(&(0x7f000001d000)={0x2, 0x78, 0xe2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0xa, 0x2000000004, 0x3)
getsockopt(r0, 0x0, 0x53, &(0x7f0000001000)=""/8, &(0x7f0000000ffc)=0x8)

[  457.949166]  ? print_usage_bug+0xc0/0xc0
[  457.953257]  ? __lock_is_held+0xb5/0x140
[  457.957332]  ? lock_acquire+0x1dc/0x520
[  457.961309]  ? kvm_arch_vcpu_ioctl_run+0x234/0x1690
[  457.966330]  ? lock_release+0xa10/0xa10
[  457.970312]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  457.975597]  ? kvm_arch_dev_ioctl+0x5f0/0x5f0
[  457.980102]  ? preempt_notifier_dec+0x20/0x20
[  457.984620]  kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  457.989467]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  457.994503]  kvm_vcpu_ioctl+0x79d/0x12e0
[  457.998580]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  458.004305]  ? graph_lock+0x170/0x170
[  458.008113]  ? find_held_lock+0x36/0x1c0
[  458.012189]  ? lock_downgrade+0x8e0/0x8e0
[  458.016351]  ? kasan_check_read+0x11/0x20
[  458.020510]  ? rcu_is_watching+0x85/0x140
[  458.024669]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  458.029887]  ? __fget+0x40c/0x650
[  458.033352]  ? match_held_lock+0x881/0x8b0
[  458.037598]  ? expand_files.part.8+0x9a0/0x9a0
[  458.042191]  ? kasan_check_write+0x14/0x20
[  458.046531]  ? __mutex_unlock_slowpath+0x180/0x8a0
[  458.051467]  ? wait_for_completion+0x870/0x870
[  458.056046]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  458.061239]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  458.066943]  do_vfs_ioctl+0x1cf/0x1650
[  458.070916]  ? ioctl_preallocate+0x2e0/0x2e0
[  458.075313]  ? fget_raw+0x20/0x20
[  458.078768]  ? __sb_end_write+0xac/0xe0
[  458.082747]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  458.088314]  ? fput+0x130/0x1a0
[  458.091582]  ? ksys_write+0x1a6/0x250
[  458.095379]  ? security_file_ioctl+0x94/0xc0
[  458.099792]  ksys_ioctl+0xa9/0xd0
[  458.103235]  SyS_ioctl+0x24/0x30
[  458.106587]  ? ksys_ioctl+0xd0/0xd0
[  458.110201]  do_syscall_64+0x29e/0x9d0
[  458.114073]  ? vmalloc_sync_all+0x30/0x30
[  458.118220]  ? _raw_spin_unlock_irq+0x27/0x70
[  458.122703]  ? finish_task_switch+0x1ca/0x820
[  458.127186]  ? syscall_return_slowpath+0x5c0/0x5c0
[  458.132103]  ? syscall_return_slowpath+0x30f/0x5c0
[  458.137110]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  458.142468]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  458.147304]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
2018/04/11 00:13:34 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x8}, 0x0)

2018/04/11 00:13:34 executing program 1:
mkdir(&(0x7f000082f000)='./control\x00', 0x0)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000001c0)={0xaa})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1})
r1 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0)
write$sndseq(r1, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {0x0, 0x10000}, @time=@time={0x77359400}}], 0x30)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8924, &(0x7f00000003c0)={'ip6gre0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}})
unlink(&(0x7f00000000c0)='./control/file0\x00')
rename(&(0x7f0000000040)='./control/file0\x00', &(0x7f0000000080)='./control\x00')
mount(&(0x7f0000000300)='./file0\x00', &(0x7f00000006c0)='./file0/file0\x00', &(0x7f0000000780)='pstore\x00', 0x201030, &(0x7f00000007c0)="f77ee893c0dacf1469939730dd0d69be615896c69eeb0eddc13ffb9079ea17f17cf4346bcfc4e3b871ccabdedcbe")
ioctl$EVIOCGVERSION(r1, 0x80044501, &(0x7f0000000580)=""/148)
ioctl$int_in(0xffffffffffffffff, 0x5452, &(0x7f0000000540)=0x128)
syz_open_dev$sndpcmc(&(0x7f0000000240)='/dev/snd/pcmC#D#c\x00', 0x2, 0x1)
mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='btrfs\x00', 0x1000, &(0x7f0000000240))
times(&(0x7f0000000500))
ioctl$sock_SIOCADDDLCI(r1, 0x8980, &(0x7f0000000640)={'rose0\x00'})
socket$packet(0x11, 0x2, 0x300)
umount2(&(0x7f0000000200)='./file0\x00', 0x0)
syz_mount_image$minix(&(0x7f0000000680)='minix\x00', &(0x7f0000000340)='./control/file0\x00', 0x400, 0x0, &(0x7f0000000700), 0x0, 0x0)
rename(&(0x7f0000000740)='./file0\x00', &(0x7f0000000380)='./control/file0\x00')
close(r0)

[  458.152565] RIP: 0033:0x455259
[  458.155741] RSP: 002b:00007f45bbc7bc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  458.163443] RAX: ffffffffffffffda RBX: 00007f45bbc7c6d4 RCX: 0000000000455259
[  458.170695] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000017
[  458.177950] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  458.185208] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000019
[  458.192467] R13: 0000000000000251 R14: 00000000006f6838 R15: 000000000000003b
2018/04/11 00:13:35 executing program 4:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0x80045300, &(0x7f00000000c0)={0x0, 0x0, 0x0, "71756575653000000000000000000000000000000000fffffdfd00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))

2018/04/11 00:13:35 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c74657200000000feffff0700", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:35 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1300}, 0x0)

2018/04/11 00:13:35 executing program 0:
r0 = syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0x4000000000003, 0x80000)
sendmmsg$unix(0xffffffffffffffff, &(0x7f000000a000)=[{&(0x7f000000a000)=@abs, 0x6e, &(0x7f000000d000), 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="20000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000020000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000020000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000020020000008000000110100000001000000", @ANYRES32, @ANYRES32, @ANYBLOB="0000000020000000000000000100000002000000", @ANYRES32=0x0, @ANYBLOB="b15f5545b870ac38703ae60728bb842c97626b2dc913520f4ca077a70a433f573deae5095185127da97e4ac14c8bcb790630d5c8953e947abfd5d421c194eb34353d5462cb7c41aaa0e1a7f5a14736944a881b5060f23216c743ce4078bee0e6128a8c628d6200428397206cb525a272506ff958f2a2367505b1012f54abb9579747c374e5113a3b8f9bd2bf88d637586d158603bd713a217ea4b47611579a660c4052ffe7", @ANYBLOB='\x00\x00\x00\x00'], 0x12d}], 0x1, 0x0)
ioctl$KVM_S390_INTERRUPT_CPU(0xffffffffffffffff, 0x4010ae94, &(0x7f0000002000)={0x0, 0x15})
ioctl(r0, 0xc1004110, &(0x7f0000000080)="c64d799fc1c9bd467647b4faa12e8be860be17bd88bfdf4cb800ba2ae600000000000000000100000000")

2018/04/11 00:13:35 executing program 2 (fault-call:26 fault-nth:60):
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/pfkey\x00', 0x1, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_GET_MSR_INDEX_LIST(r1, 0xc004ae02, &(0x7f0000000440)=ANY=[@ANYBLOB="010000e8a806846728a902d7836e000000000090c8bb2c64ee855b03d6b79f01fd689aefd896253378642249ab91395ab66a034c399ce7623518b671b773347d0fd26ec81ac69a995c8ce192812ee8050c3814b9781ac68ebaded833a2c6c838d8647586e9c6e9a5856a915e647163631e9ebb8c6af6c63986f87e1cb1e65dda52219878b2bf0aa3c41d7257b9b338d3de7e2930af343b00807a9f0f1508f564e7be9484af85b8deea898a0e15d4e59917a706dff1d6eb4d00000000000000000000"])
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
pipe2(&(0x7f0000000700)={<r3=>0x0, <r4=>0x0}, 0x0)
ioctl$KVM_SET_XSAVE(r2, 0x5000aea5, &(0x7f0000000740)={"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"})
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
shmget(0x0, 0x3000, 0x1, &(0x7f000075a000/0x3000)=nil)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000600)={<r6=>0x0, @in={{0x2, 0x4e23, @multicast2=0xe0000002}}, 0x5, 0x6, 0x1, 0xfff, 0x8}, &(0x7f0000000080)=0x98)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000b40)={r6, @in={{0x2, 0x4e24, @rand_addr=0x10000}}, 0x5, 0x101, 0x6, 0xea, 0x72}, &(0x7f00000002c0)=0x98)
r7 = dup3(r5, r4, 0x0)
munlockall()
r8 = shmget$private(0x0, 0x3000, 0x10, &(0x7f0000760000/0x3000)=nil)
shmctl$IPC_RMID(r8, 0x0)
clock_gettime(0x7, &(0x7f0000000000))
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f0000460fe4)={0x0, 0x7, 0x2, 0x0, 0x4, 0x8, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x805})
ioctl$SNDRV_TIMER_IOCTL_GINFO(r4, 0xc0f85403, &(0x7f0000000c00)={{0xffffffffffffffff, 0x0, 0x3, 0x3, 0x2}, 0x81, 0x3, 'id0\x00', 'timer0\x00', 0x0, 0x6, 0x1, 0x6, 0x3})
ioctl$sock_inet6_tcp_SIOCINQ(r3, 0x541b, &(0x7f0000000040))
socket(0xf, 0x6, 0x5)
ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000280)={0x81, 0x1})
ioctl$EVIOCSABS2F(r7, 0x401845ef, &(0x7f0000000240)={0x9, 0x0, 0xfffffffffffffffd, 0x1ff, 0x4, 0x7f})
getsockopt$ax25_buf(r4, 0x101, 0x19, &(0x7f0000000140)=""/53, &(0x7f0000000180)=0x35)
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/enforce\x00', 0x10000, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000753000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, &(0x7f00000000c0)="0fc7280f080f20030f01727166ba4200b834000000ef66bad10466edb81da1fb500f23d00f21f835300000050f23f8c4c3194bfc360f20030fc76d08", 0x3c}], 0x1, 0x7, &(0x7f0000000380), 0x10000181)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r2, 0x8008ae9d, &(0x7f0000000340)=""/250)

2018/04/11 00:13:35 executing program 5:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0xc08c5336, &(0x7f00000000c0)={0x0, 0x0, 0x0, "7175657565300000000000000000000000000000000000000000000000000000000000001f00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer2\x00', 0x0, 0x0)

2018/04/11 00:13:35 executing program 7:
r0 = syz_open_dev$usbmon(&(0x7f0000000180)='/dev/usbmon#\x00', 0x4, 0x200)
setsockopt$inet_sctp_SCTP_HMAC_IDENT(r0, 0x84, 0x16, &(0x7f00000001c0)={0x2, [0x2767, 0x6]}, 0x8)
r1 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000d1c000)=0x6, 0x4)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet6(r1, &(0x7f0000f67fe4)={0xa}, 0x1c)
getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(0xffffffffffffff9c, 0x84, 0x75, &(0x7f0000000040)={<r2=>0x0, 0xffffffffffff7fff}, &(0x7f0000000080)=0x8)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(r1, 0x84, 0x77, &(0x7f00000000c0)=ANY=[@ANYRES32=r2, @ANYBLOB="e349f7693ea9"], &(0x7f0000000100)=0xa)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000140)='/dev/hwrng\x00', 0x0, 0x0)
close(r1)

2018/04/11 00:13:35 executing program 1:
mkdir(&(0x7f000082f000)='./control\x00', 0x0)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000001c0)={0xaa})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1})
r1 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0)
write$sndseq(r1, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {0x0, 0x10000}, @time=@time={0x77359400}}], 0x30)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8924, &(0x7f00000003c0)={'ip6gre0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}})
unlink(&(0x7f00000000c0)='./control/file0\x00')
rename(&(0x7f0000000040)='./control/file0\x00', &(0x7f0000000080)='./control\x00')
mount(&(0x7f0000000300)='./file0\x00', &(0x7f00000006c0)='./file0/file0\x00', &(0x7f0000000780)='pstore\x00', 0x201030, &(0x7f00000007c0)="f77ee893c0dacf1469939730dd0d69be615896c69eeb0eddc13ffb9079ea17f17cf4346bcfc4e3b871ccabdedcbe")
ioctl$EVIOCGVERSION(r1, 0x80044501, &(0x7f0000000580)=""/148)
ioctl$int_in(0xffffffffffffffff, 0x5452, &(0x7f0000000540)=0x128)
syz_open_dev$sndpcmc(&(0x7f0000000240)='/dev/snd/pcmC#D#c\x00', 0x2, 0x1)
mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='btrfs\x00', 0x1000, &(0x7f0000000240))
times(&(0x7f0000000500))
ioctl$sock_SIOCADDDLCI(r1, 0x8980, &(0x7f0000000640)={'rose0\x00'})
socket$packet(0x11, 0x2, 0x300)
umount2(&(0x7f0000000200)='./file0\x00', 0x0)
syz_mount_image$minix(&(0x7f0000000680)='minix\x00', &(0x7f0000000340)='./control/file0\x00', 0x400, 0x0, &(0x7f0000000700), 0x0, 0x0)
rename(&(0x7f0000000740)='./file0\x00', &(0x7f0000000380)='./control/file0\x00')
close(r0)

[  459.432071] FAULT_INJECTION: forcing a failure.
[  459.432071] name failslab, interval 1, probability 0, space 0, times 0
[  459.443450] CPU: 0 PID: 30462 Comm: syz-executor2 Not tainted 4.16.0+ #18
[  459.450387] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  459.459750] Call Trace:
[  459.462355]  dump_stack+0x1b9/0x294
[  459.466006]  ? dump_stack_print_info.cold.2+0x52/0x52
[  459.471215]  ? perf_trace_lock_acquire+0xe3/0x980
[  459.476254]  should_fail.cold.4+0xa/0x1a
[  459.480366]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  459.485498]  ? kasan_kmalloc+0xc4/0xe0
[  459.489395]  ? kasan_slab_alloc+0x12/0x20
[  459.493554]  ? kmem_cache_alloc+0x12e/0x760
[  459.497889]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  459.503010]  ? kvm_mmu_load+0x21/0x10e0
[  459.507000]  ? vcpu_enter_guest+0x3aa1/0x6070
[  459.511507]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  459.516542]  ? graph_lock+0x170/0x170
[  459.520355]  ? do_syscall_64+0x29e/0x9d0
[  459.524432]  ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  459.529803]  ? find_held_lock+0x36/0x1c0
[  459.533860]  ? __lock_is_held+0xb5/0x140
[  459.537923]  ? check_same_owner+0x320/0x320
[  459.542233]  ? rcu_note_context_switch+0x710/0x710
[  459.547157]  __should_failslab+0x124/0x180
[  459.551380]  should_failslab+0x9/0x14
[  459.555177]  kmem_cache_alloc+0x2af/0x760
[  459.559319]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  459.564239]  mmu_topup_memory_caches+0x2fa/0x3a0
[  459.568986]  kvm_mmu_load+0x21/0x10e0
[  459.572779]  ? __might_sleep+0x95/0x190
[  459.576768]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  459.582311]  vcpu_enter_guest+0x3aa1/0x6070
[  459.586626]  ? kvm_vcpu_ioctl+0x1e2/0x12e0
[  459.590861]  ? kvm_set_msr_common+0x2660/0x2660
[  459.595524]  ? perf_trace_lock+0x900/0x900
[  459.599741]  ? __lock_acquire+0x7f5/0x5130
[  459.604195]  ? vmx_vcpu_reset+0x1030/0x1030
[  459.608503]  ? graph_lock+0x170/0x170
[  459.612290]  ? __lock_acquire+0x7f5/0x5130
[  459.616520]  ? perf_trace_lock_acquire+0xe3/0x980
[  459.621353]  ? __lock_is_held+0xb5/0x140
[  459.625403]  ? lock_acquire+0x1dc/0x520
[  459.629363]  ? kvm_arch_vcpu_ioctl_run+0x234/0x1690
[  459.634371]  ? lock_release+0xa10/0xa10
[  459.638505]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  459.643771]  ? kvm_arch_dev_ioctl+0x5f0/0x5f0
[  459.648350]  ? preempt_notifier_dec+0x20/0x20
[  459.652847]  kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  459.657716]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  459.662733]  kvm_vcpu_ioctl+0x79d/0x12e0
[  459.666787]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  459.672488]  ? graph_lock+0x170/0x170
[  459.676278]  ? find_held_lock+0x36/0x1c0
[  459.680338]  ? lock_downgrade+0x8e0/0x8e0
[  459.684476]  ? kasan_check_read+0x11/0x20
[  459.688642]  ? rcu_is_watching+0x85/0x140
[  459.692781]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  459.697963]  ? __fget+0x40c/0x650
[  459.701403]  ? match_held_lock+0x881/0x8b0
[  459.705623]  ? expand_files.part.8+0x9a0/0x9a0
[  459.710189]  ? kasan_check_write+0x14/0x20
[  459.714572]  ? __mutex_unlock_slowpath+0x180/0x8a0
[  459.719493]  ? wait_for_completion+0x870/0x870
[  459.724067]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  459.729242]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  459.734947]  do_vfs_ioctl+0x1cf/0x1650
[  459.738829]  ? ioctl_preallocate+0x2e0/0x2e0
[  459.744570]  ? fget_raw+0x20/0x20
[  459.748015]  ? __sb_end_write+0xac/0xe0
[  459.751987]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  459.757511]  ? fput+0x130/0x1a0
[  459.760778]  ? ksys_write+0x1a6/0x250
[  459.764567]  ? security_file_ioctl+0x94/0xc0
[  459.768968]  ksys_ioctl+0xa9/0xd0
[  459.772409]  SyS_ioctl+0x24/0x30
[  459.775759]  ? ksys_ioctl+0xd0/0xd0
[  459.779373]  do_syscall_64+0x29e/0x9d0
[  459.783247]  ? vmalloc_sync_all+0x30/0x30
[  459.787381]  ? syscall_slow_exit_work+0x4f0/0x4f0
[  459.792209]  ? syscall_return_slowpath+0x5c0/0x5c0
[  459.797133]  ? syscall_return_slowpath+0x30f/0x5c0
[  459.802054]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  459.807411]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  459.813127]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  459.818302] RIP: 0033:0x455259
[  459.821475] RSP: 002b:00007f45bbc7bc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
2018/04/11 00:13:35 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c74657200000000000000000000000100", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:35 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x34000}, 0x0)

2018/04/11 00:13:35 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0xc00e000000000000}, 0x0)

2018/04/11 00:13:35 executing program 0:
r0 = getpgrp(0x0)
r1 = gettid()
rt_sigprocmask(0x0, &(0x7f0000000000)={0xffffffffffffff7f}, 0x0, 0x8)
rt_tgsigqueueinfo(r0, r1, 0x3a, &(0x7f0000000180)={0x0, 0x0, 0xffffffffffffffff})
r2 = signalfd4(0xffffffffffffffff, &(0x7f0000000ff8)={0xfffffffffffffdb0}, 0x8, 0x0)
mmap(&(0x7f0000443000/0x3000)=nil, 0x3000, 0x40000000000000, 0x32, 0xffffffffffffffff, 0x0)
read(r2, &(0x7f0000481000)=""/128, 0x80)

[  459.829171] RAX: ffffffffffffffda RBX: 00007f45bbc7c6d4 RCX: 0000000000455259
[  459.836423] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000017
[  459.843677] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  459.850931] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000019
[  459.859068] R13: 0000000000000251 R14: 00000000006f6838 R15: 000000000000003c
2018/04/11 00:13:35 executing program 7:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000ed4000)=0x78, 0x4)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @multicast1=0xe0000001}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000b86000)={0x1, &(0x7f0000f40ff8)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10)
fcntl$addseals(r0, 0x409, 0xd)
sendto$inet(r0, &(0x7f0000a88f88), 0x0, 0x200007fb, &(0x7f0000000240)={0x2, 0x4e23, @loopback=0x7f000001}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00003d1ffc)='bbr\x00', 0x4)
sendto$inet(r0, &(0x7f0000000bc0)="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", 0x438, 0x0, &(0x7f0000000280)={0x2, 0x4e21}, 0x10)
recvfrom$inet(r0, &(0x7f00009be000)=""/11, 0xe8, 0x0, 0x0, 0xffffffffffffff4e)
shutdown(r0, 0x1)

2018/04/11 00:13:35 executing program 2 (fault-call:26 fault-nth:61):
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/pfkey\x00', 0x1, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_GET_MSR_INDEX_LIST(r1, 0xc004ae02, &(0x7f0000000440)=ANY=[@ANYBLOB="010000e8a806846728a902d7836e000000000090c8bb2c64ee855b03d6b79f01fd689aefd896253378642249ab91395ab66a034c399ce7623518b671b773347d0fd26ec81ac69a995c8ce192812ee8050c3814b9781ac68ebaded833a2c6c838d8647586e9c6e9a5856a915e647163631e9ebb8c6af6c63986f87e1cb1e65dda52219878b2bf0aa3c41d7257b9b338d3de7e2930af343b00807a9f0f1508f564e7be9484af85b8deea898a0e15d4e59917a706dff1d6eb4d00000000000000000000"])
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
pipe2(&(0x7f0000000700)={<r3=>0x0, <r4=>0x0}, 0x0)
ioctl$KVM_SET_XSAVE(r2, 0x5000aea5, &(0x7f0000000740)={"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"})
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
shmget(0x0, 0x3000, 0x1, &(0x7f000075a000/0x3000)=nil)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000600)={<r6=>0x0, @in={{0x2, 0x4e23, @multicast2=0xe0000002}}, 0x5, 0x6, 0x1, 0xfff, 0x8}, &(0x7f0000000080)=0x98)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000b40)={r6, @in={{0x2, 0x4e24, @rand_addr=0x10000}}, 0x5, 0x101, 0x6, 0xea, 0x72}, &(0x7f00000002c0)=0x98)
r7 = dup3(r5, r4, 0x0)
munlockall()
r8 = shmget$private(0x0, 0x3000, 0x10, &(0x7f0000760000/0x3000)=nil)
shmctl$IPC_RMID(r8, 0x0)
clock_gettime(0x7, &(0x7f0000000000))
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f0000460fe4)={0x0, 0x7, 0x2, 0x0, 0x4, 0x8, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x805})
ioctl$SNDRV_TIMER_IOCTL_GINFO(r4, 0xc0f85403, &(0x7f0000000c00)={{0xffffffffffffffff, 0x0, 0x3, 0x3, 0x2}, 0x81, 0x3, 'id0\x00', 'timer0\x00', 0x0, 0x6, 0x1, 0x6, 0x3})
ioctl$sock_inet6_tcp_SIOCINQ(r3, 0x541b, &(0x7f0000000040))
socket(0xf, 0x6, 0x5)
ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000280)={0x81, 0x1})
ioctl$EVIOCSABS2F(r7, 0x401845ef, &(0x7f0000000240)={0x9, 0x0, 0xfffffffffffffffd, 0x1ff, 0x4, 0x7f})
getsockopt$ax25_buf(r4, 0x101, 0x19, &(0x7f0000000140)=""/53, &(0x7f0000000180)=0x35)
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/enforce\x00', 0x10000, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000753000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, &(0x7f00000000c0)="0fc7280f080f20030f01727166ba4200b834000000ef66bad10466edb81da1fb500f23d00f21f835300000050f23f8c4c3194bfc360f20030fc76d08", 0x3c}], 0x1, 0x7, &(0x7f0000000380), 0x10000181)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r2, 0x8008ae9d, &(0x7f0000000340)=""/250)

2018/04/11 00:13:35 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={'filter\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\a\x00', 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:35 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x100000000000000}, 0x0)

[  460.020509] FAULT_INJECTION: forcing a failure.
[  460.020509] name failslab, interval 1, probability 0, space 0, times 0
[  460.031883] CPU: 0 PID: 30493 Comm: syz-executor2 Not tainted 4.16.0+ #18
[  460.038809] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  460.048171] Call Trace:
[  460.050759]  dump_stack+0x1b9/0x294
[  460.054373]  ? dump_stack_print_info.cold.2+0x52/0x52
[  460.059545]  ? __save_stack_trace+0x7e/0xd0
[  460.063857]  should_fail.cold.4+0xa/0x1a
[  460.067906]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  460.072992]  ? kasan_kmalloc+0xc4/0xe0
[  460.076864]  ? kasan_slab_alloc+0x12/0x20
[  460.080993]  ? kmem_cache_alloc+0x12e/0x760
[  460.085303]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  460.090217]  ? kvm_mmu_load+0x21/0x10e0
[  460.094174]  ? vcpu_enter_guest+0x3aa1/0x6070
[  460.098655]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  460.103657]  ? graph_lock+0x170/0x170
[  460.107441]  ? do_syscall_64+0x29e/0x9d0
[  460.111491]  ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  460.116853]  ? find_held_lock+0x36/0x1c0
[  460.120908]  ? __lock_is_held+0xb5/0x140
[  460.124957]  ? check_same_owner+0x320/0x320
[  460.129263]  ? rcu_note_context_switch+0x710/0x710
[  460.134181]  __should_failslab+0x124/0x180
[  460.138424]  should_failslab+0x9/0x14
[  460.142219]  kmem_cache_alloc+0x2af/0x760
[  460.146356]  ? alloc_pages_current+0x114/0x210
[  460.150925]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  460.155839]  mmu_topup_memory_caches+0x2fa/0x3a0
[  460.160585]  kvm_mmu_load+0x21/0x10e0
[  460.164390]  ? __might_sleep+0x95/0x190
[  460.168352]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  460.173879]  vcpu_enter_guest+0x3aa1/0x6070
[  460.178275]  ? kvm_vcpu_ioctl+0x1e2/0x12e0
[  460.182495]  ? print_usage_bug+0xc0/0xc0
[  460.186538]  ? print_usage_bug+0xc0/0xc0
[  460.190592]  ? kvm_set_msr_common+0x2660/0x2660
[  460.195247]  ? vmx_vcpu_load+0xaed/0xff0
[  460.199287]  ? __lock_acquire+0x7f5/0x5130
[  460.203505]  ? vmx_vcpu_reset+0x1030/0x1030
[  460.207809]  ? graph_lock+0x170/0x170
[  460.211594]  ? retint_kernel+0x10/0x10
[  460.215466]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  460.220470]  ? __lock_is_held+0xb5/0x140
[  460.224514]  ? retint_kernel+0x10/0x10
[  460.228383]  ? lock_acquire+0x1dc/0x520
[  460.232340]  ? kvm_arch_vcpu_ioctl_run+0x234/0x1690
[  460.237345]  ? lock_release+0xa10/0xa10
[  460.241302]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  460.246562]  ? kvm_arch_dev_ioctl+0x5f0/0x5f0
[  460.251041]  ? preempt_notifier_dec+0x20/0x20
[  460.255527]  kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  460.260351]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  460.265357]  kvm_vcpu_ioctl+0x79d/0x12e0
[  460.269414]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  460.275111]  ? graph_lock+0x170/0x170
[  460.278898]  ? find_held_lock+0x36/0x1c0
[  460.282945]  ? lock_downgrade+0x8e0/0x8e0
[  460.287087]  ? kasan_check_read+0x11/0x20
[  460.291217]  ? rcu_is_watching+0x85/0x140
[  460.295347]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  460.300528]  ? __fget+0x40c/0x650
[  460.303963]  ? match_held_lock+0x881/0x8b0
[  460.308189]  ? expand_files.part.8+0x9a0/0x9a0
[  460.312757]  ? kasan_check_write+0x14/0x20
[  460.316978]  ? __mutex_unlock_slowpath+0x180/0x8a0
[  460.321895]  ? wait_for_completion+0x870/0x870
[  460.326462]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  460.331638]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  460.337332]  do_vfs_ioctl+0x1cf/0x1650
[  460.341212]  ? ioctl_preallocate+0x2e0/0x2e0
[  460.345604]  ? fget_raw+0x20/0x20
[  460.349042]  ? __sb_end_write+0xac/0xe0
[  460.353179]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  460.358710]  ? fput+0x130/0x1a0
[  460.362743]  ? ksys_write+0x1a6/0x250
[  460.366536]  ? security_file_ioctl+0x94/0xc0
[  460.370931]  ksys_ioctl+0xa9/0xd0
[  460.374373]  SyS_ioctl+0x24/0x30
[  460.377721]  ? ksys_ioctl+0xd0/0xd0
[  460.381333]  do_syscall_64+0x29e/0x9d0
[  460.385206]  ? syscall_slow_exit_work+0x4f0/0x4f0
[  460.390037]  ? syscall_return_slowpath+0x5c0/0x5c0
[  460.394949]  ? syscall_return_slowpath+0x30f/0x5c0
[  460.399865]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  460.405214]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  460.410047]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  460.415219] RIP: 0033:0x455259
[  460.418391] RSP: 002b:00007f45bbc7bc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  460.426084] RAX: ffffffffffffffda RBX: 00007f45bbc7c6d4 RCX: 0000000000455259
[  460.433438] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000017
[  460.440705] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  460.448044] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000019
[  460.455300] R13: 0000000000000251 R14: 00000000006f6838 R15: 000000000000003d
2018/04/11 00:13:36 executing program 4:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0x80045300, &(0x7f00000000c0)={0x0, 0x0, 0x0, "7175657565300000000000000000000000000000000000fdfdffff00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))

2018/04/11 00:13:36 executing program 2 (fault-call:26 fault-nth:62):
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/pfkey\x00', 0x1, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_GET_MSR_INDEX_LIST(r1, 0xc004ae02, &(0x7f0000000440)=ANY=[@ANYBLOB="010000e8a806846728a902d7836e000000000090c8bb2c64ee855b03d6b79f01fd689aefd896253378642249ab91395ab66a034c399ce7623518b671b773347d0fd26ec81ac69a995c8ce192812ee8050c3814b9781ac68ebaded833a2c6c838d8647586e9c6e9a5856a915e647163631e9ebb8c6af6c63986f87e1cb1e65dda52219878b2bf0aa3c41d7257b9b338d3de7e2930af343b00807a9f0f1508f564e7be9484af85b8deea898a0e15d4e59917a706dff1d6eb4d00000000000000000000"])
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
pipe2(&(0x7f0000000700)={<r3=>0x0, <r4=>0x0}, 0x0)
ioctl$KVM_SET_XSAVE(r2, 0x5000aea5, &(0x7f0000000740)={"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"})
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
shmget(0x0, 0x3000, 0x1, &(0x7f000075a000/0x3000)=nil)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000600)={<r6=>0x0, @in={{0x2, 0x4e23, @multicast2=0xe0000002}}, 0x5, 0x6, 0x1, 0xfff, 0x8}, &(0x7f0000000080)=0x98)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000b40)={r6, @in={{0x2, 0x4e24, @rand_addr=0x10000}}, 0x5, 0x101, 0x6, 0xea, 0x72}, &(0x7f00000002c0)=0x98)
r7 = dup3(r5, r4, 0x0)
munlockall()
r8 = shmget$private(0x0, 0x3000, 0x10, &(0x7f0000760000/0x3000)=nil)
shmctl$IPC_RMID(r8, 0x0)
clock_gettime(0x7, &(0x7f0000000000))
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f0000460fe4)={0x0, 0x7, 0x2, 0x0, 0x4, 0x8, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x805})
ioctl$SNDRV_TIMER_IOCTL_GINFO(r4, 0xc0f85403, &(0x7f0000000c00)={{0xffffffffffffffff, 0x0, 0x3, 0x3, 0x2}, 0x81, 0x3, 'id0\x00', 'timer0\x00', 0x0, 0x6, 0x1, 0x6, 0x3})
ioctl$sock_inet6_tcp_SIOCINQ(r3, 0x541b, &(0x7f0000000040))
socket(0xf, 0x6, 0x5)
ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000280)={0x81, 0x1})
ioctl$EVIOCSABS2F(r7, 0x401845ef, &(0x7f0000000240)={0x9, 0x0, 0xfffffffffffffffd, 0x1ff, 0x4, 0x7f})
getsockopt$ax25_buf(r4, 0x101, 0x19, &(0x7f0000000140)=""/53, &(0x7f0000000180)=0x35)
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/enforce\x00', 0x10000, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000753000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, &(0x7f00000000c0)="0fc7280f080f20030f01727166ba4200b834000000ef66bad10466edb81da1fb500f23d00f21f835300000050f23f8c4c3194bfc360f20030fc76d08", 0x3c}], 0x1, 0x7, &(0x7f0000000380), 0x10000181)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r2, 0x8008ae9d, &(0x7f0000000340)=""/250)

2018/04/11 00:13:36 executing program 0:
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sndtimer(&(0x7f0000ea5000)='/dev/snd/timer\x00', 0x0, 0x0)
read(r0, &(0x7f0000000040)=""/204, 0xcc)
ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0x40045402, &(0x7f0000b01ffc)=0xffffffffffffffff)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000001000)={{0x100000001}})
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r0, 0x40505412, &(0x7f0000000140)={0xfffffffffffffffe, 0x7, 0xfffffffffffffff7, 0x0, 0x6})
ioctl$SNDRV_TIMER_IOCTL_START(r0, 0x54a0)

2018/04/11 00:13:36 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0xfffff000}, 0x0)

2018/04/11 00:13:36 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c74657200000000000200", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:36 executing program 7:
capset(&(0x7f0000002ffa)={0x20080522}, &(0x7f0000002000)={0x0, 0x4000000000})
socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000480)=@raw={'raw\x00', 0x9, 0x3, 0x270, 0x0, 0xffffffff, 0xffffffff, 0xe0, 0xffffffff, 0x1d8, 0xffffffff, 0xffffffff, 0x1d8, 0xffffffff, 0x3, &(0x7f0000000000), {[{{@ip={@multicast1=0xe0000001, @empty, 0x0, 0x0, 'ip6_vti0\x00', 'bpq0\x00'}, 0x0, 0x98, 0xe0}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'netbios-ns\x00'}}}, {{@uncond, 0x0, 0x98, 0xf8}, @common=@SET={0x60, 'SET\x00'}}], {{[], 0x0, 0x70, 0x98}, {0x28, '\x00', 0x0, 0xfffffffffffffffe}}}}, 0x2d0)

2018/04/11 00:13:36 executing program 1:
mkdir(&(0x7f000082f000)='./control\x00', 0x0)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000001c0)={0xaa})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1})
r1 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0)
write$sndseq(r1, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {0x0, 0x10000}, @time=@time={0x77359400}}], 0x30)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8924, &(0x7f00000003c0)={'ip6gre0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}})
unlink(&(0x7f00000000c0)='./control/file0\x00')
rename(&(0x7f0000000040)='./control/file0\x00', &(0x7f0000000080)='./control\x00')
mount(&(0x7f0000000300)='./file0\x00', &(0x7f00000006c0)='./file0/file0\x00', &(0x7f0000000780)='pstore\x00', 0x201030, &(0x7f00000007c0)="f77ee893c0dacf1469939730dd0d69be615896c69eeb0eddc13ffb9079ea17f17cf4346bcfc4e3b871ccabdedcbe")
ioctl$EVIOCGVERSION(r1, 0x80044501, &(0x7f0000000580)=""/148)
ioctl$int_in(0xffffffffffffffff, 0x5452, &(0x7f0000000540)=0x128)
syz_open_dev$sndpcmc(&(0x7f0000000240)='/dev/snd/pcmC#D#c\x00', 0x2, 0x1)
mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='btrfs\x00', 0x1000, &(0x7f0000000240))
times(&(0x7f0000000500))
ioctl$sock_SIOCADDDLCI(r1, 0x8980, &(0x7f0000000640)={'rose0\x00'})
socket$packet(0x11, 0x2, 0x300)
umount2(&(0x7f0000000200)='./file0\x00', 0x0)
syz_mount_image$minix(&(0x7f0000000680)='minix\x00', &(0x7f0000000340)='./control/file0\x00', 0x400, 0x0, &(0x7f0000000700), 0x0, 0x0)
rename(&(0x7f0000000740)='./file0\x00', &(0x7f0000000380)='./control/file0\x00')
close(r0)

2018/04/11 00:13:36 executing program 5:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0xc08c5336, &(0x7f00000000c0)={0x0, 0x0, 0x0, "717565756530000000000000000000000000000000000000000000000000000000001f00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer2\x00', 0x0, 0x0)

2018/04/11 00:13:36 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c74657200000000000600", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:36 executing program 7:
r0 = socket$inet(0x10, 0x40000000000003, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000000c0)="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", 0xffffffffffffff27}], 0x1}, 0x0)
open(&(0x7f0000000040)='./file0\x00', 0x0, 0x50)

[  460.713528] FAULT_INJECTION: forcing a failure.
[  460.713528] name failslab, interval 1, probability 0, space 0, times 0
[  460.725007] CPU: 1 PID: 30524 Comm: syz-executor2 Not tainted 4.16.0+ #18
[  460.731942] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  460.741300] Call Trace:
[  460.743903]  dump_stack+0x1b9/0x294
[  460.747547]  ? dump_stack_print_info.cold.2+0x52/0x52
[  460.752749]  ? __save_stack_trace+0x7e/0xd0
[  460.757098]  should_fail.cold.4+0xa/0x1a
2018/04/11 00:13:36 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0xf00}, 0x0)

[  460.761182]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  460.766292]  ? kasan_kmalloc+0xc4/0xe0
[  460.770195]  ? kasan_slab_alloc+0x12/0x20
[  460.774351]  ? kmem_cache_alloc+0x12e/0x760
[  460.778681]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  460.783622]  ? kvm_mmu_load+0x21/0x10e0
[  460.787694]  ? vcpu_enter_guest+0x3aa1/0x6070
[  460.792240]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  460.797272]  ? graph_lock+0x170/0x170
[  460.801080]  ? do_syscall_64+0x29e/0x9d0
[  460.805151]  ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
2018/04/11 00:13:36 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0xc00e}, 0x0)

2018/04/11 00:13:36 executing program 7:
pipe(&(0x7f0000000040))
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$ARPT_SO_GET_ENTRIES(r0, 0x0, 0x61, &(0x7f0000000000)={'filter\x00', 0x4, "5b095011"}, &(0x7f00000000c0)=0x28)

[  460.810532]  ? find_held_lock+0x36/0x1c0
[  460.814616]  ? __lock_is_held+0xb5/0x140
[  460.818703]  ? check_same_owner+0x320/0x320
[  460.823038]  ? rcu_note_context_switch+0x710/0x710
[  460.827989]  __should_failslab+0x124/0x180
[  460.832233]  should_failslab+0x9/0x14
[  460.836040]  kmem_cache_alloc+0x2af/0x760
[  460.840202]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  460.845143]  mmu_topup_memory_caches+0x2fa/0x3a0
[  460.849916]  kvm_mmu_load+0x21/0x10e0
[  460.853725]  ? __might_sleep+0x95/0x190
[  460.857712]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  460.863268]  vcpu_enter_guest+0x3aa1/0x6070
[  460.867601]  ? kvm_vcpu_ioctl+0x1e2/0x12e0
[  460.871857]  ? perf_trace_lock+0xd6/0x900
[  460.876014]  ? print_usage_bug+0xc0/0xc0
[  460.880092]  ? kvm_set_msr_common+0x2660/0x2660
[  460.884773]  ? zap_class+0x720/0x720
[  460.888494]  ? vmx_vcpu_load+0xaed/0xff0
[  460.892567]  ? __lock_acquire+0x7f5/0x5130
[  460.896817]  ? vmx_vcpu_reset+0x1030/0x1030
[  460.901146]  ? graph_lock+0x170/0x170
[  460.904949]  ? __lock_acquire+0x7f5/0x5130
[  460.909196]  ? debug_check_no_locks_freed+0x310/0x310
2018/04/11 00:13:36 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0xffffff9e}, 0x0)

2018/04/11 00:13:36 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0xfffffffffffff000}, 0x0)

[  460.914385]  ? print_usage_bug+0xc0/0xc0
[  460.918454]  ? __lock_is_held+0xb5/0x140
[  460.922529]  ? lock_acquire+0x1dc/0x520
[  460.926506]  ? kvm_arch_vcpu_ioctl_run+0x234/0x1690
[  460.931539]  ? lock_release+0xa10/0xa10
[  460.935517]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  460.940801]  ? kvm_arch_dev_ioctl+0x5f0/0x5f0
[  460.945301]  ? preempt_notifier_dec+0x20/0x20
[  460.949819]  kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  460.954664]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  460.959782]  kvm_vcpu_ioctl+0x79d/0x12e0
[  460.963856]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  460.969576]  ? graph_lock+0x170/0x170
[  460.973394]  ? find_held_lock+0x36/0x1c0
[  460.977472]  ? lock_downgrade+0x8e0/0x8e0
[  460.981636]  ? rcu_is_watching+0x85/0x140
[  460.985788]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  460.990993]  ? __fget+0x40c/0x650
[  460.994453]  ? match_held_lock+0x881/0x8b0
[  460.998695]  ? expand_files.part.8+0x9a0/0x9a0
[  461.003284]  ? kasan_check_write+0x14/0x20
[  461.007535]  ? __mutex_unlock_slowpath+0x180/0x8a0
2018/04/11 00:13:36 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c7465720000000000000000000000000500", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

[  461.012478]  ? wait_for_completion+0x870/0x870
[  461.017071]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  461.022274]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  461.027994]  do_vfs_ioctl+0x1cf/0x1650
[  461.031893]  ? ioctl_preallocate+0x2e0/0x2e0
[  461.036314]  ? fget_raw+0x20/0x20
[  461.039777]  ? __sb_end_write+0xac/0xe0
[  461.043764]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  461.049304]  ? fput+0x130/0x1a0
[  461.052595]  ? ksys_write+0x1a6/0x250
[  461.056407]  ? security_file_ioctl+0x94/0xc0
[  461.060825]  ksys_ioctl+0xa9/0xd0
[  461.064288]  SyS_ioctl+0x24/0x30
[  461.067657]  ? ksys_ioctl+0xd0/0xd0
[  461.071295]  do_syscall_64+0x29e/0x9d0
[  461.075185]  ? vmalloc_sync_all+0x30/0x30
[  461.079342]  ? _raw_spin_unlock_irq+0x27/0x70
[  461.083936]  ? finish_task_switch+0x1ca/0x820
[  461.088442]  ? syscall_return_slowpath+0x5c0/0x5c0
[  461.093382]  ? syscall_return_slowpath+0x30f/0x5c0
[  461.098323]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  461.103699]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  461.108559]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  461.113751] RIP: 0033:0x455259
[  461.116937] RSP: 002b:00007f45bbc7bc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  461.124656] RAX: ffffffffffffffda RBX: 00007f45bbc7c6d4 RCX: 0000000000455259
[  461.131928] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000017
[  461.139199] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  461.146492] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000019
[  461.153771] R13: 0000000000000251 R14: 00000000006f6838 R15: 000000000000003e
2018/04/11 00:13:37 executing program 4:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0x80045300, &(0x7f00000000c0)={0x0, 0x0, 0x0, "717565756530000000000000000000000000000000000000000000fffffdfd00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))

2018/04/11 00:13:37 executing program 1:
mkdir(&(0x7f000082f000)='./control\x00', 0x0)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000001c0)={0xaa})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1})
r1 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0)
write$sndseq(r1, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {0x0, 0x10000}, @time=@time={0x77359400}}], 0x30)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8924, &(0x7f00000003c0)={'ip6gre0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}})
unlink(&(0x7f00000000c0)='./control/file0\x00')
rename(&(0x7f0000000040)='./control/file0\x00', &(0x7f0000000080)='./control\x00')
mount(&(0x7f0000000300)='./file0\x00', &(0x7f00000006c0)='./file0/file0\x00', &(0x7f0000000780)='pstore\x00', 0x201030, &(0x7f00000007c0)="f77ee893c0dacf1469939730dd0d69be615896c69eeb0eddc13ffb9079ea17f17cf4346bcfc4e3b871ccabdedcbe")
ioctl$EVIOCGVERSION(r1, 0x80044501, &(0x7f0000000580)=""/148)
ioctl$int_in(0xffffffffffffffff, 0x5452, &(0x7f0000000540)=0x128)
syz_open_dev$sndpcmc(&(0x7f0000000240)='/dev/snd/pcmC#D#c\x00', 0x2, 0x1)
mknod(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mount(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='btrfs\x00', 0x1000, &(0x7f0000000240))
times(&(0x7f0000000500))
ioctl$sock_SIOCADDDLCI(r1, 0x8980, &(0x7f0000000640)={'rose0\x00'})
socket$packet(0x11, 0x2, 0x300)
umount2(&(0x7f0000000200)='./file0\x00', 0x0)
syz_mount_image$minix(&(0x7f0000000680)='minix\x00', &(0x7f0000000340)='./control/file0\x00', 0x400, 0x0, &(0x7f0000000700), 0x0, 0x0)
rename(&(0x7f0000000740)='./file0\x00', &(0x7f0000000380)='./control/file0\x00')
close(r0)

2018/04/11 00:13:37 executing program 5:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0xc08c5336, &(0x7f00000000c0)={0x0, 0x0, 0x0, "717565756530000000000000000000000000000000000000000000000000000000000000001f00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer2\x00', 0x0, 0x0)

2018/04/11 00:13:37 executing program 0:
r0 = dup2(0xffffffffffffff9c, 0xffffffffffffff9c)
ioctl$BINDER_GET_NODE_DEBUG_INFO(r0, 0xc018620b, &(0x7f0000000000)={<r1=>0x0})
ioctl$BINDER_GET_NODE_DEBUG_INFO(r0, 0xc018620b, &(0x7f0000000040)={r1})
close(r0)

2018/04/11 00:13:37 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x2}, 0x0)

2018/04/11 00:13:37 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
bind$netlink(r0, &(0x7f00000002c0)={0x10, 0x0, 0x0, 0x100000}, 0xc)
getsockname(r0, &(0x7f0000000000)=@pppol2tpv3in6={0x0, 0x0, {0x0, <r1=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @loopback}}}, &(0x7f00000000c0)=0x3a)
mmap(&(0x7f0000e00000/0x200000)=nil, 0x200000, 0x0, 0x11, r1, 0x0)
setsockopt$inet_tcp_buf(r1, 0x6, 0x3f, &(0x7f0000000100)="8919b25272fb0668d350278fc58a088dcc994b0c5ae49238c9baf90ce61900643758fd5cae1079a901f708bfd6157b2290e26f0f8788c13afea48741aa92322b216dae0ad885b4c6f3701303a1ab796174dc505ea2e01f87d2ecdd09442a667e03711667eb5c3eb8aed843e867eea4e6dcd4670aa4d97f1e176576f4b0b8c873e38781", 0x83)

2018/04/11 00:13:37 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={'filter\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\a\x00', 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:37 executing program 2 (fault-call:26 fault-nth:63):
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/pfkey\x00', 0x1, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_GET_MSR_INDEX_LIST(r1, 0xc004ae02, &(0x7f0000000440)=ANY=[@ANYBLOB="010000e8a806846728a902d7836e000000000090c8bb2c64ee855b03d6b79f01fd689aefd896253378642249ab91395ab66a034c399ce7623518b671b773347d0fd26ec81ac69a995c8ce192812ee8050c3814b9781ac68ebaded833a2c6c838d8647586e9c6e9a5856a915e647163631e9ebb8c6af6c63986f87e1cb1e65dda52219878b2bf0aa3c41d7257b9b338d3de7e2930af343b00807a9f0f1508f564e7be9484af85b8deea898a0e15d4e59917a706dff1d6eb4d00000000000000000000"])
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
pipe2(&(0x7f0000000700)={<r3=>0x0, <r4=>0x0}, 0x0)
ioctl$KVM_SET_XSAVE(r2, 0x5000aea5, &(0x7f0000000740)={"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"})
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
shmget(0x0, 0x3000, 0x1, &(0x7f000075a000/0x3000)=nil)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000600)={<r6=>0x0, @in={{0x2, 0x4e23, @multicast2=0xe0000002}}, 0x5, 0x6, 0x1, 0xfff, 0x8}, &(0x7f0000000080)=0x98)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000b40)={r6, @in={{0x2, 0x4e24, @rand_addr=0x10000}}, 0x5, 0x101, 0x6, 0xea, 0x72}, &(0x7f00000002c0)=0x98)
r7 = dup3(r5, r4, 0x0)
munlockall()
r8 = shmget$private(0x0, 0x3000, 0x10, &(0x7f0000760000/0x3000)=nil)
shmctl$IPC_RMID(r8, 0x0)
clock_gettime(0x7, &(0x7f0000000000))
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f0000460fe4)={0x0, 0x7, 0x2, 0x0, 0x4, 0x8, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x805})
ioctl$SNDRV_TIMER_IOCTL_GINFO(r4, 0xc0f85403, &(0x7f0000000c00)={{0xffffffffffffffff, 0x0, 0x3, 0x3, 0x2}, 0x81, 0x3, 'id0\x00', 'timer0\x00', 0x0, 0x6, 0x1, 0x6, 0x3})
ioctl$sock_inet6_tcp_SIOCINQ(r3, 0x541b, &(0x7f0000000040))
socket(0xf, 0x6, 0x5)
ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000280)={0x81, 0x1})
ioctl$EVIOCSABS2F(r7, 0x401845ef, &(0x7f0000000240)={0x9, 0x0, 0xfffffffffffffffd, 0x1ff, 0x4, 0x7f})
getsockopt$ax25_buf(r4, 0x101, 0x19, &(0x7f0000000140)=""/53, &(0x7f0000000180)=0x35)
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/enforce\x00', 0x10000, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000753000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, &(0x7f00000000c0)="0fc7280f080f20030f01727166ba4200b834000000ef66bad10466edb81da1fb500f23d00f21f835300000050f23f8c4c3194bfc360f20030fc76d08", 0x3c}], 0x1, 0x7, &(0x7f0000000380), 0x10000181)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r2, 0x8008ae9d, &(0x7f0000000340)=""/250)

2018/04/11 00:13:37 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x1000000}, 0x0)

[  461.857693] FAULT_INJECTION: forcing a failure.
[  461.857693] name failslab, interval 1, probability 0, space 0, times 0
[  461.869046] CPU: 1 PID: 30592 Comm: syz-executor2 Not tainted 4.16.0+ #18
[  461.875979] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  461.885337] Call Trace:
[  461.887936]  dump_stack+0x1b9/0x294
[  461.891580]  ? dump_stack_print_info.cold.2+0x52/0x52
[  461.896781]  ? __save_stack_trace+0x7e/0xd0
[  461.901125]  should_fail.cold.4+0xa/0x1a
[  461.905198]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  461.910313]  ? kasan_kmalloc+0xc4/0xe0
[  461.914214]  ? kasan_slab_alloc+0x12/0x20
[  461.918374]  ? kmem_cache_alloc+0x12e/0x760
[  461.922698]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  461.927616]  ? kvm_mmu_load+0x21/0x10e0
[  461.931576]  ? vcpu_enter_guest+0x3aa1/0x6070
[  461.936052]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  461.941063]  ? graph_lock+0x170/0x170
[  461.944852]  ? do_syscall_64+0x29e/0x9d0
[  461.948900]  ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  461.954259]  ? find_held_lock+0x36/0x1c0
[  461.958310]  ? __lock_is_held+0xb5/0x140
[  461.962370]  ? check_same_owner+0x320/0x320
[  461.966681]  ? rcu_note_context_switch+0x710/0x710
[  461.971603]  __should_failslab+0x124/0x180
[  461.975829]  should_failslab+0x9/0x14
[  461.979615]  kmem_cache_alloc+0x2af/0x760
[  461.983751]  ? alloc_pages_current+0x114/0x210
[  461.988325]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  461.993246]  mmu_topup_memory_caches+0x2fa/0x3a0
[  461.997990]  kvm_mmu_load+0x21/0x10e0
[  462.001782]  ? __might_sleep+0x95/0x190
[  462.005744]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  462.011270]  vcpu_enter_guest+0x3aa1/0x6070
[  462.015578]  ? kvm_vcpu_ioctl+0x1e2/0x12e0
[  462.019804]  ? perf_trace_lock+0xd6/0x900
[  462.023937]  ? print_usage_bug+0xc0/0xc0
[  462.027988]  ? kvm_set_msr_common+0x2660/0x2660
[  462.032646]  ? zap_class+0x720/0x720
[  462.036347]  ? vmx_vcpu_load+0xaed/0xff0
[  462.040392]  ? __lock_acquire+0x7f5/0x5130
[  462.044616]  ? vmx_vcpu_reset+0x1030/0x1030
[  462.048922]  ? graph_lock+0x170/0x170
[  462.052710]  ? __lock_acquire+0x7f5/0x5130
[  462.056935]  ? debug_check_no_locks_freed+0x310/0x310
[  462.062116]  ? __lock_is_held+0xb5/0x140
[  462.066166]  ? lock_acquire+0x1dc/0x520
[  462.070127]  ? kvm_arch_vcpu_ioctl_run+0x234/0x1690
[  462.095018]  ? lock_release+0xa10/0xa10
[  462.098995]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  462.104264]  ? kvm_arch_dev_ioctl+0x5f0/0x5f0
[  462.108744]  ? preempt_notifier_dec+0x20/0x20
[  462.113233]  kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  462.118062]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  462.123077]  kvm_vcpu_ioctl+0x79d/0x12e0
[  462.127126]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  462.132824]  ? graph_lock+0x170/0x170
[  462.136622]  ? find_held_lock+0x36/0x1c0
[  462.140677]  ? lock_downgrade+0x8e0/0x8e0
[  462.144821]  ? rcu_is_watching+0x85/0x140
[  462.148970]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  462.154156]  ? __fget+0x40c/0x650
[  462.157601]  ? match_held_lock+0x881/0x8b0
[  462.161826]  ? expand_files.part.8+0x9a0/0x9a0
[  462.166396]  ? kasan_check_write+0x14/0x20
[  462.170632]  ? __mutex_unlock_slowpath+0x180/0x8a0
[  462.175551]  ? wait_for_completion+0x870/0x870
[  462.180124]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  462.185304]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  462.191002]  do_vfs_ioctl+0x1cf/0x1650
[  462.194887]  ? ioctl_preallocate+0x2e0/0x2e0
[  462.199282]  ? fget_raw+0x20/0x20
[  462.202724]  ? __sb_end_write+0xac/0xe0
[  462.206687]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  462.212207]  ? fput+0x130/0x1a0
[  462.215472]  ? ksys_write+0x1a6/0x250
[  462.219261]  ? security_file_ioctl+0x94/0xc0
[  462.223659]  ksys_ioctl+0xa9/0xd0
[  462.227104]  SyS_ioctl+0x24/0x30
[  462.230454]  ? ksys_ioctl+0xd0/0xd0
[  462.234069]  do_syscall_64+0x29e/0x9d0
[  462.237945]  ? syscall_slow_exit_work+0x4f0/0x4f0
[  462.242777]  ? syscall_return_slowpath+0x5c0/0x5c0
[  462.247694]  ? syscall_return_slowpath+0x30f/0x5c0
[  462.252618]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  462.257978]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  462.262814]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  462.267990] RIP: 0033:0x455259
[  462.271167] RSP: 002b:00007f45bbc7bc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  462.278861] RAX: ffffffffffffffda RBX: 00007f45bbc7c6d4 RCX: 0000000000455259
[  462.286115] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000017
[  462.293378] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  462.300637] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000019
2018/04/11 00:13:38 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c746572000000000000020c4900", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:38 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000005c0)=[@text16={0x10, &(0x7f0000000380)="0f20c06635080000000f22c00f01ca6766c744240048b700006766c7442402007000006766c744240600000000670f011c24663e0f011e0e200fc77d000f017aaeb8a4000f00d80f01cbf20f00d2b83c000f00d0", 0x54}], 0x1, 0x0, &(0x7f0000000600), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  462.307890] R13: 0000000000000251 R14: 00000000006f6838 R15: 000000000000003f
2018/04/11 00:13:38 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0xf0}, 0x0)

2018/04/11 00:13:38 executing program 7:
r0 = socket$inet(0x2, 0xa, 0x9)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10)
sendto$inet(r0, &(0x7f0000000140), 0x0, 0x200007ff, &(0x7f0000003e00)={0x2, 0x404e23}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cgroup.stat\x00', 0x0, 0x0)
ioctl$VHOST_SET_VRING_BUSYLOOP_TIMEOUT(r1, 0x4008af23, &(0x7f0000000040)={0x2, 0x4})
sendto$inet(r0, &(0x7f00006fd000)="c3", 0x1, 0x51, &(0x7f0000e66000)={0x2, 0x0, @rand_addr}, 0x10)
recvfrom$inet(r0, &(0x7f0000000200)=""/160, 0xa0, 0x1, 0x0, 0x0)

2018/04/11 00:13:38 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c7465720000000000000600", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:38 executing program 2 (fault-call:26 fault-nth:64):
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/pfkey\x00', 0x1, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_GET_MSR_INDEX_LIST(r1, 0xc004ae02, &(0x7f0000000440)=ANY=[@ANYBLOB="010000e8a806846728a902d7836e000000000090c8bb2c64ee855b03d6b79f01fd689aefd896253378642249ab91395ab66a034c399ce7623518b671b773347d0fd26ec81ac69a995c8ce192812ee8050c3814b9781ac68ebaded833a2c6c838d8647586e9c6e9a5856a915e647163631e9ebb8c6af6c63986f87e1cb1e65dda52219878b2bf0aa3c41d7257b9b338d3de7e2930af343b00807a9f0f1508f564e7be9484af85b8deea898a0e15d4e59917a706dff1d6eb4d00000000000000000000"])
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
pipe2(&(0x7f0000000700)={<r3=>0x0, <r4=>0x0}, 0x0)
ioctl$KVM_SET_XSAVE(r2, 0x5000aea5, &(0x7f0000000740)={"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"})
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
shmget(0x0, 0x3000, 0x1, &(0x7f000075a000/0x3000)=nil)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000600)={<r6=>0x0, @in={{0x2, 0x4e23, @multicast2=0xe0000002}}, 0x5, 0x6, 0x1, 0xfff, 0x8}, &(0x7f0000000080)=0x98)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000b40)={r6, @in={{0x2, 0x4e24, @rand_addr=0x10000}}, 0x5, 0x101, 0x6, 0xea, 0x72}, &(0x7f00000002c0)=0x98)
r7 = dup3(r5, r4, 0x0)
munlockall()
r8 = shmget$private(0x0, 0x3000, 0x10, &(0x7f0000760000/0x3000)=nil)
shmctl$IPC_RMID(r8, 0x0)
clock_gettime(0x7, &(0x7f0000000000))
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f0000460fe4)={0x0, 0x7, 0x2, 0x0, 0x4, 0x8, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x805})
ioctl$SNDRV_TIMER_IOCTL_GINFO(r4, 0xc0f85403, &(0x7f0000000c00)={{0xffffffffffffffff, 0x0, 0x3, 0x3, 0x2}, 0x81, 0x3, 'id0\x00', 'timer0\x00', 0x0, 0x6, 0x1, 0x6, 0x3})
ioctl$sock_inet6_tcp_SIOCINQ(r3, 0x541b, &(0x7f0000000040))
socket(0xf, 0x6, 0x5)
ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000280)={0x81, 0x1})
ioctl$EVIOCSABS2F(r7, 0x401845ef, &(0x7f0000000240)={0x9, 0x0, 0xfffffffffffffffd, 0x1ff, 0x4, 0x7f})
getsockopt$ax25_buf(r4, 0x101, 0x19, &(0x7f0000000140)=""/53, &(0x7f0000000180)=0x35)
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/enforce\x00', 0x10000, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000753000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, &(0x7f00000000c0)="0fc7280f080f20030f01727166ba4200b834000000ef66bad10466edb81da1fb500f23d00f21f835300000050f23f8c4c3194bfc360f20030fc76d08", 0x3c}], 0x1, 0x7, &(0x7f0000000380), 0x10000181)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r2, 0x8008ae9d, &(0x7f0000000340)=""/250)

2018/04/11 00:13:38 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0xec0}, 0x0)

[  462.517575] FAULT_INJECTION: forcing a failure.
[  462.517575] name failslab, interval 1, probability 0, space 0, times 0
[  462.528936] CPU: 0 PID: 30632 Comm: syz-executor2 Not tainted 4.16.0+ #18
[  462.535865] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  462.545234] Call Trace:
[  462.547841]  dump_stack+0x1b9/0x294
[  462.551492]  ? dump_stack_print_info.cold.2+0x52/0x52
[  462.556692]  ? __save_stack_trace+0x7e/0xd0
[  462.561052]  should_fail.cold.4+0xa/0x1a
[  462.565125]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  462.570240]  ? kasan_kmalloc+0xc4/0xe0
[  462.574134]  ? kasan_slab_alloc+0x12/0x20
[  462.578288]  ? kmem_cache_alloc+0x12e/0x760
[  462.582622]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  462.587560]  ? kvm_mmu_load+0x21/0x10e0
[  462.591548]  ? vcpu_enter_guest+0x3aa1/0x6070
[  462.596074]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  462.601094]  ? graph_lock+0x170/0x170
[  462.604884]  ? do_syscall_64+0x29e/0x9d0
[  462.608936]  ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  462.614285]  ? find_held_lock+0x36/0x1c0
[  462.618329]  ? __lock_is_held+0xb5/0x140
[  462.622395]  ? check_same_owner+0x320/0x320
[  462.626709]  ? rcu_note_context_switch+0x710/0x710
[  462.631631]  __should_failslab+0x124/0x180
[  462.635848]  should_failslab+0x9/0x14
[  462.639641]  kmem_cache_alloc+0x2af/0x760
[  462.643771]  ? alloc_pages_current+0x114/0x210
[  462.648469]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  462.653397]  mmu_topup_memory_caches+0x2fa/0x3a0
[  462.658156]  kvm_mmu_load+0x21/0x10e0
[  462.661942]  ? __might_sleep+0x95/0x190
[  462.665908]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  462.671439]  vcpu_enter_guest+0x3aa1/0x6070
[  462.675743]  ? kvm_vcpu_ioctl+0x1e2/0x12e0
[  462.680081]  ? print_usage_bug+0xc0/0xc0
[  462.684133]  ? kvm_set_msr_common+0x2660/0x2660
[  462.688796]  ? vmx_vcpu_load+0xaed/0xff0
[  462.692839]  ? __lock_acquire+0x7f5/0x5130
[  462.697072]  ? vmx_vcpu_reset+0x1030/0x1030
[  462.701396]  ? graph_lock+0x170/0x170
[  462.705184]  ? __lock_acquire+0x7f5/0x5130
[  462.709403]  ? debug_check_no_locks_freed+0x310/0x310
[  462.714583]  ? print_usage_bug+0xc0/0xc0
[  462.718631]  ? __lock_is_held+0xb5/0x140
[  462.722685]  ? lock_acquire+0x1dc/0x520
[  462.726666]  ? kvm_arch_vcpu_ioctl_run+0x234/0x1690
[  462.731678]  ? lock_release+0xa10/0xa10
[  462.735637]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  462.740904]  ? kvm_arch_dev_ioctl+0x5f0/0x5f0
[  462.745491]  ? preempt_notifier_dec+0x20/0x20
[  462.749974]  kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  462.754799]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  462.759804]  kvm_vcpu_ioctl+0x79d/0x12e0
[  462.763865]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  462.769564]  ? graph_lock+0x170/0x170
[  462.773347]  ? find_held_lock+0x36/0x1c0
[  462.777393]  ? lock_downgrade+0x8e0/0x8e0
[  462.781540]  ? kasan_check_read+0x11/0x20
[  462.785682]  ? rcu_is_watching+0x85/0x140
[  462.790006]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  462.795209]  ? __fget+0x40c/0x650
[  462.798663]  ? match_held_lock+0x881/0x8b0
[  462.802884]  ? expand_files.part.8+0x9a0/0x9a0
[  462.807464]  ? kasan_check_write+0x14/0x20
[  462.811705]  ? __mutex_unlock_slowpath+0x180/0x8a0
[  462.816741]  ? wait_for_completion+0x870/0x870
[  462.821319]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  462.826504]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  462.832205]  do_vfs_ioctl+0x1cf/0x1650
[  462.836086]  ? ioctl_preallocate+0x2e0/0x2e0
[  462.840476]  ? fget_raw+0x20/0x20
[  462.843944]  ? __sb_end_write+0xac/0xe0
[  462.847918]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  462.853457]  ? fput+0x130/0x1a0
[  462.856726]  ? ksys_write+0x1a6/0x250
[  462.860522]  ? security_file_ioctl+0x94/0xc0
[  462.864936]  ksys_ioctl+0xa9/0xd0
[  462.868383]  SyS_ioctl+0x24/0x30
[  462.871736]  ? ksys_ioctl+0xd0/0xd0
[  462.875351]  do_syscall_64+0x29e/0x9d0
[  462.879234]  ? vmalloc_sync_all+0x30/0x30
[  462.884074]  ? syscall_slow_exit_work+0x4f0/0x4f0
[  462.888902]  ? syscall_return_slowpath+0x5c0/0x5c0
[  462.893813]  ? syscall_return_slowpath+0x30f/0x5c0
[  462.898727]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  462.904159]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  462.908999]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  462.914176] RIP: 0033:0x455259
[  462.917341] RSP: 002b:00007f45bbc7bc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  462.925034] RAX: ffffffffffffffda RBX: 00007f45bbc7c6d4 RCX: 0000000000455259
[  462.932290] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000017
[  462.939547] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  462.946798] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000019
[  462.954052] R13: 0000000000000251 R14: 00000000006f6838 R15: 0000000000000040
2018/04/11 00:13:38 executing program 4:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0x80045300, &(0x7f00000000c0)={0x0, 0x0, 0x0, "7175657565300000000000000000000000000000000000fffffdfd00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))

2018/04/11 00:13:38 executing program 5:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0xc08c5336, &(0x7f00000000c0)={0x0, 0x0, 0x0, "71756575653000000000000000000000000000000000000000000000000000000000001f00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer2\x00', 0x0, 0x0)

2018/04/11 00:13:38 executing program 0:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
r1 = syz_open_dev$mouse(&(0x7f0000000100)='/dev/input/mouse#\x00', 0xff, 0x111400)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f0000000280)={&(0x7f0000000180)=[0x0], &(0x7f00000001c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000200)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000240)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x1, 0xa, 0x4, 0x7})
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r2=>0x0]}, &(0x7f000095dffc)=0x8)
r3 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='io.stat\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_DISABLE(r1, 0x2401, 0x7)
setsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r3, 0x84, 0x72, &(0x7f0000000080)={r2, 0x9, 0x30}, 0xc)
getsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r3, 0x84, 0x1e, &(0x7f00000002c0), &(0x7f0000000300)=0x4)
socket$can_bcm(0x1d, 0x2, 0x2)
r4 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r4, 0x84, 0x1, &(0x7f0000000000)={<r5=>r2}, &(0x7f00000000c0)=0x14)
setsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r4, 0x84, 0x22, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, r5}, 0x10)

2018/04/11 00:13:38 executing program 2 (fault-call:26 fault-nth:65):
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/pfkey\x00', 0x1, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_GET_MSR_INDEX_LIST(r1, 0xc004ae02, &(0x7f0000000440)=ANY=[@ANYBLOB="010000e8a806846728a902d7836e000000000090c8bb2c64ee855b03d6b79f01fd689aefd896253378642249ab91395ab66a034c399ce7623518b671b773347d0fd26ec81ac69a995c8ce192812ee8050c3814b9781ac68ebaded833a2c6c838d8647586e9c6e9a5856a915e647163631e9ebb8c6af6c63986f87e1cb1e65dda52219878b2bf0aa3c41d7257b9b338d3de7e2930af343b00807a9f0f1508f564e7be9484af85b8deea898a0e15d4e59917a706dff1d6eb4d00000000000000000000"])
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
pipe2(&(0x7f0000000700)={<r3=>0x0, <r4=>0x0}, 0x0)
ioctl$KVM_SET_XSAVE(r2, 0x5000aea5, &(0x7f0000000740)={"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"})
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
shmget(0x0, 0x3000, 0x1, &(0x7f000075a000/0x3000)=nil)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000600)={<r6=>0x0, @in={{0x2, 0x4e23, @multicast2=0xe0000002}}, 0x5, 0x6, 0x1, 0xfff, 0x8}, &(0x7f0000000080)=0x98)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000b40)={r6, @in={{0x2, 0x4e24, @rand_addr=0x10000}}, 0x5, 0x101, 0x6, 0xea, 0x72}, &(0x7f00000002c0)=0x98)
r7 = dup3(r5, r4, 0x0)
munlockall()
r8 = shmget$private(0x0, 0x3000, 0x10, &(0x7f0000760000/0x3000)=nil)
shmctl$IPC_RMID(r8, 0x0)
clock_gettime(0x7, &(0x7f0000000000))
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f0000460fe4)={0x0, 0x7, 0x2, 0x0, 0x4, 0x8, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x805})
ioctl$SNDRV_TIMER_IOCTL_GINFO(r4, 0xc0f85403, &(0x7f0000000c00)={{0xffffffffffffffff, 0x0, 0x3, 0x3, 0x2}, 0x81, 0x3, 'id0\x00', 'timer0\x00', 0x0, 0x6, 0x1, 0x6, 0x3})
ioctl$sock_inet6_tcp_SIOCINQ(r3, 0x541b, &(0x7f0000000040))
socket(0xf, 0x6, 0x5)
ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000280)={0x81, 0x1})
ioctl$EVIOCSABS2F(r7, 0x401845ef, &(0x7f0000000240)={0x9, 0x0, 0xfffffffffffffffd, 0x1ff, 0x4, 0x7f})
getsockopt$ax25_buf(r4, 0x101, 0x19, &(0x7f0000000140)=""/53, &(0x7f0000000180)=0x35)
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/enforce\x00', 0x10000, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000753000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, &(0x7f00000000c0)="0fc7280f080f20030f01727166ba4200b834000000ef66bad10466edb81da1fb500f23d00f21f835300000050f23f8c4c3194bfc360f20030fc76d08", 0x3c}], 0x1, 0x7, &(0x7f0000000380), 0x10000181)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r2, 0x8008ae9d, &(0x7f0000000340)=""/250)

2018/04/11 00:13:38 executing program 1:
r0 = perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet(0x2b, 0x801, 0x93)
set_mempolicy(0x8000, &(0x7f00000000c0)=0x8, 0x400)
fstat(0xffffffffffffffff, &(0x7f00000017c0))
setsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000001840)={{{@in=@multicast1=0xe0000001, @in=@dev={0xac, 0x14, 0x14}, 0x0, 0x6, 0x0, 0x4}, {0x0, 0x0, 0x4, 0x400}, {0x0, 0x0, 0x2, 0x56fd}, 0x0, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001}, 0x0, @in=@remote={0xac, 0x14, 0x14, 0xbb}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}, 0x412)
ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f0000000100))
getsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000015c0), &(0x7f0000001600)=0x4)
connect$inet(r1, &(0x7f0000000000)={0x2, 0x0, @loopback=0x7f000001}, 0x10)
listen(r1, 0x0)
r2 = syz_open_dev$vcsn(&(0x7f0000000040)='/dev/vcs#\x00', 0x81, 0x400)
ioctl$sock_inet6_udp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000080))

2018/04/11 00:13:38 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x8100000000000000}, 0x0)

2018/04/11 00:13:38 executing program 7:
r0 = socket$netlink(0x10, 0x3, 0xe)
sendmsg$nl_generic(r0, &(0x7f0000000040)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000012ff0)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000005500ff030000100000000000070002001b93a6542399efe3c64e7a159b09607f5a39af42549915891ae331329141aa45c67215e2aac196213210bec2cd838589312db66de1fd05de0f5edbfb2c5d2e5f7f030f66e9a9665e9c9a5c39cb996c98926a21b8d281633741ea240ad8cc9bb55c6f298805104c12e6a4c85a8a3090f27a0c396b977084d2e066ffaa2bbb1924d6bbd9659d57933fecf40bfeff6620e9a205d6214994b2e9acfe0103a0e026c4e4be6966f07cfdf66f399079c2bcf522f5d6bda2cc74c64a3c08db6952d64b659f3c6fe287e5087ae5be68426543ec5fd931c21dce"], 0x14}, 0x1}, 0x0)
ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f00000000c0)=<r1=>0x0)
ioctl$sock_FIOSETOWN(r0, 0x8901, &(0x7f0000000400)=r1)
syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x6, 0x2080)
r2 = socket(0x11, 0x80003, 0x129b)
getsockopt$inet_sctp_SCTP_RTOINFO(r2, 0x84, 0x0, &(0x7f0000000100)={<r3=>0x0, 0xffff, 0x7f, 0x81}, &(0x7f0000000140)=0x10)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f0000000180)={<r4=>r3, @in6={{0xa, 0x4e21, 0x4, @dev={0xfe, 0x80, [], 0xa}, 0x3}}, 0x676, 0x8}, &(0x7f0000000240)=0x90)
getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f0000000280)={r4, 0xffffffff80000001}, &(0x7f00000002c0)=0x8)

2018/04/11 00:13:38 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c7465720000000000feffff0700", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:38 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0xf0ffffff00000000}, 0x0)

2018/04/11 00:13:38 executing program 1:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000265000)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000265000)=@req={0x3fc}, 0x10)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000000)={<r2=>0x0, 0x5}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000000080)={0xffffffffffffff7b, 0x5, 0x207, 0x0, 0x2, 0x2, 0x100000001, 0x2, r2}, &(0x7f00000000c0)=0x20)
sendmmsg(r1, &(0x7f0000000a40), 0x3d86ece6cc649f6, 0x0)
close(r0)

2018/04/11 00:13:38 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c7465720000000000490c0200", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

[  463.171094] FAULT_INJECTION: forcing a failure.
[  463.171094] name failslab, interval 1, probability 0, space 0, times 0
[  463.182412] CPU: 1 PID: 30676 Comm: syz-executor2 Not tainted 4.16.0+ #18
[  463.189346] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  463.198700] Call Trace:
[  463.201298]  dump_stack+0x1b9/0x294
[  463.204941]  ? dump_stack_print_info.cold.2+0x52/0x52
[  463.210136]  ? __save_stack_trace+0x7e/0xd0
[  463.214470]  should_fail.cold.4+0xa/0x1a
[  463.218540]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  463.223651]  ? kasan_kmalloc+0xc4/0xe0
[  463.227538]  ? kasan_slab_alloc+0x12/0x20
[  463.231687]  ? kmem_cache_alloc+0x12e/0x760
[  463.236013]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  463.240947]  ? kvm_mmu_load+0x21/0x10e0
[  463.244927]  ? vcpu_enter_guest+0x3aa1/0x6070
[  463.249430]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  463.254457]  ? graph_lock+0x170/0x170
[  463.258263]  ? do_syscall_64+0x29e/0x9d0
[  463.262341]  ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  463.267715]  ? find_held_lock+0x36/0x1c0
2018/04/11 00:13:39 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c7465720000000000000500", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:39 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0xa905000000000000}, 0x0)

2018/04/11 00:13:39 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
utime(&(0x7f0000c4c000)='./file0\x00', &(0x7f0000a98000)={0x3})
mprotect(&(0x7f0000a98000/0x3000)=nil, 0x3000, 0x1)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000a98000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000c9bec8)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0xfffffffffffffffc})
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
r3 = syz_open_dev$sg(&(0x7f0000000080)='/dev/sg#\x00', 0x732, 0x402000)
ioctl$TIOCSSOFTCAR(r3, 0x541a, &(0x7f00000000c0)=0x7e7f7df8)

2018/04/11 00:13:39 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x40030000000000}, 0x0)

[  463.271788]  ? __lock_is_held+0xb5/0x140
[  463.275866]  ? check_same_owner+0x320/0x320
[  463.280194]  ? rcu_note_context_switch+0x710/0x710
[  463.285133]  __should_failslab+0x124/0x180
[  463.289467]  should_failslab+0x9/0x14
[  463.293271]  kmem_cache_alloc+0x2af/0x760
[  463.297426]  ? alloc_pages_current+0x114/0x210
[  463.302019]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  463.306961]  mmu_topup_memory_caches+0x2fa/0x3a0
[  463.311795]  kvm_mmu_load+0x21/0x10e0
[  463.315607]  ? vcpu_enter_guest+0x296d/0x6070
2018/04/11 00:13:39 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0xffffff7f00000000}, 0x0)

[  463.320113]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  463.325662]  vcpu_enter_guest+0x3aa1/0x6070
[  463.330008]  ? kvm_vcpu_ioctl+0x1e2/0x12e0
[  463.334265]  ? kvm_set_msr_common+0x2660/0x2660
[  463.338947]  ? vmx_vcpu_load+0xaed/0xff0
[  463.343013]  ? __lock_acquire+0x7f5/0x5130
[  463.347255]  ? vmx_vcpu_reset+0x1030/0x1030
[  463.351585]  ? graph_lock+0x170/0x170
[  463.355383]  ? __lock_acquire+0x7f5/0x5130
[  463.359625]  ? debug_check_no_locks_freed+0x310/0x310
[  463.364807]  ? print_usage_bug+0xc0/0xc0
[  463.368872]  ? __lock_is_held+0xb5/0x140
[  463.372935]  ? lock_acquire+0x1dc/0x520
[  463.376913]  ? kvm_arch_vcpu_ioctl_run+0x234/0x1690
[  463.381938]  ? lock_release+0xa10/0xa10
[  463.385916]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  463.391204]  ? kvm_arch_dev_ioctl+0x5f0/0x5f0
[  463.395703]  ? preempt_notifier_dec+0x20/0x20
[  463.400214]  kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  463.405056]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  463.410086]  kvm_vcpu_ioctl+0x79d/0x12e0
[  463.414153]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  463.419871]  ? graph_lock+0x170/0x170
[  463.423678]  ? find_held_lock+0x36/0x1c0
[  463.427752]  ? lock_downgrade+0x8e0/0x8e0
[  463.431910]  ? kasan_check_read+0x11/0x20
[  463.436062]  ? rcu_is_watching+0x85/0x140
[  463.440212]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  463.445415]  ? __fget+0x40c/0x650
[  463.448869]  ? match_held_lock+0x881/0x8b0
[  463.453110]  ? expand_files.part.8+0x9a0/0x9a0
[  463.457699]  ? kasan_check_write+0x14/0x20
[  463.461949]  ? __mutex_unlock_slowpath+0x180/0x8a0
[  463.466886]  ? wait_for_completion+0x870/0x870
[  463.471476]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  463.476669]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  463.482381]  do_vfs_ioctl+0x1cf/0x1650
[  463.486272]  ? ioctl_preallocate+0x2e0/0x2e0
[  463.490681]  ? fget_raw+0x20/0x20
[  463.494136]  ? __sb_end_write+0xac/0xe0
[  463.498116]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  463.503649]  ? fput+0x130/0x1a0
[  463.506931]  ? ksys_write+0x1a6/0x250
[  463.510737]  ? security_file_ioctl+0x94/0xc0
[  463.515152]  ksys_ioctl+0xa9/0xd0
[  463.518613]  SyS_ioctl+0x24/0x30
[  463.521981]  ? ksys_ioctl+0xd0/0xd0
[  463.525616]  do_syscall_64+0x29e/0x9d0
[  463.529508]  ? vmalloc_sync_all+0x30/0x30
[  463.533659]  ? _raw_spin_unlock_irq+0x27/0x70
[  463.538157]  ? finish_task_switch+0x1ca/0x820
[  463.542659]  ? syscall_return_slowpath+0x5c0/0x5c0
[  463.547595]  ? syscall_return_slowpath+0x30f/0x5c0
[  463.552532]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  463.557910]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  463.562763]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  463.567951] RIP: 0033:0x455259
[  463.571136] RSP: 002b:00007f45bbc7bc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  463.578841] RAX: ffffffffffffffda RBX: 00007f45bbc7c6d4 RCX: 0000000000455259
[  463.586090] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000017
[  463.593356] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  463.600615] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000019
[  463.607867] R13: 0000000000000251 R14: 00000000006f6838 R15: 0000000000000041
2018/04/11 00:13:40 executing program 4:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0x80045300, &(0x7f00000000c0)={0x0, 0x0, 0x0, "717565756530000000000000000000000000000000000000fdfdffff00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))

2018/04/11 00:13:40 executing program 1:
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ion\x00', 0x0, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000001fc8)={0x0, 0x0, &(0x7f0000000040), 0x0, &(0x7f0000002000)=[{0x10, 0x111}], 0x10}, 0x0)
getpgid(0xffffffffffffffff)
r1 = getpid()
r2 = getpgrp(r1)
getpgid(r2)
r3 = syz_open_dev$loop(&(0x7f0000ca9ff5)='/dev/loop#\x00', 0x0, 0x82)
r4 = perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f000031f000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = memfd_create(&(0x7f0000000080)='{\x00', 0x3)
perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0xffffffffffffffff, r4, 0x0)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, r4, 0x0)
ioctl$PERF_EVENT_IOC_DISABLE(0xffffffffffffffff, 0x2401, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x2400, 0x0)
gettid()
ioctl$TIOCSPGRP(0xffffffffffffffff, 0x5410, &(0x7f0000000040))
r6 = memfd_create(&(0x7f0000000240)="74086e750000000000000000008c00", 0x0)
pwritev(r6, &(0x7f0000f50f90)=[{&(0x7f00001f2000)="aa", 0x1}], 0x1, 0x81003)
sendmsg$rds(r5, &(0x7f0000000340)={&(0x7f0000000100)={0x2, 0x4e22, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10, &(0x7f00000001c0)=[{&(0x7f0000000140)=""/17, 0x11}], 0x1, &(0x7f00000002c0)=[@fadd={0x58, 0x114, 0x6, {{0x0, 0x6}, &(0x7f0000000200)=0x1, &(0x7f0000000280)=0x1000, 0x6, 0x9, 0x800, 0x81, 0x0, 0x401}}], 0x58, 0x8000}, 0x44000)
ioctl$KVM_DIRTY_TLB(0xffffffffffffffff, 0x4010aeaa, &(0x7f0000000180)={0x8, 0x2})
ioctl$LOOP_CHANGE_FD(r3, 0x4c00, r0)
sendfile(r3, r6, &(0x7f00000000c0), 0x102000001)
sync_file_range(r3, 0x2, 0x100000001, 0x7)
ioctl(r0, 0xc0184908, &(0x7f0000002000))

2018/04/11 00:13:40 executing program 0:
mkdir(&(0x7f0000074ff8)='./file0\x00', 0x0)
mount(&(0x7f0000000240)='./file0/bus\x00', &(0x7f000001c000)='./file0\x00', &(0x7f0000982ff9)='sysfs\x00', 0x800, &(0x7f0000ebcffe))
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x4c06c1, 0x85)
rename(&(0x7f00000000c0)='./file0/bus/file0\x00', &(0x7f0000000040)='./file0/file0\x00')
r0 = accept$inet(0xffffffffffffff9c, &(0x7f0000000080)={0x0, 0x0, @local}, &(0x7f0000000100)=0x10)
ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000140)={'irlan0\x00', {0x2, 0x4e21, @rand_addr=0x1}})

2018/04/11 00:13:40 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0xf000000}, 0x0)

2018/04/11 00:13:40 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={'filter\x00\x00\x00\x00\x00\nh\x00', 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:40 executing program 7:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = syz_open_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0x1, 0x100)
getsockopt$inet_sctp_SCTP_CONTEXT(0xffffffffffffffff, 0x84, 0x11, &(0x7f0000000040)={<r2=>0x0, 0x80}, &(0x7f0000000080)=0x8)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r1, 0x84, 0x66, &(0x7f00000000c0)={r2, 0xf335}, &(0x7f0000000100)=0x8)
sendmsg$nl_xfrm(r0, &(0x7f000034f000)={&(0x7f000000f000)={0x10}, 0xc, &(0x7f0000beeff0)={&(0x7f000017c000)=@newsa={0x138, 0x10, 0x713, 0xffffffffffffffff, 0xffffffffffffffff, {{@in6=@dev={0xfe, 0x80}, @in6=@ipv4={[], [0xff, 0xff], @broadcast=0xffffffff}}, {@in6=@ipv4={[], [0xff, 0xff]}, 0xffffffffffffffff, 0x3c}, @in=@multicast1=0xe0000001, {}, {}, {}, 0xffffffffffffffff, 0xffffffffffffffff, 0x2}, [@algo_auth={0x48, 0x1, {{'sha1\x00'}}}]}, 0x138}, 0x1}, 0x0)

2018/04/11 00:13:40 executing program 2 (fault-call:26 fault-nth:66):
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/pfkey\x00', 0x1, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_GET_MSR_INDEX_LIST(r1, 0xc004ae02, &(0x7f0000000440)=ANY=[@ANYBLOB="010000e8a806846728a902d7836e000000000090c8bb2c64ee855b03d6b79f01fd689aefd896253378642249ab91395ab66a034c399ce7623518b671b773347d0fd26ec81ac69a995c8ce192812ee8050c3814b9781ac68ebaded833a2c6c838d8647586e9c6e9a5856a915e647163631e9ebb8c6af6c63986f87e1cb1e65dda52219878b2bf0aa3c41d7257b9b338d3de7e2930af343b00807a9f0f1508f564e7be9484af85b8deea898a0e15d4e59917a706dff1d6eb4d00000000000000000000"])
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
pipe2(&(0x7f0000000700)={<r3=>0x0, <r4=>0x0}, 0x0)
ioctl$KVM_SET_XSAVE(r2, 0x5000aea5, &(0x7f0000000740)={"821c059ceb3c1a4b565cba916ba4cfe805163ba44e5dbef061fe0302945e42db54da3f05792113b780f3efb176690c8b67a4a17d8eae46cfb5eda672a90b88c0fffc17223e428569632b728bee37f4076374f505127edb8b822bd97d7c2f365fccb858450dfdf95ee07aaaf0a2c0136eed7fb5d14f5298b788d36b009d57a7de914fc02a489daf7c75f37d0ee20c2cde218d30661a4702f06301ab93f72d09911254d39a2fa5c6611ade75a7f534b90f49bfcb548589c975c0f56724df4f35816c4a83d2f9b106570bf065387c7769361f0ac9d641eec9d2107feaf8a65aada58f689c5aafc869c8ce6447fa017e357949d836daaa4d323c710fc314b6345a4da62e25f581c6ff59365a9bf8b6f3732d3b23fa543d7dca7c758d403c726814f72c0304ea5694ccf90468ab91e4b4238655023b7ff2db190e92e7b6ddd4b850147bcbeb69b5b17b2939e69c6a117ff3aa3ec0d44fc64ddd7431ba8397effc54df00c9b7afb061f2aa5eb0fa7c0e010bf22da72fd45e1406e6abf9da38eb4e86f0f67706877b24e4ee61b1185f46d4740579a7d2f28e34cfd1e4365358e49bf25c327c2298d89f78cf6fd717254e18d492ce2e09151abb74a9d0ca7d2290879e0e87264307cbeefb7420d7b6451462bc39a8361eba00b6760b723f4b03141e31c402b36fe6e90752393e66d5897bec98b856592c114e16a8f150117a29e890286e845324779aea566e472a1ecf201cb36a64b0472b4dfdcab391ed2356d1eb646adc71e1bf1df38daeadf199e93616e3f8da94574df04629e9b355e60edc1075ab2afc1fbffdc901d8b6091d15fcdeca25199439ccd63320667d9fe382f8174676c6435cc08ce09833d0eb4cee3cbee55af63c6d060c6f5153a862b28fda51dd5fcc6daca8f571cc87da9aab50a1f7daed9497f49535c1f499db0724c16bcf94730190c91134149e32fc57c14290d9a255d027813517b42bfbfa485493558477a14a26741613141a55237bba1fe3a4f68b8d3df7935a63a683488cd7539cbc404d8968616657af33ecfef04d2e0f41fd52523319892decf7b63ae9f9cdb6847eaa0d2af35bb71577c3cfc6b9705da1a0712e50a7a90063601763af4efd1f559e20b5e78340dd5454d6a3f726a0cd3b218375a54822ade6c69e2d98ea3f43e3bc736177ee0615590ff84dfb50e78d118abf8361d7c90d2f0672e87a1dd349562c70543e89ba93d58c57c1189799766b45819ac197993d575c0ec11028be5751b5115dfb27c39bd96856bb54f39643fdd7326108ec9f830f805e6e90787f09f20b56b98000a946b1eb2e80777135415e79d233d6e0905e1188cfed7fefb03fe5b9a21e87d63196095f89abf5c562956076a5487afad22b1afbc54efdb3a56e6994ec0294c473b73f52073560eb1e2810c2b9f45b5bef9b26801822514932c9019d2f"})
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
shmget(0x0, 0x3000, 0x1, &(0x7f000075a000/0x3000)=nil)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000600)={<r6=>0x0, @in={{0x2, 0x4e23, @multicast2=0xe0000002}}, 0x5, 0x6, 0x1, 0xfff, 0x8}, &(0x7f0000000080)=0x98)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000b40)={r6, @in={{0x2, 0x4e24, @rand_addr=0x10000}}, 0x5, 0x101, 0x6, 0xea, 0x72}, &(0x7f00000002c0)=0x98)
r7 = dup3(r5, r4, 0x0)
munlockall()
r8 = shmget$private(0x0, 0x3000, 0x10, &(0x7f0000760000/0x3000)=nil)
shmctl$IPC_RMID(r8, 0x0)
clock_gettime(0x7, &(0x7f0000000000))
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f0000460fe4)={0x0, 0x7, 0x2, 0x0, 0x4, 0x8, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x805})
ioctl$SNDRV_TIMER_IOCTL_GINFO(r4, 0xc0f85403, &(0x7f0000000c00)={{0xffffffffffffffff, 0x0, 0x3, 0x3, 0x2}, 0x81, 0x3, 'id0\x00', 'timer0\x00', 0x0, 0x6, 0x1, 0x6, 0x3})
ioctl$sock_inet6_tcp_SIOCINQ(r3, 0x541b, &(0x7f0000000040))
socket(0xf, 0x6, 0x5)
ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000280)={0x81, 0x1})
ioctl$EVIOCSABS2F(r7, 0x401845ef, &(0x7f0000000240)={0x9, 0x0, 0xfffffffffffffffd, 0x1ff, 0x4, 0x7f})
getsockopt$ax25_buf(r4, 0x101, 0x19, &(0x7f0000000140)=""/53, &(0x7f0000000180)=0x35)
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/enforce\x00', 0x10000, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000753000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, &(0x7f00000000c0)="0fc7280f080f20030f01727166ba4200b834000000ef66bad10466edb81da1fb500f23d00f21f835300000050f23f8c4c3194bfc360f20030fc76d08", 0x3c}], 0x1, 0x7, &(0x7f0000000380), 0x10000181)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r2, 0x8008ae9d, &(0x7f0000000340)=""/250)

2018/04/11 00:13:40 executing program 5:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0xc08c5336, &(0x7f00000000c0)={0x0, 0x0, 0x0, "71756575653000000000000000000000000000000000000000000000000000000000000000000000001f00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer2\x00', 0x0, 0x0)

2018/04/11 00:13:40 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0xf}, 0x0)

2018/04/11 00:13:40 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c7465720000000000000300", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

[  464.285537] FAULT_INJECTION: forcing a failure.
[  464.285537] name failslab, interval 1, probability 0, space 0, times 0
[  464.296850] CPU: 1 PID: 30733 Comm: syz-executor2 Not tainted 4.16.0+ #18
[  464.303783] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  464.313232] Call Trace:
[  464.315833]  dump_stack+0x1b9/0x294
[  464.319481]  ? dump_stack_print_info.cold.2+0x52/0x52
[  464.324688]  ? perf_trace_lock_acquire+0xe3/0x980
[  464.329555]  should_fail.cold.4+0xa/0x1a
2018/04/11 00:13:40 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0xf0ffff}, 0x0)

[  464.333632]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  464.338745]  ? kasan_kmalloc+0xc4/0xe0
[  464.342639]  ? kasan_slab_alloc+0x12/0x20
[  464.346791]  ? kmem_cache_alloc+0x12e/0x760
[  464.351120]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  464.356059]  ? kvm_mmu_load+0x21/0x10e0
[  464.360056]  ? vcpu_enter_guest+0x3aa1/0x6070
[  464.364557]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  464.369585]  ? graph_lock+0x170/0x170
[  464.373398]  ? do_syscall_64+0x29e/0x9d0
[  464.377477]  ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
2018/04/11 00:13:40 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x2000000}, 0x0)

[  464.382857]  ? find_held_lock+0x36/0x1c0
[  464.386932]  ? __lock_is_held+0xb5/0x140
[  464.391024]  ? check_same_owner+0x320/0x320
[  464.395361]  ? rcu_note_context_switch+0x710/0x710
[  464.400307]  __should_failslab+0x124/0x180
[  464.404547]  should_failslab+0x9/0x14
[  464.408351]  kmem_cache_alloc+0x2af/0x760
[  464.412512]  ? alloc_pages_current+0x114/0x210
[  464.417107]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  464.422049]  mmu_topup_memory_caches+0x2fa/0x3a0
[  464.426816]  kvm_mmu_load+0x21/0x10e0
[  464.430621]  ? __might_sleep+0x95/0x190
2018/04/11 00:13:40 executing program 0:
r0 = socket$inet_sctp(0x2, 0x800000000000001, 0x84)
sendto$inet(r0, &(0x7f0000a34fff)='H', 0x1, 0x0, &(0x7f0000030ff0)={0x2, 0x4e20, @local={0xac, 0x14, 0xffffffffffffffff, 0xaa}}, 0x10)
sendto$inet(r0, &(0x7f000026cfff)="c6", 0x1, 0x0, &(0x7f0000033ff0)={0x2, 0x4e20, @remote={0xac, 0x14, 0xffffffffffffffff, 0xbb}}, 0x10)
shutdown(r0, 0xfffffffffffffffe)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in6={{0xa, 0x4e20}}, 0x0, 0x0, 0x10001, 0x0, 0x15}, 0x98)

[  464.434609]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  464.440162]  vcpu_enter_guest+0x3aa1/0x6070
[  464.444489]  ? kvm_vcpu_ioctl+0x1e2/0x12e0
[  464.448740]  ? perf_trace_lock+0xd6/0x900
[  464.452904]  ? kvm_set_msr_common+0x2660/0x2660
[  464.457580]  ? zap_class+0x720/0x720
[  464.461309]  ? perf_trace_lock+0x900/0x900
[  464.465536]  ? __lock_acquire+0x7f5/0x5130
[  464.469778]  ? vmx_vcpu_reset+0x1030/0x1030
[  464.474108]  ? graph_lock+0x170/0x170
[  464.477914]  ? __lock_acquire+0x7f5/0x5130
2018/04/11 00:13:40 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x81000000}, 0x0)

[  464.482165]  ? perf_trace_lock_acquire+0xe3/0x980
[  464.487014]  ? __lock_is_held+0xb5/0x140
[  464.491084]  ? lock_acquire+0x1dc/0x520
[  464.495066]  ? kvm_arch_vcpu_ioctl_run+0x234/0x1690
[  464.500091]  ? lock_release+0xa10/0xa10
[  464.504071]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  464.509355]  ? kvm_arch_dev_ioctl+0x5f0/0x5f0
[  464.513855]  ? preempt_notifier_dec+0x20/0x20
[  464.518370]  kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  464.524003]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  464.529043]  kvm_vcpu_ioctl+0x79d/0x12e0
[  464.533117]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  464.538840]  ? graph_lock+0x170/0x170
[  464.542677]  ? find_held_lock+0x36/0x1c0
[  464.546760]  ? lock_downgrade+0x8e0/0x8e0
[  464.550923]  ? rcu_is_watching+0x85/0x140
[  464.555073]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  464.560260]  ? __fget+0x40c/0x650
[  464.563706]  ? match_held_lock+0x881/0x8b0
[  464.567932]  ? expand_files.part.8+0x9a0/0x9a0
[  464.572508]  ? kasan_check_write+0x14/0x20
[  464.576734]  ? __mutex_unlock_slowpath+0x180/0x8a0
[  464.581656]  ? wait_for_completion+0x870/0x870
[  464.586228]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  464.591408]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  464.597108]  do_vfs_ioctl+0x1cf/0x1650
[  464.600989]  ? ioctl_preallocate+0x2e0/0x2e0
[  464.605405]  ? fget_raw+0x20/0x20
[  464.608851]  ? __sb_end_write+0xac/0xe0
[  464.612817]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  464.618337]  ? fput+0x130/0x1a0
[  464.621611]  ? ksys_write+0x1a6/0x250
[  464.625400]  ? security_file_ioctl+0x94/0xc0
[  464.629798]  ksys_ioctl+0xa9/0xd0
[  464.633240]  SyS_ioctl+0x24/0x30
[  464.636593]  ? ksys_ioctl+0xd0/0xd0
[  464.640213]  do_syscall_64+0x29e/0x9d0
[  464.644087]  ? vmalloc_sync_all+0x30/0x30
[  464.648225]  ? kasan_check_write+0x14/0x20
[  464.652448]  ? syscall_return_slowpath+0x5c0/0x5c0
[  464.657365]  ? syscall_return_slowpath+0x30f/0x5c0
[  464.662287]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  464.667642]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  464.672480]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  464.677657] RIP: 0033:0x455259
2018/04/11 00:13:40 executing program 7:
mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x0, 0x44031, 0xffffffffffffffff, 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x80400, 0x100)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0x3, &(0x7f0000000280)=@raw=[@exit={0x95}, @alu, @map={0x18, 0x0, 0x1}], &(0x7f00000003c0)="02000000", 0x0, 0x9d, &(0x7f00000000c0)=""/251}, 0x117)

[  464.680830] RSP: 002b:00007f45bbc7bc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  464.688531] RAX: ffffffffffffffda RBX: 00007f45bbc7c6d4 RCX: 0000000000455259
[  464.695790] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000017
[  464.703046] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  464.710312] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000019
[  464.717569] R13: 0000000000000251 R14: 00000000006f6838 R15: 0000000000000042
2018/04/11 00:13:40 executing program 7:
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8032, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0x4a, 0x200080)
clock_gettime(0x0, &(0x7f0000000080)={<r1=>0x0, <r2=>0x0})
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(r0, 0x84, 0x73, &(0x7f0000000180)={<r3=>0x0, 0x7, 0x30, 0x6, 0x1000}, &(0x7f00000001c0)=0x18)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(r0, 0x84, 0x70, &(0x7f0000000200)={r3, @in6={{0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xb}, 0x1f}}, [0x89, 0x3, 0x2, 0x8, 0xfffffffffffffff8, 0x3, 0x8, 0x81, 0x9, 0x4c, 0x100000000, 0x7f, 0x4, 0xfffffffffffffc00]}, &(0x7f0000000300)=0x100)
write$sndseq(r0, &(0x7f00000000c0)=[{0x20, 0x81, 0x101, 0x4, @tick=0xffffffff, {0x3, 0xfffffffffffffff9}, {0x9, 0x5c77}, @result={0xe70, 0x8}}, {0x1, 0x8, 0x7, 0x8, @tick=0x3, {0xfffffffffffffffd, 0x400}, {0x1000, 0x400}, @note={0x3, 0x100000001, 0x1, 0x5}}, {0x101, 0x7ff, 0x4, 0x2, @time, {0xa51, 0x1}, {0x8}, @queue={0x1, {0xffffffff, 0x9}}}, {0x1, 0x2476e960, 0xff, 0x0, @time={r1, r2+30000000}, {0x8, 0x6}, {0x43b9}, @addr={0xffffffffffffffd1, 0x1}}], 0xc0)
fcntl$setflags(r0, 0x2, 0x1)
socket$nl_crypto(0x10, 0x3, 0x15)
ioctl$KVM_SET_CLOCK(r0, 0x4030ae7b, &(0x7f0000000040)={0x5f62})

2018/04/11 00:13:41 executing program 4:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0x80045300, &(0x7f00000000c0)={0x0, 0x0, 0x0, "71756575653000000000000000000000000000000000000000000000fffffdfd00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))

2018/04/11 00:13:41 executing program 0:
unshare(0x20000000)
clone(0x0, &(0x7f0000b53000), &(0x7f000084effc), &(0x7f0000c35ffc), &(0x7f0000b3bfff))
wait4(0x0, 0x0, 0x40000000, &(0x7f0000781f70))
ioprio_set$pid(0x2, 0x0, 0x0)
r0 = syz_open_dev$adsp(&(0x7f0000000180)='/dev/adsp#\x00', 0x3, 0x80000)
ioctl$KVM_CREATE_DEVICE(r0, 0xc00caee0, &(0x7f0000000040)={0x0, <r1=>0xffffffffffffffff, 0x1})
ioctl$GIO_FONTX(r1, 0x4b6b, &(0x7f0000000080)=""/184)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ftruncate(r1, 0xfff)
r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000280)='IPVS\x00')
sendmsg$IPVS_CMD_ZERO(r0, &(0x7f0000000340)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x1c, r2, 0x210, 0x70bd2b, 0x25dfdbfd, {0x10}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0xfffffffffffffffe}]}, 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x20000000)
clone(0x80000400, &(0x7f0000000700), &(0x7f0000000000), &(0x7f0000000240), &(0x7f0000000740))
getsockopt$inet_sctp6_SCTP_NODELAY(r0, 0x84, 0x3, &(0x7f0000000140), &(0x7f00000001c0)=0x4)

2018/04/11 00:13:41 executing program 5:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0xc08c5336, &(0x7f00000000c0)={0x0, 0x0, 0x0, "7175657565300000000000000000000000000000000000000000000000000000000000000000000000001f00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer2\x00', 0x0, 0x0)

2018/04/11 00:13:41 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0xa905}, 0x0)

2018/04/11 00:13:41 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={'filter\x00\x00\x00\x00\x00h\n\x00', 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:41 executing program 1:
socketpair(0x0, 0x0, 0x7, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000480), &(0x7f0000000380)=0xc)
socket(0xfffffffffffffffd, 0x0, 0x0)
ioctl$TIOCMBIS(r0, 0x5416, &(0x7f0000000200)=0x1)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000340)='/dev/qat_adf_ctl\x00', 0x0, 0x0)
ioctl$TIOCGPGRP(r2, 0x40046104, &(0x7f00000000c0))
socket$inet6_sctp(0xa, 0x0, 0x84)
accept4(0xffffffffffffffff, &(0x7f0000000000)=@un=@abs, &(0x7f0000000180)=0x80, 0x0)
fdatasync(0xffffffffffffffff)
r3 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000680)="2f70726f632f7379732f6e65742f697076342f76732f6578706972655f6e6f646573745fa2e3c04e00", 0x2, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
sendmsg$nl_crypto(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f00000001c0)={0x10}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)=@delrng={0x10, 0x14, 0x400, 0x70bd2a}, 0x10}, 0x1}, 0x80)
r4 = add_key$keyring(&(0x7f0000000440)='keyring\x00', &(0x7f0000000080)={0x73, 0x79, 0x7a}, 0x0, 0x0, 0xffffffffffffffff)
r5 = add_key$keyring(&(0x7f00000000c0)='keyring\x00', &(0x7f0000000100)={0x73, 0x79, 0x7a, 0x1}, 0x0, 0x0, r4)
r6 = socket(0x1d, 0x80004, 0x7c292045)
setsockopt$netrom_NETROM_T2(r6, 0x103, 0x2, &(0x7f0000000040)=0x5, 0x4)
setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, &(0x7f00000001c0)='tls\x00', 0x4)
recvmmsg(r1, &(0x7f0000000600)=[{{&(0x7f00000003c0)=@nfc, 0x80, &(0x7f00000005c0)=[{&(0x7f0000000240)=""/45, 0x2d}, {&(0x7f00000004c0)=""/70, 0x46}, {&(0x7f0000000540)=""/122, 0x7a}], 0x3, 0x0, 0x0, 0x1}, 0x40}], 0x1, 0x20, &(0x7f0000000640)={0x0, 0x989680})
accept$packet(r1, &(0x7f0000000780)={0x0, 0x0, <r7=>0x0, 0x0, 0x0, 0x0, @remote}, &(0x7f00000007c0)=0x14)
clock_gettime(0x0, &(0x7f0000000840)={<r8=>0x0, <r9=>0x0})
sendmsg$can_bcm(r3, &(0x7f0000000940)={&(0x7f0000000800)={0x1d, r7}, 0x10, &(0x7f0000000900)={&(0x7f0000000880)={0x2, 0x4, 0x400, {r8, r9/1000+10000}, {0x0, 0x2710}, {0x0, 0x0, 0x8d15, 0x7f}, 0x1, @canfd={{0x0, 0xffffffffffffff58, 0x8, 0x8b2e}, 0x39, 0x3, 0x0, 0x0, "a882396b7160d670ae057bf110c5f02a5c1acc8f876b2cb983a4e25775372c908854b35f2e9e63dbd30185f6fffb97f7256a6b46f60f956d5783b35b375f4e7a"}}, 0x80}, 0x1, 0x0, 0x0, 0x4000}, 0x4000001)
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
getsockname$llc(r2, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, &(0x7f0000000700)=0x10)
keyctl$unlink(0x9, r5, r4)
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000180)=<r10=>0x0)
ioprio_get$pid(0x1, r10)
ioctl$sock_netrom_SIOCADDRT(r6, 0x890b, &(0x7f0000000140))

2018/04/11 00:13:41 executing program 2 (fault-call:26 fault-nth:67):
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/pfkey\x00', 0x1, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_GET_MSR_INDEX_LIST(r1, 0xc004ae02, &(0x7f0000000440)=ANY=[@ANYBLOB="010000e8a806846728a902d7836e000000000090c8bb2c64ee855b03d6b79f01fd689aefd896253378642249ab91395ab66a034c399ce7623518b671b773347d0fd26ec81ac69a995c8ce192812ee8050c3814b9781ac68ebaded833a2c6c838d8647586e9c6e9a5856a915e647163631e9ebb8c6af6c63986f87e1cb1e65dda52219878b2bf0aa3c41d7257b9b338d3de7e2930af343b00807a9f0f1508f564e7be9484af85b8deea898a0e15d4e59917a706dff1d6eb4d00000000000000000000"])
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
pipe2(&(0x7f0000000700)={<r3=>0x0, <r4=>0x0}, 0x0)
ioctl$KVM_SET_XSAVE(r2, 0x5000aea5, &(0x7f0000000740)={"821c059ceb3c1a4b565cba916ba4cfe805163ba44e5dbef061fe0302945e42db54da3f05792113b780f3efb176690c8b67a4a17d8eae46cfb5eda672a90b88c0fffc17223e428569632b728bee37f4076374f505127edb8b822bd97d7c2f365fccb858450dfdf95ee07aaaf0a2c0136eed7fb5d14f5298b788d36b009d57a7de914fc02a489daf7c75f37d0ee20c2cde218d30661a4702f06301ab93f72d09911254d39a2fa5c6611ade75a7f534b90f49bfcb548589c975c0f56724df4f35816c4a83d2f9b106570bf065387c7769361f0ac9d641eec9d2107feaf8a65aada58f689c5aafc869c8ce6447fa017e357949d836daaa4d323c710fc314b6345a4da62e25f581c6ff59365a9bf8b6f3732d3b23fa543d7dca7c758d403c726814f72c0304ea5694ccf90468ab91e4b4238655023b7ff2db190e92e7b6ddd4b850147bcbeb69b5b17b2939e69c6a117ff3aa3ec0d44fc64ddd7431ba8397effc54df00c9b7afb061f2aa5eb0fa7c0e010bf22da72fd45e1406e6abf9da38eb4e86f0f67706877b24e4ee61b1185f46d4740579a7d2f28e34cfd1e4365358e49bf25c327c2298d89f78cf6fd717254e18d492ce2e09151abb74a9d0ca7d2290879e0e87264307cbeefb7420d7b6451462bc39a8361eba00b6760b723f4b03141e31c402b36fe6e90752393e66d5897bec98b856592c114e16a8f150117a29e890286e845324779aea566e472a1ecf201cb36a64b0472b4dfdcab391ed2356d1eb646adc71e1bf1df38daeadf199e93616e3f8da94574df04629e9b355e60edc1075ab2afc1fbffdc901d8b6091d15fcdeca25199439ccd63320667d9fe382f8174676c6435cc08ce09833d0eb4cee3cbee55af63c6d060c6f5153a862b28fda51dd5fcc6daca8f571cc87da9aab50a1f7daed9497f49535c1f499db0724c16bcf94730190c91134149e32fc57c14290d9a255d027813517b42bfbfa485493558477a14a26741613141a55237bba1fe3a4f68b8d3df7935a63a683488cd7539cbc404d8968616657af33ecfef04d2e0f41fd52523319892decf7b63ae9f9cdb6847eaa0d2af35bb71577c3cfc6b9705da1a0712e50a7a90063601763af4efd1f559e20b5e78340dd5454d6a3f726a0cd3b218375a54822ade6c69e2d98ea3f43e3bc736177ee0615590ff84dfb50e78d118abf8361d7c90d2f0672e87a1dd349562c70543e89ba93d58c57c1189799766b45819ac197993d575c0ec11028be5751b5115dfb27c39bd96856bb54f39643fdd7326108ec9f830f805e6e90787f09f20b56b98000a946b1eb2e80777135415e79d233d6e0905e1188cfed7fefb03fe5b9a21e87d63196095f89abf5c562956076a5487afad22b1afbc54efdb3a56e6994ec0294c473b73f52073560eb1e2810c2b9f45b5bef9b26801822514932c9019d2f"})
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
shmget(0x0, 0x3000, 0x1, &(0x7f000075a000/0x3000)=nil)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000600)={<r6=>0x0, @in={{0x2, 0x4e23, @multicast2=0xe0000002}}, 0x5, 0x6, 0x1, 0xfff, 0x8}, &(0x7f0000000080)=0x98)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000b40)={r6, @in={{0x2, 0x4e24, @rand_addr=0x10000}}, 0x5, 0x101, 0x6, 0xea, 0x72}, &(0x7f00000002c0)=0x98)
r7 = dup3(r5, r4, 0x0)
munlockall()
r8 = shmget$private(0x0, 0x3000, 0x10, &(0x7f0000760000/0x3000)=nil)
shmctl$IPC_RMID(r8, 0x0)
clock_gettime(0x7, &(0x7f0000000000))
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f0000460fe4)={0x0, 0x7, 0x2, 0x0, 0x4, 0x8, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x805})
ioctl$SNDRV_TIMER_IOCTL_GINFO(r4, 0xc0f85403, &(0x7f0000000c00)={{0xffffffffffffffff, 0x0, 0x3, 0x3, 0x2}, 0x81, 0x3, 'id0\x00', 'timer0\x00', 0x0, 0x6, 0x1, 0x6, 0x3})
ioctl$sock_inet6_tcp_SIOCINQ(r3, 0x541b, &(0x7f0000000040))
socket(0xf, 0x6, 0x5)
ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000280)={0x81, 0x1})
ioctl$EVIOCSABS2F(r7, 0x401845ef, &(0x7f0000000240)={0x9, 0x0, 0xfffffffffffffffd, 0x1ff, 0x4, 0x7f})
getsockopt$ax25_buf(r4, 0x101, 0x19, &(0x7f0000000140)=""/53, &(0x7f0000000180)=0x35)
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/enforce\x00', 0x10000, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000753000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, &(0x7f00000000c0)="0fc7280f080f20030f01727166ba4200b834000000ef66bad10466edb81da1fb500f23d00f21f835300000050f23f8c4c3194bfc360f20030fc76d08", 0x3c}], 0x1, 0x7, &(0x7f0000000380), 0x10000181)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r2, 0x8008ae9d, &(0x7f0000000340)=""/250)

2018/04/11 00:13:41 executing program 7:
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f00002ac000)='/dev/vhost-net\x00', 0x2, 0x0)
ioctl$int_in(r0, 0x40000000af01, &(0x7f0000000040))
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000002a40)={0x6, 0x0, [{0x0, 0x13, &(0x7f0000000000)=""/19}, {0x1002, 0x7, &(0x7f0000000600)=""/7}, {0x2000, 0x8d, &(0x7f0000000780)=""/141}, {0x6000, 0x7c, &(0x7f0000001940)=""/124}, {0x103000, 0x1000, &(0x7f00000019c0)=""/4096}, {0x0, 0x33, &(0x7f0000000640)=""/51}]})
write$binfmt_script(r0, &(0x7f0000000100)={'#! ', './file0', [{0x20}, {0x20, 'vmnet1md5sum'}, {0x20, '/dev/audio\x00'}, {0x20, '/dev/vhost-net\x00'}, {0x20, 'em0eth0vmnet1'}, {0x20}, {0x20, '/dev/audio\x00'}], 0xa, "a4ad4fca0bf72be9386a9380beb91af76bb7a9a83944935fc0"}, 0x69)
close(r0)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000080)='/dev/audio\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f00000000c0)={0x10000000})

[  465.631874] FAULT_INJECTION: forcing a failure.
[  465.631874] name failslab, interval 1, probability 0, space 0, times 0
[  465.643227] CPU: 1 PID: 30804 Comm: syz-executor2 Not tainted 4.16.0+ #18
[  465.650157] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  465.659509] Call Trace:
[  465.662113]  dump_stack+0x1b9/0x294
[  465.665756]  ? dump_stack_print_info.cold.2+0x52/0x52
[  465.670955]  ? __save_stack_trace+0x7e/0xd0
[  465.675296]  should_fail.cold.4+0xa/0x1a
[  465.679371]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  465.685382]  ? kasan_kmalloc+0xc4/0xe0
[  465.689287]  ? kasan_slab_alloc+0x12/0x20
[  465.693439]  ? kmem_cache_alloc+0x12e/0x760
[  465.697767]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  465.702692]  ? kvm_mmu_load+0x21/0x10e0
[  465.706657]  ? vcpu_enter_guest+0x3aa1/0x6070
[  465.711146]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  465.718682]  ? graph_lock+0x170/0x170
[  465.722474]  ? do_syscall_64+0x29e/0x9d0
[  465.726522]  ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  465.731887]  ? find_held_lock+0x36/0x1c0
[  465.735940]  ? __lock_is_held+0xb5/0x140
[  465.740002]  ? check_same_owner+0x320/0x320
[  465.744341]  ? rcu_note_context_switch+0x710/0x710
[  465.749293]  __should_failslab+0x124/0x180
[  465.753522]  should_failslab+0x9/0x14
[  465.757397]  kmem_cache_alloc+0x2af/0x760
[  465.761539]  ? alloc_pages_current+0x114/0x210
[  465.766121]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  465.771046]  mmu_topup_memory_caches+0x2fa/0x3a0
[  465.775852]  kvm_mmu_load+0x21/0x10e0
[  465.779659]  ? __might_sleep+0x95/0x190
[  465.783662]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  465.789210]  vcpu_enter_guest+0x3aa1/0x6070
[  465.793520]  ? kvm_vcpu_ioctl+0x1e2/0x12e0
[  465.797752]  ? perf_trace_lock+0xd6/0x900
[  465.801905]  ? print_usage_bug+0xc0/0xc0
[  465.805968]  ? kvm_set_msr_common+0x2660/0x2660
[  465.810626]  ? zap_class+0x720/0x720
[  465.814329]  ? vmx_vcpu_load+0xaed/0xff0
[  465.818383]  ? __lock_acquire+0x7f5/0x5130
[  465.822611]  ? vmx_vcpu_reset+0x1030/0x1030
[  465.826928]  ? graph_lock+0x170/0x170
[  465.830716]  ? __lock_acquire+0x7f5/0x5130
[  465.834944]  ? debug_check_no_locks_freed+0x310/0x310
[  465.840127]  ? __lock_is_held+0xb5/0x140
[  465.844178]  ? lock_acquire+0x1dc/0x520
[  465.848140]  ? kvm_arch_vcpu_ioctl_run+0x234/0x1690
[  465.853164]  ? lock_release+0xa10/0xa10
[  465.857132]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  465.862399]  ? kvm_arch_dev_ioctl+0x5f0/0x5f0
[  465.866899]  ? preempt_notifier_dec+0x20/0x20
[  465.871391]  kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  465.876219]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  465.881243]  kvm_vcpu_ioctl+0x79d/0x12e0
[  465.885297]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  465.890997]  ? graph_lock+0x170/0x170
[  465.894794]  ? find_held_lock+0x36/0x1c0
[  465.898854]  ? lock_downgrade+0x8e0/0x8e0
[  465.902997]  ? rcu_is_watching+0x85/0x140
[  465.907141]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  465.912328]  ? __fget+0x40c/0x650
[  465.915772]  ? match_held_lock+0x881/0x8b0
[  465.919993]  ? expand_files.part.8+0x9a0/0x9a0
[  465.924565]  ? kasan_check_write+0x14/0x20
[  465.928789]  ? __mutex_unlock_slowpath+0x180/0x8a0
[  465.933709]  ? wait_for_completion+0x870/0x870
[  465.938280]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  465.943463]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  465.949171]  do_vfs_ioctl+0x1cf/0x1650
[  465.953053]  ? ioctl_preallocate+0x2e0/0x2e0
[  465.957451]  ? fget_raw+0x20/0x20
[  465.960898]  ? __sb_end_write+0xac/0xe0
[  465.964865]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  465.970390]  ? fput+0x130/0x1a0
[  465.973669]  ? ksys_write+0x1a6/0x250
[  465.977465]  ? security_file_ioctl+0x94/0xc0
[  465.981867]  ksys_ioctl+0xa9/0xd0
[  465.985314]  SyS_ioctl+0x24/0x30
[  465.988667]  ? ksys_ioctl+0xd0/0xd0
[  465.992286]  do_syscall_64+0x29e/0x9d0
[  465.996165]  ? syscall_slow_exit_work+0x4f0/0x4f0
[  466.001009]  ? syscall_return_slowpath+0x5c0/0x5c0
[  466.005942]  ? syscall_return_slowpath+0x30f/0x5c0
[  466.010869]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  466.016228]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  466.021334]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  466.026506] RIP: 0033:0x455259
2018/04/11 00:13:41 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c746572000000000000000000ffffffff00", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:41 executing program 7:
r0 = socket$inet6(0xa, 0x3, 0xff)
connect$inet6(r0, &(0x7f0000000140)={0xa, 0x0, 0xa, @ipv4={[], [0xff, 0xff], @multicast1=0xe0000001}, 0x2}, 0xfffffed5)
sendmsg$key(r0, &(0x7f0000000040)={0x20480, 0x0, &(0x7f0000000180)={&(0x7f0000000100)={0x2, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_filter={0x5, 0x1a, @in=@broadcast=0xffffffff, @in=@local={0xac, 0x14, 0x14, 0xaa}}]}, 0x38}, 0x1}, 0x0)

2018/04/11 00:13:41 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x9effffff00000000}, 0x0)

[  466.029680] RSP: 002b:00007f45bbc7bc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  466.037378] RAX: ffffffffffffffda RBX: 00007f45bbc7c6d4 RCX: 0000000000455259
[  466.044631] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000017
[  466.051884] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  466.059145] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000019
[  466.066405] R13: 0000000000000251 R14: 00000000006f6838 R15: 0000000000000043
2018/04/11 00:13:41 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={'filter\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00@\x00', 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:41 executing program 7:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x40540, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xda6000)=nil, 0xda6000, 0x0, 0x64031, 0xffffffffffffffff, 0x0)
r2 = syz_open_dev$sndpcmc(&(0x7f0000000040)='/dev/snd/pcmC#D#c\x00', 0x2, 0x8000)
openat(r2, &(0x7f00000000c0)='./file0\x00', 0x0, 0x3)
ioctl$KVM_REINJECT_CONTROL(r1, 0xae71, &(0x7f0000000000))
rt_sigreturn()

2018/04/11 00:13:42 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0xf0ffffffffffff}, 0x0)

2018/04/11 00:13:42 executing program 1:
r0 = perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sndtimer(&(0x7f0000ea5000)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f0000001000)={{0x100800001}})
fcntl$F_GET_FILE_RW_HINT(r0, 0x40d, &(0x7f0000000040))
epoll_create1(0x0)

2018/04/11 00:13:42 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={'filter\x00\x00\x00\x00\x00\x00\x00\x00?\x00', 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:42 executing program 4:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0x80045300, &(0x7f00000000c0)={0x0, 0x0, 0x0, "717565756530000000000000000000000000000000000000fffffdfd00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))

2018/04/11 00:13:42 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='net/arp\x00')
socket$inet_tcp(0x2, 0x1, 0x0)
r1 = syz_open_dev$tun(&(0x7f0000000100)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller0\x00', 0x3})
socket$inet_icmp(0x2, 0x2, 0x1)
pread64(r0, &(0x7f0000000040)=""/8, 0x8, 0x1ffff)
r2 = memfd_create(&(0x7f000088f000)='b\n\x00', 0x4)
ftruncate(r2, 0x1ffffd)
write$cgroup_int(r2, &(0x7f0000000140)=ANY=[@ANYBLOB="3a342b34002d0000080062ee243015243f8d905c9f1cac46f5a489201c7dcf01ed58cc7753c9e0ca25f873847268cac2f95b81d1762497a49bd491ef7f79df42940fc6e34a0e76f8b304fe29a83bfbd033f5b6206b505d5429235c324a6f80a2397d65115b6ddafc2d120ad9556d3b96fa8411da4a27868ae09b5a433e0b231254302cdec844ace2b381aafab2670edd7d7728c04fea83ad8777d8f25bbab6128c2c809ecd7ed7fb344809dddb5b8fc98536f600"], 0x8)

2018/04/11 00:13:42 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x9effffff}, 0x0)

2018/04/11 00:13:42 executing program 1:
r0 = socket$inet6(0xa, 0x3, 0x8)
r1 = open(&(0x7f0000000040)='./file0\x00', 0x40, 0x89)
ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000080))
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000000)={@dev={0xfe, 0x80}, 0x0, 0x2}, 0x20)

2018/04/11 00:13:42 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={'filter\x00\x00\x00\x00\x00\x00\x00\x00\a\x00', 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:42 executing program 2 (fault-call:26 fault-nth:68):
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/pfkey\x00', 0x1, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_GET_MSR_INDEX_LIST(r1, 0xc004ae02, &(0x7f0000000440)=ANY=[@ANYBLOB="010000e8a806846728a902d7836e000000000090c8bb2c64ee855b03d6b79f01fd689aefd896253378642249ab91395ab66a034c399ce7623518b671b773347d0fd26ec81ac69a995c8ce192812ee8050c3814b9781ac68ebaded833a2c6c838d8647586e9c6e9a5856a915e647163631e9ebb8c6af6c63986f87e1cb1e65dda52219878b2bf0aa3c41d7257b9b338d3de7e2930af343b00807a9f0f1508f564e7be9484af85b8deea898a0e15d4e59917a706dff1d6eb4d00000000000000000000"])
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
pipe2(&(0x7f0000000700)={<r3=>0x0, <r4=>0x0}, 0x0)
ioctl$KVM_SET_XSAVE(r2, 0x5000aea5, &(0x7f0000000740)={"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"})
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
shmget(0x0, 0x3000, 0x1, &(0x7f000075a000/0x3000)=nil)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000600)={<r6=>0x0, @in={{0x2, 0x4e23, @multicast2=0xe0000002}}, 0x5, 0x6, 0x1, 0xfff, 0x8}, &(0x7f0000000080)=0x98)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000b40)={r6, @in={{0x2, 0x4e24, @rand_addr=0x10000}}, 0x5, 0x101, 0x6, 0xea, 0x72}, &(0x7f00000002c0)=0x98)
r7 = dup3(r5, r4, 0x0)
munlockall()
r8 = shmget$private(0x0, 0x3000, 0x10, &(0x7f0000760000/0x3000)=nil)
shmctl$IPC_RMID(r8, 0x0)
clock_gettime(0x7, &(0x7f0000000000))
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f0000460fe4)={0x0, 0x7, 0x2, 0x0, 0x4, 0x8, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x805})
ioctl$SNDRV_TIMER_IOCTL_GINFO(r4, 0xc0f85403, &(0x7f0000000c00)={{0xffffffffffffffff, 0x0, 0x3, 0x3, 0x2}, 0x81, 0x3, 'id0\x00', 'timer0\x00', 0x0, 0x6, 0x1, 0x6, 0x3})
ioctl$sock_inet6_tcp_SIOCINQ(r3, 0x541b, &(0x7f0000000040))
socket(0xf, 0x6, 0x5)
ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000280)={0x81, 0x1})
ioctl$EVIOCSABS2F(r7, 0x401845ef, &(0x7f0000000240)={0x9, 0x0, 0xfffffffffffffffd, 0x1ff, 0x4, 0x7f})
getsockopt$ax25_buf(r4, 0x101, 0x19, &(0x7f0000000140)=""/53, &(0x7f0000000180)=0x35)
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/enforce\x00', 0x10000, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000753000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, &(0x7f00000000c0)="0fc7280f080f20030f01727166ba4200b834000000ef66bad10466edb81da1fb500f23d00f21f835300000050f23f8c4c3194bfc360f20030fc76d08", 0x3c}], 0x1, 0x7, &(0x7f0000000380), 0x10000181)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r2, 0x8008ae9d, &(0x7f0000000340)=""/250)

2018/04/11 00:13:42 executing program 0:
r0 = socket(0x1e, 0x1, 0x0)
r1 = syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x80, 0x604201)
ioctl$TUNSETVNETLE(r1, 0x400454dc, &(0x7f0000000100))
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000b89fe4)=@req={0x772, 0x80000000, 0x2}, 0x10)
getsockname$ipx(r0, &(0x7f0000000000), &(0x7f0000000040)=0x10)
ioctl$DRM_IOCTL_MARK_BUFS(r1, 0x40206417, &(0x7f0000000200)={0x3, 0xd254, 0x81, 0x8, 0x2, 0x3ff})
sendmsg(r0, &(0x7f0000030000)={&(0x7f00004f5000)=@generic={0x10000000001e, "0100000900000000000000000226cc573c080000003724c71e14dd6a739effea1b48006be61ffe0000e103000000f8000004003f010039d8f986ff01000300000004af50d50700000000000000e3ad316a1983000000001d00e0dfcb24281e27800000100076c3979ac40000bd15020078a1dfd300881a8365b1b16d7436"}, 0x80, &(0x7f0000447ff0), 0x0, &(0x7f00006e9c68)}, 0x0)
ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f00000000c0)=<r2=>0x0)
ptrace$getregs(0xffffffffffffffff, r2, 0x8, &(0x7f0000000140)=""/131)
ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000000240)={&(0x7f0000ffd000/0x3000)=nil, 0x3000})

2018/04/11 00:13:42 executing program 5:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0xc08c5336, &(0x7f00000000c0)={0x0, 0x0, 0x0, "71756575653000000000000000000000000000000000000000000000000000000000000000001f00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer2\x00', 0x0, 0x0)

2018/04/11 00:13:42 executing program 1:
r0 = socket$inet(0x11, 0x40000000000803, 0x0)
recvmsg(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[]}, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x107, 0xf, &(0x7f00000001c0)=@broute={'broute\x00', 0x20, 0x0, 0x90, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000100], 0x0, &(0x7f0000000040), &(0x7f0000000100)=ANY=[@ANYBLOB="0000000000000000000000100000000000000000000000000000000000000000000000009bafde57069a0000060000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"]}, 0x104)
recvmmsg(r0, &(0x7f0000001b00)=[{{&(0x7f0000000400)=@sco, 0x80, &(0x7f0000001700)=[{&(0x7f0000000480)=""/71, 0x47}, {&(0x7f0000000500)=""/85, 0x55}, {&(0x7f0000000580)=""/119, 0x77}, {&(0x7f0000000600)=""/233, 0xe9}, {&(0x7f0000000700)=""/4096, 0x1000}], 0x5, &(0x7f0000001780)=""/93, 0x5d, 0x4e8}, 0x100000001}, {{&(0x7f0000001800)=@alg, 0x80, &(0x7f0000001a40)=[{}, {&(0x7f0000001880)=""/188, 0xbc}, {&(0x7f0000001940)=""/254, 0xfe}], 0x3, &(0x7f0000001a80)=""/114, 0x72, 0x2}, 0x40}], 0x2, 0x40, &(0x7f0000001b80)={0x0, 0x989680})
recvmsg(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000300)=""/228, 0xe4}, {&(0x7f0000000200)=""/201, 0xfffffffffffffc50}], 0x2, &(0x7f00000000c0)=""/34, 0xfec8}, 0x0)
sendmsg(r0, &(0x7f000087dfc8)={&(0x7f000005e000)=@nfc_llcp={0x27, 0x9, 0x0, 0x0, 0x0, 0x0, "f0aeec0d840130e5c5485e44a7627f9a8864abed4d4460dd5b1a0182c6c84a143e64f31d1c11349c949054860b9c131950a610e2736612827582530c3c1df9"}, 0x60, &(0x7f0000000380), 0x9c}, 0x0)
r1 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x2, 0x6c0041)
ioctl$sock_inet6_tcp_SIOCINQ(r1, 0x541b, &(0x7f0000001bc0))

2018/04/11 00:13:42 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={'filter\x00\x00\x00\x00\x00\x00@\x00', 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

[  466.809873] FAULT_INJECTION: forcing a failure.
[  466.809873] name failslab, interval 1, probability 0, space 0, times 0
[  466.821263] CPU: 0 PID: 30877 Comm: syz-executor2 Not tainted 4.16.0+ #18
[  466.828203] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  466.837564] Call Trace:
[  466.840164]  dump_stack+0x1b9/0x294
[  466.843801]  ? dump_stack_print_info.cold.2+0x52/0x52
[  466.849000]  ? __save_stack_trace+0x7e/0xd0
[  466.853334]  should_fail.cold.4+0xa/0x1a
2018/04/11 00:13:42 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c74657200000000000000000500", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:42 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c74657200000000000500", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

[  466.857397]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  466.862722]  ? kasan_kmalloc+0xc4/0xe0
[  466.866613]  ? kasan_slab_alloc+0x12/0x20
[  466.870765]  ? kmem_cache_alloc+0x12e/0x760
[  466.875095]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  466.880050]  ? kvm_mmu_load+0x21/0x10e0
[  466.884034]  ? vcpu_enter_guest+0x3aa1/0x6070
[  466.889051]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  466.894086]  ? graph_lock+0x170/0x170
[  466.897899]  ? do_syscall_64+0x29e/0x9d0
[  466.901984]  ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  466.907355]  ? find_held_lock+0x36/0x1c0
[  466.911427]  ? __lock_is_held+0xb5/0x140
[  466.915511]  ? check_same_owner+0x320/0x320
[  466.919840]  ? rcu_note_context_switch+0x710/0x710
[  466.924775]  __should_failslab+0x124/0x180
[  466.929017]  should_failslab+0x9/0x14
[  466.932826]  kmem_cache_alloc+0x2af/0x760
[  466.936984]  ? alloc_pages_current+0x114/0x210
[  466.941579]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  466.946594]  mmu_topup_memory_caches+0x2fa/0x3a0
[  466.951360]  kvm_mmu_load+0x21/0x10e0
[  466.955168]  ? __might_sleep+0x95/0x190
[  466.959154]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  466.964702]  vcpu_enter_guest+0x3aa1/0x6070
[  466.969028]  ? kvm_vcpu_ioctl+0x1e2/0x12e0
[  466.973271]  ? print_usage_bug+0xc0/0xc0
[  466.977346]  ? kvm_set_msr_common+0x2660/0x2660
[  466.982018]  ? vmx_vcpu_load+0xaed/0xff0
[  466.986975]  ? __lock_acquire+0x7f5/0x5130
[  466.991213]  ? vmx_vcpu_reset+0x1030/0x1030
[  466.995536]  ? graph_lock+0x170/0x170
[  466.999341]  ? __lock_acquire+0x7f5/0x5130
[  467.003580]  ? debug_check_no_locks_freed+0x310/0x310
[  467.008776]  ? print_usage_bug+0xc0/0xc0
[  467.012842]  ? __lock_is_held+0xb5/0x140
[  467.016905]  ? lock_acquire+0x1dc/0x520
[  467.020879]  ? kvm_arch_vcpu_ioctl_run+0x234/0x1690
[  467.025896]  ? lock_release+0xa10/0xa10
[  467.029874]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  467.035155]  ? kvm_arch_dev_ioctl+0x5f0/0x5f0
[  467.039665]  ? preempt_notifier_dec+0x20/0x20
[  467.044171]  kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  467.049015]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  467.054046]  kvm_vcpu_ioctl+0x79d/0x12e0
[  467.058124]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  467.063849]  ? graph_lock+0x170/0x170
[  467.067649]  ? find_held_lock+0x36/0x1c0
[  467.071720]  ? lock_downgrade+0x8e0/0x8e0
[  467.075878]  ? kasan_check_read+0x11/0x20
[  467.080029]  ? rcu_is_watching+0x85/0x140
[  467.084178]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  467.089378]  ? __fget+0x40c/0x650
[  467.092833]  ? match_held_lock+0x881/0x8b0
[  467.097073]  ? expand_files.part.8+0x9a0/0x9a0
[  467.101660]  ? kasan_check_write+0x14/0x20
[  467.105903]  ? __mutex_unlock_slowpath+0x180/0x8a0
[  467.110845]  ? wait_for_completion+0x870/0x870
[  467.115436]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  467.120815]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  467.126625]  do_vfs_ioctl+0x1cf/0x1650
[  467.130529]  ? ioctl_preallocate+0x2e0/0x2e0
[  467.134946]  ? fget_raw+0x20/0x20
[  467.138424]  ? __sb_end_write+0xac/0xe0
[  467.143186]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  467.148729]  ? fput+0x130/0x1a0
[  467.152014]  ? ksys_write+0x1a6/0x250
[  467.155821]  ? security_file_ioctl+0x94/0xc0
[  467.160240]  ksys_ioctl+0xa9/0xd0
[  467.163698]  SyS_ioctl+0x24/0x30
[  467.167070]  ? ksys_ioctl+0xd0/0xd0
[  467.170702]  do_syscall_64+0x29e/0x9d0
[  467.174594]  ? vmalloc_sync_all+0x30/0x30
[  467.178747]  ? syscall_slow_exit_work+0x4f0/0x4f0
[  467.183571]  ? syscall_return_slowpath+0x5c0/0x5c0
[  467.188498]  ? syscall_return_slowpath+0x30f/0x5c0
[  467.193424]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  467.198770]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  467.203604]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
2018/04/11 00:13:42 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c7465720000000000000000000000009000", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:42 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0xc00e0000}, 0x0)

2018/04/11 00:13:42 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c74657200000000000000000000020c4900", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:42 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c7465720000000000000000000000000300", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

[  467.208772] RIP: 0033:0x455259
[  467.211937] RSP: 002b:00007f45bbc7bc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  467.219626] RAX: ffffffffffffffda RBX: 00007f45bbc7c6d4 RCX: 0000000000455259
[  467.226883] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000017
[  467.234139] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  467.241389] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000019
[  467.248641] R13: 0000000000000251 R14: 00000000006f6838 R15: 0000000000000044
2018/04/11 00:13:43 executing program 4:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0x80045300, &(0x7f00000000c0)={0x0, 0x0, 0x0, "71756575653000000000000000000000000000000000000000fdfdffff00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))

2018/04/11 00:13:43 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c7465720000000000000000000000000400", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:43 executing program 0:
r0 = socket$inet6(0xa, 0x5, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0xe2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000d74000)={@dev={0xfe, 0x80}, 0x0, 0x0, 0x3, 0x9}, 0x20)
dup3(r1, r0, 0x0)
fcntl$F_SET_RW_HINT(r0, 0x40c, &(0x7f0000000040)=0x2)

2018/04/11 00:13:43 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x200000000000000}, 0x0)

2018/04/11 00:13:43 executing program 1:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000000)=<r1=>0x0)
perf_event_open(&(0x7f000001d000)={0x2, 0x78, 0xe2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$btrfs(&(0x7f00000000c0)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000002c0)={[{@clear_cache='clear_cache', 0x2c}]})
ptrace$setsig(0x4203, r1, 0x10000, &(0x7f0000000040)={0x15, 0xfffffffffffffffa, 0x7f, 0x3})
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f0000000380)={0x0, {0x2, 0x0, @remote={0xac, 0x14, 0x14, 0xbb}}, {0x2, 0x0, @multicast1=0xe0000001}, {0x2, 0x0, @multicast1=0xe0000001}, 0x104, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1})

2018/04/11 00:13:43 executing program 2 (fault-call:26 fault-nth:69):
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/pfkey\x00', 0x1, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_GET_MSR_INDEX_LIST(r1, 0xc004ae02, &(0x7f0000000440)=ANY=[@ANYBLOB="010000e8a806846728a902d7836e000000000090c8bb2c64ee855b03d6b79f01fd689aefd896253378642249ab91395ab66a034c399ce7623518b671b773347d0fd26ec81ac69a995c8ce192812ee8050c3814b9781ac68ebaded833a2c6c838d8647586e9c6e9a5856a915e647163631e9ebb8c6af6c63986f87e1cb1e65dda52219878b2bf0aa3c41d7257b9b338d3de7e2930af343b00807a9f0f1508f564e7be9484af85b8deea898a0e15d4e59917a706dff1d6eb4d00000000000000000000"])
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
pipe2(&(0x7f0000000700)={<r3=>0x0, <r4=>0x0}, 0x0)
ioctl$KVM_SET_XSAVE(r2, 0x5000aea5, &(0x7f0000000740)={"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"})
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
shmget(0x0, 0x3000, 0x1, &(0x7f000075a000/0x3000)=nil)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000600)={<r6=>0x0, @in={{0x2, 0x4e23, @multicast2=0xe0000002}}, 0x5, 0x6, 0x1, 0xfff, 0x8}, &(0x7f0000000080)=0x98)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000b40)={r6, @in={{0x2, 0x4e24, @rand_addr=0x10000}}, 0x5, 0x101, 0x6, 0xea, 0x72}, &(0x7f00000002c0)=0x98)
r7 = dup3(r5, r4, 0x0)
munlockall()
r8 = shmget$private(0x0, 0x3000, 0x10, &(0x7f0000760000/0x3000)=nil)
shmctl$IPC_RMID(r8, 0x0)
clock_gettime(0x7, &(0x7f0000000000))
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f0000460fe4)={0x0, 0x7, 0x2, 0x0, 0x4, 0x8, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x805})
ioctl$SNDRV_TIMER_IOCTL_GINFO(r4, 0xc0f85403, &(0x7f0000000c00)={{0xffffffffffffffff, 0x0, 0x3, 0x3, 0x2}, 0x81, 0x3, 'id0\x00', 'timer0\x00', 0x0, 0x6, 0x1, 0x6, 0x3})
ioctl$sock_inet6_tcp_SIOCINQ(r3, 0x541b, &(0x7f0000000040))
socket(0xf, 0x6, 0x5)
ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000280)={0x81, 0x1})
ioctl$EVIOCSABS2F(r7, 0x401845ef, &(0x7f0000000240)={0x9, 0x0, 0xfffffffffffffffd, 0x1ff, 0x4, 0x7f})
getsockopt$ax25_buf(r4, 0x101, 0x19, &(0x7f0000000140)=""/53, &(0x7f0000000180)=0x35)
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/enforce\x00', 0x10000, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000753000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, &(0x7f00000000c0)="0fc7280f080f20030f01727166ba4200b834000000ef66bad10466edb81da1fb500f23d00f21f835300000050f23f8c4c3194bfc360f20030fc76d08", 0x3c}], 0x1, 0x7, &(0x7f0000000380), 0x10000181)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r2, 0x8008ae9d, &(0x7f0000000340)=""/250)

2018/04/11 00:13:43 executing program 7:
r0 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = dup(r0)
bind$bt_l2cap(r1, &(0x7f0000000080)={0x1f, 0xfffffffffffffff8, {0x4, 0x4, 0x3f, 0x1, 0x7ff, 0x1}, 0x2050, 0x9}, 0xe)
getsockopt$IP6T_SO_GET_INFO(0xffffffffffffffff, 0x29, 0x10, &(0x7f0000000100)={"7365637502000000000000000000000000000000000000000000000005000400"}, &(0x7f00000000c0)=0x54)

2018/04/11 00:13:43 executing program 5:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0xc08c5336, &(0x7f00000000c0)={0x0, 0x0, 0x0, "7175657565300000000000000000000000000000000000000000000000000000000000001f00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer2\x00', 0x0, 0x0)

[  467.992390] FAULT_INJECTION: forcing a failure.
[  467.992390] name failslab, interval 1, probability 0, space 0, times 0
[  468.003896] CPU: 1 PID: 30951 Comm: syz-executor2 Not tainted 4.16.0+ #18
[  468.010845] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  468.020209] Call Trace:
[  468.022819]  dump_stack+0x1b9/0x294
[  468.026470]  ? dump_stack_print_info.cold.2+0x52/0x52
[  468.031684]  ? perf_trace_lock_acquire+0xe3/0x980
[  468.036562]  should_fail.cold.4+0xa/0x1a
[  468.040652]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  468.045776]  ? kasan_kmalloc+0xc4/0xe0
[  468.049672]  ? kasan_slab_alloc+0x12/0x20
[  468.053810]  ? kmem_cache_alloc+0x12e/0x760
[  468.058122]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  468.063044]  ? kvm_mmu_load+0x21/0x10e0
[  468.067008]  ? vcpu_enter_guest+0x3aa1/0x6070
[  468.071496]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  468.076506]  ? graph_lock+0x170/0x170
[  468.080295]  ? do_syscall_64+0x29e/0x9d0
[  468.084346]  ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  468.089707]  ? find_held_lock+0x36/0x1c0
[  468.093765]  ? __lock_is_held+0xb5/0x140
[  468.097843]  ? check_same_owner+0x320/0x320
[  468.102160]  ? rcu_note_context_switch+0x710/0x710
[  468.107083]  __should_failslab+0x124/0x180
[  468.111308]  should_failslab+0x9/0x14
[  468.115097]  kmem_cache_alloc+0x2af/0x760
[  468.119236]  ? alloc_pages_current+0x114/0x210
[  468.123810]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  468.128736]  mmu_topup_memory_caches+0x2fa/0x3a0
[  468.133488]  kvm_mmu_load+0x21/0x10e0
[  468.137279]  ? __might_sleep+0x95/0x190
[  468.141243]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  468.146781]  vcpu_enter_guest+0x3aa1/0x6070
[  468.151096]  ? kvm_vcpu_ioctl+0x1e2/0x12e0
[  468.155326]  ? perf_trace_lock+0xd6/0x900
[  468.159474]  ? kvm_set_msr_common+0x2660/0x2660
[  468.164130]  ? zap_class+0x720/0x720
[  468.167836]  ? perf_trace_lock+0x900/0x900
[  468.172058]  ? __lock_acquire+0x7f5/0x5130
[  468.176287]  ? vmx_vcpu_reset+0x1030/0x1030
[  468.180595]  ? graph_lock+0x170/0x170
[  468.184384]  ? __lock_acquire+0x7f5/0x5130
[  468.188616]  ? perf_trace_lock_acquire+0xe3/0x980
[  468.193452]  ? __lock_is_held+0xb5/0x140
[  468.197503]  ? lock_acquire+0x1dc/0x520
[  468.201466]  ? kvm_arch_vcpu_ioctl_run+0x234/0x1690
[  468.206473]  ? lock_release+0xa10/0xa10
[  468.210443]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  468.215706]  ? kvm_arch_dev_ioctl+0x5f0/0x5f0
[  468.220207]  ? preempt_notifier_dec+0x20/0x20
[  468.224710]  kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  468.229540]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  468.234556]  kvm_vcpu_ioctl+0x79d/0x12e0
[  468.238607]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  468.244308]  ? graph_lock+0x170/0x170
[  468.248098]  ? find_held_lock+0x36/0x1c0
[  468.252160]  ? lock_downgrade+0x8e0/0x8e0
[  468.256306]  ? rcu_is_watching+0x85/0x140
[  468.260445]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  468.265634]  ? __fget+0x40c/0x650
[  468.269078]  ? match_held_lock+0x881/0x8b0
[  468.273305]  ? expand_files.part.8+0x9a0/0x9a0
[  468.277875]  ? kasan_check_write+0x14/0x20
[  468.282101]  ? __mutex_unlock_slowpath+0x180/0x8a0
[  468.287031]  ? wait_for_completion+0x870/0x870
[  468.291607]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  468.296787]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  468.302490]  do_vfs_ioctl+0x1cf/0x1650
[  468.306372]  ? ioctl_preallocate+0x2e0/0x2e0
[  468.310770]  ? fget_raw+0x20/0x20
[  468.314214]  ? __sb_end_write+0xac/0xe0
[  468.318180]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  468.323705]  ? fput+0x130/0x1a0
[  468.326972]  ? ksys_write+0x1a6/0x250
[  468.330764]  ? security_file_ioctl+0x94/0xc0
[  468.335165]  ksys_ioctl+0xa9/0xd0
[  468.338611]  SyS_ioctl+0x24/0x30
[  468.341965]  ? ksys_ioctl+0xd0/0xd0
[  468.345583]  do_syscall_64+0x29e/0x9d0
[  468.349455]  ? vmalloc_sync_all+0x30/0x30
[  468.353594]  ? _raw_spin_unlock_irq+0x27/0x70
[  468.358081]  ? finish_task_switch+0x1ca/0x820
[  468.362571]  ? syscall_return_slowpath+0x5c0/0x5c0
[  468.367493]  ? syscall_return_slowpath+0x30f/0x5c0
[  468.372418]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  468.377785]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  468.382623]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  468.387800] RIP: 0033:0x455259
2018/04/11 00:13:43 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c74657200000000000000000300", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:44 executing program 1:
syz_open_dev$dmmidi(&(0x7f00000001c0)='/dev/dmmidi#\x00', 0x20, 0x801)
perf_event_open(&(0x7f0000b5a000)={0x4000000002, 0x78, 0x1e2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r0, &(0x7f000001cff0)={0x2, 0x0, @loopback=0x7f000001}, 0x10)
sendmsg$rds(r0, &(0x7f000000dfc8)={&(0x7f0000014000)={0x2, 0x0, @rand_addr=0x31a00dfb}, 0x10, &(0x7f0000001fc0), 0x0, &(0x7f0000000080)=[@rdma_dest={0x18, 0x114, 0x2}], 0x18}, 0x0)
personality(0xffffffffffffffff)
r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/backup_only\x00', 0x2, 0x0)
mkdirat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x1ff)
r2 = add_key(&(0x7f00000000c0)='blacklist\x00', &(0x7f0000000100)={0x73, 0x79, 0x7a, 0x2}, &(0x7f0000000140)="ad70fd485b77841d55260dc96f17d76f3f7b0a1a3dae15ff5f05adbf3ba139cf12bc8d2d0d08547e902097064c1809ca1fbd6e98e5", 0x35, 0xfffffffffffffff8)
connect$rds(r0, &(0x7f0000000180)={0x2, 0x4e22, @broadcast=0xffffffff}, 0x10)
keyctl$get_keyring_id(0x0, r2, 0x1)

2018/04/11 00:13:44 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0xa9050000}, 0x0)

2018/04/11 00:13:44 executing program 7:
r0 = socket$inet6(0xa, 0xa, 0xfffffffffbfffffd)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ppp\x00', 0x100000000, 0x0)
getsockopt$inet_sctp_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000040)=ANY=[@ANYBLOB="c3a29443808d5879"], &(0x7f00000000c0)=0x8)
r2 = dup(r0)
getsockopt$bt_l2cap_L2CAP_CONNINFO(r2, 0x6, 0x2, &(0x7f0000000080), &(0x7f00000003c0)=0x6)
fstat(r1, &(0x7f0000000180))

[  468.390975] RSP: 002b:00007f45bbc7bc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  468.398673] RAX: ffffffffffffffda RBX: 00007f45bbc7c6d4 RCX: 0000000000455259
[  468.405929] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000017
[  468.413186] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  468.420443] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000019
[  468.427699] R13: 0000000000000251 R14: 00000000006f6838 R15: 0000000000000045
2018/04/11 00:13:44 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x400300}, 0x0)

2018/04/11 00:13:44 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={'filter\x00\x00\x00\x00\x00\a\x00', 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:44 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000577000)={0x26, 'hash\x00', 0x0, 0x0, 'digest_null\x00'}, 0x58)
r1 = accept4$alg(r0, 0x0, 0x0, 0x0)
pivot_root(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00')
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f0000000000)={0x1, 0x5}, 0x8)
syz_open_dev$dmmidi(&(0x7f0000000040)='/dev/dmmidi#\x00', 0xecf4, 0x40c1f7914d84478e)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000040), 0x0)
sendmmsg$alg(r1, &(0x7f0000002980)=[{0x0, 0x0, &(0x7f0000001240), 0x0, &(0x7f0000001280)}, {0x0, 0x0, &(0x7f00000014c0)}, {0x0, 0x0, &(0x7f0000002900), 0x0, &(0x7f0000002940)=[@op={0x10, 0x117, 0x3}], 0x10}], 0x3, 0x0)

2018/04/11 00:13:44 executing program 0:
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dsp\x00', 0x140, 0x0)
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(0xffffffffffffff9c, 0x84, 0x7b, &(0x7f00000000c0)={<r1=>0x0, 0x1}, &(0x7f0000000100)=0x8)
getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000140)={r1, @in={{0x2, 0x401, @dev={0xac, 0x14, 0x14, 0x1b}}}}, &(0x7f0000000200)=0x84)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000000)='io.max\x00', 0x2, 0x0)
write$cgroup_int(r3, &(0x7f0000000300)=ANY=[], 0x3)
ioctl$EVIOCSABS20(r0, 0x401845e0, &(0x7f0000000240)={0xffff, 0x8bf1, 0x8, 0x7, 0x0, 0x7f})

2018/04/11 00:13:44 executing program 4:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0x80045300, &(0x7f00000000c0)={0x0, 0x0, 0x0, "7175657565300000000000000000000000000000000000000000000000fffffdfd00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))

2018/04/11 00:13:44 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c74657200000000000300", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:44 executing program 1:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000d28000)={0xaa})
r1 = epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
r2 = syz_open_dev$sndtimer(&(0x7f0000000140)='/dev/snd/timer\x00', 0x0, 0x806)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r2, 0xc0145401, &(0x7f0000013000))
readv(r2, &(0x7f000042bff8)=[{&(0x7f0000e3b000)=""/61, 0x3d}], 0x1)
ioctl$KVM_DEASSIGN_PCI_DEVICE(r2, 0x4040ae72, &(0x7f0000ff0000))
dup3(r1, r0, 0x0)
userfaultfd(0x800)

2018/04/11 00:13:44 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0xfffffff0}, 0x0)

2018/04/11 00:13:44 executing program 2 (fault-call:26 fault-nth:70):
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/pfkey\x00', 0x1, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_GET_MSR_INDEX_LIST(r1, 0xc004ae02, &(0x7f0000000440)=ANY=[@ANYBLOB="010000e8a806846728a902d7836e000000000090c8bb2c64ee855b03d6b79f01fd689aefd896253378642249ab91395ab66a034c399ce7623518b671b773347d0fd26ec81ac69a995c8ce192812ee8050c3814b9781ac68ebaded833a2c6c838d8647586e9c6e9a5856a915e647163631e9ebb8c6af6c63986f87e1cb1e65dda52219878b2bf0aa3c41d7257b9b338d3de7e2930af343b00807a9f0f1508f564e7be9484af85b8deea898a0e15d4e59917a706dff1d6eb4d00000000000000000000"])
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
pipe2(&(0x7f0000000700)={<r3=>0x0, <r4=>0x0}, 0x0)
ioctl$KVM_SET_XSAVE(r2, 0x5000aea5, &(0x7f0000000740)={"821c059ceb3c1a4b565cba916ba4cfe805163ba44e5dbef061fe0302945e42db54da3f05792113b780f3efb176690c8b67a4a17d8eae46cfb5eda672a90b88c0fffc17223e428569632b728bee37f4076374f505127edb8b822bd97d7c2f365fccb858450dfdf95ee07aaaf0a2c0136eed7fb5d14f5298b788d36b009d57a7de914fc02a489daf7c75f37d0ee20c2cde218d30661a4702f06301ab93f72d09911254d39a2fa5c6611ade75a7f534b90f49bfcb548589c975c0f56724df4f35816c4a83d2f9b106570bf065387c7769361f0ac9d641eec9d2107feaf8a65aada58f689c5aafc869c8ce6447fa017e357949d836daaa4d323c710fc314b6345a4da62e25f581c6ff59365a9bf8b6f3732d3b23fa543d7dca7c758d403c726814f72c0304ea5694ccf90468ab91e4b4238655023b7ff2db190e92e7b6ddd4b850147bcbeb69b5b17b2939e69c6a117ff3aa3ec0d44fc64ddd7431ba8397effc54df00c9b7afb061f2aa5eb0fa7c0e010bf22da72fd45e1406e6abf9da38eb4e86f0f67706877b24e4ee61b1185f46d4740579a7d2f28e34cfd1e4365358e49bf25c327c2298d89f78cf6fd717254e18d492ce2e09151abb74a9d0ca7d2290879e0e87264307cbeefb7420d7b6451462bc39a8361eba00b6760b723f4b03141e31c402b36fe6e90752393e66d5897bec98b856592c114e16a8f150117a29e890286e845324779aea566e472a1ecf201cb36a64b0472b4dfdcab391ed2356d1eb646adc71e1bf1df38daeadf199e93616e3f8da94574df04629e9b355e60edc1075ab2afc1fbffdc901d8b6091d15fcdeca25199439ccd63320667d9fe382f8174676c6435cc08ce09833d0eb4cee3cbee55af63c6d060c6f5153a862b28fda51dd5fcc6daca8f571cc87da9aab50a1f7daed9497f49535c1f499db0724c16bcf94730190c91134149e32fc57c14290d9a255d027813517b42bfbfa485493558477a14a26741613141a55237bba1fe3a4f68b8d3df7935a63a683488cd7539cbc404d8968616657af33ecfef04d2e0f41fd52523319892decf7b63ae9f9cdb6847eaa0d2af35bb71577c3cfc6b9705da1a0712e50a7a90063601763af4efd1f559e20b5e78340dd5454d6a3f726a0cd3b218375a54822ade6c69e2d98ea3f43e3bc736177ee0615590ff84dfb50e78d118abf8361d7c90d2f0672e87a1dd349562c70543e89ba93d58c57c1189799766b45819ac197993d575c0ec11028be5751b5115dfb27c39bd96856bb54f39643fdd7326108ec9f830f805e6e90787f09f20b56b98000a946b1eb2e80777135415e79d233d6e0905e1188cfed7fefb03fe5b9a21e87d63196095f89abf5c562956076a5487afad22b1afbc54efdb3a56e6994ec0294c473b73f52073560eb1e2810c2b9f45b5bef9b26801822514932c9019d2f"})
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
shmget(0x0, 0x3000, 0x1, &(0x7f000075a000/0x3000)=nil)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000600)={<r6=>0x0, @in={{0x2, 0x4e23, @multicast2=0xe0000002}}, 0x5, 0x6, 0x1, 0xfff, 0x8}, &(0x7f0000000080)=0x98)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000b40)={r6, @in={{0x2, 0x4e24, @rand_addr=0x10000}}, 0x5, 0x101, 0x6, 0xea, 0x72}, &(0x7f00000002c0)=0x98)
r7 = dup3(r5, r4, 0x0)
munlockall()
r8 = shmget$private(0x0, 0x3000, 0x10, &(0x7f0000760000/0x3000)=nil)
shmctl$IPC_RMID(r8, 0x0)
clock_gettime(0x7, &(0x7f0000000000))
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f0000460fe4)={0x0, 0x7, 0x2, 0x0, 0x4, 0x8, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x805})
ioctl$SNDRV_TIMER_IOCTL_GINFO(r4, 0xc0f85403, &(0x7f0000000c00)={{0xffffffffffffffff, 0x0, 0x3, 0x3, 0x2}, 0x81, 0x3, 'id0\x00', 'timer0\x00', 0x0, 0x6, 0x1, 0x6, 0x3})
ioctl$sock_inet6_tcp_SIOCINQ(r3, 0x541b, &(0x7f0000000040))
socket(0xf, 0x6, 0x5)
ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000280)={0x81, 0x1})
ioctl$EVIOCSABS2F(r7, 0x401845ef, &(0x7f0000000240)={0x9, 0x0, 0xfffffffffffffffd, 0x1ff, 0x4, 0x7f})
getsockopt$ax25_buf(r4, 0x101, 0x19, &(0x7f0000000140)=""/53, &(0x7f0000000180)=0x35)
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/enforce\x00', 0x10000, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000753000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, &(0x7f00000000c0)="0fc7280f080f20030f01727166ba4200b834000000ef66bad10466edb81da1fb500f23d00f21f835300000050f23f8c4c3194bfc360f20030fc76d08", 0x3c}], 0x1, 0x7, &(0x7f0000000380), 0x10000181)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r2, 0x8008ae9d, &(0x7f0000000340)=""/250)

2018/04/11 00:13:44 executing program 7:
perf_event_open(&(0x7f000001d000)={0x5, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={&(0x7f0000000000), 0x1}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$usbmon(&(0x7f0000000200)='/dev/usbmon#\x00', 0x9a1, 0xc0)
setsockopt(r0, 0x40, 0x1, &(0x7f0000000180)="064a400b18a97b59fe", 0x9)
r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0xb, 0x80)
ioctl(r1, 0x802275, &(0x7f0000000080)="112ff01282914cf345a4ea7e7ce11d6a8e7813aa03d91efc7ef4ce4a4503577f4dfe65dfeb13d755b4351e454626d51b7cefbef358a3a09149b7b0eb3f81f320a41ac32687cc9742a9704318a850d732cb3acde79d9a4371903a2c1f8257a2852df0e1e8a7e7c7d2fabf103ff40489a93dad2f77ece948a996c3904f5dfade835020b24bc6e37d4d3fc398ecb145")

2018/04/11 00:13:44 executing program 0:
semget(0x3, 0x5, 0x0)
r0 = openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x0, 0x40)
ioctl$sock_bt_hidp_HIDPGETCONNLIST(r0, 0x800448d2, &(0x7f0000000180)={0x2, &(0x7f0000000040)=[{}, {}]})
getsockopt$inet_sctp6_SCTP_PR_STREAM_STATUS(r0, 0x84, 0x74, &(0x7f00000001c0)=""/220, &(0x7f00000002c0)=0xdc)
get_mempolicy(&(0x7f0000000300), &(0x7f0000000340), 0xffffffffffffffe1, &(0x7f0000ffd000/0x1000)=nil, 0x2)
prctl$intptr(0x21, 0x5e07)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$KVM_SET_VCPU_EVENTS(r0, 0x4040aea0, &(0x7f0000000380)={0xfffffffffffffffa, 0x2, 0x82ad, 0x0, 0x0, 0xa95, 0xb6b0, 0x2d, 0xe2, 0x6, 0x3, 0xad, 0x0, 0x4, 0x4, 0x2, 0x8, 0x5})
getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r0, 0x84, 0x71, &(0x7f00000003c0)={<r2=>0x0, 0x3}, &(0x7f0000000400)=0x8)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r0, 0x84, 0x6c, &(0x7f0000000440)={<r3=>r2, 0x50, "b1ec014fff6fda882733d55357ff3a9a6a66030f285fea48787d61911adf5a3540757e99f4554ea6d00eca47735fc0363b4681262ac6135423077f1343476b46bd97e529ea2c9ab9800d9ec627f3fef1"}, &(0x7f00000004c0)=0x58)
getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f0000000500)={<r4=>r3, @in={{0x2, 0x4e24, @multicast1=0xe0000001}}, 0x0, 0x3a6a}, &(0x7f00000005c0)=0x90)
setsockopt$inet_MCAST_LEAVE_GROUP(r0, 0x0, 0x2d, &(0x7f0000000600)={0x9, {{0x2, 0x4e24, @rand_addr=0x2}}}, 0x88)
r5 = socket$kcm(0x29, 0x5, 0x0)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r0, 0x84, 0x6c, &(0x7f00000006c0)={r4, 0xf5, "5d6e9213796cfe16eec215a9099a896ba1c149ec9f5a114be9f3ca8d79579a133aab22f1444e6410fdbe3f911b1458716b46b7e2e0a2b9634718f920f102bcefe2169a70a8080d6af6abbc7fcf5317f104b917e478eef2a08def7ed3d13fcdae27cd550b461773c8b012d68feee60a86c223ccd2437ebdbba4cc7e65ee0cca35455f11dcaa906b0c7d71e37f04b8e3fd7cbc7f2b521e5f4a81a2fe37a87703dedb98480c3fae96935bc79ad8a34f83596259ee1b52eec7cb3d329eb120ad65378d70e3e42259e264045b2181824a7813cea899cce92425444a9f7afa534e1c0916ce6788a28d975841919e4595d4a68adabf561aa2"}, &(0x7f00000007c0)=0xfd)
ioctl$EVIOCGEFFECTS(r0, 0x80044584, &(0x7f0000000800)=""/236)
mincore(&(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f0000000900)=""/222)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000a00)={r3, 0x2}, 0x8)
getsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000a40)=@assoc_id=r2, &(0x7f0000000a80)=0x4)
ioctl$TCSETAF(r0, 0x5408, &(0x7f0000000ac0)={0x9, 0x400, 0x9, 0x800, 0x0, 0x6, 0x8001, 0xffffffff, 0x9, 0x7})
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000b00)={0x88, 0x80, 0x2, 0x7f, 0x101, 0x8, 0x8, 0x5f, 0x4, 0x80000001, 0x4})
lsetxattr(&(0x7f0000000b40)='./file0/file0\x00', &(0x7f0000000b80)=@known='security.ima\x00', &(0x7f0000000bc0)='vmnet1&nodev-!\x00', 0xf, 0x1)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r1, 0x84, 0x1a, &(0x7f0000000c00)={r2, 0x82, "432bdd81bdb39c61a4ae54432732c13e73cc145969c16eb20e52455d508db269a1eb7b4910b189dc3fec4872a48004cf71cc5cf0e47749d6a0de762fa81e5272f87ae0e2a3933fa5cb3ce8dfdec1cb333c381456221ce776bd9aa2a9a33c0f89878365131f8b6fdc4d3d14bd534c9a3f0a9e60067371c493aaa5d8918d21ad50187d"}, &(0x7f0000000cc0)=0x8a)
getsockopt$sock_int(r1, 0x1, 0x13, &(0x7f0000000d00), &(0x7f0000000d40)=0x4)
setsockopt$inet6_dccp_buf(r0, 0x21, 0xc, &(0x7f0000000d80)="f987c846bdd173e915d48228a4fa23e8518617c9c09b39a7b5c1ca8970226eab2e44d3bf653381685507979477efa1956b23517d314837b33662c016d35ecc33d8b986c2ef908a1148ad469dd6", 0x4d)
fanotify_mark(r0, 0x40, 0x11, r0, &(0x7f0000000e00)='./file0\x00')
getsockopt$netlink(r0, 0x10e, 0xd, &(0x7f0000000e40)=""/193, &(0x7f0000000f40)=0xc1)
getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000f80)={r2, 0x4a4}, &(0x7f0000000fc0)=0x8)
setsockopt$bt_BT_POWER(r0, 0x112, 0x9, &(0x7f0000001000)=0x9, 0x1)
getsockname(r1, &(0x7f0000001040)=@ethernet={0x0, @dev}, &(0x7f00000010c0)=0x80)
connect$inet(r5, &(0x7f0000001100)={0x2, 0x4e20, @rand_addr}, 0x10)

2018/04/11 00:13:44 executing program 5:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0xc08c5336, &(0x7f00000000c0)={0x0, 0x0, 0x0, "717565756530000000000000000000000000000000000000000000000000000000000000000000000000001f00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer2\x00', 0x0, 0x0)

2018/04/11 00:13:44 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0xf00000000000000}, 0x0)

2018/04/11 00:13:45 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c7465720000000000000000000000000600", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:45 executing program 7:
perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0xe2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000380)=@broute={'broute\x00', 0x20, 0x1, 0x280, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000400], 0x2, &(0x7f0000001d80), &(0x7f00000006c0)=ANY=[@ANYBLOB="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"]}, 0x321)
r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x2000, 0x0)
getsockopt$ax25_int(r0, 0x101, 0x0, &(0x7f0000000080), &(0x7f0000000100)=0x4)

2018/04/11 00:13:45 executing program 0:
r0 = socket$inet6(0xa, 0x5, 0x0)
sendto$inet6(r0, &(0x7f0000ff7000)="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", 0x76d, 0x0, &(0x7f0000ff7fe4)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xffffffffffffffff}, 0x2}, 0x1c)
setsockopt$sock_int(r0, 0x1, 0x40000000000007, &(0x7f0000fecffc), 0x4)
sendto$inet6(r0, &(0x7f0000bf8f8f)="b5", 0x1, 0x0, &(0x7f0000f87000)={0xa, 0x0, 0x0, @loopback={0x0, 0x1}}, 0x1c)
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r1 = gettid()
mprotect(&(0x7f0000f47000/0x1000)=nil, 0x1000, 0x2000001)
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000))
tkill(r1, 0x15)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f00000000c0), &(0x7f0000000100)=0x4)

[  469.197864] FAULT_INJECTION: forcing a failure.
[  469.197864] name failslab, interval 1, probability 0, space 0, times 0
[  469.209205] CPU: 1 PID: 31020 Comm: syz-executor2 Not tainted 4.16.0+ #18
[  469.216132] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  469.225487] Call Trace:
[  469.228089]  dump_stack+0x1b9/0x294
[  469.231732]  ? dump_stack_print_info.cold.2+0x52/0x52
[  469.237021]  ? __save_stack_trace+0x7e/0xd0
[  469.241376]  should_fail.cold.4+0xa/0x1a
2018/04/11 00:13:45 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0xffffff7f}, 0x0)

[  469.245457]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  469.250571]  ? kasan_kmalloc+0xc4/0xe0
[  469.254468]  ? kasan_slab_alloc+0x12/0x20
[  469.258619]  ? kmem_cache_alloc+0x12e/0x760
[  469.262952]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  469.267892]  ? kvm_mmu_load+0x21/0x10e0
[  469.271885]  ? vcpu_enter_guest+0x3aa1/0x6070
[  469.276398]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  469.281429]  ? graph_lock+0x170/0x170
[  469.285221]  ? do_syscall_64+0x29e/0x9d0
[  469.289280]  ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  469.294641]  ? find_held_lock+0x36/0x1c0
[  469.298698]  ? __lock_is_held+0xb5/0x140
[  469.302760]  ? check_same_owner+0x320/0x320
[  469.307074]  ? rcu_note_context_switch+0x710/0x710
[  469.311998]  __should_failslab+0x124/0x180
[  469.316234]  should_failslab+0x9/0x14
[  469.320028]  kmem_cache_alloc+0x2af/0x760
[  469.324171]  ? alloc_pages_current+0x114/0x210
[  469.328739]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  469.333661]  mmu_topup_memory_caches+0x2fa/0x3a0
[  469.338412]  kvm_mmu_load+0x21/0x10e0
[  469.342210]  ? __might_sleep+0x95/0x190
[  469.346175]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  469.351712]  vcpu_enter_guest+0x3aa1/0x6070
[  469.356026]  ? kvm_vcpu_ioctl+0x1e2/0x12e0
[  469.360260]  ? print_usage_bug+0xc0/0xc0
[  469.364316]  ? kvm_set_msr_common+0x2660/0x2660
[  469.368977]  ? vmx_vcpu_load+0xaed/0xff0
[  469.373035]  ? __lock_acquire+0x7f5/0x5130
[  469.377267]  ? vmx_vcpu_reset+0x1030/0x1030
[  469.381581]  ? graph_lock+0x170/0x170
[  469.385369]  ? __lock_acquire+0x7f5/0x5130
[  469.389594]  ? debug_check_no_locks_freed+0x310/0x310
[  469.394767]  ? print_usage_bug+0xc0/0xc0
[  469.398829]  ? __lock_is_held+0xb5/0x140
[  469.402879]  ? lock_acquire+0x1dc/0x520
[  469.406838]  ? kvm_arch_vcpu_ioctl_run+0x234/0x1690
[  469.411846]  ? lock_release+0xa10/0xa10
[  469.415806]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  469.421072]  ? kvm_arch_dev_ioctl+0x5f0/0x5f0
[  469.425554]  ? preempt_notifier_dec+0x20/0x20
[  469.430053]  kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  469.434890]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  469.439902]  kvm_vcpu_ioctl+0x79d/0x12e0
[  469.443952]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  469.449652]  ? graph_lock+0x170/0x170
[  469.453442]  ? find_held_lock+0x36/0x1c0
[  469.457498]  ? lock_downgrade+0x8e0/0x8e0
[  469.461637]  ? kasan_check_read+0x11/0x20
[  469.465770]  ? rcu_is_watching+0x85/0x140
[  469.469906]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  469.475092]  ? __fget+0x40c/0x650
[  469.478535]  ? match_held_lock+0x881/0x8b0
[  469.482761]  ? expand_files.part.8+0x9a0/0x9a0
[  469.487331]  ? kasan_check_write+0x14/0x20
[  469.491555]  ? __mutex_unlock_slowpath+0x180/0x8a0
[  469.496476]  ? wait_for_completion+0x870/0x870
[  469.501046]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  469.506226]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  469.511923]  do_vfs_ioctl+0x1cf/0x1650
[  469.515802]  ? ioctl_preallocate+0x2e0/0x2e0
[  469.520198]  ? fget_raw+0x20/0x20
[  469.523640]  ? __sb_end_write+0xac/0xe0
[  469.527606]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  469.533127]  ? fput+0x130/0x1a0
[  469.536483]  ? ksys_write+0x1a6/0x250
[  469.540274]  ? security_file_ioctl+0x94/0xc0
[  469.544671]  ksys_ioctl+0xa9/0xd0
[  469.548113]  SyS_ioctl+0x24/0x30
[  469.551464]  ? ksys_ioctl+0xd0/0xd0
[  469.555081]  do_syscall_64+0x29e/0x9d0
[  469.558954]  ? vmalloc_sync_all+0x30/0x30
[  469.563091]  ? _raw_spin_unlock_irq+0x27/0x70
[  469.567572]  ? finish_task_switch+0x1ca/0x820
[  469.572054]  ? syscall_return_slowpath+0x5c0/0x5c0
[  469.576970]  ? syscall_return_slowpath+0x30f/0x5c0
[  469.581890]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  469.587247]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  469.592084]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  469.597260] RIP: 0033:0x455259
[  469.600433] RSP: 002b:00007f45bbc7bc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  469.608130] RAX: ffffffffffffffda RBX: 00007f45bbc7c6d4 RCX: 0000000000455259
[  469.615386] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000017
[  469.622643] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  469.629898] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000019
[  469.637153] R13: 0000000000000251 R14: 00000000006f6838 R15: 0000000000000046
2018/04/11 00:13:45 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x8100}, 0x0)

2018/04/11 00:13:45 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c74657200000000000000000200", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:45 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x5a9}, 0x0)

2018/04/11 00:13:46 executing program 4:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0x80045300, &(0x7f00000000c0)={0x0, 0x0, 0x0, "71756575653000000000000000000000000000000000000000fffffdfd00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))

2018/04/11 00:13:46 executing program 5:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0xc08c5336, &(0x7f00000000c0)={0x0, 0x0, 0x0, "7175657565300000000000000000000000000000000000000000000000000000000000000000001f00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer2\x00', 0x0, 0x0)

2018/04/11 00:13:46 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f00000002c0)="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")
fstatfs(r0, &(0x7f0000000080)=""/213)
ioctl$KDMKTONE(r0, 0x4b30, 0x9)

2018/04/11 00:13:46 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c746572000000000007fffffe00", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:46 executing program 7:
r0 = syz_open_dev$sndseq(&(0x7f00000001c0)='/dev/snd/seq\x00', 0x0, 0x100)
read(r0, &(0x7f00009db000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x7d}, "0a4ceaa05d9a00000000000008039b3fd4cec307e8ef3d13eb790ec9c65abaf90d229db692542e5b78f8b29e0a27800f00000300000000000000f376589701a4", 0xa9824f69d1376637, 0x10800a, 0xffffffffffffffff, 0xfffffffffffffffc, 0x40000000})
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x101000, 0x0)
r2 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/pfkey\x00', 0x0, 0x0)
setsockopt$RDS_GET_MR(r1, 0x114, 0x2, &(0x7f0000000180)={{&(0x7f0000000100)}, &(0x7f0000000140), 0x4}, 0x20)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(r0, 0x40bc5311, &(0x7f0000000000)={0x80, 0x1, 0x40})
r3 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000380)='/dev/mixer\x00', 0x300, 0x0)
r4 = fcntl$getown(r1, 0x9)
r5 = getuid()
stat(&(0x7f00000008c0)='./file0\x00', &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, 0x0, <r6=>0x0})
r7 = getpgrp(0xffffffffffffffff)
r8 = geteuid()
getresgid(&(0x7f0000000980), &(0x7f00000009c0), &(0x7f0000000a00)=<r9=>0x0)
fcntl$getownex(r0, 0x10, &(0x7f0000000a40)={0x0, <r10=>0x0})
getsockopt$inet6_IPV6_IPSEC_POLICY(r2, 0x29, 0x22, &(0x7f0000000a80)={{{@in=@multicast2, @in=@rand_addr, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r11=>0x0}}, {{}, 0x0, @in=@loopback}}, &(0x7f0000000b80)=0xe8)
getresgid(&(0x7f0000000bc0)=<r12=>0x0, &(0x7f0000000c00), &(0x7f0000000c40))
sendmsg$unix(r3, &(0x7f0000000d80)={&(0x7f00000003c0)=@abs={0x1, 0x0, 0x4e20}, 0x6e, &(0x7f0000000840)=[{&(0x7f0000000440)="4ba0862ac781b750dadc02fbefa1f57a06f2d5e38a1e2f337774aecb4362f77113a68262c221265999f626d347e8e5fbce9c1370076f590ef72d56e1aac808e29580cc4b3734e0f9fa3e78326cad80d11f69aac494123ffad19e32d2b2fcca7e398efeb599269d160634c122c098d7052f279d55c37ea98f57", 0x79}, {&(0x7f00000004c0)="ecd4c06b08f7d20f798a3fa9055bf470b51b40b539f667021c1783fb3b6f220afc9f332705742309aa1a5836a1ba50b33ce9853ebb9e0f1710a48d083b7c77be50da2faa48cb62ecd15233c012be24fa03bcaf2ef62518625bb6f1190ccc068de50dc47dc8265aa495a6981aedaa80", 0x6f}, {&(0x7f0000000540)="bb9edacc669a0de0bd113392a0c95b3da45fe2ba333f85ebeee0cf0b6bf905193604bfaf889ee9bca24724ed1babcb52486ded5830255759b92c65d2545d1a99cea6a3a937ef6c53e3f62f94ee39e0b0a161c4d442e225178698498df12566875a026e8ea59ac0816b46664db8dc85c951b5e939d81b562eaf56f97a", 0x7c}, {&(0x7f00000005c0)="5f3c289ee1801eb3a938141fc5d42c9a87a57d1129c6e92941236728de1355e99f3d163405cb22f84461dc36f924e5a1b0d926c2cb561ad116af95d97e4c4296bb4903363107b6c2d595190b9ebb27b63ed47608e9c83b88de4daeeb4600fd20437971a21b64aec9942cb235ea83d986e1a9889a77c08d7d519126351d79", 0x7e}, {&(0x7f0000000780)="437c32b6a06ed0b22ce9ce3e2f62749eab6ff62163533ed2b453cd45646ac51ee7613c54cc11d5214c7125a6fd030aa3182a5b661bde238705b58467b90dc7d1fb3782b256c733f9eebfb6adcb2c6b438c06882888325963ab1d383b80f137a11f106144971cb348ea06bd3cba6c79853fdf3ac57cb92e2bc5870223964029bbd7756a462ff02caeffe04dde8a71ef2949a39f1f0ff427a1166b593b795ecb536ecf", 0xa2}, {&(0x7f0000000640)="0cf863fd994993c136d640accb49061e169b4cef447b96bc2ff3625ed41d86a793eabfc595abc2d4d350eb74696e46cdb46a95b4776ebcb722a4efe9d8fe6c4e0e19efd9dea2cb587a9d536d0c1839ddab1337be421e6b5c3a45784a3bfce93ed36d28", 0x63}], 0x6, &(0x7f0000000c80)=[@cred={0x20, 0x1, 0x2, r4, r5, r6}, @rights={0x10, 0x1, 0x1}, @cred={0x20, 0x1, 0x2, r7, r8, r9}, @rights={0x28, 0x1, 0x1, [r2, r0, r1, r2, r1]}, @cred={0x20, 0x1, 0x2, r10, r11, r12}, @rights={0x18, 0x1, 0x1, [r0]}, @rights={0x18, 0x1, 0x1, [r1, r1]}], 0xc8, 0x44800}, 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_PORT_INFO(r0, 0xc0a85322, &(0x7f00000006c0))
ioctl$KVM_GET_IRQCHIP(r1, 0xc208ae62, &(0x7f0000000200))
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000fdbff0)='/dev/sequencer2\x00', 0x0, 0x0)

2018/04/11 00:13:46 executing program 2 (fault-call:26 fault-nth:71):
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/pfkey\x00', 0x1, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_GET_MSR_INDEX_LIST(r1, 0xc004ae02, &(0x7f0000000440)=ANY=[@ANYBLOB="010000e8a806846728a902d7836e000000000090c8bb2c64ee855b03d6b79f01fd689aefd896253378642249ab91395ab66a034c399ce7623518b671b773347d0fd26ec81ac69a995c8ce192812ee8050c3814b9781ac68ebaded833a2c6c838d8647586e9c6e9a5856a915e647163631e9ebb8c6af6c63986f87e1cb1e65dda52219878b2bf0aa3c41d7257b9b338d3de7e2930af343b00807a9f0f1508f564e7be9484af85b8deea898a0e15d4e59917a706dff1d6eb4d00000000000000000000"])
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
pipe2(&(0x7f0000000700)={<r3=>0x0, <r4=>0x0}, 0x0)
ioctl$KVM_SET_XSAVE(r2, 0x5000aea5, &(0x7f0000000740)={"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"})
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
shmget(0x0, 0x3000, 0x1, &(0x7f000075a000/0x3000)=nil)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000600)={<r6=>0x0, @in={{0x2, 0x4e23, @multicast2=0xe0000002}}, 0x5, 0x6, 0x1, 0xfff, 0x8}, &(0x7f0000000080)=0x98)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000b40)={r6, @in={{0x2, 0x4e24, @rand_addr=0x10000}}, 0x5, 0x101, 0x6, 0xea, 0x72}, &(0x7f00000002c0)=0x98)
r7 = dup3(r5, r4, 0x0)
munlockall()
r8 = shmget$private(0x0, 0x3000, 0x10, &(0x7f0000760000/0x3000)=nil)
shmctl$IPC_RMID(r8, 0x0)
clock_gettime(0x7, &(0x7f0000000000))
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f0000460fe4)={0x0, 0x7, 0x2, 0x0, 0x4, 0x8, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x805})
ioctl$SNDRV_TIMER_IOCTL_GINFO(r4, 0xc0f85403, &(0x7f0000000c00)={{0xffffffffffffffff, 0x0, 0x3, 0x3, 0x2}, 0x81, 0x3, 'id0\x00', 'timer0\x00', 0x0, 0x6, 0x1, 0x6, 0x3})
ioctl$sock_inet6_tcp_SIOCINQ(r3, 0x541b, &(0x7f0000000040))
socket(0xf, 0x6, 0x5)
ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000280)={0x81, 0x1})
ioctl$EVIOCSABS2F(r7, 0x401845ef, &(0x7f0000000240)={0x9, 0x0, 0xfffffffffffffffd, 0x1ff, 0x4, 0x7f})
getsockopt$ax25_buf(r4, 0x101, 0x19, &(0x7f0000000140)=""/53, &(0x7f0000000180)=0x35)
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/enforce\x00', 0x10000, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000753000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, &(0x7f00000000c0)="0fc7280f080f20030f01727166ba4200b834000000ef66bad10466edb81da1fb500f23d00f21f835300000050f23f8c4c3194bfc360f20030fc76d08", 0x3c}], 0x1, 0x7, &(0x7f0000000380), 0x10000181)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r2, 0x8008ae9d, &(0x7f0000000340)=""/250)

2018/04/11 00:13:46 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0xf0ffffff}, 0x0)

2018/04/11 00:13:46 executing program 1:
mkdir(&(0x7f000000dff6)='./control\x00', 0x0)
r0 = dup2(0xffffffffffffff9c, 0xffffffffffffffff)
ioctl$DRM_IOCTL_SET_VERSION(r0, 0xc0106407, &(0x7f0000000000)={0x3f, 0x3, 0x7ff, 0x5})
r1 = inotify_init()
inotify_add_watch(r1, &(0x7f0000dc4ff6)='./control\x00', 0x83000000)
r2 = open(&(0x7f0000028000)='./control\x00', 0x0, 0x0)
mkdirat(r2, &(0x7f0000000040)='./control\x00', 0xa8)
renameat2(r2, &(0x7f0000036ff6)='./control\x00', r2, &(0x7f0000036000)='./file0\x00', 0x0)

2018/04/11 00:13:46 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0xf000}, 0x0)

2018/04/11 00:13:46 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c7465720000000000009000", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

[  470.389550] FAULT_INJECTION: forcing a failure.
[  470.389550] name failslab, interval 1, probability 0, space 0, times 0
[  470.400977] CPU: 1 PID: 31079 Comm: syz-executor2 Not tainted 4.16.0+ #18
[  470.407912] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  470.417290] Call Trace:
[  470.419891]  dump_stack+0x1b9/0x294
[  470.423536]  ? dump_stack_print_info.cold.2+0x52/0x52
[  470.428735]  ? __save_stack_trace+0x7e/0xd0
[  470.433081]  should_fail.cold.4+0xa/0x1a
2018/04/11 00:13:46 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x0, 0x9effffff00000000}, 0x0)

2018/04/11 00:13:46 executing program 0:
perf_event_open(&(0x7f000001d000)={0x2, 0x78, 0xe2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vga_arbiter\x00', 0x200000, 0x0)
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/autofs\x00', 0x11d140, 0x0)
r1 = accept4$ax25(r0, &(0x7f0000000080), &(0x7f00000000c0)=0x10, 0x80800)
perf_event_open(&(0x7f000001d000)={0x5, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={&(0x7f0000000000), 0x1}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_TIMER_IOCTL_STATUS(r0, 0x80605414, &(0x7f00000001c0))
fstatfs(r1, &(0x7f0000000140)=""/55)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r1, 0x40082404, &(0x7f0000000180)=0x10000)
getsockopt$inet6_buf(r2, 0x29, 0x45, &(0x7f0000ab2fe2)=""/30, &(0x7f0000000000)=0x1e)

[  470.437159]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  470.442281]  ? kasan_kmalloc+0xc4/0xe0
[  470.446586]  ? kasan_slab_alloc+0x12/0x20
[  470.450746]  ? kmem_cache_alloc+0x12e/0x760
[  470.455082]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  470.460027]  ? kvm_mmu_load+0x21/0x10e0
[  470.464016]  ? vcpu_enter_guest+0x3aa1/0x6070
[  470.468520]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  470.473635]  ? graph_lock+0x170/0x170
[  470.477465]  ? do_syscall_64+0x29e/0x9d0
[  470.481546]  ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  470.486923]  ? find_held_lock+0x36/0x1c0
[  470.491002]  ? __lock_is_held+0xb5/0x140
[  470.495085]  ? check_same_owner+0x320/0x320
[  470.499427]  ? rcu_note_context_switch+0x710/0x710
[  470.504369]  __should_failslab+0x124/0x180
[  470.508602]  should_failslab+0x9/0x14
[  470.512397]  kmem_cache_alloc+0x2af/0x760
[  470.516540]  ? alloc_pages_current+0x114/0x210
[  470.521116]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  470.526040]  mmu_topup_memory_caches+0x2fa/0x3a0
[  470.530801]  kvm_mmu_load+0x21/0x10e0
[  470.534587]  ? __might_sleep+0x95/0x190
[  470.538552]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  470.544079]  vcpu_enter_guest+0x3aa1/0x6070
[  470.548385]  ? kvm_vcpu_ioctl+0x1e2/0x12e0
[  470.552608]  ? print_usage_bug+0xc0/0xc0
[  470.556662]  ? kvm_set_msr_common+0x2660/0x2660
[  470.561323]  ? vmx_vcpu_load+0xaed/0xff0
[  470.565370]  ? __lock_acquire+0x7f5/0x5130
[  470.569594]  ? vmx_vcpu_reset+0x1030/0x1030
[  470.573911]  ? graph_lock+0x170/0x170
[  470.577697]  ? __lock_acquire+0x7f5/0x5130
[  470.581919]  ? debug_check_no_locks_freed+0x310/0x310
[  470.587091]  ? print_usage_bug+0xc0/0xc0
[  470.591145]  ? __lock_is_held+0xb5/0x140
[  470.595194]  ? lock_acquire+0x1dc/0x520
[  470.599162]  ? kvm_arch_vcpu_ioctl_run+0x234/0x1690
[  470.604168]  ? lock_release+0xa10/0xa10
[  470.608130]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  470.613397]  ? kvm_arch_dev_ioctl+0x5f0/0x5f0
[  470.617882]  ? preempt_notifier_dec+0x20/0x20
[  470.622382]  kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  470.627222]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  470.632233]  kvm_vcpu_ioctl+0x79d/0x12e0
[  470.636285]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  470.641987]  ? graph_lock+0x170/0x170
[  470.645777]  ? find_held_lock+0x36/0x1c0
[  470.649835]  ? lock_downgrade+0x8e0/0x8e0
[  470.653975]  ? kasan_check_read+0x11/0x20
[  470.658107]  ? rcu_is_watching+0x85/0x140
[  470.662242]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  470.667427]  ? __fget+0x40c/0x650
[  470.670868]  ? match_held_lock+0x881/0x8b0
[  470.675093]  ? expand_files.part.8+0x9a0/0x9a0
[  470.679661]  ? kasan_check_write+0x14/0x20
[  470.683893]  ? __mutex_unlock_slowpath+0x180/0x8a0
[  470.688814]  ? wait_for_completion+0x870/0x870
[  470.693385]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  470.698571]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  470.704267]  do_vfs_ioctl+0x1cf/0x1650
[  470.708146]  ? ioctl_preallocate+0x2e0/0x2e0
[  470.712543]  ? fget_raw+0x20/0x20
[  470.715982]  ? __sb_end_write+0xac/0xe0
[  470.719949]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  470.725472]  ? fput+0x130/0x1a0
[  470.728739]  ? ksys_write+0x1a6/0x250
[  470.732529]  ? security_file_ioctl+0x94/0xc0
[  470.736929]  ksys_ioctl+0xa9/0xd0
[  470.740373]  SyS_ioctl+0x24/0x30
[  470.743745]  ? ksys_ioctl+0xd0/0xd0
[  470.747370]  do_syscall_64+0x29e/0x9d0
[  470.751243]  ? vmalloc_sync_all+0x30/0x30
[  470.755380]  ? _raw_spin_unlock_irq+0x27/0x70
[  470.759872]  ? finish_task_switch+0x1ca/0x820
[  470.764368]  ? syscall_return_slowpath+0x5c0/0x5c0
[  470.769287]  ? syscall_return_slowpath+0x30f/0x5c0
[  470.774208]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  470.779576]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  470.784431]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
2018/04/11 00:13:46 executing program 1:
r0 = socket$bt_rfcomm(0x1f, 0x1, 0x3)
setsockopt$bt_BT_SECURITY(r0, 0x112, 0x4, &(0x7f0000000040)={0x0, 0x5}, 0x2)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ifreq(r1, 0x8927, &(0x7f0000000000)={'vcan0\x00', @ifru_hwaddr})

2018/04/11 00:13:46 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x0, 0xf0ffffff}, 0x0)

[  470.789609] RIP: 0033:0x455259
[  470.792782] RSP: 002b:00007f45bbc7bc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  470.800480] RAX: ffffffffffffffda RBX: 00007f45bbc7c6d4 RCX: 0000000000455259
[  470.807734] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000017
[  470.814989] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  470.822252] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000019
[  470.829504] R13: 0000000000000251 R14: 00000000006f6838 R15: 0000000000000047
2018/04/11 00:13:46 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c74657200000000009000", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:46 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x0, 0xf0ffff}, 0x0)

2018/04/11 00:13:47 executing program 4:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0x80045300, &(0x7f00000000c0)={0x0, 0x0, 0x0, "7175657565300000000000000000000000000000000000000000fdfdffff00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))

2018/04/11 00:13:47 executing program 5:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0xc08c5336, &(0x7f00000000c0)={0x0, 0x0, 0x0, "717565756530000000000000000000000000000000000000000000000000000000000000001f00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer2\x00', 0x0, 0x0)

2018/04/11 00:13:47 executing program 7:
r0 = syz_open_dev$adsp(&(0x7f0000000080)='/dev/adsp#\x00', 0x40, 0x10000)
ioctl$PPPIOCGMRU(r0, 0x80047453, &(0x7f00000000c0))
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r1, 0x0, 0x41, &(0x7f0000000200)=ANY=[@ANYBLOB="bb1173656375726974790000000000000000000000000000000000000000000000000400000000000000f86b2485c15391ba0000000000000000000055d3eca8aa597fe5900000000000000000000000000000000000000000e6008000000000000000000000000000000080000000000000e06171d766707751dfc001000000519edffd188b41a2924427d67e0126fde065ad4b4b6008eea5d48f69924209ad2f6e514aebbd471709f1c3175a2857d0e90000000000000000"], 0x68)
pselect6(0x40, &(0x7f0000000000)={0x80000000, 0x3ff, 0x100000001, 0x100, 0x8000, 0xd3, 0x9, 0x10000000000}, &(0x7f0000000040)={0x3, 0x35e, 0x8, 0x8000, 0x9, 0x1, 0x9}, &(0x7f0000000100)={0x3ff, 0x923b, 0x890, 0x101, 0x1, 0x8, 0x0, 0x3}, &(0x7f0000000140), &(0x7f00000001c0)={&(0x7f0000000180)={0x7}, 0x8})
getsockopt$IP_VS_SO_GET_SERVICE(r1, 0x0, 0x483, &(0x7f00000002c0), &(0x7f0000000340)=0x68)

2018/04/11 00:13:47 executing program 1:
r0 = add_key$keyring(&(0x7f0000000040)='keyring\x00', &(0x7f0000000080)={0x73, 0x79, 0x7a}, 0x0, 0x0, 0xffffffffffffffff)
r1 = add_key$keyring(&(0x7f00000000c0)='keyring\x00', &(0x7f0000000000)={0x73, 0x79, 0x7a}, 0x0, 0x0, r0)
r2 = syz_open_dev$mouse(&(0x7f0000000340)='/dev/input/mouse#\x00', 0x75, 0x40081)
getsockopt$bt_l2cap_L2CAP_LM(r2, 0x6, 0x3, &(0x7f0000000380), &(0x7f00000003c0)=0x4)
r3 = add_key$user(&(0x7f00003bd000)='user\x00', &(0x7f0000a00000)={0x73, 0x79, 0x7a}, &(0x7f0000facfff)="01", 0x1, r1)
r4 = add_key$user(&(0x7f0000fc0ffb)='user\x00', &(0x7f0000752ffb)={0x73, 0x79, 0x7a, 0x3}, &(0x7f00003eb000)="b3", 0x1, r1)
keyctl$update(0x2, r1, &(0x7f0000000440)="df02754677212dfc3e2acc26fdc3ffa64813da494137e175e9f2780ac5e2a09f43a1fcebf272a5a135de92bf4a9033933824f6c6aa023895113293535d1c0066d20e0f275188b4b4c187e18774fc2227cbb60fc6697f5337726164c8fbe1181e6d50986cd98a5c44ac0ec375deb27eafcf7d06438f252510d87bd91d03e7dc2faed85adcd88ca30e75b1e143a72d94defa187e48b89efbbbcc9b9a9a307353df7a21affce4e9149eb122cbc356cb681365afd979e97b57b596e901864a68679f", 0xc0)
ioctl$sock_inet6_tcp_SIOCATMARK(r2, 0x8905, &(0x7f0000000400))
mq_unlink(&(0x7f0000000200)='\x00')
socketpair$inet6_tcp(0xa, 0x1, 0x0, &(0x7f0000000300)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
getsockopt$inet_mreqn(r2, 0x0, 0x24, &(0x7f0000000b80)={@loopback, @empty, <r6=>0x0}, &(0x7f0000000bc0)=0xc)
sendmsg$nl_route(r5, &(0x7f0000000c80)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x80001}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)=@ipv4_newaddr={0x3c, 0x14, 0x100, 0x70bd26, 0x25dfdbfc, {0x2, 0x19, 0x0, 0xff, r6}, [@IFA_ADDRESS={0x8, 0x1, @local={0xac, 0x14, 0x14, 0xaa}}, @IFA_BROADCAST={0x8, 0x4, @broadcast=0xffffffff}, @IFA_CACHEINFO={0x14, 0x6, {0xac, 0xe1a7, 0x8, 0x1}}]}, 0x3c}, 0x1}, 0x4004800)
keyctl$dh_compute(0x17, &(0x7f0000000100)={r3, r4, r3}, &(0x7f0000000140)=""/5, 0x5, &(0x7f00000001c0)={&(0x7f0000000180)={'rmd320\x00'}})
io_setup(0x9, &(0x7f0000000240)=<r7=>0x0)
io_getevents(r7, 0x7fffffff, 0x6, &(0x7f0000000500)=[{}, {}, {}, {}, {}, {}], &(0x7f0000000280)={0x0, 0x989680})
getgid()

2018/04/11 00:13:47 executing program 2 (fault-call:26 fault-nth:72):
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/pfkey\x00', 0x1, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_GET_MSR_INDEX_LIST(r1, 0xc004ae02, &(0x7f0000000440)=ANY=[@ANYBLOB="010000e8a806846728a902d7836e000000000090c8bb2c64ee855b03d6b79f01fd689aefd896253378642249ab91395ab66a034c399ce7623518b671b773347d0fd26ec81ac69a995c8ce192812ee8050c3814b9781ac68ebaded833a2c6c838d8647586e9c6e9a5856a915e647163631e9ebb8c6af6c63986f87e1cb1e65dda52219878b2bf0aa3c41d7257b9b338d3de7e2930af343b00807a9f0f1508f564e7be9484af85b8deea898a0e15d4e59917a706dff1d6eb4d00000000000000000000"])
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
pipe2(&(0x7f0000000700)={<r3=>0x0, <r4=>0x0}, 0x0)
ioctl$KVM_SET_XSAVE(r2, 0x5000aea5, &(0x7f0000000740)={"821c059ceb3c1a4b565cba916ba4cfe805163ba44e5dbef061fe0302945e42db54da3f05792113b780f3efb176690c8b67a4a17d8eae46cfb5eda672a90b88c0fffc17223e428569632b728bee37f4076374f505127edb8b822bd97d7c2f365fccb858450dfdf95ee07aaaf0a2c0136eed7fb5d14f5298b788d36b009d57a7de914fc02a489daf7c75f37d0ee20c2cde218d30661a4702f06301ab93f72d09911254d39a2fa5c6611ade75a7f534b90f49bfcb548589c975c0f56724df4f35816c4a83d2f9b106570bf065387c7769361f0ac9d641eec9d2107feaf8a65aada58f689c5aafc869c8ce6447fa017e357949d836daaa4d323c710fc314b6345a4da62e25f581c6ff59365a9bf8b6f3732d3b23fa543d7dca7c758d403c726814f72c0304ea5694ccf90468ab91e4b4238655023b7ff2db190e92e7b6ddd4b850147bcbeb69b5b17b2939e69c6a117ff3aa3ec0d44fc64ddd7431ba8397effc54df00c9b7afb061f2aa5eb0fa7c0e010bf22da72fd45e1406e6abf9da38eb4e86f0f67706877b24e4ee61b1185f46d4740579a7d2f28e34cfd1e4365358e49bf25c327c2298d89f78cf6fd717254e18d492ce2e09151abb74a9d0ca7d2290879e0e87264307cbeefb7420d7b6451462bc39a8361eba00b6760b723f4b03141e31c402b36fe6e90752393e66d5897bec98b856592c114e16a8f150117a29e890286e845324779aea566e472a1ecf201cb36a64b0472b4dfdcab391ed2356d1eb646adc71e1bf1df38daeadf199e93616e3f8da94574df04629e9b355e60edc1075ab2afc1fbffdc901d8b6091d15fcdeca25199439ccd63320667d9fe382f8174676c6435cc08ce09833d0eb4cee3cbee55af63c6d060c6f5153a862b28fda51dd5fcc6daca8f571cc87da9aab50a1f7daed9497f49535c1f499db0724c16bcf94730190c91134149e32fc57c14290d9a255d027813517b42bfbfa485493558477a14a26741613141a55237bba1fe3a4f68b8d3df7935a63a683488cd7539cbc404d8968616657af33ecfef04d2e0f41fd52523319892decf7b63ae9f9cdb6847eaa0d2af35bb71577c3cfc6b9705da1a0712e50a7a90063601763af4efd1f559e20b5e78340dd5454d6a3f726a0cd3b218375a54822ade6c69e2d98ea3f43e3bc736177ee0615590ff84dfb50e78d118abf8361d7c90d2f0672e87a1dd349562c70543e89ba93d58c57c1189799766b45819ac197993d575c0ec11028be5751b5115dfb27c39bd96856bb54f39643fdd7326108ec9f830f805e6e90787f09f20b56b98000a946b1eb2e80777135415e79d233d6e0905e1188cfed7fefb03fe5b9a21e87d63196095f89abf5c562956076a5487afad22b1afbc54efdb3a56e6994ec0294c473b73f52073560eb1e2810c2b9f45b5bef9b26801822514932c9019d2f"})
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
shmget(0x0, 0x3000, 0x1, &(0x7f000075a000/0x3000)=nil)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000600)={<r6=>0x0, @in={{0x2, 0x4e23, @multicast2=0xe0000002}}, 0x5, 0x6, 0x1, 0xfff, 0x8}, &(0x7f0000000080)=0x98)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000b40)={r6, @in={{0x2, 0x4e24, @rand_addr=0x10000}}, 0x5, 0x101, 0x6, 0xea, 0x72}, &(0x7f00000002c0)=0x98)
r7 = dup3(r5, r4, 0x0)
munlockall()
r8 = shmget$private(0x0, 0x3000, 0x10, &(0x7f0000760000/0x3000)=nil)
shmctl$IPC_RMID(r8, 0x0)
clock_gettime(0x7, &(0x7f0000000000))
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f0000460fe4)={0x0, 0x7, 0x2, 0x0, 0x4, 0x8, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x805})
ioctl$SNDRV_TIMER_IOCTL_GINFO(r4, 0xc0f85403, &(0x7f0000000c00)={{0xffffffffffffffff, 0x0, 0x3, 0x3, 0x2}, 0x81, 0x3, 'id0\x00', 'timer0\x00', 0x0, 0x6, 0x1, 0x6, 0x3})
ioctl$sock_inet6_tcp_SIOCINQ(r3, 0x541b, &(0x7f0000000040))
socket(0xf, 0x6, 0x5)
ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000280)={0x81, 0x1})
ioctl$EVIOCSABS2F(r7, 0x401845ef, &(0x7f0000000240)={0x9, 0x0, 0xfffffffffffffffd, 0x1ff, 0x4, 0x7f})
getsockopt$ax25_buf(r4, 0x101, 0x19, &(0x7f0000000140)=""/53, &(0x7f0000000180)=0x35)
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/enforce\x00', 0x10000, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000753000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, &(0x7f00000000c0)="0fc7280f080f20030f01727166ba4200b834000000ef66bad10466edb81da1fb500f23d00f21f835300000050f23f8c4c3194bfc360f20030fc76d08", 0x3c}], 0x1, 0x7, &(0x7f0000000380), 0x10000181)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r2, 0x8008ae9d, &(0x7f0000000340)=""/250)

2018/04/11 00:13:47 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x400042)
socket(0x2, 0xa, 0xfffffffffffffffa)
ioctl(r0, 0x20000010005386, &(0x7f0000000140)="cd")

2018/04/11 00:13:47 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x0, 0xf000}, 0x0)

2018/04/11 00:13:47 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={'filter\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\nh\x00', 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:47 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x0, 0xc00e000000000000}, 0x0)

2018/04/11 00:13:47 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c7465720000000000000000000000000200", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:47 executing program 7:
r0 = msgget(0xffffffffffffffff, 0x0)
msgrcv(r0, &(0x7f0000000340)=ANY=[], 0x0, 0xfffffffffffffffd, 0x0)
msgrcv(r0, &(0x7f0000000200)=ANY=[], 0x0, 0x0, 0x0)
dup(0xffffffffffffffff)
r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/schedule_icmp\x00', 0x2, 0x0)
ioctl$KVM_SET_CLOCK(r1, 0x4030ae7b, &(0x7f0000000040)={0x800, 0x3})
msgsnd(r0, &(0x7f0000000200)={0x5}, 0x8, 0x0)

[  471.588386] FAULT_INJECTION: forcing a failure.
[  471.588386] name failslab, interval 1, probability 0, space 0, times 0
[  471.599750] CPU: 1 PID: 31157 Comm: syz-executor2 Not tainted 4.16.0+ #18
[  471.606680] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  471.616038] Call Trace:
[  471.618642]  dump_stack+0x1b9/0x294
[  471.622290]  ? dump_stack_print_info.cold.2+0x52/0x52
[  471.627495]  ? __save_stack_trace+0x7e/0xd0
[  471.631844]  should_fail.cold.4+0xa/0x1a
2018/04/11 00:13:47 executing program 1:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000d06000)=0x1, 0x4)
getsockopt$EBT_SO_GET_ENTRIES(r0, 0x0, 0x81, &(0x7f0000000140)={'nat\x00', 0x0, 0x3, 0xaa, [], 0x4, &(0x7f0000000040)=[{}, {}, {}, {}], &(0x7f0000000080)=""/170}, &(0x7f00000001c0)=0x78)
r1 = shmget(0x1, 0x2000, 0x200, &(0x7f0000ffd000/0x2000)=nil)
shmat(r1, &(0x7f0000ffe000/0x1000)=nil, 0x2000)
sendto$inet(r0, &(0x7f00000002c0)="14d9b9825033151825c3ac1f239777d09209860cf43220f7c2bd7ca5b08ca7ec157320b67d81538046abef9add826e6f9c27e359a681973541b0f4544061729359c6c9ef8a6aec9302bdf76dc1a08729c1fa03b70733c9edaba5fc3c0169f50719e62f96daf5deac5619ba7b0dc82a5cde0617a9378b7507fded1db40b8b1503a4bbf74d67e97a630388d50b5f5055da69da88fb41a1999cde4b7803ea07d662b484524a4d7056e29293f5c7198076891857", 0xfffffffffffffcd2, 0x20020003, &(0x7f0000385ff0)={0x2, 0x40, @loopback=0x7f000001}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x22, &(0x7f0000000000)=[{}, {}, {}, {}], 0x4)
r2 = syz_open_dev$sg(&(0x7f0000000200)='/dev/sg#\x00', 0x837, 0x2)
setsockopt$netlink_NETLINK_TX_RING(r2, 0x10e, 0x7, &(0x7f0000000240)={0x5, 0x1, 0xfffffffffffffff9, 0x4}, 0x10)

[  471.635924]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  471.641037]  ? kasan_kmalloc+0xc4/0xe0
[  471.644935]  ? kasan_slab_alloc+0x12/0x20
[  471.649091]  ? kmem_cache_alloc+0x12e/0x760
[  471.653424]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  471.658386]  ? kvm_mmu_load+0x21/0x10e0
[  471.662372]  ? vcpu_enter_guest+0x3aa1/0x6070
[  471.666874]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  471.671906]  ? graph_lock+0x170/0x170
[  471.675719]  ? do_syscall_64+0x29e/0x9d0
[  471.679796]  ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
2018/04/11 00:13:47 executing program 1:
r0 = signalfd(0xffffffffffffffff, &(0x7f0000000040), 0x8)
ioctl$PPPIOCGCHAN(r0, 0x80047437, &(0x7f0000000080))
perf_event_open(&(0x7f0000fdef88)={0x2, 0x78, 0xe3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$rds(0x15, 0x5, 0x0)
pselect6(0x21, &(0x7f00000abfc0)={0x3ffffd}, &(0x7f0000f08fc0), &(0x7f0000086000), &(0x7f0000b16ff8)={0x0, 0x989680}, &(0x7f0000d0a000)={&(0x7f00001da000), 0x8})
r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/qat_adf_ctl\x00', 0x400200, 0x0)
getsockopt$bt_l2cap_L2CAP_OPTIONS(r1, 0x6, 0x1, &(0x7f0000000100), &(0x7f0000000140)=0xc)

[  471.685917]  ? find_held_lock+0x36/0x1c0
[  471.689998]  ? __lock_is_held+0xb5/0x140
[  471.694093]  ? check_same_owner+0x320/0x320
[  471.698434]  ? rcu_note_context_switch+0x710/0x710
[  471.703382]  __should_failslab+0x124/0x180
[  471.707631]  should_failslab+0x9/0x14
[  471.711440]  kmem_cache_alloc+0x2af/0x760
[  471.715608]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  471.720558]  mmu_topup_memory_caches+0x2fa/0x3a0
[  471.725339]  kvm_mmu_load+0x21/0x10e0
[  471.729153]  ? trace_hardirqs_on_thunk+0x1a/0x1c
2018/04/11 00:13:47 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x0, 0xf0ffffff00000000}, 0x0)

[  471.733923]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  471.739485]  vcpu_enter_guest+0x3aa1/0x6070
[  471.743890]  ? kvm_set_msr_common+0x2660/0x2660
[  471.748620]  ? vmx_vcpu_load+0xaed/0xff0
[  471.752693]  ? __lock_acquire+0x7f5/0x5130
[  471.756945]  ? vmx_vcpu_reset+0x1030/0x1030
[  471.761283]  ? graph_lock+0x170/0x170
[  471.765095]  ? __lock_acquire+0x7f5/0x5130
[  471.769343]  ? debug_check_no_locks_freed+0x310/0x310
[  471.774547]  ? __lock_is_held+0xb5/0x140
[  471.778636]  ? lock_acquire+0x1dc/0x520
[  471.782618]  ? kvm_arch_vcpu_ioctl_run+0x234/0x1690
[  471.787645]  ? lock_release+0xa10/0xa10
[  471.791624]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  471.796895]  ? kvm_arch_dev_ioctl+0x5f0/0x5f0
[  471.801388]  ? preempt_notifier_dec+0x20/0x20
[  471.805884]  kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  471.810715]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  471.815736]  kvm_vcpu_ioctl+0x79d/0x12e0
[  471.819787]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  471.825488]  ? graph_lock+0x170/0x170
[  471.829276]  ? find_held_lock+0x36/0x1c0
[  471.833332]  ? lock_downgrade+0x8e0/0x8e0
[  471.837473]  ? kasan_check_read+0x11/0x20
[  471.841609]  ? rcu_is_watching+0x85/0x140
[  471.845743]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  471.850930]  ? __fget+0x40c/0x650
[  471.854380]  ? match_held_lock+0x881/0x8b0
[  471.858610]  ? expand_files.part.8+0x9a0/0x9a0
[  471.863187]  ? kasan_check_write+0x14/0x20
[  471.867419]  ? __mutex_unlock_slowpath+0x180/0x8a0
[  471.872353]  ? wait_for_completion+0x870/0x870
[  471.876934]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  471.882116]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  471.887816]  do_vfs_ioctl+0x1cf/0x1650
[  471.891702]  ? ioctl_preallocate+0x2e0/0x2e0
[  471.896099]  ? fget_raw+0x20/0x20
[  471.899541]  ? __sb_end_write+0xac/0xe0
[  471.903512]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  471.909037]  ? fput+0x130/0x1a0
[  471.912311]  ? ksys_write+0x1a6/0x250
[  471.916111]  ? security_file_ioctl+0x94/0xc0
[  471.920510]  ksys_ioctl+0xa9/0xd0
[  471.923960]  SyS_ioctl+0x24/0x30
[  471.927331]  ? ksys_ioctl+0xd0/0xd0
[  471.930952]  do_syscall_64+0x29e/0x9d0
[  471.934830]  ? syscall_slow_exit_work+0x4f0/0x4f0
[  471.939677]  ? syscall_return_slowpath+0x5c0/0x5c0
[  471.944619]  ? syscall_return_slowpath+0x30f/0x5c0
[  471.949540]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  471.954897]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  471.959733]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  471.964910] RIP: 0033:0x455259
[  471.968083] RSP: 002b:00007f45bbc7bc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  471.975780] RAX: ffffffffffffffda RBX: 00007f45bbc7c6d4 RCX: 0000000000455259
[  471.983038] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000017
2018/04/11 00:13:47 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$admmidi(&(0x7f0000000000)='/dev/admmidi#\x00', 0x6, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f00000006c0)={"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"})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
getsockname$inet(r1, &(0x7f0000000040)={0x0, 0x0, @rand_addr}, &(0x7f0000000080)=0x10)
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f00000001c0)={"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"})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000005c0)=@ioapic={0x2, 0x0, 0x0, 0x0, 0x0, [{0x0, 0xfaf}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, [], 0x7ff}]})

2018/04/11 00:13:47 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={'filter\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00?\x00', 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

[  471.990294] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  471.997552] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000019
[  472.004804] R13: 0000000000000251 R14: 00000000006f6838 R15: 0000000000000048
2018/04/11 00:13:48 executing program 4:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0x80045300, &(0x7f00000000c0)={0x0, 0x0, 0x0, "717565756530000000000000000000000000000000000000000000000000fffffdfd00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))

2018/04/11 00:13:48 executing program 7:
creat(&(0x7f00008b2000)='./file0\x00', 0x0)
mount(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='msdos\x00', 0x80000, 0x0)
lsetxattr(&(0x7f0000712ff8)='./file0\x00', &(0x7f0000faffe7)=@known='security.capability\x00', &(0x7f00001f0000)="00ff000201000000000000010400000000000000", 0x14, 0x0)

2018/04/11 00:13:48 executing program 5:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0xc08c5336, &(0x7f00000000c0)={0x0, 0x0, 0x0, "71756575653000000000000000000000000000000000000000000000000000000000000000000000000000001f00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer2\x00', 0x0, 0x0)

2018/04/11 00:13:48 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x0, 0x40030000000000}, 0x0)

2018/04/11 00:13:48 executing program 2 (fault-call:26 fault-nth:73):
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/pfkey\x00', 0x1, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_GET_MSR_INDEX_LIST(r1, 0xc004ae02, &(0x7f0000000440)=ANY=[@ANYBLOB="010000e8a806846728a902d7836e000000000090c8bb2c64ee855b03d6b79f01fd689aefd896253378642249ab91395ab66a034c399ce7623518b671b773347d0fd26ec81ac69a995c8ce192812ee8050c3814b9781ac68ebaded833a2c6c838d8647586e9c6e9a5856a915e647163631e9ebb8c6af6c63986f87e1cb1e65dda52219878b2bf0aa3c41d7257b9b338d3de7e2930af343b00807a9f0f1508f564e7be9484af85b8deea898a0e15d4e59917a706dff1d6eb4d00000000000000000000"])
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
pipe2(&(0x7f0000000700)={<r3=>0x0, <r4=>0x0}, 0x0)
ioctl$KVM_SET_XSAVE(r2, 0x5000aea5, &(0x7f0000000740)={"821c059ceb3c1a4b565cba916ba4cfe805163ba44e5dbef061fe0302945e42db54da3f05792113b780f3efb176690c8b67a4a17d8eae46cfb5eda672a90b88c0fffc17223e428569632b728bee37f4076374f505127edb8b822bd97d7c2f365fccb858450dfdf95ee07aaaf0a2c0136eed7fb5d14f5298b788d36b009d57a7de914fc02a489daf7c75f37d0ee20c2cde218d30661a4702f06301ab93f72d09911254d39a2fa5c6611ade75a7f534b90f49bfcb548589c975c0f56724df4f35816c4a83d2f9b106570bf065387c7769361f0ac9d641eec9d2107feaf8a65aada58f689c5aafc869c8ce6447fa017e357949d836daaa4d323c710fc314b6345a4da62e25f581c6ff59365a9bf8b6f3732d3b23fa543d7dca7c758d403c726814f72c0304ea5694ccf90468ab91e4b4238655023b7ff2db190e92e7b6ddd4b850147bcbeb69b5b17b2939e69c6a117ff3aa3ec0d44fc64ddd7431ba8397effc54df00c9b7afb061f2aa5eb0fa7c0e010bf22da72fd45e1406e6abf9da38eb4e86f0f67706877b24e4ee61b1185f46d4740579a7d2f28e34cfd1e4365358e49bf25c327c2298d89f78cf6fd717254e18d492ce2e09151abb74a9d0ca7d2290879e0e87264307cbeefb7420d7b6451462bc39a8361eba00b6760b723f4b03141e31c402b36fe6e90752393e66d5897bec98b856592c114e16a8f150117a29e890286e845324779aea566e472a1ecf201cb36a64b0472b4dfdcab391ed2356d1eb646adc71e1bf1df38daeadf199e93616e3f8da94574df04629e9b355e60edc1075ab2afc1fbffdc901d8b6091d15fcdeca25199439ccd63320667d9fe382f8174676c6435cc08ce09833d0eb4cee3cbee55af63c6d060c6f5153a862b28fda51dd5fcc6daca8f571cc87da9aab50a1f7daed9497f49535c1f499db0724c16bcf94730190c91134149e32fc57c14290d9a255d027813517b42bfbfa485493558477a14a26741613141a55237bba1fe3a4f68b8d3df7935a63a683488cd7539cbc404d8968616657af33ecfef04d2e0f41fd52523319892decf7b63ae9f9cdb6847eaa0d2af35bb71577c3cfc6b9705da1a0712e50a7a90063601763af4efd1f559e20b5e78340dd5454d6a3f726a0cd3b218375a54822ade6c69e2d98ea3f43e3bc736177ee0615590ff84dfb50e78d118abf8361d7c90d2f0672e87a1dd349562c70543e89ba93d58c57c1189799766b45819ac197993d575c0ec11028be5751b5115dfb27c39bd96856bb54f39643fdd7326108ec9f830f805e6e90787f09f20b56b98000a946b1eb2e80777135415e79d233d6e0905e1188cfed7fefb03fe5b9a21e87d63196095f89abf5c562956076a5487afad22b1afbc54efdb3a56e6994ec0294c473b73f52073560eb1e2810c2b9f45b5bef9b26801822514932c9019d2f"})
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
shmget(0x0, 0x3000, 0x1, &(0x7f000075a000/0x3000)=nil)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000600)={<r6=>0x0, @in={{0x2, 0x4e23, @multicast2=0xe0000002}}, 0x5, 0x6, 0x1, 0xfff, 0x8}, &(0x7f0000000080)=0x98)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000b40)={r6, @in={{0x2, 0x4e24, @rand_addr=0x10000}}, 0x5, 0x101, 0x6, 0xea, 0x72}, &(0x7f00000002c0)=0x98)
r7 = dup3(r5, r4, 0x0)
munlockall()
r8 = shmget$private(0x0, 0x3000, 0x10, &(0x7f0000760000/0x3000)=nil)
shmctl$IPC_RMID(r8, 0x0)
clock_gettime(0x7, &(0x7f0000000000))
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f0000460fe4)={0x0, 0x7, 0x2, 0x0, 0x4, 0x8, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x805})
ioctl$SNDRV_TIMER_IOCTL_GINFO(r4, 0xc0f85403, &(0x7f0000000c00)={{0xffffffffffffffff, 0x0, 0x3, 0x3, 0x2}, 0x81, 0x3, 'id0\x00', 'timer0\x00', 0x0, 0x6, 0x1, 0x6, 0x3})
ioctl$sock_inet6_tcp_SIOCINQ(r3, 0x541b, &(0x7f0000000040))
socket(0xf, 0x6, 0x5)
ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000280)={0x81, 0x1})
ioctl$EVIOCSABS2F(r7, 0x401845ef, &(0x7f0000000240)={0x9, 0x0, 0xfffffffffffffffd, 0x1ff, 0x4, 0x7f})
getsockopt$ax25_buf(r4, 0x101, 0x19, &(0x7f0000000140)=""/53, &(0x7f0000000180)=0x35)
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/enforce\x00', 0x10000, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000753000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, &(0x7f00000000c0)="0fc7280f080f20030f01727166ba4200b834000000ef66bad10466edb81da1fb500f23d00f21f835300000050f23f8c4c3194bfc360f20030fc76d08", 0x3c}], 0x1, 0x7, &(0x7f0000000380), 0x10000181)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r2, 0x8008ae9d, &(0x7f0000000340)=""/250)

2018/04/11 00:13:48 executing program 1:
r0 = socket$inet6(0xa, 0x2, 0x88)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @mcast2={0xff, 0x2, [], 0x1}, 0x7}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @ipv4={[], [0xff, 0xff], @local={0xac, 0x14, 0x14, 0xaa}}}, 0x1c)
sendmmsg(r0, &(0x7f0000007e00)=[{{0x0, 0x0, &(0x7f00000001c0), 0x0, &(0x7f00000003c0)}}, {{&(0x7f00000004c0)=@in6={0xa, 0x0, 0x0, @mcast2={0xff, 0x2, [], 0x1}}, 0x1c, &(0x7f0000000680), 0x3ba, &(0x7f0000002000)=[{0x10, 0x29}], 0x10}}], 0x2, 0x8000)

2018/04/11 00:13:48 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c746572000000000000000200", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:48 executing program 0:
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x2, 0xc)
write(r0, &(0x7f0000a6b000)="1f0000000104ff00fd4354c007110000f305010008000100010423dcffdf00", 0x1f)
write(r0, &(0x7f0000000000)="1f0000000104fffffd3b000007110000f30501000b000100020423ca0000cf", 0x1f)
socket(0x7, 0x0, 0x0)
r1 = syz_open_dev$sndpcmc(&(0x7f0000000040)='/dev/snd/pcmC#D#c\x00', 0x7, 0x40)
ioctl$KDSIGACCEPT(r1, 0x4b4e, 0x8)
ioctl$TIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000000100))

2018/04/11 00:13:48 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c74657200000000000000000400", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:48 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x0, 0x8100000000000000}, 0x0)

2018/04/11 00:13:48 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000797ff7)='/dev/sg#\x00', 0x0, 0x0)
ioctl(r0, 0x2000000000227e, &(0x7f0000000000))
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000040)={'team0\x00', <r1=>0x0})
ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000080)={@empty, @loopback={0x0, 0x1}, @empty, 0x8, 0x9e97, 0x4, 0x100, 0xa1, 0x102, r1})

2018/04/11 00:13:48 executing program 7:
pipe2(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x80000)
ioctl$EVIOCGBITSW(r1, 0x80404525, &(0x7f0000000080)=""/9)
r2 = syz_open_dev$binder(&(0x7f000000cff3)='/dev/binder#\x00', 0xffffffffffffffff, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR(r2, 0x40046207, 0x0)
setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f00000000c0)={@remote={0xac, 0x14, 0x14, 0xbb}, @empty, 0x1, 0x9, [@multicast1=0xe0000001, @loopback=0x7f000001, @empty, @multicast2=0xe0000002, @broadcast=0xffffffff, @multicast1=0xe0000001, @broadcast=0xffffffff, @rand_addr=0x4, @local={0xac, 0x14, 0x14, 0xaa}]}, 0x34)
mmap$binder(&(0x7f000000d000/0x1000)=nil, 0x1000, 0x0, 0x12, r2, 0x0)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000140)={0x4c, 0x0, &(0x7f0000000300)=[@transaction_sg={0x40486311, {{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50, 0x8, &(0x7f0000000240)=[@ptr={0x70742a85, 0x0, &(0x7f00000001c0), 0x1}, @ptr={0x70742a85, 0x1, &(0x7f0000000200), 0x1}], &(0x7f00000002c0)=[0x28]}, 0x8}}], 0x0, 0x0, &(0x7f0000011f9d)})
r3 = socket$inet6(0xa, 0x80003, 0x2b)
syz_open_dev$adsp(&(0x7f0000000100)='/dev/adsp#\x00', 0x2, 0x40)
connect$inet6(r3, &(0x7f0000000040)={0xa, 0x0, 0x0, @mcast2={0xff, 0x2, [], 0x1}, 0x7}, 0x1c)
sendmmsg(r3, &(0x7f0000000c40)=[{{0x0, 0x0, &(0x7f0000000000), 0x0, &(0x7f0000000080)}}, {{0x0, 0x0, &(0x7f00000009c0), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="1000008001080000010000000000bb46cd4bf6264fd52c2e7384b0f079f0699fadf8edf169e36eeabfc429ec0d3e37bd10c0820aa3275a020ed4e1dc7e05976d41bf737c57b02b2b6250b24cc63a80437ab201278d950261b270e537efcabf1cfa63e79b14bf832ed99ce62f75b918af6586cf050000000000002f38a1b857715183843a40ce1e6e1a740a430f482c3bef28904eb642abe7989a8d004e8c7fe1a3b5ae34c0428aeef7e1980403359ae97c2ba95293cb24cb9f7760a6c2ad47"], 0x10}}], 0x2, 0x0)
getpeername$packet(r0, &(0x7f0000000640)={0x0, 0x0, <r4=>0x0, 0x0, 0x0, 0x0, @dev}, &(0x7f0000000680)=0x14)
ioctl$sock_inet6_SIOCADDRT(r1, 0x890b, &(0x7f00000006c0)={@mcast1={0xff, 0x1, [], 0x1}, @ipv4={[], [0xff, 0xff], @local={0xac, 0x14, 0x14, 0xaa}}, @local={0xfe, 0x80, [], 0xaa}, 0x8, 0x40, 0x2, 0x500, 0x6, 0x40040, r4})

[  472.781158] netlink: 3 bytes leftover after parsing attributes in process `syz-executor0'.
2018/04/11 00:13:48 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c74657200000000000000000007fffffe00", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

[  472.865951] netlink: 3 bytes leftover after parsing attributes in process `syz-executor0'.
[  472.890449] binder: 31250:31252 got transaction with invalid parent offset or type
[  472.903272] binder: 31250:31252 transaction failed 29201/-22, size 80-8 line 3148
2018/04/11 00:13:48 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x0, 0xf0ffffffffffff}, 0x0)

2018/04/11 00:13:48 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x4)
sendmsg$nl_generic(r0, &(0x7f0000005000)={&(0x7f00000000c0)={0x10}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x18, 0x14, 0x7, 0x0, 0x0, {0x1e}, [@generic="87"]}, 0x18}, 0x1}, 0x0)
r1 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x578, 0x600300)
ioctl$KVM_GET_MSR_INDEX_LIST(r1, 0xc004ae02, &(0x7f0000000040)={0x2, [0x0, 0x0]})

[  472.928738] binder: BINDER_SET_CONTEXT_MGR already set
[  472.937009] binder: 31250:31252 ioctl 40046207 0 returned -16
2018/04/11 00:13:48 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x0, 0xfffff000}, 0x0)

[  472.970654] binder: 31250:31263 got transaction with invalid parent offset or type
[  472.999652] binder: 31250:31263 transaction failed 29201/-22, size 80-8 line 3148
[  473.061476] FAULT_INJECTION: forcing a failure.
[  473.061476] name failslab, interval 1, probability 0, space 0, times 0
[  473.072818] CPU: 0 PID: 31265 Comm: syz-executor2 Not tainted 4.16.0+ #18
[  473.079747] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  473.083435] binder: undelivered TRANSACTION_ERROR: 29201
[  473.089096] Call Trace:
[  473.089122]  dump_stack+0x1b9/0x294
[  473.089144]  ? dump_stack_print_info.cold.2+0x52/0x52
[  473.089160]  ? __save_stack_trace+0x7e/0xd0
[  473.089183]  should_fail.cold.4+0xa/0x1a
[  473.108605] binder: undelivered TRANSACTION_ERROR: 29201
[  473.110308]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  473.110324]  ? kasan_kmalloc+0xc4/0xe0
[  473.110341]  ? kasan_slab_alloc+0x12/0x20
[  473.133834]  ? kmem_cache_alloc+0x12e/0x760
[  473.138140]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  473.143073]  ? kvm_mmu_load+0x21/0x10e0
[  473.147095]  ? vcpu_enter_guest+0x3aa1/0x6070
[  473.151592]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  473.156603]  ? graph_lock+0x170/0x170
[  473.160388]  ? do_syscall_64+0x29e/0x9d0
[  473.164435]  ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  473.169785]  ? find_held_lock+0x36/0x1c0
[  473.173833]  ? __lock_is_held+0xb5/0x140
[  473.177887]  ? check_same_owner+0x320/0x320
[  473.182195]  ? rcu_note_context_switch+0x710/0x710
[  473.187115]  __should_failslab+0x124/0x180
[  473.191338]  should_failslab+0x9/0x14
[  473.195119]  kmem_cache_alloc+0x2af/0x760
[  473.199252]  ? alloc_pages_current+0x114/0x210
[  473.203818]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  473.208730]  mmu_topup_memory_caches+0x2fa/0x3a0
[  473.213474]  kvm_mmu_load+0x21/0x10e0
[  473.217259]  ? __might_sleep+0x95/0x190
[  473.221230]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  473.226756]  vcpu_enter_guest+0x3aa1/0x6070
[  473.231065]  ? kvm_vcpu_ioctl+0x1e2/0x12e0
[  473.235284]  ? print_usage_bug+0xc0/0xc0
[  473.239331]  ? kvm_set_msr_common+0x2660/0x2660
[  473.243990]  ? vmx_vcpu_load+0xaed/0xff0
[  473.248037]  ? __lock_acquire+0x7f5/0x5130
[  473.252258]  ? vmx_vcpu_reset+0x1030/0x1030
[  473.256564]  ? graph_lock+0x170/0x170
[  473.260350]  ? __lock_acquire+0x7f5/0x5130
[  473.264571]  ? debug_check_no_locks_freed+0x310/0x310
[  473.269741]  ? print_usage_bug+0xc0/0xc0
[  473.273789]  ? __lock_is_held+0xb5/0x140
[  473.277834]  ? lock_acquire+0x1dc/0x520
[  473.281793]  ? kvm_arch_vcpu_ioctl_run+0x234/0x1690
[  473.286801]  ? lock_release+0xa10/0xa10
[  473.290758]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  473.296048]  ? kvm_arch_dev_ioctl+0x5f0/0x5f0
[  473.300524]  ? preempt_notifier_dec+0x20/0x20
[  473.305013]  kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  473.309841]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  473.314846]  kvm_vcpu_ioctl+0x79d/0x12e0
[  473.318983]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  473.324681]  ? graph_lock+0x170/0x170
[  473.328466]  ? find_held_lock+0x36/0x1c0
[  473.332514]  ? lock_downgrade+0x8e0/0x8e0
[  473.336650]  ? kasan_check_read+0x11/0x20
[  473.340785]  ? rcu_is_watching+0x85/0x140
[  473.344933]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  473.350117]  ? __fget+0x40c/0x650
[  473.353558]  ? match_held_lock+0x881/0x8b0
[  473.357788]  ? expand_files.part.8+0x9a0/0x9a0
[  473.362353]  ? kasan_check_write+0x14/0x20
[  473.366576]  ? __mutex_unlock_slowpath+0x180/0x8a0
[  473.371494]  ? wait_for_completion+0x870/0x870
[  473.376061]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  473.381238]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  473.386939]  do_vfs_ioctl+0x1cf/0x1650
[  473.390837]  ? ioctl_preallocate+0x2e0/0x2e0
[  473.395232]  ? fget_raw+0x20/0x20
[  473.398671]  ? __sb_end_write+0xac/0xe0
[  473.402632]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  473.408149]  ? fput+0x130/0x1a0
[  473.411412]  ? ksys_write+0x1a6/0x250
[  473.415198]  ? security_file_ioctl+0x94/0xc0
[  473.419594]  ksys_ioctl+0xa9/0xd0
[  473.423035]  SyS_ioctl+0x24/0x30
[  473.426382]  ? ksys_ioctl+0xd0/0xd0
[  473.430002]  do_syscall_64+0x29e/0x9d0
[  473.433888]  ? vmalloc_sync_all+0x30/0x30
[  473.438024]  ? _raw_spin_unlock_irq+0x27/0x70
[  473.442506]  ? finish_task_switch+0x1ca/0x820
[  473.446991]  ? syscall_return_slowpath+0x5c0/0x5c0
[  473.451909]  ? syscall_return_slowpath+0x30f/0x5c0
[  473.456932]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  473.462280]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  473.467112]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  473.472281] RIP: 0033:0x455259
[  473.475450] RSP: 002b:00007f45bbc7bc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  473.483145] RAX: ffffffffffffffda RBX: 00007f45bbc7c6d4 RCX: 0000000000455259
[  473.490398] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000017
[  473.497823] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  473.505082] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000019
[  473.512330] R13: 0000000000000251 R14: 00000000006f6838 R15: 0000000000000049
2018/04/11 00:13:49 executing program 4:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0x80045300, &(0x7f00000000c0)={0x0, 0x0, 0x0, "7175657565300000000000000000000000000000000000000000fffffdfd00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))

2018/04/11 00:13:49 executing program 0:
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000080)='/dev/audio\x00', 0x305800, 0x0)
ioctl$FUSE_DEV_IOC_CLONE(r1, 0x8004e500, &(0x7f00000000c0)=r0)
sendmmsg(r0, &(0x7f0000001d80)=[{{&(0x7f0000000000)=@in6={0xa, 0x4e21, 0x0, @loopback={0x0, 0x1}}, 0x80, &(0x7f0000000040), 0x0, &(0x7f0000001e00)}}, {{&(0x7f0000000a80)=@in={0x2, 0x0, @rand_addr}, 0x80, &(0x7f0000000800), 0x0, &(0x7f0000000040)}}], 0x2, 0x8083)

2018/04/11 00:13:49 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c74657200000000000000009000", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:49 executing program 7:
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer\x00', 0x2, 0x0)
fchmodat(r0, &(0x7f0000000140)='./file0\x00', 0x21)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet_mreqsrc(r0, 0x0, 0x2f, &(0x7f0000000180)={@empty, @rand_addr=0x5, @loopback=0x7f000001}, 0xc)
setsockopt$inet6_tcp_int(r1, 0x6, 0x12, &(0x7f00006d2ffc)=0xffeffffffffffbfc, 0x2f1)
r2 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0xce96, 0xa8000)
ioctl$KVM_GET_EMULATED_CPUID(r2, 0xc008ae09, &(0x7f0000000040)=""/154)

2018/04/11 00:13:49 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x0, 0xa905}, 0x0)

2018/04/11 00:13:49 executing program 1:
r0 = socket$inet6(0xa, 0x80002, 0x88)
recvfrom$inet6(r0, &(0x7f0000fbef6d)=""/185, 0xb9, 0x0, 0x0, 0x0)
bind$inet6(r0, &(0x7f00008a8000)={0xa, 0x4e23}, 0x1c)
r1 = socket$inet6(0xa, 0x8000000000000802, 0x88)
setsockopt$inet6_int(r1, 0x29, 0x4a, &(0x7f00000000c0)=0xb6d1, 0xfffffffffffffeed)
sendmsg$inet_sctp(r1, &(0x7f0000a29000)={&(0x7f00005dafe4)=@in6={0xa, 0x4e23, 0x0, @mcast2={0xff, 0x2, [], 0x1}}, 0x1c, &(0x7f0000fc8000), 0x0, 0x0, 0xfffffffffffffd25}, 0x0)

2018/04/11 00:13:49 executing program 2 (fault-call:26 fault-nth:74):
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/pfkey\x00', 0x1, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_GET_MSR_INDEX_LIST(r1, 0xc004ae02, &(0x7f0000000440)=ANY=[@ANYBLOB="010000e8a806846728a902d7836e000000000090c8bb2c64ee855b03d6b79f01fd689aefd896253378642249ab91395ab66a034c399ce7623518b671b773347d0fd26ec81ac69a995c8ce192812ee8050c3814b9781ac68ebaded833a2c6c838d8647586e9c6e9a5856a915e647163631e9ebb8c6af6c63986f87e1cb1e65dda52219878b2bf0aa3c41d7257b9b338d3de7e2930af343b00807a9f0f1508f564e7be9484af85b8deea898a0e15d4e59917a706dff1d6eb4d00000000000000000000"])
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
pipe2(&(0x7f0000000700)={<r3=>0x0, <r4=>0x0}, 0x0)
ioctl$KVM_SET_XSAVE(r2, 0x5000aea5, &(0x7f0000000740)={"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"})
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
shmget(0x0, 0x3000, 0x1, &(0x7f000075a000/0x3000)=nil)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000600)={<r6=>0x0, @in={{0x2, 0x4e23, @multicast2=0xe0000002}}, 0x5, 0x6, 0x1, 0xfff, 0x8}, &(0x7f0000000080)=0x98)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000b40)={r6, @in={{0x2, 0x4e24, @rand_addr=0x10000}}, 0x5, 0x101, 0x6, 0xea, 0x72}, &(0x7f00000002c0)=0x98)
r7 = dup3(r5, r4, 0x0)
munlockall()
r8 = shmget$private(0x0, 0x3000, 0x10, &(0x7f0000760000/0x3000)=nil)
shmctl$IPC_RMID(r8, 0x0)
clock_gettime(0x7, &(0x7f0000000000))
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f0000460fe4)={0x0, 0x7, 0x2, 0x0, 0x4, 0x8, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x805})
ioctl$SNDRV_TIMER_IOCTL_GINFO(r4, 0xc0f85403, &(0x7f0000000c00)={{0xffffffffffffffff, 0x0, 0x3, 0x3, 0x2}, 0x81, 0x3, 'id0\x00', 'timer0\x00', 0x0, 0x6, 0x1, 0x6, 0x3})
ioctl$sock_inet6_tcp_SIOCINQ(r3, 0x541b, &(0x7f0000000040))
socket(0xf, 0x6, 0x5)
ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000280)={0x81, 0x1})
ioctl$EVIOCSABS2F(r7, 0x401845ef, &(0x7f0000000240)={0x9, 0x0, 0xfffffffffffffffd, 0x1ff, 0x4, 0x7f})
getsockopt$ax25_buf(r4, 0x101, 0x19, &(0x7f0000000140)=""/53, &(0x7f0000000180)=0x35)
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/enforce\x00', 0x10000, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000753000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, &(0x7f00000000c0)="0fc7280f080f20030f01727166ba4200b834000000ef66bad10466edb81da1fb500f23d00f21f835300000050f23f8c4c3194bfc360f20030fc76d08", 0x3c}], 0x1, 0x7, &(0x7f0000000380), 0x10000181)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r2, 0x8008ae9d, &(0x7f0000000340)=""/250)

2018/04/11 00:13:49 executing program 5:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0xc08c5336, &(0x7f00000000c0)={0x0, 0x0, 0x0, "717565756530000000000000000000000000000000000000000000000000000000000000000000001f00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer2\x00', 0x0, 0x0)

2018/04/11 00:13:49 executing program 7:
r0 = socket$inet(0x2, 0x809, 0x5)
r1 = dup3(r0, r0, 0x0)
setsockopt$bt_l2cap_L2CAP_OPTIONS(r1, 0x6, 0x1, &(0x7f0000000280)={0x0, 0x7, 0x3, 0x8, 0x3f, 0x9}, 0xc)
setsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000b5f000)="8907040000", 0x5)
r2 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000380)='/dev/vhost-net\x00', 0x2, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000240)={0x2, 0x1, &(0x7f0000000040)=""/26, &(0x7f0000000080)=""/248, &(0x7f0000000180)=""/170})
setsockopt$inet_udp_encap(r1, 0x11, 0x64, &(0x7f00000002c0)=0x2, 0x4)
connect$inet(r0, &(0x7f0000d0aff0)={0x2, 0x4e20, @rand_addr}, 0x10)

2018/04/11 00:13:49 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={'filter\x00\x00\x00\x00\x00\x00\x00\nh\x00', 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:49 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x0, 0xf}, 0x0)

2018/04/11 00:13:49 executing program 0:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
r1 = open(&(0x7f0000000140)='./file0\x00', 0x1, 0x40)
epoll_pwait(r1, &(0x7f0000000280)=[{}], 0x1, 0x9, &(0x7f0000000300)={0xfff}, 0x8)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f00000000c0)={0x0, @tick=0x6, 0x80000000, {0x10000, 0x1}, 0x9, 0x1, 0x7})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))
ioctl$int_out(r0, 0x5462, &(0x7f0000000040))
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0xc08c5336, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue1\x00'})
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer2\x00', 0x0, 0x0)

[  473.965127] FAULT_INJECTION: forcing a failure.
[  473.965127] name failslab, interval 1, probability 0, space 0, times 0
[  473.976686] CPU: 1 PID: 31303 Comm: syz-executor2 Not tainted 4.16.0+ #18
[  473.983615] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  473.992974] Call Trace:
[  473.995578]  dump_stack+0x1b9/0x294
[  473.999228]  ? dump_stack_print_info.cold.2+0x52/0x52
[  474.004431]  ? __save_stack_trace+0x7e/0xd0
[  474.008781]  should_fail.cold.4+0xa/0x1a
[  474.012862]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  474.017987]  ? kasan_kmalloc+0xc4/0xe0
[  474.021887]  ? kasan_slab_alloc+0x12/0x20
[  474.026043]  ? kmem_cache_alloc+0x12e/0x760
[  474.030382]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  474.035334]  ? kvm_mmu_load+0x21/0x10e0
[  474.039327]  ? vcpu_enter_guest+0x3aa1/0x6070
[  474.043832]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  474.048862]  ? graph_lock+0x170/0x170
[  474.052678]  ? do_syscall_64+0x29e/0x9d0
[  474.056761]  ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
2018/04/11 00:13:49 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x0, 0xffffff9e}, 0x0)

[  474.062148]  ? find_held_lock+0x36/0x1c0
[  474.066235]  ? __lock_is_held+0xb5/0x140
[  474.070330]  ? check_same_owner+0x320/0x320
[  474.074667]  ? rcu_note_context_switch+0x710/0x710
[  474.079620]  __should_failslab+0x124/0x180
[  474.083867]  should_failslab+0x9/0x14
[  474.089939]  kmem_cache_alloc+0x2af/0x760
[  474.094109]  ? alloc_pages_current+0x114/0x210
[  474.098706]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  474.103654]  mmu_topup_memory_caches+0x2fa/0x3a0
[  474.108429]  kvm_mmu_load+0x21/0x10e0
[  474.112251]  ? __might_sleep+0x95/0x190
[  474.116249]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  474.121805]  vcpu_enter_guest+0x3aa1/0x6070
[  474.126137]  ? kvm_vcpu_ioctl+0x1e2/0x12e0
[  474.130392]  ? print_usage_bug+0xc0/0xc0
[  474.134479]  ? kvm_set_msr_common+0x2660/0x2660
[  474.139162]  ? vmx_vcpu_load+0xaed/0xff0
[  474.143229]  ? __lock_acquire+0x7f5/0x5130
[  474.147473]  ? vmx_vcpu_reset+0x1030/0x1030
[  474.151803]  ? graph_lock+0x170/0x170
[  474.155609]  ? __lock_acquire+0x7f5/0x5130
[  474.159855]  ? debug_check_no_locks_freed+0x310/0x310
2018/04/11 00:13:49 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={'filter\x00\x00\x00\x00\x00\x00?\x00', 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

[  474.165058]  ? print_usage_bug+0xc0/0xc0
[  474.169132]  ? __lock_is_held+0xb5/0x140
[  474.173204]  ? lock_acquire+0x1dc/0x520
[  474.177183]  ? kvm_arch_vcpu_ioctl_run+0x234/0x1690
[  474.182214]  ? lock_release+0xa10/0xa10
[  474.186203]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  474.191498]  ? kvm_arch_dev_ioctl+0x5f0/0x5f0
[  474.196001]  ? preempt_notifier_dec+0x20/0x20
[  474.200516]  kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  474.205384]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  474.210425]  kvm_vcpu_ioctl+0x79d/0x12e0
2018/04/11 00:13:50 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={'filter\x00\x00\x00\x00\x00\x00\a\x00', 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

[  474.214503]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  474.220231]  ? graph_lock+0x170/0x170
[  474.224044]  ? find_held_lock+0x36/0x1c0
[  474.228121]  ? lock_downgrade+0x8e0/0x8e0
[  474.232280]  ? kasan_check_read+0x11/0x20
[  474.236437]  ? rcu_is_watching+0x85/0x140
[  474.240596]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  474.245816]  ? __fget+0x40c/0x650
[  474.249286]  ? match_held_lock+0x881/0x8b0
[  474.253536]  ? expand_files.part.8+0x9a0/0x9a0
[  474.258134]  ? kasan_check_write+0x14/0x20
2018/04/11 00:13:50 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c74657200000000000400", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

[  474.262386]  ? __mutex_unlock_slowpath+0x180/0x8a0
[  474.267328]  ? wait_for_completion+0x870/0x870
[  474.271930]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  474.277134]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  474.282871]  do_vfs_ioctl+0x1cf/0x1650
[  474.286785]  ? ioctl_preallocate+0x2e0/0x2e0
[  474.291204]  ? fget_raw+0x20/0x20
[  474.294671]  ? __sb_end_write+0xac/0xe0
[  474.298660]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  474.304204]  ? fput+0x130/0x1a0
[  474.307494]  ? ksys_write+0x1a6/0x250
[  474.311305]  ? security_file_ioctl+0x94/0xc0
[  474.315721]  ksys_ioctl+0xa9/0xd0
[  474.319187]  SyS_ioctl+0x24/0x30
[  474.322565]  ? ksys_ioctl+0xd0/0xd0
[  474.326211]  do_syscall_64+0x29e/0x9d0
[  474.330111]  ? vmalloc_sync_all+0x30/0x30
[  474.334270]  ? _raw_spin_unlock_irq+0x27/0x70
[  474.338777]  ? finish_task_switch+0x1ca/0x820
[  474.343286]  ? syscall_return_slowpath+0x5c0/0x5c0
[  474.348234]  ? syscall_return_slowpath+0x30f/0x5c0
[  474.353187]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  474.358568]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  474.363434]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  474.368628] RIP: 0033:0x455259
[  474.371817] RSP: 002b:00007f45bbc7bc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  474.379535] RAX: ffffffffffffffda RBX: 00007f45bbc7c6d4 RCX: 0000000000455259
[  474.386808] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000017
[  474.394082] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  474.401362] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000019
[  474.408642] R13: 0000000000000251 R14: 00000000006f6838 R15: 000000000000004a
2018/04/11 00:13:51 executing program 4:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0x80045300, &(0x7f00000000c0)={0x0, 0x0, 0x0, "717565756530000000000000000000000000000000000000000000fdfdffff00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))

2018/04/11 00:13:51 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000000)={0x0, <r1=>0x0}, &(0x7f0000000040)=0xc)
setfsuid(r1)
ioctl$EVIOCSKEYCODE(r0, 0x40084504, &(0x7f0000000080)=[0x6])

2018/04/11 00:13:51 executing program 5:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0xc08c5336, &(0x7f00000000c0)={0x0, 0x0, 0x0, "71756575653000000000000000000000000000000000000000000000000000000000000000001f00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer2\x00', 0x0, 0x0)

2018/04/11 00:13:51 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x0, 0xfffffff0}, 0x0)

2018/04/11 00:13:51 executing program 7:
r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x800)
ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x6, 0x400)
ioctl$KDGKBENT(r1, 0x4b46, &(0x7f0000000040)={0x1, 0x10001, 0x7f})

2018/04/11 00:13:51 executing program 2 (fault-call:26 fault-nth:75):
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/pfkey\x00', 0x1, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_GET_MSR_INDEX_LIST(r1, 0xc004ae02, &(0x7f0000000440)=ANY=[@ANYBLOB="010000e8a806846728a902d7836e000000000090c8bb2c64ee855b03d6b79f01fd689aefd896253378642249ab91395ab66a034c399ce7623518b671b773347d0fd26ec81ac69a995c8ce192812ee8050c3814b9781ac68ebaded833a2c6c838d8647586e9c6e9a5856a915e647163631e9ebb8c6af6c63986f87e1cb1e65dda52219878b2bf0aa3c41d7257b9b338d3de7e2930af343b00807a9f0f1508f564e7be9484af85b8deea898a0e15d4e59917a706dff1d6eb4d00000000000000000000"])
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
pipe2(&(0x7f0000000700)={<r3=>0x0, <r4=>0x0}, 0x0)
ioctl$KVM_SET_XSAVE(r2, 0x5000aea5, &(0x7f0000000740)={"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"})
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
shmget(0x0, 0x3000, 0x1, &(0x7f000075a000/0x3000)=nil)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000600)={<r6=>0x0, @in={{0x2, 0x4e23, @multicast2=0xe0000002}}, 0x5, 0x6, 0x1, 0xfff, 0x8}, &(0x7f0000000080)=0x98)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000b40)={r6, @in={{0x2, 0x4e24, @rand_addr=0x10000}}, 0x5, 0x101, 0x6, 0xea, 0x72}, &(0x7f00000002c0)=0x98)
r7 = dup3(r5, r4, 0x0)
munlockall()
r8 = shmget$private(0x0, 0x3000, 0x10, &(0x7f0000760000/0x3000)=nil)
shmctl$IPC_RMID(r8, 0x0)
clock_gettime(0x7, &(0x7f0000000000))
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f0000460fe4)={0x0, 0x7, 0x2, 0x0, 0x4, 0x8, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x805})
ioctl$SNDRV_TIMER_IOCTL_GINFO(r4, 0xc0f85403, &(0x7f0000000c00)={{0xffffffffffffffff, 0x0, 0x3, 0x3, 0x2}, 0x81, 0x3, 'id0\x00', 'timer0\x00', 0x0, 0x6, 0x1, 0x6, 0x3})
ioctl$sock_inet6_tcp_SIOCINQ(r3, 0x541b, &(0x7f0000000040))
socket(0xf, 0x6, 0x5)
ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000280)={0x81, 0x1})
ioctl$EVIOCSABS2F(r7, 0x401845ef, &(0x7f0000000240)={0x9, 0x0, 0xfffffffffffffffd, 0x1ff, 0x4, 0x7f})
getsockopt$ax25_buf(r4, 0x101, 0x19, &(0x7f0000000140)=""/53, &(0x7f0000000180)=0x35)
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/enforce\x00', 0x10000, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000753000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, &(0x7f00000000c0)="0fc7280f080f20030f01727166ba4200b834000000ef66bad10466edb81da1fb500f23d00f21f835300000050f23f8c4c3194bfc360f20030fc76d08", 0x3c}], 0x1, 0x7, &(0x7f0000000380), 0x10000181)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r2, 0x8008ae9d, &(0x7f0000000340)=""/250)

2018/04/11 00:13:51 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c74657200000000000000000000000200", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:51 executing program 1:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000100)={0x2, 0x4e20, @broadcast=0xffffffff}, 0x10)
r1 = syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x1, 0x101040)
ioctl$VHOST_GET_VRING_BASE(r1, 0xc008af12, &(0x7f00000000c0))
setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f0000d4effc)=0x1, 0x143)
syz_mount_image$reiserfs(&(0x7f0000000140)='reiserfs\x00', &(0x7f0000000180)='./file0\x00', 0x3, 0x4, &(0x7f0000000340)=[{&(0x7f00000001c0)="a013e6107aa6810ebfc125fca11bbdb65f4d48e382c3f1a8c0da14aaf25cd2ca46554cad63a4130d254730860f3a65ddd3c3202ce9d2944ee4fa1b293021eed61aad91df", 0x44, 0x101}, {&(0x7f0000000240)="eee1ea", 0x3, 0x9}, {&(0x7f0000000280)="23384da8f823d2888e13c138039f252c3341391988d8971b4751adea39be36272fb06eccefc5b3b6bdd2e07b6b8fd24acfd6020fa9df9d5950aa1e", 0x3b, 0x1}, {&(0x7f00000002c0)="48eadd8d5b8f0f305c6ac8b45849c665a9037483f71f2dce51aee42649835507974e37f1163b29fd30cb7782e54a344b1477f645f0701f39894c612d6bfa17d6228595cf8d822c903025425e9d1ef3763d2bc839ee87cb72e24e09d027535b095b664be06ee1d12ca43b900e523cc7d3788d7598d75f", 0x76, 0x2}], 0x54d0, &(0x7f00000003c0)={[{@jqfmt_vfsv0='jqfmt=vfsv0', 0x2c}, {@hash_tea='hash=tea', 0x2c}, {@expose_privroot='expose_privroot', 0x2c}]})
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
connect$inet(r0, &(0x7f0000606ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
sendto$inet(r0, &(0x7f0000000040)='K', 0x1, 0x4000000, 0x0, 0x0)

[  475.275320] binder: BINDER_SET_CONTEXT_MGR already set
[  475.310451] binder: 31376:31377 ioctl 40046207 0 returned -16
[  475.325542] FAULT_INJECTION: forcing a failure.
[  475.325542] name failslab, interval 1, probability 0, space 0, times 0
[  475.336964] CPU: 1 PID: 31381 Comm: syz-executor2 Not tainted 4.16.0+ #18
[  475.343903] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  475.353264] Call Trace:
[  475.355866]  dump_stack+0x1b9/0x294
[  475.359508]  ? dump_stack_print_info.cold.2+0x52/0x52
[  475.364712]  ? __save_stack_trace+0x7e/0xd0
[  475.369063]  should_fail.cold.4+0xa/0x1a
[  475.373144]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  475.378261]  ? kasan_kmalloc+0xc4/0xe0
[  475.382157]  ? kasan_slab_alloc+0x12/0x20
[  475.386316]  ? kmem_cache_alloc+0x12e/0x760
[  475.390649]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  475.395596]  ? kvm_mmu_load+0x21/0x10e0
[  475.399649]  ? vcpu_enter_guest+0x3aa1/0x6070
[  475.404158]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  475.409191]  ? graph_lock+0x170/0x170
[  475.413000]  ? do_syscall_64+0x29e/0x9d0
[  475.417072]  ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  475.422455]  ? find_held_lock+0x36/0x1c0
[  475.426534]  ? __lock_is_held+0xb5/0x140
[  475.430622]  ? check_same_owner+0x320/0x320
[  475.434963]  ? rcu_note_context_switch+0x710/0x710
[  475.439919]  __should_failslab+0x124/0x180
[  475.444173]  should_failslab+0x9/0x14
[  475.447986]  kmem_cache_alloc+0x2af/0x760
[  475.452155]  ? alloc_pages_current+0x114/0x210
[  475.456753]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  475.461702]  mmu_topup_memory_caches+0x2fa/0x3a0
[  475.466481]  kvm_mmu_load+0x21/0x10e0
[  475.470299]  ? __might_sleep+0x95/0x190
[  475.474300]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  475.479860]  vcpu_enter_guest+0x3aa1/0x6070
[  475.484199]  ? kvm_vcpu_ioctl+0x1e2/0x12e0
[  475.488457]  ? perf_trace_lock+0xd6/0x900
[  475.492623]  ? print_usage_bug+0xc0/0xc0
[  475.496717]  ? kvm_set_msr_common+0x2660/0x2660
[  475.501410]  ? zap_class+0x720/0x720
[  475.505141]  ? vmx_vcpu_load+0xaed/0xff0
[  475.509216]  ? __lock_acquire+0x7f5/0x5130
[  475.513474]  ? vmx_vcpu_reset+0x1030/0x1030
[  475.517824]  ? graph_lock+0x170/0x170
[  475.521639]  ? __lock_acquire+0x7f5/0x5130
2018/04/11 00:13:51 executing program 0:
r0 = socket$inet(0x2, 0x1, 0x0)
getsockopt$IPT_SO_GET_INFO(r0, 0x0, 0x40, &(0x7f00000001c0)={'raw\x00'}, &(0x7f0000000240)=0x54)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20}, 0x10)
listen(r0, 0x10000000008)
syz_emit_ethernet(0x3a, &(0x7f0000000100)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa81004f000800450000280000452c9c940f1f00f8ffb707d45b5d506024c4874c38a37ece30cbfa8d9f3267932dd1b5bad01307961fafcdf029821110019c22f08d6a4ad101c05ed11f4b2bef17b55e48265b07ac213836f2abf9e53d27c003b3a27bdc1dbc1f1887afa47e7b63f3ec9dc5410d571ac8", @ANYRES32=0x42424242, @ANYRES32=0x42424242, @ANYBLOB="5022000090780000"], 0x0)
r1 = getpid()
syz_open_procfs(r1, &(0x7f0000000000)='net/ip6_tables_names\x00')
setsockopt$IP_VS_SO_SET_ADDDEST(r0, 0x0, 0x487, &(0x7f0000000080)={{0x32, @multicast1=0xe0000001, 0x4e20, 0x2, 'nq\x00', 0x1, 0x2, 0x44}, {@broadcast=0xffffffff, 0x4e21, 0x3, 0x8, 0x40, 0x3}}, 0x44)

2018/04/11 00:13:51 executing program 7:
perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0xe2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe2(&(0x7f0000000080), 0x84800)
r0 = syz_open_dev$sndctrl(&(0x7f0000007fed)='/dev/snd/controlC#\x00', 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(r0, 0x80dc5521, &(0x7f0000000040)=""/45)

2018/04/11 00:13:51 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c7465720000000000000000000000000100", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:51 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x0, 0x200000000000000}, 0x0)

2018/04/11 00:13:51 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x0, 0xf000000}, 0x0)

[  475.525897]  ? debug_check_no_locks_freed+0x310/0x310
[  475.531106]  ? print_usage_bug+0xc0/0xc0
[  475.535201]  ? __lock_is_held+0xb5/0x140
[  475.536547] IPVS: set_ctl: invalid protocol: 50 224.0.0.1:20000 nq
[  475.539286]  ? lock_acquire+0x1dc/0x520
[  475.539302]  ? kvm_arch_vcpu_ioctl_run+0x234/0x1690
[  475.539320]  ? lock_release+0xa10/0xa10
[  475.539333]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  475.539349]  ? kvm_arch_dev_ioctl+0x5f0/0x5f0
[  475.539364]  ? preempt_notifier_dec+0x20/0x20
2018/04/11 00:13:51 executing program 0:
mkdir(&(0x7f0000017ff6)='./control\x00', 0x0)
r0 = open(&(0x7f000003dff6)='./control\x00', 0x0, 0x0)
mknodat(r0, &(0x7f0000008ff6)='./control\x00', 0x0, 0x0)
faccessat(r0, &(0x7f000003b000)='./control\x00', 0x1, 0x0)
openat(r0, &(0x7f0000000000)='./control\x00', 0x20000, 0x1)

[  475.539390]  kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  475.539404]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  475.539430]  kvm_vcpu_ioctl+0x79d/0x12e0
[  475.539451]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  475.592589]  ? graph_lock+0x170/0x170
[  475.596401]  ? find_held_lock+0x36/0x1c0
[  475.600482]  ? lock_downgrade+0x8e0/0x8e0
[  475.604642]  ? rcu_is_watching+0x85/0x140
[  475.608795]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  475.614006]  ? __fget+0x40c/0x650
[  475.617469]  ? match_held_lock+0x881/0x8b0
[  475.621730]  ? expand_files.part.8+0x9a0/0x9a0
[  475.626505]  ? kasan_check_write+0x14/0x20
[  475.630768]  ? __mutex_unlock_slowpath+0x180/0x8a0
[  475.635706]  ? wait_for_completion+0x870/0x870
[  475.640298]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  475.645499]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  475.651219]  do_vfs_ioctl+0x1cf/0x1650
[  475.655127]  ? ioctl_preallocate+0x2e0/0x2e0
[  475.659554]  ? fget_raw+0x20/0x20
[  475.663018]  ? __sb_end_write+0xac/0xe0
[  475.667010]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  475.672557]  ? fput+0x130/0x1a0
2018/04/11 00:13:51 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x0, 0x81000000}, 0x0)

2018/04/11 00:13:51 executing program 0:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
write$rdma_cm(r0, &(0x7f00000018c0)=@create_id={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000001880)={<r1=>0xffffffff}, 0x13f}}, 0x20)
write$rdma_cm(r0, &(0x7f0000000340)=@set_option={0xe, 0x18, 0xfa00, @id_afonly={&(0x7f0000000000), r1, 0x0, 0x2, 0x4}}, 0x1b6)
inotify_init()
r2 = syz_open_dev$adsp(&(0x7f0000000080)='/dev/adsp#\x00', 0x1000000000, 0xf8282)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r2, 0x4008af60, &(0x7f00000000c0)={@host=0x2})
write$rdma_cm(r0, &(0x7f0000000100)=@bind_ip={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @loopback={0x0, 0x1}}, r1}}, 0x30)

[  475.675847]  ? ksys_write+0x1a6/0x250
[  475.679664]  ? security_file_ioctl+0x94/0xc0
[  475.684833]  ksys_ioctl+0xa9/0xd0
[  475.688304]  SyS_ioctl+0x24/0x30
[  475.691682]  ? ksys_ioctl+0xd0/0xd0
[  475.695318]  do_syscall_64+0x29e/0x9d0
[  475.699212]  ? vmalloc_sync_all+0x30/0x30
[  475.703378]  ? _raw_spin_unlock_irq+0x27/0x70
[  475.707885]  ? finish_task_switch+0x1ca/0x820
[  475.712394]  ? syscall_return_slowpath+0x5c0/0x5c0
[  475.717337]  ? syscall_return_slowpath+0x30f/0x5c0
[  475.722286]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  475.727670]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  475.733319]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  475.738512] RIP: 0033:0x455259
[  475.741702] RSP: 002b:00007f45bbc7bc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  475.749419] RAX: ffffffffffffffda RBX: 00007f45bbc7c6d4 RCX: 0000000000455259
[  475.756700] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000017
[  475.763982] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  475.771257] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000019
[  475.778536] R13: 0000000000000251 R14: 00000000006f6838 R15: 000000000000004b
2018/04/11 00:13:52 executing program 4:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0x80045300, &(0x7f00000000c0)={0x0, 0x0, 0x0, "71756575653000000000000000000000000000000000000000000000000000fffffdfd00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))

2018/04/11 00:13:52 executing program 5:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0xc08c5336, &(0x7f00000000c0)={0x0, 0x0, 0x0, "71756575653000000000000000000000000000000000000000000000000000000000000000000000001f00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer2\x00', 0x0, 0x0)

2018/04/11 00:13:52 executing program 1:
mount(&(0x7f0000000040)='./file0\x00', &(0x7f00000010c0)='./file0\x00', &(0x7f0000001100)='befs\x00', 0x4, &(0x7f00000011c0)="37446999860480690f75ab5f26fb958ee4ab6f6e89be3bddfcc11159cbc0edec7a8363f346c207a6f962e3756ee9c577928c68a2e7d8d8db7b29e607bcaa15ae9f6d9f2961638982d0f52d8368fcebe366a263484911f2dddeea711e9b0873b85a8124cbda2fc5c63152158eb50c7b9b5cfe5bb34932070b36684f9077e4b47692822ccb5ab10b25430d4ef163fae08d448a6861bbcacff460c26b736faa29d430ac426ed49b68d8db985adbe070a16c6be7695932aa1a151eb693c3c63847ebc797eb2984a6840fe7ebfb2b6d07115ec3204f")
bpf$MAP_CREATE(0x0, &(0x7f0000982000)={0x4, 0x108000000000004, 0x4, 0x6}, 0x2c)
bpf$PROG_LOAD(0x5, &(0x7f0000001140)={0x0, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000000000000000050000000000"], &(0x7f0000000080)='GPL\x00', 0x0, 0x1000, &(0x7f00000000c0)=""/4096}, 0x48)
bpf$MAP_CREATE(0x2, &(0x7f0000003000)={0x13, 0x0, 0x800001, 0x0, 0x20000000}, 0x2c)
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f00000012c0)='/dev/rfkill\x00', 0x400, 0x0)
ioctl$KVM_GET_EMULATED_CPUID(r0, 0xc008ae09, &(0x7f0000001300)=""/169)

2018/04/11 00:13:52 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x0, 0xf00}, 0x0)

2018/04/11 00:13:52 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x8000, 0x0)
getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(0xffffffffffffffff, 0x84, 0x66, &(0x7f0000000080)={<r2=>0x0, 0xfffffffffffffffc}, &(0x7f00000000c0)=0x8)
setsockopt$inet_sctp6_SCTP_DELAYED_SACK(r1, 0x84, 0x10, &(0x7f0000000100)=@assoc_value={r2, 0x5}, 0x8)
shutdown(r0, 0x1)

2018/04/11 00:13:52 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c74657200000000000000000600", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:52 executing program 2 (fault-call:26 fault-nth:76):
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/pfkey\x00', 0x1, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_GET_MSR_INDEX_LIST(r1, 0xc004ae02, &(0x7f0000000440)=ANY=[@ANYBLOB="010000e8a806846728a902d7836e000000000090c8bb2c64ee855b03d6b79f01fd689aefd896253378642249ab91395ab66a034c399ce7623518b671b773347d0fd26ec81ac69a995c8ce192812ee8050c3814b9781ac68ebaded833a2c6c838d8647586e9c6e9a5856a915e647163631e9ebb8c6af6c63986f87e1cb1e65dda52219878b2bf0aa3c41d7257b9b338d3de7e2930af343b00807a9f0f1508f564e7be9484af85b8deea898a0e15d4e59917a706dff1d6eb4d00000000000000000000"])
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
pipe2(&(0x7f0000000700)={<r3=>0x0, <r4=>0x0}, 0x0)
ioctl$KVM_SET_XSAVE(r2, 0x5000aea5, &(0x7f0000000740)={"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"})
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
shmget(0x0, 0x3000, 0x1, &(0x7f000075a000/0x3000)=nil)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000600)={<r6=>0x0, @in={{0x2, 0x4e23, @multicast2=0xe0000002}}, 0x5, 0x6, 0x1, 0xfff, 0x8}, &(0x7f0000000080)=0x98)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000b40)={r6, @in={{0x2, 0x4e24, @rand_addr=0x10000}}, 0x5, 0x101, 0x6, 0xea, 0x72}, &(0x7f00000002c0)=0x98)
r7 = dup3(r5, r4, 0x0)
munlockall()
r8 = shmget$private(0x0, 0x3000, 0x10, &(0x7f0000760000/0x3000)=nil)
shmctl$IPC_RMID(r8, 0x0)
clock_gettime(0x7, &(0x7f0000000000))
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f0000460fe4)={0x0, 0x7, 0x2, 0x0, 0x4, 0x8, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x805})
ioctl$SNDRV_TIMER_IOCTL_GINFO(r4, 0xc0f85403, &(0x7f0000000c00)={{0xffffffffffffffff, 0x0, 0x3, 0x3, 0x2}, 0x81, 0x3, 'id0\x00', 'timer0\x00', 0x0, 0x6, 0x1, 0x6, 0x3})
ioctl$sock_inet6_tcp_SIOCINQ(r3, 0x541b, &(0x7f0000000040))
socket(0xf, 0x6, 0x5)
ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000280)={0x81, 0x1})
ioctl$EVIOCSABS2F(r7, 0x401845ef, &(0x7f0000000240)={0x9, 0x0, 0xfffffffffffffffd, 0x1ff, 0x4, 0x7f})
getsockopt$ax25_buf(r4, 0x101, 0x19, &(0x7f0000000140)=""/53, &(0x7f0000000180)=0x35)
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/enforce\x00', 0x10000, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000753000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, &(0x7f00000000c0)="0fc7280f080f20030f01727166ba4200b834000000ef66bad10466edb81da1fb500f23d00f21f835300000050f23f8c4c3194bfc360f20030fc76d08", 0x3c}], 0x1, 0x7, &(0x7f0000000380), 0x10000181)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r2, 0x8008ae9d, &(0x7f0000000340)=""/250)

2018/04/11 00:13:52 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f0000000000)="c7c604000000660f38823bf30f011fb9730200000f32360f07b9d80a00000f3265660f2ed10f090f0092ffffffffc1b28f00000001", 0x35}], 0x1, 0xe8414d58d2b3f0ec, &(0x7f00000000c0), 0x0)
r3 = semget$private(0x0, 0x7, 0x203)
semctl$SETALL(r3, 0x0, 0x11, &(0x7f00000000c0)=[0x2, 0x8, 0x200, 0x1, 0x7, 0x80000001, 0x6])
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080))
ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000280)={0x80000a0003})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  476.465974] FAULT_INJECTION: forcing a failure.
[  476.465974] name failslab, interval 1, probability 0, space 0, times 0
[  476.477300] CPU: 1 PID: 31451 Comm: syz-executor2 Not tainted 4.16.0+ #18
[  476.484234] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  476.493596] Call Trace:
[  476.496197]  dump_stack+0x1b9/0x294
[  476.499824]  ? dump_stack_print_info.cold.2+0x52/0x52
[  476.505001]  ? __save_stack_trace+0x7e/0xd0
[  476.509325]  should_fail.cold.4+0xa/0x1a
[  476.513377]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  476.518465]  ? kasan_kmalloc+0xc4/0xe0
[  476.522339]  ? kasan_slab_alloc+0x12/0x20
[  476.526469]  ? kmem_cache_alloc+0x12e/0x760
[  476.530776]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  476.535688]  ? kvm_mmu_load+0x21/0x10e0
[  476.539646]  ? vcpu_enter_guest+0x3aa1/0x6070
[  476.544127]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  476.549134]  ? graph_lock+0x170/0x170
[  476.552923]  ? do_syscall_64+0x29e/0x9d0
[  476.556970]  ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  476.562327]  ? find_held_lock+0x36/0x1c0
[  476.566377]  ? __lock_is_held+0xb5/0x140
[  476.570445]  ? check_same_owner+0x320/0x320
[  476.574758]  ? rcu_note_context_switch+0x710/0x710
[  476.579680]  __should_failslab+0x124/0x180
[  476.583909]  should_failslab+0x9/0x14
[  476.587698]  kmem_cache_alloc+0x2af/0x760
[  476.591837]  ? alloc_pages_current+0x114/0x210
[  476.596413]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  476.601332]  mmu_topup_memory_caches+0x2fa/0x3a0
[  476.606083]  kvm_mmu_load+0x21/0x10e0
[  476.609874]  ? __might_sleep+0x95/0x190
[  476.613838]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  476.619372]  vcpu_enter_guest+0x3aa1/0x6070
[  476.623683]  ? kvm_vcpu_ioctl+0x1e2/0x12e0
[  476.627949]  ? perf_trace_lock+0xd6/0x900
[  476.632083]  ? print_usage_bug+0xc0/0xc0
[  476.636137]  ? kvm_set_msr_common+0x2660/0x2660
[  476.640804]  ? zap_class+0x720/0x720
[  476.644515]  ? vmx_vcpu_load+0xaed/0xff0
[  476.648563]  ? __lock_acquire+0x7f5/0x5130
[  476.652786]  ? vmx_vcpu_reset+0x1030/0x1030
[  476.657093]  ? graph_lock+0x170/0x170
[  476.660878]  ? __lock_acquire+0x7f5/0x5130
[  476.665275]  ? debug_check_no_locks_freed+0x310/0x310
[  476.670621]  ? print_usage_bug+0xc0/0xc0
[  476.674675]  ? __lock_is_held+0xb5/0x140
[  476.678722]  ? lock_acquire+0x1dc/0x520
[  476.682683]  ? kvm_arch_vcpu_ioctl_run+0x234/0x1690
[  476.687691]  ? lock_release+0xa10/0xa10
[  476.691652]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  476.696927]  ? kvm_arch_dev_ioctl+0x5f0/0x5f0
[  476.701499]  ? preempt_notifier_dec+0x20/0x20
[  476.706001]  kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  476.710838]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  476.715854]  kvm_vcpu_ioctl+0x79d/0x12e0
[  476.719905]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  476.725605]  ? graph_lock+0x170/0x170
[  476.729399]  ? find_held_lock+0x36/0x1c0
[  476.733458]  ? lock_downgrade+0x8e0/0x8e0
[  476.737604]  ? rcu_is_watching+0x85/0x140
[  476.741740]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  476.746950]  ? __fget+0x40c/0x650
[  476.750419]  ? match_held_lock+0x881/0x8b0
[  476.754660]  ? expand_files.part.8+0x9a0/0x9a0
[  476.759238]  ? kasan_check_write+0x14/0x20
[  476.763463]  ? __mutex_unlock_slowpath+0x180/0x8a0
[  476.768388]  ? wait_for_completion+0x870/0x870
[  476.772962]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  476.778144]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  476.783842]  do_vfs_ioctl+0x1cf/0x1650
[  476.787722]  ? ioctl_preallocate+0x2e0/0x2e0
[  476.792119]  ? fget_raw+0x20/0x20
[  476.795563]  ? __sb_end_write+0xac/0xe0
[  476.799530]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  476.805053]  ? fput+0x130/0x1a0
[  476.808323]  ? ksys_write+0x1a6/0x250
[  476.812112]  ? security_file_ioctl+0x94/0xc0
[  476.816519]  ksys_ioctl+0xa9/0xd0
[  476.819966]  SyS_ioctl+0x24/0x30
[  476.823318]  ? ksys_ioctl+0xd0/0xd0
[  476.826935]  do_syscall_64+0x29e/0x9d0
[  476.830806]  ? vmalloc_sync_all+0x30/0x30
[  476.834942]  ? _raw_spin_unlock_irq+0x27/0x70
[  476.839443]  ? finish_task_switch+0x1ca/0x820
[  476.843929]  ? syscall_return_slowpath+0x5c0/0x5c0
[  476.848848]  ? syscall_return_slowpath+0x30f/0x5c0
[  476.853771]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  476.859132]  ? trace_hardirqs_off_thunk+0x1a/0x1c
2018/04/11 00:13:52 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x0, 0xec0}, 0x0)

[  476.863971]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  476.869145] RIP: 0033:0x455259
[  476.872321] RSP: 002b:00007f45bbc7bc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  476.880021] RAX: ffffffffffffffda RBX: 00007f45bbc7c6d4 RCX: 0000000000455259
[  476.887287] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000017
[  476.894543] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  476.901798] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000019
[  476.909052] R13: 0000000000000251 R14: 00000000006f6838 R15: 000000000000004c
2018/04/11 00:13:52 executing program 7:
r0 = socket(0x1e, 0x2, 0x0)
bind(r0, &(0x7f0000d80f80)=@generic={0x1e, "0103000000000000000000000000000009a979f321b30c7bc8790405c7bad62e0a43a632ed4938d36d73fb8f8401a3ff59829a2b0afe7ce43a4b2470a0c5216669ca021f6f65dcf160e7e58f358c0002f0000158d19bcb31f1314a8ef151622ca5bdb9c8ead2000077aeb81c90001d6d7c980ee590c8b9f70dc136cb184a"}, 0x80)
r1 = socket(0x1e, 0x2, 0x0)
bind(r1, &(0x7f0000d80f80)=@generic={0x1e, "0103000000000000000000000000000009a979f321b30c7bc8790405c7bad62e0a43a632ed4938d36d73fb8f8401a3ff59829a2b0afe7ce43a4b2470a0c5216669ca021f6f65dcf160e7e58f358c0002f0000158d19bcb31f1314a8ef151622ca5bdb9c8ead2000077aeb81c90001d6d7c980ee590c8b9f70dc136cb184a"}, 0x80)
r2 = socket(0x1e, 0x2, 0x0)
bind(r2, &(0x7f0000afb000)=@generic={0x1e, "01030000000000b9000000004700000000a979f321b30c7bc8790405c7bad62e0a63a632ed4938d36d73fb8f8401a3ff59829a2b0afe7ce43a4b2470a0c5216669ca021f6f65dcf160e7e58f358c0002f0000158d19bcb3151d24acef1f1622ca5bdb9c8ea31000077aeb81c90001b6d7c980400000000f70dc136cb184a"}, 0x80)
r3 = socket(0x1e, 0x2, 0x0)
bind(r3, &(0x7f0000afb000)=@generic={0x1e, "01030000000000b9000000004700000000a979f321b30c7bc8790405c7bad62e0a63a632ed4938d36d73fb8f8401a3ff59829a2b0afe7ce43a4b2470a0c5216669ca021f6f65dcf160e7e58f358c0002f0000158d19bcb3151d24acef1f1622ca5bdb9c8ea31000077aeb81c90001d6d7c980400000000f70dc136cb184a"}, 0x80)
accept$packet(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @dev}, &(0x7f0000000040)=0x14)
r4 = socket(0x1e, 0x5, 0x0)
sendmsg(r4, &(0x7f0000316000)={&(0x7f0000dd7000)=@generic={0x10000000001e, "010000000000000000000001e526cc573c5bf86c483724c71e14dd6a739effea1b48006be61ffe06d79f00000000000000076c3f010039d8f986ff03000000000000af50d5fe32c419d67bcbc7e3ad316a198356ed0008341c1fd45624281e27800ece70b076cf979ac40000bd767e2e78a1dfd300981a1565b3b16d7436"}, 0x80, &(0x7f0000d0bfd0), 0x0, &(0x7f00002d4000)}, 0x0)

2018/04/11 00:13:52 executing program 1:
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$mice(&(0x7f0000000140)='/dev/input/mice\x00', 0x0, 0x0)
r1 = syz_open_dev$evdev(&(0x7f0000057fee)='/dev/input/event#\x00', 0xafd, 0x8000040000001)
write$evdev(r1, &(0x7f00008c1fd0)=[{{}, 0x2, 0x0, 0x400}, {}], 0x30)
read$eventfd(r0, &(0x7f0000000040), 0x8)
ioctl$DRM_IOCTL_AGP_INFO(0xffffffffffffffff, 0x80386433, &(0x7f00000002c0)=""/181)
setsockopt$inet_int(r0, 0x0, 0x0, &(0x7f0000000080), 0x4)

2018/04/11 00:13:52 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={'filter\x00\x00\x00\x00\x00\x00\x00\x00@\x00', 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:52 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x0, 0x2}, 0x0)

2018/04/11 00:13:52 executing program 2 (fault-call:26 fault-nth:77):
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/pfkey\x00', 0x1, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_GET_MSR_INDEX_LIST(r1, 0xc004ae02, &(0x7f0000000440)=ANY=[@ANYBLOB="010000e8a806846728a902d7836e000000000090c8bb2c64ee855b03d6b79f01fd689aefd896253378642249ab91395ab66a034c399ce7623518b671b773347d0fd26ec81ac69a995c8ce192812ee8050c3814b9781ac68ebaded833a2c6c838d8647586e9c6e9a5856a915e647163631e9ebb8c6af6c63986f87e1cb1e65dda52219878b2bf0aa3c41d7257b9b338d3de7e2930af343b00807a9f0f1508f564e7be9484af85b8deea898a0e15d4e59917a706dff1d6eb4d00000000000000000000"])
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
pipe2(&(0x7f0000000700)={<r3=>0x0, <r4=>0x0}, 0x0)
ioctl$KVM_SET_XSAVE(r2, 0x5000aea5, &(0x7f0000000740)={"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"})
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
shmget(0x0, 0x3000, 0x1, &(0x7f000075a000/0x3000)=nil)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000600)={<r6=>0x0, @in={{0x2, 0x4e23, @multicast2=0xe0000002}}, 0x5, 0x6, 0x1, 0xfff, 0x8}, &(0x7f0000000080)=0x98)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000b40)={r6, @in={{0x2, 0x4e24, @rand_addr=0x10000}}, 0x5, 0x101, 0x6, 0xea, 0x72}, &(0x7f00000002c0)=0x98)
r7 = dup3(r5, r4, 0x0)
munlockall()
r8 = shmget$private(0x0, 0x3000, 0x10, &(0x7f0000760000/0x3000)=nil)
shmctl$IPC_RMID(r8, 0x0)
clock_gettime(0x7, &(0x7f0000000000))
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f0000460fe4)={0x0, 0x7, 0x2, 0x0, 0x4, 0x8, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x805})
ioctl$SNDRV_TIMER_IOCTL_GINFO(r4, 0xc0f85403, &(0x7f0000000c00)={{0xffffffffffffffff, 0x0, 0x3, 0x3, 0x2}, 0x81, 0x3, 'id0\x00', 'timer0\x00', 0x0, 0x6, 0x1, 0x6, 0x3})
ioctl$sock_inet6_tcp_SIOCINQ(r3, 0x541b, &(0x7f0000000040))
socket(0xf, 0x6, 0x5)
ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000280)={0x81, 0x1})
ioctl$EVIOCSABS2F(r7, 0x401845ef, &(0x7f0000000240)={0x9, 0x0, 0xfffffffffffffffd, 0x1ff, 0x4, 0x7f})
getsockopt$ax25_buf(r4, 0x101, 0x19, &(0x7f0000000140)=""/53, &(0x7f0000000180)=0x35)
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/enforce\x00', 0x10000, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000753000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, &(0x7f00000000c0)="0fc7280f080f20030f01727166ba4200b834000000ef66bad10466edb81da1fb500f23d00f21f835300000050f23f8c4c3194bfc360f20030fc76d08", 0x3c}], 0x1, 0x7, &(0x7f0000000380), 0x10000181)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r2, 0x8008ae9d, &(0x7f0000000340)=""/250)

2018/04/11 00:13:52 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c74657200000000000000000100", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:52 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x0, 0xa9050000}, 0x0)

[  477.219224] FAULT_INJECTION: forcing a failure.
[  477.219224] name failslab, interval 1, probability 0, space 0, times 0
[  477.230659] CPU: 0 PID: 31489 Comm: syz-executor2 Not tainted 4.16.0+ #18
[  477.238480] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  477.247837] Call Trace:
[  477.250441]  dump_stack+0x1b9/0x294
[  477.254077]  ? dump_stack_print_info.cold.2+0x52/0x52
[  477.259258]  ? __save_stack_trace+0x7e/0xd0
[  477.263570]  should_fail.cold.4+0xa/0x1a
[  477.267618]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  477.272702]  ? kasan_kmalloc+0xc4/0xe0
[  477.276634]  ? kasan_slab_alloc+0x12/0x20
[  477.280764]  ? kmem_cache_alloc+0x12e/0x760
[  477.285070]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  477.290035]  ? kvm_mmu_load+0x21/0x10e0
[  477.294035]  ? vcpu_enter_guest+0x3aa1/0x6070
[  477.298528]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  477.303537]  ? graph_lock+0x170/0x170
[  477.307319]  ? do_syscall_64+0x29e/0x9d0
[  477.311362]  ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  477.316711]  ? find_held_lock+0x36/0x1c0
[  477.320755]  ? __lock_is_held+0xb5/0x140
[  477.324802]  ? check_same_owner+0x320/0x320
[  477.329105]  ? rcu_note_context_switch+0x710/0x710
[  477.334028]  __should_failslab+0x124/0x180
[  477.338256]  should_failslab+0x9/0x14
[  477.342039]  kmem_cache_alloc+0x2af/0x760
[  477.346175]  ? alloc_pages_current+0x114/0x210
[  477.350749]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  477.355675]  mmu_topup_memory_caches+0x2fa/0x3a0
[  477.360425]  kvm_mmu_load+0x21/0x10e0
[  477.364207]  ? __might_sleep+0x95/0x190
[  477.368165]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  477.373687]  vcpu_enter_guest+0x3aa1/0x6070
[  477.377999]  ? kvm_vcpu_ioctl+0x1e2/0x12e0
[  477.382221]  ? print_usage_bug+0xc0/0xc0
[  477.386268]  ? kvm_set_msr_common+0x2660/0x2660
[  477.390916]  ? vmx_vcpu_load+0xaed/0xff0
[  477.394957]  ? __lock_acquire+0x7f5/0x5130
[  477.399175]  ? vmx_vcpu_reset+0x1030/0x1030
[  477.403494]  ? graph_lock+0x170/0x170
[  477.407273]  ? __lock_acquire+0x7f5/0x5130
[  477.411490]  ? debug_check_no_locks_freed+0x310/0x310
[  477.416669]  ? print_usage_bug+0xc0/0xc0
[  477.420718]  ? __lock_is_held+0xb5/0x140
[  477.424761]  ? lock_acquire+0x1dc/0x520
[  477.428717]  ? kvm_arch_vcpu_ioctl_run+0x234/0x1690
[  477.433713]  ? lock_release+0xa10/0xa10
[  477.437668]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  477.442925]  ? kvm_arch_dev_ioctl+0x5f0/0x5f0
[  477.447398]  ? preempt_notifier_dec+0x20/0x20
[  477.451878]  kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  477.456703]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  477.461705]  kvm_vcpu_ioctl+0x79d/0x12e0
[  477.465762]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  477.471460]  ? graph_lock+0x170/0x170
[  477.475242]  ? find_held_lock+0x36/0x1c0
[  477.479287]  ? lock_downgrade+0x8e0/0x8e0
[  477.483430]  ? kasan_check_read+0x11/0x20
[  477.487574]  ? rcu_is_watching+0x85/0x140
[  477.491710]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  477.496884]  ? __fget+0x40c/0x650
[  477.500318]  ? match_held_lock+0x881/0x8b0
[  477.504532]  ? expand_files.part.8+0x9a0/0x9a0
[  477.509132]  ? kasan_check_write+0x14/0x20
[  477.513347]  ? __mutex_unlock_slowpath+0x180/0x8a0
[  477.518257]  ? wait_for_completion+0x870/0x870
[  477.522819]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  477.527989]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  477.533688]  do_vfs_ioctl+0x1cf/0x1650
[  477.537559]  ? ioctl_preallocate+0x2e0/0x2e0
[  477.541950]  ? fget_raw+0x20/0x20
[  477.545393]  ? __sb_end_write+0xac/0xe0
[  477.549355]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  477.554872]  ? fput+0x130/0x1a0
[  477.558155]  ? ksys_write+0x1a6/0x250
[  477.561939]  ? security_file_ioctl+0x94/0xc0
[  477.566328]  ksys_ioctl+0xa9/0xd0
[  477.569763]  SyS_ioctl+0x24/0x30
[  477.573110]  ? ksys_ioctl+0xd0/0xd0
[  477.576719]  do_syscall_64+0x29e/0x9d0
[  477.580585]  ? vmalloc_sync_all+0x30/0x30
[  477.584712]  ? kasan_check_write+0x14/0x20
[  477.588939]  ? syscall_return_slowpath+0x5c0/0x5c0
[  477.593853]  ? syscall_return_slowpath+0x30f/0x5c0
[  477.598773]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  477.604121]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  477.608958]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  477.614125] RIP: 0033:0x455259
2018/04/11 00:13:53 executing program 4:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0x80045300, &(0x7f00000000c0)={0x0, 0x0, 0x0, "717565756530000000000000000000000000000000000000000000fffffdfd00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))

2018/04/11 00:13:53 executing program 2 (fault-call:26 fault-nth:78):
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/pfkey\x00', 0x1, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_GET_MSR_INDEX_LIST(r1, 0xc004ae02, &(0x7f0000000440)=ANY=[@ANYBLOB="010000e8a806846728a902d7836e000000000090c8bb2c64ee855b03d6b79f01fd689aefd896253378642249ab91395ab66a034c399ce7623518b671b773347d0fd26ec81ac69a995c8ce192812ee8050c3814b9781ac68ebaded833a2c6c838d8647586e9c6e9a5856a915e647163631e9ebb8c6af6c63986f87e1cb1e65dda52219878b2bf0aa3c41d7257b9b338d3de7e2930af343b00807a9f0f1508f564e7be9484af85b8deea898a0e15d4e59917a706dff1d6eb4d00000000000000000000"])
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
pipe2(&(0x7f0000000700)={<r3=>0x0, <r4=>0x0}, 0x0)
ioctl$KVM_SET_XSAVE(r2, 0x5000aea5, &(0x7f0000000740)={"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"})
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
shmget(0x0, 0x3000, 0x1, &(0x7f000075a000/0x3000)=nil)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000600)={<r6=>0x0, @in={{0x2, 0x4e23, @multicast2=0xe0000002}}, 0x5, 0x6, 0x1, 0xfff, 0x8}, &(0x7f0000000080)=0x98)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000b40)={r6, @in={{0x2, 0x4e24, @rand_addr=0x10000}}, 0x5, 0x101, 0x6, 0xea, 0x72}, &(0x7f00000002c0)=0x98)
r7 = dup3(r5, r4, 0x0)
munlockall()
r8 = shmget$private(0x0, 0x3000, 0x10, &(0x7f0000760000/0x3000)=nil)
shmctl$IPC_RMID(r8, 0x0)
clock_gettime(0x7, &(0x7f0000000000))
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f0000460fe4)={0x0, 0x7, 0x2, 0x0, 0x4, 0x8, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x805})
ioctl$SNDRV_TIMER_IOCTL_GINFO(r4, 0xc0f85403, &(0x7f0000000c00)={{0xffffffffffffffff, 0x0, 0x3, 0x3, 0x2}, 0x81, 0x3, 'id0\x00', 'timer0\x00', 0x0, 0x6, 0x1, 0x6, 0x3})
ioctl$sock_inet6_tcp_SIOCINQ(r3, 0x541b, &(0x7f0000000040))
socket(0xf, 0x6, 0x5)
ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000280)={0x81, 0x1})
ioctl$EVIOCSABS2F(r7, 0x401845ef, &(0x7f0000000240)={0x9, 0x0, 0xfffffffffffffffd, 0x1ff, 0x4, 0x7f})
getsockopt$ax25_buf(r4, 0x101, 0x19, &(0x7f0000000140)=""/53, &(0x7f0000000180)=0x35)
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/enforce\x00', 0x10000, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000753000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, &(0x7f00000000c0)="0fc7280f080f20030f01727166ba4200b834000000ef66bad10466edb81da1fb500f23d00f21f835300000050f23f8c4c3194bfc360f20030fc76d08", 0x3c}], 0x1, 0x7, &(0x7f0000000380), 0x10000181)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r2, 0x8008ae9d, &(0x7f0000000340)=""/250)

2018/04/11 00:13:53 executing program 5:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0xc08c5336, &(0x7f00000000c0)={0x0, 0x0, 0x0, "7175657565300000000000000000000000000000000000000000000000000000000000000000001f00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer2\x00', 0x0, 0x0)

[  477.617294] RSP: 002b:00007f45bbc7bc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  477.624979] RAX: ffffffffffffffda RBX: 00007f45bbc7c6d4 RCX: 0000000000455259
[  477.632225] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000017
[  477.639471] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  477.646720] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000019
[  477.653970] R13: 0000000000000251 R14: 00000000006f6838 R15: 000000000000004d
2018/04/11 00:13:53 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x0, 0x9effffff}, 0x0)

2018/04/11 00:13:53 executing program 7:
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f00003de000)='/dev/vhost-net\x00', 0x2, 0x0)
get_mempolicy(&(0x7f0000000740), &(0x7f0000000780), 0x6e8, &(0x7f0000ffd000/0x3000)=nil, 0x4)
ioctl$int_in(r0, 0x40000000af01, &(0x7f0000c97ff8))
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x205ffa, 0x0)
ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af22, &(0x7f0000000000)={0x0, r1})
write$cgroup_subtree(r1, &(0x7f0000000700)={[{0x2d, 'io', 0x20}, {0x2f, 'cpu', 0x20}, {0x2d, 'memory', 0x20}, {0x2d, 'rdma', 0x20}, {0x0, 'cpu', 0x20}, {0x177102c55bf5cdc4, 'memory', 0x20}, {0x2d, 'io', 0x20}, {0x2f, 'rdma', 0x20}]}, 0x2e)
socket$alg(0x26, 0x5, 0x0)
recvmsg(r1, &(0x7f00000006c0)={&(0x7f0000000040)=@alg, 0x80, &(0x7f0000000500)=[{&(0x7f00000000c0)=""/31, 0x1f}, {&(0x7f0000000140)=""/190, 0xbe}, {&(0x7f0000000200)=""/109, 0x6d}, {&(0x7f0000000280)=""/61, 0x3d}, {&(0x7f00000002c0)=""/30, 0x1e}, {&(0x7f0000000300)=""/65, 0x41}, {&(0x7f0000000380)=""/151, 0x97}, {&(0x7f0000000440)=""/35, 0x23}, {&(0x7f0000000480)=""/124, 0x7c}], 0x9, &(0x7f00000005c0)=""/252, 0xfc, 0x2}, 0x10062)

2018/04/11 00:13:53 executing program 1:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e3, 0x100000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000001}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$cuse(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/cuse\x00', 0x86, 0x0)
io_setup(0x9, &(0x7f0000000040))
epoll_create1(0x80000)
r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000400)='IPVS\x00')
sendmsg$IPVS_CMD_GET_SERVICE(r0, &(0x7f00000005c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0xa00010}, 0xc, &(0x7f0000000580)={&(0x7f0000000600)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="000127bd7000fbdbdf250400000008000600530000002800050004000000080004000900000700000100080004004e220000564f334088081e02007f000000080005000000000014000300fe8000000000000000000000000000aa6f390102c1e85a4f1e07f43208000200"], 0x6c}, 0x1}, 0x20000000)
ioctl$sock_bt_bnep_BNEPGETSUPPFEAT(r0, 0x800442d4, &(0x7f0000000080)=0xf0f1)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000380)={<r2=>0x0, 0x91, 0xfff}, &(0x7f0000000240)=0x10)
getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f0000000280)={0x5, 0x2, 0x9a, 0x9, r2}, &(0x7f0000000340)=0x10)
r3 = syz_open_dev$dmmidi(&(0x7f0000000000)='/dev/dmmidi#\x00', 0x1, 0x8040)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000700)='IPVS\x00')
r4 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x39}, 0x0, 0xa, 0xffffffffffffffff, 0x0)
stat(&(0x7f0000000300)='./file0\x00', &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
finit_module(r4, &(0x7f0000000180)='/dev/cuse\x00', 0x8fce8afa95005fe6)
ioctl$TUNSETOWNER(r3, 0x400454cc, r5)
r6 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000140)='/dev/rfkill\x00', 0x101001, 0x0)
writev(r6, &(0x7f00000000c0)=[{&(0x7f0000000000)="0bf5430f000319", 0x7}], 0x1)
sendmsg$IPVS_CMD_NEW_DEST(r3, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20000001}, 0xc, &(0x7f0000000200)={&(0x7f0000000800)=ANY=[@ANYBLOB="f8000000", @ANYBLOB="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"], 0x2}, 0x1, 0x0, 0x0, 0x4091}, 0x1)

2018/04/11 00:13:53 executing program 0:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa21, 0x0, 0x0, 0x5, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x5, 0x20}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet(0x2, 0x3, 0x1)
setsockopt$netlink_NETLINK_RX_RING(0xffffffffffffffff, 0x10e, 0x6, &(0x7f0000003000)={0x0, 0x0, 0x2}, 0x10)
r1 = add_key$keyring(&(0x7f0000000200)='keyring\x00', &(0x7f0000000240)={0x73, 0x79, 0x7a, 0x0}, 0x0, 0x0, 0xfffffffffffffffa)
socket$inet(0x2, 0x800, 0x7ff)
add_key$keyring(&(0x7f00000000c0)='keyring\x00', &(0x7f0000000100)={0x73, 0x79, 0x7a, 0x1}, 0x0, 0x0, r1)
setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x23, &(0x7f0000003000)={{{@in=@multicast2=0xe0000002, @in=@multicast1=0xe0000001}, {0x0, 0x401}}, {{@in6}, 0x0, @in6=@loopback={0x0, 0x1}}}, 0xe8)
r2 = syz_open_dev$adsp(&(0x7f0000000300)='/dev/adsp#\x00', 0x0, 0x800)
setsockopt$netlink_NETLINK_PKTINFO(r2, 0x10e, 0x3, &(0x7f0000000080)=0x56, 0x4)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r2, 0x84, 0x6b, &(0x7f0000000280)=[@in6={0xa, 0x4e24, 0x20, @loopback={0x0, 0x1}, 0xb75}, @in={0x2, 0x4e23, @local={0xac, 0x14, 0x14, 0xaa}}, @in6={0xa, 0x4e23, 0xfffffffffffffffc, @remote={0xfe, 0x80, [], 0xbb}, 0x2d}, @in={0x2, 0x4e24, @multicast2=0xe0000002}], 0x58)
setsockopt$inet_MCAST_LEAVE_GROUP(r0, 0x0, 0x2d, &(0x7f0000000140)={0x2, {{0x2, 0x0, @multicast2=0xe0000002}}}, 0x90)

2018/04/11 00:13:53 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c7465720000000000000000000007fffffe00", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:53 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x0, 0xc00e}, 0x0)

2018/04/11 00:13:53 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={'filter\x00\x00\x00\x00\x00\x00\x00\x00\x00@\x00', 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:53 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x0, 0xc00e0000}, 0x0)

[  477.828600] FAULT_INJECTION: forcing a failure.
[  477.828600] name failslab, interval 1, probability 0, space 0, times 0
[  477.840013] CPU: 0 PID: 31527 Comm: syz-executor2 Not tainted 4.16.0+ #18
[  477.846948] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  477.857334] Call Trace:
[  477.859943]  dump_stack+0x1b9/0x294
[  477.863590]  ? dump_stack_print_info.cold.2+0x52/0x52
[  477.868793]  ? perf_trace_lock_acquire+0xe3/0x980
[  477.873661]  should_fail.cold.4+0xa/0x1a
2018/04/11 00:13:53 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c7465720000000000000000000300", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:53 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x0, 0x8100}, 0x0)

[  477.877750]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  477.882868]  ? kasan_kmalloc+0xc4/0xe0
[  477.886782]  ? kasan_slab_alloc+0x12/0x20
[  477.890939]  ? kmem_cache_alloc+0x12e/0x760
[  477.895356]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  477.900307]  ? kvm_mmu_load+0x21/0x10e0
[  477.904289]  ? vcpu_enter_guest+0x3aa1/0x6070
[  477.908787]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  477.913833]  ? graph_lock+0x170/0x170
[  477.917643]  ? do_syscall_64+0x29e/0x9d0
[  477.921720]  ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
2018/04/11 00:13:53 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x0, 0x5a9}, 0x0)

2018/04/11 00:13:53 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c7465720000000000009000", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

[  477.927225]  ? find_held_lock+0x36/0x1c0
[  477.931310]  ? __lock_is_held+0xb5/0x140
[  477.935404]  ? check_same_owner+0x320/0x320
[  477.939741]  ? rcu_note_context_switch+0x710/0x710
[  477.944698]  __should_failslab+0x124/0x180
[  477.948982]  should_failslab+0x9/0x14
[  477.952810]  kmem_cache_alloc+0x2af/0x760
[  477.956970]  ? alloc_pages_current+0x114/0x210
[  477.961570]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  477.966516]  mmu_topup_memory_caches+0x2fa/0x3a0
[  477.971306]  kvm_mmu_load+0x21/0x10e0
[  477.975121]  ? __might_sleep+0x95/0x190
[  477.979104]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  477.984660]  vcpu_enter_guest+0x3aa1/0x6070
[  477.989001]  ? kvm_vcpu_ioctl+0x1e2/0x12e0
[  477.993261]  ? kvm_set_msr_common+0x2660/0x2660
[  477.997949]  ? perf_trace_lock+0x900/0x900
[  478.002196]  ? __lock_acquire+0x7f5/0x5130
[  478.006446]  ? vmx_vcpu_reset+0x1030/0x1030
[  478.010783]  ? graph_lock+0x170/0x170
[  478.014594]  ? __lock_acquire+0x7f5/0x5130
[  478.018846]  ? perf_trace_lock_acquire+0xe3/0x980
[  478.023702]  ? __lock_is_held+0xb5/0x140
[  478.027771]  ? lock_acquire+0x1dc/0x520
[  478.031745]  ? kvm_arch_vcpu_ioctl_run+0x234/0x1690
[  478.036772]  ? lock_release+0xa10/0xa10
[  478.040752]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  478.046042]  ? kvm_arch_dev_ioctl+0x5f0/0x5f0
[  478.050579]  ? preempt_notifier_dec+0x20/0x20
[  478.055297]  kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  478.060148]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  478.065189]  kvm_vcpu_ioctl+0x79d/0x12e0
[  478.069262]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  478.074986]  ? graph_lock+0x170/0x170
[  478.078797]  ? find_held_lock+0x36/0x1c0
[  478.082876]  ? lock_downgrade+0x8e0/0x8e0
[  478.087194]  ? kasan_check_read+0x11/0x20
[  478.091349]  ? rcu_is_watching+0x85/0x140
[  478.095502]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  478.100690]  ? __fget+0x40c/0x650
[  478.104126]  ? match_held_lock+0x881/0x8b0
[  478.108353]  ? expand_files.part.8+0x9a0/0x9a0
[  478.112919]  ? kasan_check_write+0x14/0x20
[  478.117150]  ? __mutex_unlock_slowpath+0x180/0x8a0
[  478.122080]  ? wait_for_completion+0x870/0x870
[  478.126649]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  478.131825]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  478.137530]  do_vfs_ioctl+0x1cf/0x1650
[  478.141405]  ? ioctl_preallocate+0x2e0/0x2e0
[  478.145799]  ? fget_raw+0x20/0x20
[  478.149237]  ? __sb_end_write+0xac/0xe0
[  478.153203]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  478.158720]  ? fput+0x130/0x1a0
[  478.162396]  ? ksys_write+0x1a6/0x250
[  478.166184]  ? security_file_ioctl+0x94/0xc0
[  478.170596]  ksys_ioctl+0xa9/0xd0
[  478.174056]  SyS_ioctl+0x24/0x30
[  478.177404]  ? ksys_ioctl+0xd0/0xd0
[  478.181022]  do_syscall_64+0x29e/0x9d0
[  478.184913]  ? vmalloc_sync_all+0x30/0x30
[  478.189059]  ? _raw_spin_unlock_irq+0x27/0x70
[  478.193541]  ? finish_task_switch+0x1ca/0x820
[  478.198033]  ? syscall_return_slowpath+0x5c0/0x5c0
[  478.202949]  ? syscall_return_slowpath+0x30f/0x5c0
[  478.207869]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  478.213220]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  478.218053]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  478.223231] RIP: 0033:0x455259
2018/04/11 00:13:53 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x0, 0xa905000000000000}, 0x0)

[  478.226401] RSP: 002b:00007f45bbc7bc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  478.234099] RAX: ffffffffffffffda RBX: 00007f45bbc7c6d4 RCX: 0000000000455259
[  478.241350] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000017
[  478.248603] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  478.255861] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000019
[  478.263111] R13: 0000000000000251 R14: 00000000006f6838 R15: 000000000000004e
2018/04/11 00:13:54 executing program 4:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0x80045300, &(0x7f00000000c0)={0x0, 0x0, 0x0, "71756575653000000000000000000000000000000000000000000000fdfdffff00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))

2018/04/11 00:13:54 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x0, 0xffffff7f00000000}, 0x0)

2018/04/11 00:13:54 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={'filter\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\a\x00', 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:54 executing program 0:
lsetxattr(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=@known='security.selinux\x00', &(0x7f0000000100)='cgroup%keyring\x00', 0xf, 0x1)
r0 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001580)={'lo\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000300)={&(0x7f0000000040)={0x10}, 0xc, &(0x7f0000000000)={&(0x7f0000000240)=@ipv6_newaddr={0x40, 0x14, 0x111, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r1}, [@IFA_CACHEINFO={0x14, 0x6, {0x0, 0x6e4}}, @IFA_ADDRESS={0x14, 0x1, @loopback={0x0, 0x1}}]}, 0x40}, 0x1}, 0x0)

2018/04/11 00:13:54 executing program 7:
io_setup(0x80, &(0x7f0000990ff8)=<r0=>0x0)
r1 = syz_fuseblk_mount(&(0x7f0000631000)='./file0\x00', &(0x7f0000947ff8)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_open_dev$dmmidi(&(0x7f0000000000)='/dev/dmmidi#\x00', 0xffff, 0x2000)
io_submit(r0, 0x2, &(0x7f0000000080)=[&(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, r1}, &(0x7f0000000800)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000700), 0xffffffffffffff4e}])

2018/04/11 00:13:54 executing program 2 (fault-call:26 fault-nth:79):
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/pfkey\x00', 0x1, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_GET_MSR_INDEX_LIST(r1, 0xc004ae02, &(0x7f0000000440)=ANY=[@ANYBLOB="010000e8a806846728a902d7836e000000000090c8bb2c64ee855b03d6b79f01fd689aefd896253378642249ab91395ab66a034c399ce7623518b671b773347d0fd26ec81ac69a995c8ce192812ee8050c3814b9781ac68ebaded833a2c6c838d8647586e9c6e9a5856a915e647163631e9ebb8c6af6c63986f87e1cb1e65dda52219878b2bf0aa3c41d7257b9b338d3de7e2930af343b00807a9f0f1508f564e7be9484af85b8deea898a0e15d4e59917a706dff1d6eb4d00000000000000000000"])
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
pipe2(&(0x7f0000000700)={<r3=>0x0, <r4=>0x0}, 0x0)
ioctl$KVM_SET_XSAVE(r2, 0x5000aea5, &(0x7f0000000740)={"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"})
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
shmget(0x0, 0x3000, 0x1, &(0x7f000075a000/0x3000)=nil)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000600)={<r6=>0x0, @in={{0x2, 0x4e23, @multicast2=0xe0000002}}, 0x5, 0x6, 0x1, 0xfff, 0x8}, &(0x7f0000000080)=0x98)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000b40)={r6, @in={{0x2, 0x4e24, @rand_addr=0x10000}}, 0x5, 0x101, 0x6, 0xea, 0x72}, &(0x7f00000002c0)=0x98)
r7 = dup3(r5, r4, 0x0)
munlockall()
r8 = shmget$private(0x0, 0x3000, 0x10, &(0x7f0000760000/0x3000)=nil)
shmctl$IPC_RMID(r8, 0x0)
clock_gettime(0x7, &(0x7f0000000000))
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f0000460fe4)={0x0, 0x7, 0x2, 0x0, 0x4, 0x8, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x805})
ioctl$SNDRV_TIMER_IOCTL_GINFO(r4, 0xc0f85403, &(0x7f0000000c00)={{0xffffffffffffffff, 0x0, 0x3, 0x3, 0x2}, 0x81, 0x3, 'id0\x00', 'timer0\x00', 0x0, 0x6, 0x1, 0x6, 0x3})
ioctl$sock_inet6_tcp_SIOCINQ(r3, 0x541b, &(0x7f0000000040))
socket(0xf, 0x6, 0x5)
ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000280)={0x81, 0x1})
ioctl$EVIOCSABS2F(r7, 0x401845ef, &(0x7f0000000240)={0x9, 0x0, 0xfffffffffffffffd, 0x1ff, 0x4, 0x7f})
getsockopt$ax25_buf(r4, 0x101, 0x19, &(0x7f0000000140)=""/53, &(0x7f0000000180)=0x35)
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/enforce\x00', 0x10000, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000753000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, &(0x7f00000000c0)="0fc7280f080f20030f01727166ba4200b834000000ef66bad10466edb81da1fb500f23d00f21f835300000050f23f8c4c3194bfc360f20030fc76d08", 0x3c}], 0x1, 0x7, &(0x7f0000000380), 0x10000181)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r2, 0x8008ae9d, &(0x7f0000000340)=""/250)

2018/04/11 00:13:54 executing program 1:
mremap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f0000000000/0x1000)=nil)
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/pfkey\x00', 0x800, 0x0)
getsockopt$bt_BT_SNDMTU(r0, 0x112, 0xc, &(0x7f0000000140)=0x8, &(0x7f0000000180)=0x2)
syz_open_dev$loop(&(0x7f00000001c0)='/dev/loop#\x00', 0x7, 0x2)
r1 = openat$cgroup_subtree(0xffffffffffffffff, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, r1, 0x39)
r2 = accept4$nfc_llcp(0xffffffffffffffff, 0x0, &(0x7f0000000080), 0x800)
lseek(r2, 0x0, 0x4)
r3 = syz_open_dev$mouse(&(0x7f0000000240)='/dev/input/mouse#\x00', 0x4, 0x300)
ioctl$KVM_ASSIGN_PCI_DEVICE(r3, 0x8040ae69, &(0x7f0000000040)={0x7, 0x5, 0xf9, 0x2, 0xae13})

2018/04/11 00:13:54 executing program 5:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0xc08c5336, &(0x7f00000000c0)={0x0, 0x0, 0x0, "7175657565300000000000000000000000000000000000000000000000000000000000000000000000000000001f00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer2\x00', 0x0, 0x0)

[  478.853257] FAULT_INJECTION: forcing a failure.
[  478.853257] name failslab, interval 1, probability 0, space 0, times 0
[  478.864582] CPU: 1 PID: 31580 Comm: syz-executor2 Not tainted 4.16.0+ #18
[  478.871517] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  478.880873] Call Trace:
[  478.883484]  dump_stack+0x1b9/0x294
[  478.887126]  ? dump_stack_print_info.cold.2+0x52/0x52
[  478.892332]  ? __save_stack_trace+0x7e/0xd0
[  478.896675]  should_fail.cold.4+0xa/0x1a
[  478.900749]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  478.905863]  ? kasan_kmalloc+0xc4/0xe0
[  478.909768]  ? kasan_slab_alloc+0x12/0x20
[  478.913922]  ? kmem_cache_alloc+0x12e/0x760
[  478.918253]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  478.923195]  ? kvm_mmu_load+0x21/0x10e0
[  478.927176]  ? vcpu_enter_guest+0x3aa1/0x6070
[  478.931689]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  478.936705]  ? graph_lock+0x170/0x170
[  478.940492]  ? do_syscall_64+0x29e/0x9d0
[  478.944544]  ? entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  478.949901]  ? find_held_lock+0x36/0x1c0
[  478.954733]  ? __lock_is_held+0xb5/0x140
[  478.958792]  ? check_same_owner+0x320/0x320
[  478.963264]  ? rcu_note_context_switch+0x710/0x710
[  478.968313]  __should_failslab+0x124/0x180
[  478.972538]  should_failslab+0x9/0x14
[  478.976335]  kmem_cache_alloc+0x2af/0x760
[  478.980473]  ? alloc_pages_current+0x114/0x210
[  478.985164]  ? mmu_topup_memory_caches+0x2fa/0x3a0
[  478.990082]  mmu_topup_memory_caches+0x2fa/0x3a0
[  478.994831]  kvm_mmu_load+0x21/0x10e0
[  478.998620]  ? __might_sleep+0x95/0x190
[  479.002589]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  479.008119]  vcpu_enter_guest+0x3aa1/0x6070
[  479.012430]  ? kvm_vcpu_ioctl+0x1e2/0x12e0
[  479.016668]  ? print_usage_bug+0xc0/0xc0
[  479.020723]  ? kvm_set_msr_common+0x2660/0x2660
[  479.025382]  ? vmx_vcpu_load+0xaed/0xff0
[  479.029432]  ? __lock_acquire+0x7f5/0x5130
[  479.033662]  ? vmx_vcpu_reset+0x1030/0x1030
[  479.037969]  ? graph_lock+0x170/0x170
[  479.041758]  ? __lock_acquire+0x7f5/0x5130
[  479.045983]  ? debug_check_no_locks_freed+0x310/0x310
[  479.051158]  ? print_usage_bug+0xc0/0xc0
[  479.055210]  ? __lock_is_held+0xb5/0x140
[  479.059264]  ? lock_acquire+0x1dc/0x520
[  479.063224]  ? kvm_arch_vcpu_ioctl_run+0x234/0x1690
[  479.068231]  ? lock_release+0xa10/0xa10
[  479.072195]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  479.077467]  ? kvm_arch_dev_ioctl+0x5f0/0x5f0
[  479.081955]  ? preempt_notifier_dec+0x20/0x20
[  479.086448]  kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  479.091280]  ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690
[  479.096293]  kvm_vcpu_ioctl+0x79d/0x12e0
[  479.100348]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  479.106050]  ? graph_lock+0x170/0x170
[  479.109852]  ? find_held_lock+0x36/0x1c0
[  479.113911]  ? lock_downgrade+0x8e0/0x8e0
[  479.118056]  ? kasan_check_read+0x11/0x20
[  479.122190]  ? rcu_is_watching+0x85/0x140
[  479.126326]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  479.131571]  ? __fget+0x40c/0x650
[  479.135017]  ? match_held_lock+0x881/0x8b0
[  479.139246]  ? expand_files.part.8+0x9a0/0x9a0
[  479.143816]  ? kasan_check_write+0x14/0x20
[  479.148046]  ? __mutex_unlock_slowpath+0x180/0x8a0
[  479.152965]  ? wait_for_completion+0x870/0x870
[  479.157536]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  479.162724]  ? kvm_uevent_notify_change.part.29+0x440/0x440
[  479.168423]  do_vfs_ioctl+0x1cf/0x1650
[  479.172305]  ? ioctl_preallocate+0x2e0/0x2e0
[  479.176701]  ? fget_raw+0x20/0x20
[  479.180143]  ? __sb_end_write+0xac/0xe0
[  479.184121]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  479.189646]  ? fput+0x130/0x1a0
[  479.192913]  ? ksys_write+0x1a6/0x250
[  479.196709]  ? security_file_ioctl+0x94/0xc0
[  479.201110]  ksys_ioctl+0xa9/0xd0
[  479.204565]  SyS_ioctl+0x24/0x30
[  479.207923]  ? ksys_ioctl+0xd0/0xd0
[  479.211540]  do_syscall_64+0x29e/0x9d0
[  479.215413]  ? vmalloc_sync_all+0x30/0x30
[  479.219551]  ? _raw_spin_unlock_irq+0x27/0x70
[  479.224041]  ? finish_task_switch+0x1ca/0x820
[  479.228526]  ? syscall_return_slowpath+0x5c0/0x5c0
[  479.233445]  ? syscall_return_slowpath+0x30f/0x5c0
[  479.238377]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  479.243732]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  479.248582]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
2018/04/11 00:13:54 executing program 7:
r0 = socket(0x40000000015, 0x805, 0x0)
bind$inet(r0, &(0x7f00000a9000)={0x2, 0x0, @loopback=0x7f000001}, 0x10)
socket$vsock_stream(0x28, 0x1, 0x0)
getsockopt$inet_mreqsrc(r0, 0x0, 0x2d, &(0x7f0000000100)={@multicast2, @rand_addr, @multicast2}, &(0x7f0000000080)=0xc)
sendto$inet(r0, &(0x7f0000000080), 0x0, 0x0, &(0x7f00000000c0)={0x2, 0x1, @loopback=0x7f000001}, 0x10)

2018/04/11 00:13:54 executing program 1:
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/schedule_icmp\x00', 0x2, 0x0)
setsockopt$inet6_buf(r0, 0x29, 0x2df, &(0x7f0000000080)="9d86d2cc5ed2ad1282995f819c2cdabc155d124d75251e5bb8ee009b9ced0e42086b330a586bebec8f8203f205f4353c61435587f2b8323a2e736830b3c747f3196d56c5dd2a786c62ebea4aaadf23c470a2d7009d149276033de618f911a1e7d7adc2f30b99eae2bd01c8d2023d596c24eff85a08a5822ce6570c93baf620957526f19858f83d04ee0cc27e5ae3bc973937e7a73a58492319548e5f82f8b1c21ced66f8268d06af0db6fbd944f6", 0xae)
syz_open_procfs(0x0, &(0x7f0000314f8c)='oom_score\x00')
socket$rds(0x15, 0x5, 0x0)
openat$autofs(0xffffffffffffff9c, &(0x7f0000000280)='/dev/autofs\x00', 0x101000, 0x0)
readv(r0, &(0x7f0000000180), 0x100000000000001a)
lgetxattr(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)=@known='com.apple.system.Security\x00', &(0x7f00000001c0)=""/173, 0xad)

2018/04/11 00:13:55 executing program 0:
pipe(&(0x7f0000000100)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f0000000180)=0x1ff, 0x4)
r1 = syz_open_dev$sndctrl(&(0x7f0000000040)='/dev/snd/controlC#\x00', 0xfffffffffffdffd, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(r1, 0xc1205531, &(0x7f0000000140)=0x1)
r3 = semget(0x0, 0x0, 0x180)
semctl$SETVAL(r3, 0x2, 0x10, &(0x7f0000000080)=0x4e5)
ioctl$DRM_IOCTL_ADD_MAP(r2, 0xc0286415, &(0x7f00000000c0)={&(0x7f0000feb000/0x12000)=nil, 0x7, 0x3, 0x58, &(0x7f0000ff5000/0x4000)=nil, 0x4})

2018/04/11 00:13:55 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x0, 0x400300}, 0x0)

2018/04/11 00:13:55 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={'filter\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00?\x00', 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

[  479.253755] RIP: 0033:0x455259
[  479.256931] RSP: 002b:00007f45bbc7bc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  479.264629] RAX: ffffffffffffffda RBX: 00007f45bbc7c6d4 RCX: 0000000000455259
[  479.271883] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000017
[  479.279136] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  479.286391] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000019
[  479.293645] R13: 0000000000000251 R14: 00000000006f6838 R15: 000000000000004f
2018/04/11 00:13:55 executing program 7:
perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0xe2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000}, 0x0, 0x1, 0xffffffffffffffff, 0x0)
socket$inet_smc(0x2b, 0x1, 0x0)

2018/04/11 00:13:55 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x0, 0xffffff7f}, 0x0)

2018/04/11 00:13:55 executing program 1:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000b9bff0)={0x2, 0x4e21, @multicast1=0xe0000001}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000080)='dctcp\x00', 0x6)
sendto$inet(r0, &(0x7f0000fa0fff), 0xffffffffffffffbb, 0x20020003, &(0x7f0000385ff0)={0x2, 0x4e21, @loopback=0x7f000001}, 0x10)
exit(0x0)
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x80045300, &(0x7f0000001540))
sendto$inet(r0, &(0x7f0000001200)="2c1ff58f40334ca8120240fba4053279f86a0ff5b10466ce4f11517e0112b3f54c77514c848c63e566e618db91efcd9cc6d4484e19bee23b992588d72b5e205f84243227a70e6c60d5719c8698995c6cae1db9e1d829737880d2552003c9f1ca64c6590f1b65231981371470ec93", 0x6e, 0x8890, &(0x7f0000001280)={0x2, 0x4e21, @multicast1=0xe0000001}, 0x10)
sendmsg(r0, &(0x7f0000001500)={0x0, 0x0, &(0x7f00000011c0)=[{&(0x7f00000000c0)="621e74590b91bddf1d2f8ccd327db3d619cbd4cdada40b4d0d34d5c78d2c2f937d51756c84b5b7d9c21769aa96d1cb3edc20281f5d69a78658cafc80c4a3b58d679514c24a0e112c7c9e35bad6b04ef13aa18f8cd238298eee6df9fa32662d7e7a3ec88879df9df58903481425fc98ca8fa1e51fb255b4af656797957525efb20e8c67fa6d3b61892f2c35c03b9b52938d8a49c2347acab0aa967040ad5c9345adddd0bfaa8a8393fb94d4a79ce26b4d8abe113fa1327d26b1384500756894c7435ef0063dfac0ef00784c711a80a2e2578a", 0xd2}, {&(0x7f0000000000)="70847429e06c0b8afbd6566c54c5d7a46913de3ecfc58c7c629d9da6e595b30f9ea352f4fc3e95f306e9670a485a8e09bee4569d76e6666c928c1c2ac2cd4b6607a7a4afe1731d6df91559b7303bc3be2d2af842b4", 0x55}, {&(0x7f00000001c0)="ac18f32b17f5fb95ab7475880c4303b9777bc25168050399f75fdcd4b9de1130589873403b6034f4e66f5c90ab8cfd3b619593c6ab038817b5aa2ef0188e8a09e609756e99b185973473666f1ff87b093d49625edb2016949e52ec832818951b5edc693e5c09d36a9272d99e4d7479d614e4ff0bf46a8d285e54ab7e0797c38f82e194344107a1e969aa8c47855ccd96110108065a45e4c7b6c1cd18d53244f23c200bdebbb9dbb7e84342e9ccb17ed22f2db1b9d9c9fec5029f939ec8b840ee033bbdf344d34deb64ab1821943aa90a83a3995d947144169a90cb300945dedf70bb2cb374f743b5e1fdcf64ca565ea9365cfcf5a331dc379d9fafd80be42f5bcc5d905ce3a36ff84622dc83ea5af4f44201233da89cbb9e978021e762671001ac9d8c324952ba2175cd792e2eb01490eae81346a35ad48eff782d3caedb18ca6ede4869e077d856c55ab57bfe4d645196133808eceb27f11be92a3f313762269f0f15a03bfb4936f107fa73dbf21415e00192f7a6f11d96b4a084061aeba934adc533f04695fa1afb977e396c7590bdc2e90e13ae80d02962494782d088a4e1bc0e99d395fc2b037a0b767d7e3dc9da686110bdec4820d52524a5cb18f9e73f0eca7f45476413c1fa7d6944495e29809b60cf03a021a30c96ee2eac1d290f51a6660fe6e7538283b8cc0ef1e1418bde54d94ff4f6d3e749f2dcbdbe6542a2cfc4b6ffdf4c2edb31a72113d9b977f0ba56a3b3fcb1a87a13625a001b52afe77157e09fc9233d50ca3c3ad216e3a1fc03089605977ba4e0c4df5a2317a41416812276043d0970a63a96a61cdd1e21f886c48337009a1b3a9684ef52f82fe39011698a3e50fde880d2669172378335f1d9a161607ea63e944195cddcb351ed236dae5342ce58dae6030511312f9218260aca408cdef4cfacb0c4298897c8f67e77c73757a8c43417049cc9b8677b4c91e22b1e6d74f4ac90c956678f9e95145927b6d29f6cc6c0b3b348ffc2f23f92d0fb240ed673b0d48c7216a5fb71db0ceeac612f94110b410a0db72235b308eabf2052af6d692ccb1a394586e5e4242533c7ff5fb70badd18bd08d35c58a70e315d2fd7570d9a94bf3ded13bc0db92f966f3f51397f8cffe94dfbf7b7c9555fcba6a15f03d333b6854ea5b086adb5cc2816dbf3449798ebe59c2c1aebeee6d03be4cdd1f6ba86fe5a843da467f28c14d7cc5e355df1aa3091481b860723c5224d7d2138cc8e7ecb98618528778d59f93369d772e94a9d0605f0a0e0ffc0a64667d0d55c299e5282c69e57c334ddf0babe395e913aa6c56cc25710a79a587e42d47158a00404493eb2632eec709e99edd7231f140bfa8703de382d150da6b90aa2a392848ca465ee3566753cc05dcdee8c77dc157ff1d09abee880994df67e66ccab09570424391db6b6d56fea5063cadcc7b2fec83036658cf9545bb036421ee009c290f1ca454cea7b0f43300de835723249d7cbbb73dbd0cee5b3a7f093abc7a0153c516371a730b2acded2899be644d60d024d72487beec0cb76afa4c1de8a1d5470f283f4d76084c9e7e6c243110d38203ddffb7d64b175065ed1f39a0b207d368975191c21e1d76dbb97bc5ec3a952eb2b256ec253d83c252249e5c779b973f337cc50f4db1253e643226a11e7ae7a0845900a256cf66ff8c98106b010331a818201345879162a9605d72d46a743fb1a0c8503e2c13bd8cc460fe8c1f90b7149351be65e6057e7950ae032c58b317d98d6b16222144e75c7984fb98f504f391be4d36f3edb55bb3b1912ca85e65e391e8ed180777a8df07370f662053ce8ff79a9c6177b0f62225fcd55a99787a15b66ec97ce3650781efafb7253f705353483374f06b8cca2f229356ac5b162868db31e8d621792580c24d03a130837e85a0103e8e04f0a1f831939c4e1e7250b0a035ff1ad611d84795816409dd0847e3d0f874b6a802ca2ae88b25c9b23306a5fde6ff8f218f56fddcf2574ed1c1a6a4ab1fefe692557927dfcabd00fa1ff80956747df654cea773e6ed232094a4ddc7c5c0ef027088fe1241450cc1d2b97ec814fdf83bb74f9c121b0ad39ac5f94247523e69b03df7b22b10133d359d20552d2e4327fa8ec6460f8c884db86792d6c16d9b27503f4e8a29648fc7640743d89adca469ba8dc01327652d561911d6a67b6d922831abf39ddbcdce40f905fdc5ff80385a44d1b59379f476d640eb43a3b43eff390fdac7bb6fd5bbb594032838d114a03292f9167b5339b773be92c7e0d9fe4c742b68fce493d7c1f20adedd50fab58c9341f45cbf363eed96006f0c72edd9b052a46ea5b9883bc981428c342b6b814cb32cf4650fb986230b2f036ead07f9c2fd37aa949b81cbca1af10d360f0775cff6136d514186de49c5091de3c0ce50659cbd44cbd6f312655a4751a57760cba2bfa7d9bc9f4e772e65456184c15131ac4f89fed56c12eed4869886ff8e71f9059556d57a7b757e34b299ac39b89561ab08364840eb8574beafeed7e27a7645c69ccaa60eb58ab6fc9f32650b7481b2fdb8ae421e22bd87c29f2b838515571c36e3675ebfb12a9f2dcdcc1895b4da92d1f6c02bd7330dcaa27903999f5b7c41a9165b301fae18e859b74d89081bc98f62d6257fae712f04cbe31b1df8aa72c1eb647ba211dceccae628125dac6d479451ee0af1eb7fe53213473079ea22285ba22c35097627a838f3eec1b3e087749ef53c1fb9bf95314cddcf67452cd78939e1991fb1cf155dcece6c4b748bbbb017b35efa040f4973197b98e37b6e936103508073ce1c126c74766e374f99894758405867aaa4e688d99df71879682abe38313c701955d349054623575a2da33a90e8eb27ab4ea25a403c35acb9a5430e09dea25d05efb3d27298df4492b4aa3f3735c90c52a421f6cfc2be72ece4d4897eab386ffdde313dc75b5c6424c5cd689586e6205e11ebc13ddc636bed6ec3e31dbacc858672e6c096175ae1966f60c81868fa56aabb4912a7afbdbe9062a2f86ef91c64e692d6d75c5be4f4f2c3741804ea1d106e40eca9bb0adf2d1023aced7fef96c0bf8465735b095432741c9e612895b207fcc5e5fc64ed87f2eaebb19c14d18836353512cfe8c09b622f2505d5d5ad0d011b9562ec1fc1d94a29c486713dabf45357c3458760b07b07f0ed5b6c1156f4ef1988a54e35f6b8fb6b7b040a940b6c4dcdb95d6dabe5ccfa86267023813568e605b4d69e141f37308e6a34190986fc5978ecd580a40546528f79739374a69be629dbe2c537ccdf31e90a1476e1f6dda2c8f2f2992535081ff6ad350535cd3437456af11f124ef4e364b336c66d2adcbb9bd9866af6ef7610a4a503248f26f114c572f75b7f450532c410e6a68fb432a0646045ff0f47e223c905e355f526a75f82084f5e9afc87687a071b904fe7517ccf206b8cd788d7f7c3c5fd3fbf76afc297f3922f16d50dedd1cf98e00a3ef1e326abddcd561b3a10fa05b541feebf707e5a764179accdcb95ada98c6c13a28b012f7822cd247d436f7960c1bc22bb6e53ed6a9789ba8e0f4f21316b70f3d8cfd654030de4124b76bdbf3efa300d12a260c62ebaa4a7b4d11265db0a9051b541ab51b12a56d806aacbc4a1a4ccc68810168c260effc3ce9c2c023da77e4f5196a033c48573ca6032fca72516db6395d8846af7acc361c4d8187206c6e37713e4d8d18b3f66535a64e1007edc7af5952880a3d34c7a62b9c30b5e7b40c033184f60479456af35e8a98e66f4f1ddc58c08545865615c1ceb9cf079e8f62002e96a53db34617b9f661ab2d4770b0163608af8dbbe1a8693af3c46586a91bf98bfb36357eb4284670b7a35d3298b04905949b9e6fbe857d14dacb739dfe233a1b4fdd9abb7fc1727fc1ce7ccff29db0de4b97f0ffa13d37b175e559a3838c0a59eb766aa44a0582efdb541190743e4cc14588c34a3d94cbc916a1578c8f04748807605b1e31d46ae6dd7c372c338656121c70b01807316746ca937043bb58f7c1bbd8c4ae49c09f7744daaf1c8feccdd8e433f2a88a7d4df5a16fabcf7de67923872b42a31d26b20317d4a8f844eea3a058440263b7c8169c6634b94521f74dacb2ca75e0bed9ccec7e2ca9297b28b29f18add1e73f7d36d39074a2fbe53013bafb8977381f7b4bcaedb07c3da3c4303566dc102ed25965add9c55f640edddbf3f2a3891425d898e04a986968aa3841eaa0c1a92cd9336d4ba27bb343d927647ca6f9fbe36fcecd5f38a4d057f2f34ae27ad1e5ea1919bef9e73cd6975f4285015b1bb75b8b78c50fa838aa57e24302ba1c8369fcd360da8fddad24a9717f7d3da46b34a01894b006da11a70ccd8def6c90ec08c035cca1469f3856cff2f4c17fc22f683244da793b7cc12a7d5e7e83ada7faae6e26e569806c36edc6d39f2a59d649732386cca105617c629b737eb7a449938d2d4e67a1ff153e3258a14909f8ba0d5f140924488048237ed491ee5fcfad1a8dd5cfba16b6ae3f4f84a05f1dcc091be9193e7b233a025ae7f4689c6a71424239f2045698984b75d0e9abda366e82f3f4c425388e0bfceacd4d2bbd372e7bfce0bedbcb033510007f1d74ae6ac6e0a43bee97cc92f8e389eb0261b5802501eb7f52f9319c872e40425fb9f322e188b8852c02d20f1fa51584464876788db1e8d69904f5b2b9d30ebe5472dbcefef051011e2419d192333adfbc5aba8411d943dbf22695a98bd14dafa53008a93e492ba78782a84b62151c07496da3d30c16b32e096f7c8bee20d665ae0969d76f24129ef973a9d444d47ec7610420606fe29994b1b85296b8a7b809f29fe806be04a5b2bf02b84e7e7b4c6a65def75c26696a256746706a1314b966392c89b01aa772c8d7956f315a905e5bdf706e3802fffcc474978c70c4aaae2a64dae2bff19c84e65618b759af6df36d15d74f7a8fb28557ac8c3bd4f53fb62fee44796ae9f9f0dd9e97a8b88262ba29fb46274d8273b28b7a6bce9f226c8685d033746f7caf79239ecd44fb8a37ab7de624e92888bd98e658856880e9e40579922424696a313bfcfb719dd5fd513d76698cb4c66ec09a7eda519265740de67eb8e4bf362a0ad4274bc1f3f5e130a1a5a2997aea23102f16c1a140a2339febb3678bf2a52e27ce0fba82348b3427cb2d47f10b23f3f28d0f71594e39b2f1f92738e1825d05db1739ac45695870ca4ec4d7808e5497aa0d65e88ca3ffedb7d21c5d599f761f55d19c6a41c0ace7d53e36c4b7b037571556e0efbcfeef9e917e252f7e9ac80e4c73204b413991d1410d499de2918609842ab234beb9b66eeda04c0f5ee148359c129a60d0d4bc1d18be8ac1dca448170486c5ac58ae5e67c2b13eca5b64f3579d5dcccaf68e08a27d537aee6d9de6b1bee86c28f466dd4600089529c15b58ab7bb25c0c9014737cd4b252a5505b52e46711f9d7c775d3e6fed05beb17f67ba613fb8815a7e48a49fef9e9df6e65e538168a26207c5d7b242173005e95bb5c72db955b1893b15f47482331fcdd037f5716fe6714b035ed5f42e51fa023bf0a1445f3ac338b2be06cedd1b682f265933649b60a6041eff52abe79f4f4df29cd9dc35295e790d806140abe1b89002dac8dd284db0be7cdaecdbd3aec402e8f1f5b69b34f54999143c41c58e02a4fdf09aba7e024d89dd7f2388a4affe885e9508aae37eab4ec0c3832bb58062b06bb07b19fc279e0d13be8d1d67ff7b64a8cbeef89cd5d5b1c8a08efc61e91ae389366f35461d264566753b350a7b755d02c8e", 0x1000}], 0x3, &(0x7f0000001900)=ANY=[@ANYBLOB="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"], 0x2d0, 0x800}, 0x40080)
shutdown(r0, 0x1)

2018/04/11 00:13:56 executing program 4:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0x80045300, &(0x7f00000000c0)={0x0, 0x0, 0x0, "7175657565300000000000000000000000000000000000000000000000000000fffffdfd00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))

2018/04/11 00:13:56 executing program 1:
setsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x0, &(0x7f0000002000)="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", 0x12e)
setsockopt$inet6_MRT6_DEL_MFC_PROXY(0xffffffffffffffff, 0x29, 0xd3, &(0x7f0000002000)={{0xa, 0x4e20, 0x0, @mcast1={0xff, 0x1, [], 0x1}}, {0xa, 0x4e20, 0x0, @empty, 0x2}}, 0x5c)
setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, &(0x7f0000002000)={0x0, 0x0, 0x9}, 0x14)
clock_getres(0x5, &(0x7f0000000000))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x40, &(0x7f0000001fde), 0x4)

2018/04/11 00:13:56 executing program 5:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0xc08c5336, &(0x7f00000000c0)={0x0, 0x0, 0x0, "717565756530000000000000000000000000000000000000000000000000000000000000000000000000000000001f00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer2\x00', 0x0, 0x0)

2018/04/11 00:13:56 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c746572000000000000000000000000009000", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:56 executing program 0:
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x33c, &(0x7f00000003c0)={@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, @local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, [], {@mpls_uc={0x8847, {[{0x8, 0x80000001, 0xff, 0x8}, {0x5, 0x100000000, 0x9, 0x4}, {0x8, 0x2, 0x2, 0x80000}, {0x56, 0x7, 0xffffffffffffff1d, 0x100000001}, {0x5, 0x675, 0x7ff, 0x7}, {0x7, 0xdb, 0xfff, 0x100000000}, {0x200, 0x4, 0x1, 0x80}, {0x0, 0x8, 0x4}, {0x2, 0x3, 0x9}, {0x89, 0x7, 0x81, 0x4}], @ipv6={0x153, 0x6, "b4e575", 0x2de, 0x2, 0x6, @remote={0xfe, 0x80, [], 0xbb}, @loopback={0x0, 0x1}, {[@fragment={0xff, 0x0, 0xffff, 0xb4e5, 0x0, 0x3, 0x68}, @hopopts={0x3c, 0x17, [], [@hao={0xc9, 0x10, @mcast1={0xff, 0x1, [], 0x1}}, @pad1={0x0, 0x1}, @generic={0xbb06, 0x25, "fa1e823a1b2c62cd16ddd8c2d8548eab02cdf7baf57be094b335ca90e3283db9ce741a60c9"}, @jumbo={0xc2, 0x4, 0x5}, @generic={0x4, 0x56, "907f705f90090011801261e2a3ad543e714e9905299130286c6c90d6ec7b51c0556854f47409877855be3a34daeeca81ccefc8ea47b7e3e309ab396270c7f01b1ddff0ba14c7f34564303d5f11617767a9006759a304"}, @hao={0xc9, 0x10, @dev={0xfe, 0x80, [], 0xc}}, @hao={0xc9, 0x10, @dev={0xfe, 0x80, [], 0x11}}]}, @dstopts={0x7f, 0x20, [], [@calipso={0x7, 0x20, {0x8, 0x6, 0x3, 0x8000, [0x7, 0x9, 0x0]}}, @generic={0x2, 0xc7, "39a00d403f264cea278599325986464fcef090a85dda2785b2850910de1ce4a1f6940f9b4af9a6775af53aaa8d9bc1771916977cf8da4c559e1c6eede56dd94660a95887f3e32ad45890cdb8794f6b82f798b1dcda3317816c8a31e13e52afecea223c73de507ae362b749b17ca0db0d1166e664f4eedc0e0995a570b3a246a4b375c763b3b83b9123b6309e4115d0e6ded5532bc91b0fbc8ca90cdeab15149d73fedb95f250a5f04d2dfbaa5c13900f600369c1226fca8d10c0e8c4c4af80f1f35aa5f934e8f1"}, @hao={0xc9, 0x10, @local={0xfe, 0x80, [], 0xaa}}, @pad1={0x0, 0x1}, @pad1={0x0, 0x1}]}], @udp={0x4e23, 0x4e21, 0xfe, 0x0, [@guehdr={0x1, 0x7, 0x0, 0x6, 0x100}, @guehdr={0x1, 0x80000000, 0x9, 0x1f, 0x100}, @guehdr={0x2, 0x5, 0x4, 0xb665, 0x100, [0x80]}, @guehdr={0x1, 0x1, 0x2, 0x5}, @guehdr={0x1, 0x1, 0x5, 0x3, 0x100}], "c9ac8e1b45a491af837f60d4aff95736386436a5883d05811be56712896be36969ad39906e878a8016019c9a743765ba51fdcad3e7d97e48db0392d44707a94b79caae9f75ee4374646c23551d80a5b5831d17c6b61dd5b3d85c4133b3f5b22ceda2709d688e760398a190f5312634a626d579e3aa1ca2160b25381033450e9a121af3b0936750673423408af105dab75b178c9e427ffbf01b4e72baf541a4b953e605969efff07d602bdb82638a0429524aefa9c51c55f7121c7bf36af152be7243442a38562b004cd182d7da3353a6ad2030e0e634786f8d9c788eb4a8"}}}}}}}, &(0x7f0000000040)={0x1, 0x0, [0x100]})

2018/04/11 00:13:56 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x0, 0x1000000}, 0x0)

2018/04/11 00:13:56 executing program 2 (fault-call:26 fault-nth:80):
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/pfkey\x00', 0x1, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_GET_MSR_INDEX_LIST(r1, 0xc004ae02, &(0x7f0000000440)=ANY=[@ANYBLOB="010000e8a806846728a902d7836e000000000090c8bb2c64ee855b03d6b79f01fd689aefd896253378642249ab91395ab66a034c399ce7623518b671b773347d0fd26ec81ac69a995c8ce192812ee8050c3814b9781ac68ebaded833a2c6c838d8647586e9c6e9a5856a915e647163631e9ebb8c6af6c63986f87e1cb1e65dda52219878b2bf0aa3c41d7257b9b338d3de7e2930af343b00807a9f0f1508f564e7be9484af85b8deea898a0e15d4e59917a706dff1d6eb4d00000000000000000000"])
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
pipe2(&(0x7f0000000700)={<r3=>0x0, <r4=>0x0}, 0x0)
ioctl$KVM_SET_XSAVE(r2, 0x5000aea5, &(0x7f0000000740)={"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"})
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
shmget(0x0, 0x3000, 0x1, &(0x7f000075a000/0x3000)=nil)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000600)={<r6=>0x0, @in={{0x2, 0x4e23, @multicast2=0xe0000002}}, 0x5, 0x6, 0x1, 0xfff, 0x8}, &(0x7f0000000080)=0x98)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000b40)={r6, @in={{0x2, 0x4e24, @rand_addr=0x10000}}, 0x5, 0x101, 0x6, 0xea, 0x72}, &(0x7f00000002c0)=0x98)
r7 = dup3(r5, r4, 0x0)
munlockall()
r8 = shmget$private(0x0, 0x3000, 0x10, &(0x7f0000760000/0x3000)=nil)
shmctl$IPC_RMID(r8, 0x0)
clock_gettime(0x7, &(0x7f0000000000))
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f0000460fe4)={0x0, 0x7, 0x2, 0x0, 0x4, 0x8, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x805})
ioctl$SNDRV_TIMER_IOCTL_GINFO(r4, 0xc0f85403, &(0x7f0000000c00)={{0xffffffffffffffff, 0x0, 0x3, 0x3, 0x2}, 0x81, 0x3, 'id0\x00', 'timer0\x00', 0x0, 0x6, 0x1, 0x6, 0x3})
ioctl$sock_inet6_tcp_SIOCINQ(r3, 0x541b, &(0x7f0000000040))
socket(0xf, 0x6, 0x5)
ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000280)={0x81, 0x1})
ioctl$EVIOCSABS2F(r7, 0x401845ef, &(0x7f0000000240)={0x9, 0x0, 0xfffffffffffffffd, 0x1ff, 0x4, 0x7f})
getsockopt$ax25_buf(r4, 0x101, 0x19, &(0x7f0000000140)=""/53, &(0x7f0000000180)=0x35)
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/enforce\x00', 0x10000, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000753000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, &(0x7f00000000c0)="0fc7280f080f20030f01727166ba4200b834000000ef66bad10466edb81da1fb500f23d00f21f835300000050f23f8c4c3194bfc360f20030fc76d08", 0x3c}], 0x1, 0x7, &(0x7f0000000380), 0x10000181)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r2, 0x8008ae9d, &(0x7f0000000340)=""/250)

2018/04/11 00:13:56 executing program 7:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x3, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe2(&(0x7f0000e3eff8)={0x0, <r2=>0x0}, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r4 = dup3(r3, r2, 0x0)
ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f0000000180)={{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}})

2018/04/11 00:13:56 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x0, 0x34000}, 0x0)

2018/04/11 00:13:56 executing program 1:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$jfs(&(0x7f0000000080)='jfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000180)=[{&(0x7f0000000140)="82245604ea401b4980a6f31a5e53b10915efb0c7def50dc09553938bd89ccf6c5be2b35856626f3d5532852af3ece804d589aec2782ad7a8b3", 0x39, 0xfff}], 0x20, &(0x7f00000001c0)={[{@quota='quota', 0x2c}, {@discard='discard', 0x2c}, {@errors_remount='errors=remount-ro', 0x2c}, {@discard='discard', 0x2c}]})
getsockopt$IP6T_SO_GET_INFO(0xffffffffffffffff, 0x29, 0x10, &(0x7f0000000000)={'security\x00'}, &(0x7f00000000c0)=0x54)

2018/04/11 00:13:56 executing program 7:
r0 = inotify_init1(0x0)
fcntl$setown(r0, 0x8, 0xffffffffffffffff)
r1 = syz_open_dev$adsp(&(0x7f0000000040)='/dev/adsp#\x00', 0x1f3, 0x42e40)
recvfrom$llc(r1, &(0x7f0000000080)=""/246, 0xf6, 0x100, &(0x7f0000000180)={0x1a, 0x0, 0x1f, 0x4, 0x1, 0x7, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}, 0x10)
fcntl$getownex(r0, 0x10, &(0x7f000045fff8)={0x0, <r2=>0x0})
perf_event_open(&(0x7f0000b5a000)={0x4000000002, 0x78, 0x1e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = getpgrp(0x0)
kcmp(r2, r3, 0x6, 0xffffffffffffffff, 0xffffffffffffffff)

2018/04/11 00:13:56 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c7465720000000000000000000000020c4900", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:56 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x0, 0xfffffffffffff000}, 0x0)

2018/04/11 00:13:56 executing program 0:
r0 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r0, &(0x7f0000000400)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x5}, 0x1c)
setsockopt$bt_BT_DEFER_SETUP(0xffffffffffffffff, 0x112, 0x7, &(0x7f0000001500), 0x4)
sendmsg(r0, &(0x7f0000014fc8)={&(0x7f0000006ff0)=@in={0x2, 0x4e23, @local={0xac, 0x14, 0xffffffffffffffff, 0xaa}}, 0x80, &(0x7f0000000040), 0x0, &(0x7f000001ef80)=[{0x20, 0x0, 0x1ff, "4410050400ef000097"}], 0x20}, 0x0)

2018/04/11 00:13:56 executing program 2:
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/pfkey\x00', 0x1, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_GET_MSR_INDEX_LIST(r1, 0xc004ae02, &(0x7f0000000440)=ANY=[@ANYBLOB="010000e8a806846728a902d7836e000000000090c8bb2c64ee855b03d6b79f01fd689aefd896253378642249ab91395ab66a034c399ce7623518b671b773347d0fd26ec81ac69a995c8ce192812ee8050c3814b9781ac68ebaded833a2c6c838d8647586e9c6e9a5856a915e647163631e9ebb8c6af6c63986f87e1cb1e65dda52219878b2bf0aa3c41d7257b9b338d3de7e2930af343b00807a9f0f1508f564e7be9484af85b8deea898a0e15d4e59917a706dff1d6eb4d00000000000000000000"])
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
pipe2(&(0x7f0000000700)={<r3=>0x0, <r4=>0x0}, 0x0)
ioctl$KVM_SET_XSAVE(r2, 0x5000aea5, &(0x7f0000000740)={"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"})
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
shmget(0x0, 0x3000, 0x1, &(0x7f000075a000/0x3000)=nil)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000600)={<r6=>0x0, @in={{0x2, 0x4e23, @multicast2=0xe0000002}}, 0x5, 0x6, 0x1, 0xfff, 0x8}, &(0x7f0000000080)=0x98)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000b40)={r6, @in={{0x2, 0x4e24, @rand_addr=0x10000}}, 0x5, 0x101, 0x6, 0xea, 0x72}, &(0x7f00000002c0)=0x98)
r7 = dup3(r5, r4, 0x0)
munlockall()
r8 = shmget$private(0x0, 0x3000, 0x10, &(0x7f0000760000/0x3000)=nil)
shmctl$IPC_RMID(r8, 0x0)
clock_gettime(0x7, &(0x7f0000000000))
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f0000460fe4)={0x0, 0x7, 0x2, 0x0, 0x4, 0x8, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x805})
ioctl$SNDRV_TIMER_IOCTL_GINFO(r4, 0xc0f85403, &(0x7f0000000c00)={{0xffffffffffffffff, 0x0, 0x3, 0x3, 0x2}, 0x81, 0x3, 'id0\x00', 'timer0\x00', 0x0, 0x6, 0x1, 0x6, 0x3})
ioctl$sock_inet6_tcp_SIOCINQ(r3, 0x541b, &(0x7f0000000040))
socket(0xf, 0x6, 0x5)
ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000280)={0x81, 0x1})
ioctl$EVIOCSABS2F(r7, 0x401845ef, &(0x7f0000000240)={0x9, 0x0, 0xfffffffffffffffd, 0x1ff, 0x4, 0x7f})
getsockopt$ax25_buf(r4, 0x101, 0x19, &(0x7f0000000140)=""/53, &(0x7f0000000180)=0x35)
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/enforce\x00', 0x10000, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000753000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, &(0x7f00000000c0)="0fc7280f080f20030f01727166ba4200b834000000ef66bad10466edb81da1fb500f23d00f21f835300000050f23f8c4c3194bfc360f20030fc76d08", 0x3c}], 0x1, 0x7, &(0x7f0000000380), 0x10000181)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r2, 0x8008ae9d, &(0x7f0000000340)=""/250)

2018/04/11 00:13:56 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x0, 0xf00000000000000}, 0x0)

2018/04/11 00:13:57 executing program 4:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0x80045300, &(0x7f00000000c0)={0x0, 0x0, 0x0, "71756575653000000000000000000000000000000000000000000000fffffdfd00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))

2018/04/11 00:13:57 executing program 7:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @multicast1=0xe0000001}, 0x10)
utime(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x10001, 0x3})
sendto$inet(r0, &(0x7f0000a88f88), 0x29f, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @loopback=0x7f000001}, 0x10)
r1 = syz_open_dev$mouse(&(0x7f0000000080)='/dev/input/mouse#\x00', 0x8, 0x140)
ioctl$KVM_GET_ONE_REG(r1, 0x4010aeab, &(0x7f00000000c0)={0x3, 0x6})
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='dctcp\x00', 0xffb3)

2018/04/11 00:13:57 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='memory.swap.current\x00', 0x0, 0x0)
openat(r0, &(0x7f0000000040)='./file0\x00', 0x101000, 0x0)
r1 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e3, 0x0, 0x400000, 0x0, 0x0, 0x0, 0x0, 0xd, 0x0, 0x0, 0x0, 0x0, 0x4000000000000, 0xffff7fffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
readahead(r1, 0x3, 0x80)
r2 = socket$inet(0x2, 0x4000000805, 0x2b)
r3 = socket$inet_sctp(0x2, 0x5, 0x84)
r4 = dup3(r2, r3, 0x0)
ioctl$sock_inet_SIOCGARP(r4, 0x8954, &(0x7f0000000140)={{0x2, 0x0, @remote={0xac, 0x14, 0x14, 0xbb}}, {}, 0x0, {0x2, 0x0, @dev={0xac, 0x14, 0x14}}, 'syz_tun\x00'})

2018/04/11 00:13:57 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c7465720000000000000000000400", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:57 executing program 0:
perf_event_open(&(0x7f000001d000)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={&(0x7f0000000000), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$vcsn(&(0x7f0000000040)='/dev/vcs#\x00', 0x5, 0x80)
r1 = add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f00000000c0)={0x73, 0x79, 0x7a, 0x2}, 0x0, 0x0, 0xfffffffffffffff8)
keyctl$revoke(0x3, r1)
ioctl$LOOP_SET_CAPACITY(r0, 0x4c07)
setsockopt$RDS_RECVERR(r0, 0x114, 0x5, &(0x7f0000000100), 0x4)
capset(&(0x7f0000000000)={0x19980330}, &(0x7f0000702000))

2018/04/11 00:13:57 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x0, 0x100000000000000}, 0x0)

2018/04/11 00:13:57 executing program 5:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0xc08c5336, &(0x7f00000000c0)={0x0, 0x0, 0x0, "7175657565300000000000000000000000000000000000000000000000000000000000000000000000001f00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer2\x00', 0x0, 0x0)

2018/04/11 00:13:57 executing program 2:
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/pfkey\x00', 0x1, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_GET_MSR_INDEX_LIST(r1, 0xc004ae02, &(0x7f0000000440)=ANY=[@ANYBLOB="010000e8a806846728a902d7836e000000000090c8bb2c64ee855b03d6b79f01fd689aefd896253378642249ab91395ab66a034c399ce7623518b671b773347d0fd26ec81ac69a995c8ce192812ee8050c3814b9781ac68ebaded833a2c6c838d8647586e9c6e9a5856a915e647163631e9ebb8c6af6c63986f87e1cb1e65dda52219878b2bf0aa3c41d7257b9b338d3de7e2930af343b00807a9f0f1508f564e7be9484af85b8deea898a0e15d4e59917a706dff1d6eb4d00000000000000000000"])
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
pipe2(&(0x7f0000000700)={<r3=>0x0, <r4=>0x0}, 0x0)
ioctl$KVM_SET_XSAVE(r2, 0x5000aea5, &(0x7f0000000740)={"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"})
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
shmget(0x0, 0x3000, 0x1, &(0x7f000075a000/0x3000)=nil)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000600)={<r6=>0x0, @in={{0x2, 0x4e23, @multicast2=0xe0000002}}, 0x5, 0x6, 0x1, 0xfff, 0x8}, &(0x7f0000000080)=0x98)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000b40)={r6, @in={{0x2, 0x4e24, @rand_addr=0x10000}}, 0x5, 0x101, 0x6, 0xea, 0x72}, &(0x7f00000002c0)=0x98)
r7 = dup3(r5, r4, 0x0)
munlockall()
r8 = shmget$private(0x0, 0x3000, 0x10, &(0x7f0000760000/0x3000)=nil)
shmctl$IPC_RMID(r8, 0x0)
clock_gettime(0x7, &(0x7f0000000000))
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f0000460fe4)={0x0, 0x7, 0x2, 0x0, 0x4, 0x8, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x805})
ioctl$SNDRV_TIMER_IOCTL_GINFO(r4, 0xc0f85403, &(0x7f0000000c00)={{0xffffffffffffffff, 0x0, 0x3, 0x3, 0x2}, 0x81, 0x3, 'id0\x00', 'timer0\x00', 0x0, 0x6, 0x1, 0x6, 0x3})
ioctl$sock_inet6_tcp_SIOCINQ(r3, 0x541b, &(0x7f0000000040))
socket(0xf, 0x6, 0x5)
ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000280)={0x81, 0x1})
ioctl$EVIOCSABS2F(r7, 0x401845ef, &(0x7f0000000240)={0x9, 0x0, 0xfffffffffffffffd, 0x1ff, 0x4, 0x7f})
getsockopt$ax25_buf(r4, 0x101, 0x19, &(0x7f0000000140)=""/53, &(0x7f0000000180)=0x35)
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/enforce\x00', 0x10000, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000753000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, &(0x7f00000000c0)="0fc7280f080f20030f01727166ba4200b834000000ef66bad10466edb81da1fb500f23d00f21f835300000050f23f8c4c3194bfc360f20030fc76d08", 0x3c}], 0x1, 0x7, &(0x7f0000000380), 0x10000181)
ioctl$KVM_RUN(r4, 0x4138ae84, 0x0)
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r2, 0x8008ae9d, &(0x7f0000000340)=""/250)

2018/04/11 00:13:57 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x0, 0x2000000}, 0x0)

2018/04/11 00:13:57 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={'filter\x00\x00\x00\x00\x00\x00\x00\a\x00', 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:57 executing program 7:
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x1, 0x0)
write$binfmt_misc(r0, &(0x7f00000001c0)={'syz1', "b23d20712a046e6b511c3044ed9079c8d8b5b183570bfdff829d67c2e3e42ec27bf48ebf629e4c777b725c7c2695141057ddc4133779b57106e7e65231a4d7671265911e63c5c232c3fcae7b3e4e8aa728daa61aaa68b898812c431b729c6347ff5e18b67d9a308920e52613d0e33e285747941c6c01b498c94631f4ae3ddbde8efee9aee37af63aff32916157d6bbd3438a04678a9c20d47dde1adf8d5a961afe72ac51e104fcc6b12a95dc6e8e8b7b46b4d6f15a4862d74b4609c83abb59d3d641c4b65716e52558792416d619177a"}, 0xfffffffffffffddc)
vmsplice(r0, &(0x7f0000000c80)=[{&(0x7f0000000880)="2b98d63933834d0a950442e666c9605667753518124187aed06b089805a0e42be6c3f5cd11a74c32197b43ceff1941683765c266ada7e724f2564ad38ea0f92c61da90c55c5ceb30a41932208dbebbe322a4d94f9356a59f463b5fc19a54fbc4e04b781b5a891d5c380b09bdd4e91661835fac1c171b221be655bbace94b", 0x7e}, {&(0x7f0000000900)="ba83b254869c22bd42a7ecce6da8b49aeeaad907e54ca7ad88e72caf9a2d18d29f0ea933f12524a5449a704dca8d546fd7948ddafaaa08f1a7685915b20a91c471ace99cfea0a1ce49169d0138004da641bd44236940212eb35c25a42481f572fc20e67e477a78a86706570096e65859687d8e6f1a840954", 0x78}, {&(0x7f0000000980)="e8d1fced697b9eafb78b2d924ac6b7157f0e79f8f50b48e933d6aff762cfe6e596d4f764678c6380150a1e6e5e6b6829f7858bf931de72f57fcf86bd16fb19e10b397fa8e757407f32edcc96d113f05601b0", 0x52}, {&(0x7f0000000a00)="947f61f3c2e22fb06637dc9006f602c774fc8975fee33996a52d2de371f17ca3ea2efad1ed188a0182a5d8ae1a13e4be4f97f3db5a14228022ebeed8", 0x3c}, {&(0x7f0000000a40)="2e86fb29bd6465211c16d4827d27254a37d8666b5ae81b284c181ca747f6e3e5f105d4d637053683a180c752db783b7d165fb6f9118cbbb4b4196b1de96bb062d861419d403988f27172ac815c04ca2c7884451b5f326ad4cbef0cbf5602f23be6c6dd31aec98451568ae44c3a9482c92d851570489b579a6cf310c68ed1818f3d971ed165e732b8b65c0a77ce74cd38fd0bff71453cb677191b48bdd426245aa6b3040c68169aea6b976010d20f37ba0360c02823d3fd67f4ae0746511725", 0xbf}, {&(0x7f0000000b00)="8c6ffd03901164efa49573e3634ac576acbabf17372cf6667dbafb3b1f776cbf621edc71be8d1125c1447699367b779260cfd0f2f09ffec0d7349b201c7d1a2d262786fdb64207bb0aa5154238ac446027b25c044d29c17e0846799baf47b308f3bb89103337ae7ef2b862e3a7b87e3aedcab421af20900cbeddff5ee43510662dc13a59bea8d2d0d7355173a51899ae74d9fc21f28d0e8f9330ef2848d337d42c1f34c539395020739c94a782b28d68fe997d3f58fd75777b2f28e7aae14c5782f5ec04d576524574e5b72ee8e63399ce5b907d4e843059572b538e6b7506394ab2402e89601fb7", 0xe8}, {&(0x7f0000000c00)="fb1af9cb48db9c26012d4e94e264e340c817290fcea05bb928a6b24218ecfe02309939e9216852080eacbb1b3ff7396a4d886371c4be6cb803a94a0edceec84da1e1d2f36ed127ef81", 0x49}], 0x7, 0x9)
writev(r0, &(0x7f000070c000)=[{&(0x7f0000000080)="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", 0x11c}], 0x1)
recvmsg$netrom(r0, &(0x7f0000000840)={&(0x7f00000002c0)=@full={{0x3, {"d9f2aaa4de94dc"}, 0x100000000}, [{"844d3cea5a456d"}, {"37e2400458829e"}, {"04138cce4eca5e"}, {"210983ac6d7a61"}, {"3eec87a1756f21"}, {"bae9f6a4593e4f"}, {"6a279b531c9d3e"}, {"dc1b502ed311a1"}]}, 0x48, &(0x7f00000007c0)=[{&(0x7f0000000340)="468a9885e291a9860aba077c3e3c3e0c0669f408058d539aced7849efff78be10bba765a252d718bbddec06d6dd3ecd9a3cf20fef2197299be3f63ebbd3c9b0112b95174c250fb717ca2fc0af5f41acf67f985895ece78ad9e26c5dafa168599adf1686a4541a2e54510d6a802f72382d024be2b18dc3d68d15ba89c2e57b7bdfb5876e7f85736ea4a10761bee23", 0x8e}, {&(0x7f0000000400)="0da5e19a074ed81c290b7e3350a72a56ed2cee6cf093e147272127f9cc656bf979dbb7158db97449d9afde31379db58932c5fd3f5d9f78117fd5cc1e4198fc6db37b2569383ce5a21176aeb6ff55b0a47a704f952e2d", 0x56}, {&(0x7f0000000000)="ff72b1b3b3e0668fe73422556b0702e6e2d258", 0x13}, {&(0x7f0000000480)="a7470c7e200caa8732fe2109e0a79cea562ad3e65188970780f96c69efe9c9f833cbfd6ea5b56c8478e9cfc063eb", 0x2e}, {&(0x7f00000004c0)="ddbc9f188470e7600d13c3bc62b62780d3650a3d699153c2efc7edd70dca0b1397e2b5ac7a71e9f5ef9416e319054309530dd14c022a0fa943f58c7d8264ed3141aba105afa500348b72969483ebb53700e1d2654a1af92b4b6e9ebfa7167be0b85c1e4897784a65d7711577a5a6911960cfd03812a1a74b31e3b58bb896fa79057e1bb1358fc5b8379daa81e37afbd00e29225190c0dc6e06dd8b1ff3c758f10f1a7fd1e5310eb23fe1bbec8e78e12e9c788fb14d4b1c7bed22a06db9733a0f5f527864ec19552107606c753bc5549e9bb959398c13b632b0aecc97ddd38a33dc4dcc5aba0a67f0f448fc2541c2e8a142d9c98377", 0xf5}, {&(0x7f00000005c0)="aa944e4836c75e13b9193d4ea9dc201738bcff27bc4805600417d63043d26e668cba4b63dbc6de214e1c2681a87c9fa7209e0b171cab1e6c846326293f4400547b9f769ed1ea964480475f133b410b2f9cfcddc363012064e5bd22b65c7c0acb2ea5172f7554f1598923da85a186490d129de42dde2392d3b87cba6ed7990b3b9b6048eeb774af9b85342f37", 0x8c}, {&(0x7f0000000680)="9bff76c4de82dc50929110fe9e2c0d19a0d5065b1de3ba588b7cf3f391fa460fbbd9b9ab6faee6c88ff5b0a8cd15d747cc2a65e92a2bcc63aa6604adf3853492e7526a54094cacebedc3e23ab640a552590ae9034f888d9d3592ba09953335f1a2a06fa7f9887c750e0a27e965809158fa67066906c8d2f25f04819db08d44a9e16fc88f375fbfe57d5e686abeb7bff9714e4432d0ff996dfcb8416ba6be646528d96e8fa12e3633a00cc99528a4a1b42726d91ec014f8c44809c3ae37", 0xbd}, {&(0x7f0000000740)="c7dc08d4740cdf8dbbb38e774c44cdb9f0ad8fa785cb9e274f951641a25c3b3bcc646bd84269d4912c7b712dee2e17ee33d90bfdd98bbc3aa82ea66b9a3167e94882012b2f772c07bdb7b9ee92067c39f4cc44436b505b04403ec3d2bca0a4dbb219d46078f2b166a60dc27dd4c6f6456108e724274a2f56fd4370", 0x7b}], 0x8, 0x0, 0x0, 0x4000}, 0x10000)

2018/04/11 00:13:57 executing program 2:
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/pfkey\x00', 0x1, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_GET_MSR_INDEX_LIST(r1, 0xc004ae02, &(0x7f0000000440)=ANY=[@ANYBLOB="010000e8a806846728a902d7836e000000000090c8bb2c64ee855b03d6b79f01fd689aefd896253378642249ab91395ab66a034c399ce7623518b671b773347d0fd26ec81ac69a995c8ce192812ee8050c3814b9781ac68ebaded833a2c6c838d8647586e9c6e9a5856a915e647163631e9ebb8c6af6c63986f87e1cb1e65dda52219878b2bf0aa3c41d7257b9b338d3de7e2930af343b00807a9f0f1508f564e7be9484af85b8deea898a0e15d4e59917a706dff1d6eb4d00000000000000000000"])
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
pipe2(&(0x7f0000000700)={<r3=>0x0, <r4=>0x0}, 0x0)
ioctl$KVM_SET_XSAVE(r2, 0x5000aea5, &(0x7f0000000740)={"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"})
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
shmget(0x0, 0x3000, 0x1, &(0x7f000075a000/0x3000)=nil)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000600)={<r6=>0x0, @in={{0x2, 0x4e23, @multicast2=0xe0000002}}, 0x5, 0x6, 0x1, 0xfff, 0x8}, &(0x7f0000000080)=0x98)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000b40)={r6, @in={{0x2, 0x4e24, @rand_addr=0x10000}}, 0x5, 0x101, 0x6, 0xea, 0x72}, &(0x7f00000002c0)=0x98)
r7 = dup3(r5, r4, 0x0)
munlockall()
r8 = shmget$private(0x0, 0x3000, 0x10, &(0x7f0000760000/0x3000)=nil)
shmctl$IPC_RMID(r8, 0x0)
clock_gettime(0x7, &(0x7f0000000000))
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f0000460fe4)={0x0, 0x7, 0x2, 0x0, 0x4, 0x8, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x805})
ioctl$SNDRV_TIMER_IOCTL_GINFO(r4, 0xc0f85403, &(0x7f0000000c00)={{0xffffffffffffffff, 0x0, 0x3, 0x3, 0x2}, 0x81, 0x3, 'id0\x00', 'timer0\x00', 0x0, 0x6, 0x1, 0x6, 0x3})
ioctl$sock_inet6_tcp_SIOCINQ(r3, 0x541b, &(0x7f0000000040))
socket(0xf, 0x6, 0x5)
ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000280)={0x81, 0x1})
ioctl$EVIOCSABS2F(r7, 0x401845ef, &(0x7f0000000240)={0x9, 0x0, 0xfffffffffffffffd, 0x1ff, 0x4, 0x7f})
getsockopt$ax25_buf(r4, 0x101, 0x19, &(0x7f0000000140)=""/53, &(0x7f0000000180)=0x35)
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/enforce\x00', 0x10000, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000753000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, &(0x7f00000000c0)="0fc7280f080f20030f01727166ba4200b834000000ef66bad10466edb81da1fb500f23d00f21f835300000050f23f8c4c3194bfc360f20030fc76d08", 0x3c}], 0x1, 0x7, &(0x7f0000000380), 0x10000181)
ioctl$KVM_RUN(r4, 0x5460, 0x0)
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r2, 0x8008ae9d, &(0x7f0000000340)=""/250)

2018/04/11 00:13:57 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1, 0x0, 0x0, 0xf0}, 0x0)

2018/04/11 00:13:57 executing program 0:
r0 = memfd_create(&(0x7f0000f0c000)='$\x00', 0x0)
fallocate(r0, 0x0, 0x0, 0x10001)
write(r0, &(0x7f0000001000)='/', 0x1)
sendfile(r0, r0, &(0x7f0000001000), 0xfec)
mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0)
renameat(0xffffffffffffffff, &(0x7f0000001000)='./file0\x00', 0xffffffffffffffff, &(0x7f0000001000)='./file0\x00')

2018/04/11 00:13:57 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0xc)
writev(r0, &(0x7f0000000040)=[{&(0x7f0000000000)="1f000000020319a8750007000000068100023b0509000100030100ff3ffe58", 0x9}], 0x1)

2018/04/11 00:13:57 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={'filter\x00\x00\x00\x00\x00\x00\nh\x00', 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:58 executing program 4:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0x80045300, &(0x7f00000000c0)={0x0, 0x0, 0x0, "7175657565300000000000000000000000000000000000000000000000fffffdfd00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))

2018/04/11 00:13:58 executing program 7:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
socketpair$inet_icmp(0x2, 0x2, 0x1, &(0x7f0000000040))
bind$unix(r1, &(0x7f0000c45ff6)=@file={0x1, './file0\x00'}, 0xa)
listen(r1, 0x0)
connect(r0, &(0x7f000009f000)=@un=@file={0x1, './file0\x00'}, 0xa)
open(&(0x7f0000000000)='./file0\x00', 0x2400, 0x141)
r2 = syz_open_procfs(0x0, &(0x7f0000a92ff7)='net/unix\x00')
sendfile(r0, r2, &(0x7f000097d000), 0xff)

2018/04/11 00:13:58 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1}, 0x0)

2018/04/11 00:13:58 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$sock_int(r0, 0x1, 0x22, &(0x7f0000000200), 0x233)
read(r0, &(0x7f0000000000)=""/232, 0xe8)

2018/04/11 00:13:58 executing program 2:
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/pfkey\x00', 0x1, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_GET_MSR_INDEX_LIST(r1, 0xc004ae02, &(0x7f0000000440)=ANY=[@ANYBLOB="010000e8a806846728a902d7836e000000000090c8bb2c64ee855b03d6b79f01fd689aefd896253378642249ab91395ab66a034c399ce7623518b671b773347d0fd26ec81ac69a995c8ce192812ee8050c3814b9781ac68ebaded833a2c6c838d8647586e9c6e9a5856a915e647163631e9ebb8c6af6c63986f87e1cb1e65dda52219878b2bf0aa3c41d7257b9b338d3de7e2930af343b00807a9f0f1508f564e7be9484af85b8deea898a0e15d4e59917a706dff1d6eb4d00000000000000000000"])
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
pipe2(&(0x7f0000000700)={<r3=>0x0, <r4=>0x0}, 0x0)
ioctl$KVM_SET_XSAVE(r2, 0x5000aea5, &(0x7f0000000740)={"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"})
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
shmget(0x0, 0x3000, 0x1, &(0x7f000075a000/0x3000)=nil)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000600)={<r6=>0x0, @in={{0x2, 0x4e23, @multicast2=0xe0000002}}, 0x5, 0x6, 0x1, 0xfff, 0x8}, &(0x7f0000000080)=0x98)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000b40)={r6, @in={{0x2, 0x4e24, @rand_addr=0x10000}}, 0x5, 0x101, 0x6, 0xea, 0x72}, &(0x7f00000002c0)=0x98)
r7 = dup3(r5, r4, 0x0)
munlockall()
r8 = shmget$private(0x0, 0x3000, 0x10, &(0x7f0000760000/0x3000)=nil)
shmctl$IPC_RMID(r8, 0x0)
clock_gettime(0x7, &(0x7f0000000000))
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f0000460fe4)={0x0, 0x7, 0x2, 0x0, 0x4, 0x8, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x805})
ioctl$SNDRV_TIMER_IOCTL_GINFO(r4, 0xc0f85403, &(0x7f0000000c00)={{0xffffffffffffffff, 0x0, 0x3, 0x3, 0x2}, 0x81, 0x3, 'id0\x00', 'timer0\x00', 0x0, 0x6, 0x1, 0x6, 0x3})
ioctl$sock_inet6_tcp_SIOCINQ(r3, 0x541b, &(0x7f0000000040))
socket(0xf, 0x6, 0x5)
ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000280)={0x81, 0x1})
ioctl$EVIOCSABS2F(r7, 0x401845ef, &(0x7f0000000240)={0x9, 0x0, 0xfffffffffffffffd, 0x1ff, 0x4, 0x7f})
getsockopt$ax25_buf(r4, 0x101, 0x19, &(0x7f0000000140)=""/53, &(0x7f0000000180)=0x35)
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/enforce\x00', 0x10000, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000753000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, &(0x7f00000000c0)="0fc7280f080f20030f01727166ba4200b834000000ef66bad10466edb81da1fb500f23d00f21f835300000050f23f8c4c3194bfc360f20030fc76d08", 0x3c}], 0x1, 0x7, &(0x7f0000000380), 0x10000181)
ioctl$KVM_RUN(r4, 0xc0189436, 0x0)
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r2, 0x8008ae9d, &(0x7f0000000340)=""/250)

2018/04/11 00:13:58 executing program 0:
r0 = memfd_create(&(0x7f0000000040)="7c6d1759334e3b64bd7944389deb79c9a09d5422173124569bfce0bad8fc9e3ac90aa2bb20752acfd250ee25a595fb71e1ea654e977d6f9e32394f0904254223e81395ff348a8d99a41e0e9f2ca72fb13f544432d4740532708e9b3b9b9c41abcd80f0eb989456796f82a92d2d8ae34b1413ff87afbc2832c2a75d9aaca4be01baa7", 0x0)
ioctl$TCSETA(r0, 0x4030582a, &(0x7f0000760000)={0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000000000d8})
syncfs(r0)

2018/04/11 00:13:58 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={'filter\x00\x00\x00\x00\x00\x00h\n\x00', 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:58 executing program 5:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0xc08c5336, &(0x7f00000000c0)={0x0, 0x0, 0x0, "717565756530000000000000000000000000000000000000000000000000000000000000000000001f00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer2\x00', 0x0, 0x0)

2018/04/11 00:13:58 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1}, 0x0)

2018/04/11 00:13:58 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={'filter\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00@\x00', 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:58 executing program 2:
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/pfkey\x00', 0x1, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_GET_MSR_INDEX_LIST(r1, 0xc004ae02, &(0x7f0000000440)=ANY=[@ANYBLOB="010000e8a806846728a902d7836e000000000090c8bb2c64ee855b03d6b79f01fd689aefd896253378642249ab91395ab66a034c399ce7623518b671b773347d0fd26ec81ac69a995c8ce192812ee8050c3814b9781ac68ebaded833a2c6c838d8647586e9c6e9a5856a915e647163631e9ebb8c6af6c63986f87e1cb1e65dda52219878b2bf0aa3c41d7257b9b338d3de7e2930af343b00807a9f0f1508f564e7be9484af85b8deea898a0e15d4e59917a706dff1d6eb4d00000000000000000000"])
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
pipe2(&(0x7f0000000700)={<r3=>0x0, <r4=>0x0}, 0x0)
ioctl$KVM_SET_XSAVE(r2, 0x5000aea5, &(0x7f0000000740)={"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"})
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
shmget(0x0, 0x3000, 0x1, &(0x7f000075a000/0x3000)=nil)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000600)={<r6=>0x0, @in={{0x2, 0x4e23, @multicast2=0xe0000002}}, 0x5, 0x6, 0x1, 0xfff, 0x8}, &(0x7f0000000080)=0x98)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000b40)={r6, @in={{0x2, 0x4e24, @rand_addr=0x10000}}, 0x5, 0x101, 0x6, 0xea, 0x72}, &(0x7f00000002c0)=0x98)
r7 = dup3(r5, r4, 0x0)
munlockall()
r8 = shmget$private(0x0, 0x3000, 0x10, &(0x7f0000760000/0x3000)=nil)
shmctl$IPC_RMID(r8, 0x0)
clock_gettime(0x7, &(0x7f0000000000))
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f0000460fe4)={0x0, 0x7, 0x2, 0x0, 0x4, 0x8, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x805})
ioctl$SNDRV_TIMER_IOCTL_GINFO(r4, 0xc0f85403, &(0x7f0000000c00)={{0xffffffffffffffff, 0x0, 0x3, 0x3, 0x2}, 0x81, 0x3, 'id0\x00', 'timer0\x00', 0x0, 0x6, 0x1, 0x6, 0x3})
ioctl$sock_inet6_tcp_SIOCINQ(r3, 0x541b, &(0x7f0000000040))
socket(0xf, 0x6, 0x5)
ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000280)={0x81, 0x1})
ioctl$EVIOCSABS2F(r7, 0x401845ef, &(0x7f0000000240)={0x9, 0x0, 0xfffffffffffffffd, 0x1ff, 0x4, 0x7f})
getsockopt$ax25_buf(r4, 0x101, 0x19, &(0x7f0000000140)=""/53, &(0x7f0000000180)=0x35)
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/enforce\x00', 0x10000, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000753000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, &(0x7f00000000c0)="0fc7280f080f20030f01727166ba4200b834000000ef66bad10466edb81da1fb500f23d00f21f835300000050f23f8c4c3194bfc360f20030fc76d08", 0x3c}], 0x1, 0x7, &(0x7f0000000380), 0x10000181)
ioctl$KVM_RUN(r4, 0x4090ae82, 0x0)
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r2, 0x8008ae9d, &(0x7f0000000340)=""/250)

2018/04/11 00:13:58 executing program 0:
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000001440)='/proc/self/net/pfkey\x00', 0x80100, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f0000001480)={0x9, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, &(0x7f00000014c0)=0x28)
r1 = syz_open_dev$sg(&(0x7f000051b000)='/dev/sg#\x00', 0x0, 0x0)
getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f00000000c0)={{{@in6=@mcast1, @in=@loopback}}, {{@in6=@ipv4={[], [], @broadcast}}, 0x0, @in6=@loopback}}, &(0x7f00000001c0)=0xe8)
ioctl$KVM_SET_PIT(r1, 0xc0481273, &(0x7f0000000040))

2018/04/11 00:13:58 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1}, 0x0)

2018/04/11 00:13:58 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={'filter\x00\x00\x00\x00\x00\x00\x00\x00\x00\a\x00', 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:58 executing program 7:
r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0)
ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff))
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[])
r1 = eventfd2(0x0, 0x0)
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000640)=r1)
r2 = accept$netrom(0xffffffffffffffff, 0x0, &(0x7f0000000000))
ioctl$sock_SIOCGPGRP(r2, 0x8904, &(0x7f0000000440))
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f000062a000)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174})
ioctl$VHOST_SET_VRING_KICK(0xffffffffffffffff, 0x4008af20, &(0x7f0000000540)={0x0, r1})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f00000001c0)=0x4081)
prctl$void(0x20)
ioctl$TUNGETFEATURES(0xffffffffffffffff, 0x800454cf, &(0x7f0000000480))
socketpair$inet_smc(0x2b, 0x1, 0x0, &(0x7f0000000780)={<r3=>0xffffffffffffffff})
setsockopt$inet_mtu(r3, 0x0, 0xa, &(0x7f00000007c0)=0x3, 0x4)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000580)={0x0, r1})
ioctl$TUNATTACHFILTER(0xffffffffffffffff, 0x401054d5, &(0x7f0000000180)={0x5, &(0x7f0000000040)=[{0x0, 0x4, 0x0, 0x4}, {0x2, 0x80, 0x3, 0x3f}, {0x0, 0x1, 0x2b58d827}, {0x100, 0x2, 0x3, 0x400}, {0x4, 0x7ff, 0x3}]})
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffff9c, 0x89e2, &(0x7f0000000040)={<r4=>0xffffffffffffffff})
setsockopt$RDS_CONG_MONITOR(r4, 0x114, 0x6, &(0x7f0000000080), 0x4)
setsockopt$inet6_MCAST_MSFILTER(r4, 0x29, 0x30, &(0x7f00000002c0)=ANY=[@ANYBLOB="01000000000000000a004e24070000000000000000000000000000000000000102000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020800000a004e2369030000fe8000000000000000000000000000aa00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a004e24010400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"], 0x1)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r4, 0x84, 0x6d, &(0x7f0000000800)=ANY=[@ANYRES32=<r5=>0x0, @ANYBLOB="5c000000a57a9e8bedad67a72b07b64bccd911f48cbc86999601098c62cd7eb8c908000000000000ee4b1f1e4c8253df570000000000000073da26c161bb3cf40ccc55081e7fca122bea67717da75a1f0c2aa53c43aa4749e572f7e48ba64000aa256315ad174e930b0f3b98791ce16186693d1be48a8a68a4923dd4d18276db9ef63ecd0aa02227f8ac0e7b0678bf8a2a6bb191ce22df4abe95da6c9bca0541f5a306d987585898ee8a7f661172995d2c0ec3faa0fe0d34b10fb9ced4cab29feb6c492f7a5c99f33d57b5cb02c4fe4cae0cfcc491021ac826b887236df6df74d29c02b138c1569c6ed0bdddfd4060c128f7368621c8062d9a21d6345798f8713444e094febcd74abe6732ed6915c4d9b3d4c31d2365a2a73f8a321281f8f9b50860313bb4be4b7cbe96d62de07b42810f65ad995a61038d203c328a9ab91bc1cc2b94f1f50eb4240e8882c62b84d22b932540f53cc36b57bb8ed5f807045bd6"], &(0x7f0000000000)=0x2)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r4, 0x84, 0x17, &(0x7f0000000240)=ANY=[@ANYRES32=r5, @ANYBLOB="09004f007feacf47cbb719dc11d66456fcba9232cef4a61350c74c965b28d477eaff40356f476d67fb97f978139e9082481a5ba90260d9421541c7e4e72907fb9da49b5064df935d2bcd9475287c2034d2de65"], 0x57)
r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_int(r6, 0x29, 0x9, &(0x7f0000000180)=0xffffffffffffffff, 0x4)
ioctl$sock_SIOCINQ(r6, 0x541b, &(0x7f0000000140))
signalfd4(r4, &(0x7f00000004c0)={0x6}, 0x8, 0x80000)
socketpair$inet(0x2, 0x3, 0x7, &(0x7f0000000480))
setsockopt$inet6_MRT6_ADD_MFC_PROXY(r6, 0x29, 0xd2, &(0x7f00003a4000)={{0xa, 0x0, 0x0, @loopback={0x0, 0x1}}, {0xa, 0x0, 0x0, @mcast2={0xff, 0x2, [], 0x1}}}, 0x5c)
accept4$packet(r4, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @link_local}, &(0x7f0000000100)=0x14, 0x800)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000400)={0x0, 0x1, &(0x7f0000000280)=""/62, &(0x7f00000002c0)=""/209, &(0x7f00000003c0)=""/63, 0x32761109184b6163})
openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/qat_adf_ctl\x00', 0x840, 0x0)

2018/04/11 00:13:58 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={'filter\x00\x00\x00\x00\x00\x00\x00\x00\nh\x00', 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:59 executing program 4:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0x80045300, &(0x7f00000000c0)={0x0, 0x0, 0x0, "7175657565300000000000000000000000000000000000000000000000fdfdffff00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))

2018/04/11 00:13:59 executing program 1:
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r1 = syz_open_dev$mouse(&(0x7f0000000080)='/dev/input/mouse#\x00', 0x0, 0x40000)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r2=>0x0})
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000140)={{{@in6=@loopback, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}}, {{@in6=@dev}, 0x0, @in6=@mcast2}}, &(0x7f0000000040)=0xe8)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000240)={{{@in6=@loopback={0x0, 0x1}, @in6=@remote={0xfe, 0x80, [], 0xbb}, 0x4e20, 0x0, 0x4e24, 0x7, 0x0, 0xa0, 0xa0, 0x4, r2, r3}, {0xf9c7, 0x5, 0x7, 0x2, 0x9, 0x8e8d, 0x559e, 0x8}, {0x3, 0xaa7, 0x2e, 0x19e}, 0x101, 0x6e6bb6, 0x2, 0x1, 0x3, 0xfffffffffffffffe}, {{@in6=@dev={0xfe, 0x80, [], 0xa}, 0x4d3, 0x33}, 0xa, @in, 0x3504, 0x0, 0x3, 0x3, 0x1, 0xd5e, 0x7}}, 0xe8)
ioctl$sock_ifreq(r0, 0x8931, &(0x7f0000000100)={"73697430000000003f6a3ea4d7e0879c", @ifru_addrs=@ipx={0x4, 0x0, 0x0, "372861280f26"}})

2018/04/11 00:13:59 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c7465720000000000000000009000", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:59 executing program 7:
r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0)
ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff))
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[])
r1 = eventfd2(0x0, 0x0)
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000640)=r1)
r2 = accept$netrom(0xffffffffffffffff, 0x0, &(0x7f0000000000))
ioctl$sock_SIOCGPGRP(r2, 0x8904, &(0x7f0000000440))
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f000062a000)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174})
ioctl$VHOST_SET_VRING_KICK(0xffffffffffffffff, 0x4008af20, &(0x7f0000000540)={0x0, r1})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f00000001c0)=0x4081)
prctl$void(0x20)
ioctl$TUNGETFEATURES(0xffffffffffffffff, 0x800454cf, &(0x7f0000000480))
socketpair$inet_smc(0x2b, 0x1, 0x0, &(0x7f0000000780)={<r3=>0xffffffffffffffff})
setsockopt$inet_mtu(r3, 0x0, 0xa, &(0x7f00000007c0)=0x3, 0x4)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000580)={0x0, r1})
ioctl$TUNATTACHFILTER(0xffffffffffffffff, 0x401054d5, &(0x7f0000000180)={0x5, &(0x7f0000000040)=[{0x0, 0x4, 0x0, 0x4}, {0x2, 0x80, 0x3, 0x3f}, {0x0, 0x1, 0x2b58d827}, {0x100, 0x2, 0x3, 0x400}, {0x4, 0x7ff, 0x3}]})
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffff9c, 0x89e2, &(0x7f0000000040)={<r4=>0xffffffffffffffff})
setsockopt$RDS_CONG_MONITOR(r4, 0x114, 0x6, &(0x7f0000000080), 0x4)
setsockopt$inet6_MCAST_MSFILTER(r4, 0x29, 0x30, &(0x7f00000002c0)=ANY=[@ANYBLOB="01000000000000000a004e24070000000000000000000000000000000000000102000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020800000a004e2369030000fe8000000000000000000000000000aa00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a004e24010400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"], 0x1)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r4, 0x84, 0x6d, &(0x7f0000000800)=ANY=[@ANYRES32=<r5=>0x0, @ANYBLOB="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"], &(0x7f0000000000)=0x2)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r4, 0x84, 0x17, &(0x7f0000000240)=ANY=[@ANYRES32=r5, @ANYBLOB="09004f007feacf47cbb719dc11d66456fcba9232cef4a61350c74c965b28d477eaff40356f476d67fb97f978139e9082481a5ba90260d9421541c7e4e72907fb9da49b5064df935d2bcd9475287c2034d2de65"], 0x57)
r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_int(r6, 0x29, 0x9, &(0x7f0000000180)=0xffffffffffffffff, 0x4)
ioctl$sock_SIOCINQ(r6, 0x541b, &(0x7f0000000140))
signalfd4(r4, &(0x7f00000004c0)={0x6}, 0x8, 0x80000)
socketpair$inet(0x2, 0x3, 0x7, &(0x7f0000000480))
setsockopt$inet6_MRT6_ADD_MFC_PROXY(r6, 0x29, 0xd2, &(0x7f00003a4000)={{0xa, 0x0, 0x0, @loopback={0x0, 0x1}}, {0xa, 0x0, 0x0, @mcast2={0xff, 0x2, [], 0x1}}}, 0x5c)
accept4$packet(r4, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @link_local}, &(0x7f0000000100)=0x14, 0x800)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000400)={0x0, 0x1, &(0x7f0000000280)=""/62, &(0x7f00000002c0)=""/209, &(0x7f00000003c0)=""/63, 0x32761109184b6163})
openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/qat_adf_ctl\x00', 0x840, 0x0)

2018/04/11 00:13:59 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1}, 0x0)

2018/04/11 00:13:59 executing program 0:
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x8000001, 0x32, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000100)={<r1=>0x0, 0xe4, &(0x7f0000000000)=[@in6={0xa, 0x4e22, 0x0, @remote={0xfe, 0x80, [], 0xbb}, 0x1f}, @in6={0xa, 0x4e24, 0x80000001, @dev={0xfe, 0x80, [], 0x12}, 0x3}, @in={0x2, 0x4e23, @multicast1=0xe0000001}, @in6={0xa, 0x4e21, 0x20424a4a, @empty, 0xa78}, @in6={0xa, 0x4e24, 0x20, @remote={0xfe, 0x80, [], 0xbb}, 0x53192298}, @in6={0xa, 0x4e22, 0x3ff, @dev={0xfe, 0x80, [], 0xf}, 0x7}, @in6={0xa, 0x4e24, 0x5, @dev={0xfe, 0x80, [], 0x1b}, 0x8}, @in={0x2, 0x4e23, @loopback=0x7f000001}, @in6={0xa, 0x4e20, 0x4, @ipv4={[], [0xff, 0xff], @remote={0xac, 0x14, 0x14, 0xbb}}, 0x8001}]}, &(0x7f0000000140)=0x10)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f0000000180)={r1, 0x8, 0x9}, 0x8)
getsockopt$inet_sctp6_SCTP_RECVNXTINFO(r0, 0x84, 0x21, &(0x7f0000799ffc), &(0x7f000085f000)=0x4)

2018/04/11 00:13:59 executing program 2:
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/pfkey\x00', 0x1, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_GET_MSR_INDEX_LIST(r1, 0xc004ae02, &(0x7f0000000440)=ANY=[@ANYBLOB="010000e8a806846728a902d7836e000000000090c8bb2c64ee855b03d6b79f01fd689aefd896253378642249ab91395ab66a034c399ce7623518b671b773347d0fd26ec81ac69a995c8ce192812ee8050c3814b9781ac68ebaded833a2c6c838d8647586e9c6e9a5856a915e647163631e9ebb8c6af6c63986f87e1cb1e65dda52219878b2bf0aa3c41d7257b9b338d3de7e2930af343b00807a9f0f1508f564e7be9484af85b8deea898a0e15d4e59917a706dff1d6eb4d00000000000000000000"])
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
pipe2(&(0x7f0000000700)={<r3=>0x0, <r4=>0x0}, 0x0)
ioctl$KVM_SET_XSAVE(r2, 0x5000aea5, &(0x7f0000000740)={"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"})
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
shmget(0x0, 0x3000, 0x1, &(0x7f000075a000/0x3000)=nil)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000600)={<r6=>0x0, @in={{0x2, 0x4e23, @multicast2=0xe0000002}}, 0x5, 0x6, 0x1, 0xfff, 0x8}, &(0x7f0000000080)=0x98)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000b40)={r6, @in={{0x2, 0x4e24, @rand_addr=0x10000}}, 0x5, 0x101, 0x6, 0xea, 0x72}, &(0x7f00000002c0)=0x98)
r7 = dup3(r5, r4, 0x0)
munlockall()
r8 = shmget$private(0x0, 0x3000, 0x10, &(0x7f0000760000/0x3000)=nil)
shmctl$IPC_RMID(r8, 0x0)
clock_gettime(0x7, &(0x7f0000000000))
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f0000460fe4)={0x0, 0x7, 0x2, 0x0, 0x4, 0x8, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x805})
ioctl$SNDRV_TIMER_IOCTL_GINFO(r4, 0xc0f85403, &(0x7f0000000c00)={{0xffffffffffffffff, 0x0, 0x3, 0x3, 0x2}, 0x81, 0x3, 'id0\x00', 'timer0\x00', 0x0, 0x6, 0x1, 0x6, 0x3})
ioctl$sock_inet6_tcp_SIOCINQ(r3, 0x541b, &(0x7f0000000040))
socket(0xf, 0x6, 0x5)
ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000280)={0x81, 0x1})
ioctl$EVIOCSABS2F(r7, 0x401845ef, &(0x7f0000000240)={0x9, 0x0, 0xfffffffffffffffd, 0x1ff, 0x4, 0x7f})
getsockopt$ax25_buf(r4, 0x101, 0x19, &(0x7f0000000140)=""/53, &(0x7f0000000180)=0x35)
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/enforce\x00', 0x10000, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000753000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, &(0x7f00000000c0)="0fc7280f080f20030f01727166ba4200b834000000ef66bad10466edb81da1fb500f23d00f21f835300000050f23f8c4c3194bfc360f20030fc76d08", 0x3c}], 0x1, 0x7, &(0x7f0000000380), 0x10000181)
ioctl$KVM_RUN(r4, 0x4020940d, 0x0)
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r2, 0x8008ae9d, &(0x7f0000000340)=""/250)

2018/04/11 00:13:59 executing program 5:
r0 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000000000000000000101008e15e7af00", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0xc08c5336, &(0x7f00000000c0)={0x0, 0x0, 0x0, "71756575653000000000000000000000000000000000000000000000000000000000000000000000000000000000001f00"})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x404c534a, &(0x7f00000002c0))
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer2\x00', 0x0, 0x0)

2018/04/11 00:13:59 executing program 7:
r0 = socket$inet(0x2, 0x80003, 0xab)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x80000, 0x0)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000140)='/dev/hwrng\x00', 0x400, 0x0)
getsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000040), &(0x7f0000000100)=0x4)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@broute={'broute\x00', 0x20, 0x2, 0x3b0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200007c0], 0x0, &(0x7f0000000300), &(0x7f00000007c0)=ANY=[@ANYBLOB="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"]}, 0x428)

2018/04/11 00:13:59 executing program 1:
perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mincore(&(0x7f0000ffb000/0x4000)=nil, 0x4000, &(0x7f0000000040)=""/147)
r0 = syz_open_dev$evdev(&(0x7f0000000240)='/dev/input/event#\x00', 0x3, 0x8000000000000002)
syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x0)
write$evdev(r0, &(0x7f000004d000)=[{{}, 0x0, 0x1}, {{0x2}}], 0x30)

2018/04/11 00:13:59 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1}, 0x0)

2018/04/11 00:13:59 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000a00)=@filter={"66696c7465720000000000000200", 0xe, 0x1, 0xa68, [0x0, 0x20000e40, 0x20000e70, 0x20000ea0], 0x0, &(0x7f0000000000), &(0x7f0000000e40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0100000011000000000000000000726f7365300000000000000000000000726f73653000000000000000000000006772657461703000000000000000000067726530000000000000000000000000aaaaaaaaaabb000000000000aaaaaaaaaaaa0000000000000000a008000060090000a80900006c696d6974000000000000000000000000000000000000000000000000000000200000000000000000000000010000000000000000000000000000000000000000000000000000007533320000000000000000000000000000000000000000000000000000000000c007000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a31000000000000000000000000000000000000000000000000000000006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000bed0d5d0797656507cdce4b45fef19fb37825b8db20e00de1cb84480fe46d35dd039532d20426bf508242e3749dcbe2d039be06902308c54ff5bfe77bb3442be000000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a3000000000000000000000000000000000000000000000000000000000"]}, 0xae0)

2018/04/11 00:13:59 executing program 0:
unshare(0x200)
r0 = syz_open_procfs(0x0, &(0x7f0000c02fca)="6e732f6d6e7400c552c5ba9e2c33e308163dd83bbbef1a23efb866ab2c1b66c09db90000000000000006f4d0e9ae0e19c79a35b158ae")
perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0xe2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x401}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setns(r0, 0x0)
clone(0x3002017f, &(0x7f0000c75000), &(0x7f0000695000), &(0x7f000014e000), &(0x7f0000fef000))

[  484.094741] Unknown options in mask b153
2018/04/11 00:13:59 executing program 2:
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/pfkey\x00', 0x1, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_GET_MSR_INDEX_LIST(r1, 0xc004ae02, &(0x7f0000000440)=ANY=[@ANYBLOB="010000e8a806846728a902d7836e000000000090c8bb2c64ee855b03d6b79f01fd689aefd896253378642249ab91395ab66a034c399ce7623518b671b773347d0fd26ec81ac69a995c8ce192812ee8050c3814b9781ac68ebaded833a2c6c838d8647586e9c6e9a5856a915e647163631e9ebb8c6af6c63986f87e1cb1e65dda52219878b2bf0aa3c41d7257b9b338d3de7e2930af343b00807a9f0f1508f564e7be9484af85b8deea898a0e15d4e59917a706dff1d6eb4d00000000000000000000"])
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
pipe2(&(0x7f0000000700)={<r3=>0x0, <r4=>0x0}, 0x0)
ioctl$KVM_SET_XSAVE(r2, 0x5000aea5, &(0x7f0000000740)={"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"})
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
shmget(0x0, 0x3000, 0x1, &(0x7f000075a000/0x3000)=nil)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000600)={<r6=>0x0, @in={{0x2, 0x4e23, @multicast2=0xe0000002}}, 0x5, 0x6, 0x1, 0xfff, 0x8}, &(0x7f0000000080)=0x98)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000b40)={r6, @in={{0x2, 0x4e24, @rand_addr=0x10000}}, 0x5, 0x101, 0x6, 0xea, 0x72}, &(0x7f00000002c0)=0x98)
r7 = dup3(r5, r4, 0x0)
munlockall()
r8 = shmget$private(0x0, 0x3000, 0x10, &(0x7f0000760000/0x3000)=nil)
shmctl$IPC_RMID(r8, 0x0)
clock_gettime(0x7, &(0x7f0000000000))
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f0000460fe4)={0x0, 0x7, 0x2, 0x0, 0x4, 0x8, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x805})
ioctl$SNDRV_TIMER_IOCTL_GINFO(r4, 0xc0f85403, &(0x7f0000000c00)={{0xffffffffffffffff, 0x0, 0x3, 0x3, 0x2}, 0x81, 0x3, 'id0\x00', 'timer0\x00', 0x0, 0x6, 0x1, 0x6, 0x3})
ioctl$sock_inet6_tcp_SIOCINQ(r3, 0x541b, &(0x7f0000000040))
socket(0xf, 0x6, 0x5)
ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000280)={0x81, 0x1})
ioctl$EVIOCSABS2F(r7, 0x401845ef, &(0x7f0000000240)={0x9, 0x0, 0xfffffffffffffffd, 0x1ff, 0x4, 0x7f})
getsockopt$ax25_buf(r4, 0x101, 0x19, &(0x7f0000000140)=""/53, &(0x7f0000000180)=0x35)
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/enforce\x00', 0x10000, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000753000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, &(0x7f00000000c0)="0fc7280f080f20030f01727166ba4200b834000000ef66bad10466edb81da1fb500f23d00f21f835300000050f23f8c4c3194bfc360f20030fc76d08", 0x3c}], 0x1, 0x7, &(0x7f0000000380), 0x10000181)
ioctl$KVM_RUN(r4, 0x5421, 0x0)
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r2, 0x8008ae9d, &(0x7f0000000340)=""/250)

[  484.132560] Unknown options in mask b153
2018/04/11 00:13:59 executing program 6:
r0 = socket$inet(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000003000)=[{&(0x7f000000efdc)="240000002a00030f07fffd946fa283b70a00003801000000031e3f000000000000000000", 0x24}], 0x1}, 0x0)

2018/04/11 00:14:00 executing program 7:
r0 = syz_open_dev$adsp(&(0x7f0000000280)='/dev/adsp#\x00', 0x529, 0x142)
r1 = syz_open_dev$audion(&(0x7f00000000c0)='/dev/audio#\x00', 0x1, 0x0)
setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r1, 0x84, 0x7, &(0x7f0000000000)={0xff}, 0x4)
ppoll(&(0x7f0000000080)=[{r1}], 0x0, &(0x7f0000000100)={0x0, 0x1c9c380}, &(0x7f0000000140), 0x8)
write$evdev(r0, &(0x7f0000000040), 0xfdf0)

[  615.391068] BUG: workqueue lockup - pool cpus=1 node=0 flags=0x0 nice=0 stuck for 122s!
[  615.399570] Showing busy workqueues and worker pools:
[  615.404881] workqueue events: flags=0x0
[  615.409120]   pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=5/256
[  615.415746]     pending: defense_work_handler, defense_work_handler, defense_work_handler, defense_work_handler, cache_reap
[  615.427106] workqueue mm_percpu_wq: flags=0x8
[  615.431613]   pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256
[  615.437772]     pending: vmstat_update
[  617.514018] INFO: rcu_sched self-detected stall on CPU
[  617.515026] INFO: rcu_sched detected stalls on CPUs/tasks:
[  617.519576] 	1-....: (125000 ticks this GP) idle=28e/1/4611686018427387906 softirq=141063/141063 fqs=31235 
[  617.535219] 	
[  617.535234] 	1-....: (125000 ticks this GP) idle=28e/1/4611686018427387906 softirq=141063/141063 fqs=31235 
[  617.535244] 	
[  617.536936]  (t=125002 jiffies g=76579 c=76578 q=625)
[  617.546781] (detected by 0, t=125002 jiffies, g=76579, c=76578, q=625)
[  617.546792] Sending NMI from CPU 0 to CPUs 1:
[  617.564744] NMI backtrace for cpu 1
[  617.564755] CPU: 1 PID: 31915 Comm: syz-executor7 Not tainted 4.16.0+ #18
[  617.564759] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  617.564775] RIP: 0010:native_queued_spin_lock_slowpath+0x204/0xde0
[  617.564779] RSP: 0018:ffff8801db107040 EFLAGS: 00000002
[  617.564786] RAX: 0000000000000000 RBX: ffffed003b620e21 RCX: 0000000000000004
[  617.564791] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffffffff88b90300
[  617.564796] RBP: ffff8801db1073b0 R08: fffffbfff1172061 R09: fffffbfff1172060
[  617.564801] R10: fffffbfff1172060 R11: ffffffff88b90303 R12: ffffffff88b90300
[  617.564806] R13: ffff8801db107388 R14: 0000000000000001 R15: dffffc0000000000
[  617.564813] FS:  00007f393e8c0700(0000) GS:ffff8801db100000(0000) knlGS:0000000000000000
[  617.564818] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  617.564823] CR2: ffffffffff600400 CR3: 00000001ccc17000 CR4: 00000000001406e0
[  617.564831] DR0: 0000000020000000 DR1: 0000000020000000 DR2: 0000000000000000
[  617.564836] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000600
[  617.564838] Call Trace:
[  617.564841]  <IRQ>
[  617.564853]  ? netconsole_netdev_event+0x243/0x280
[  617.564860]  ? .slowpath+0x15/0x15
[  617.564871]  ? wake_up_klogd+0x100/0x100
[  617.564879]  ? lock_release+0xa10/0xa10
[  617.564887]  ? kasan_check_read+0x11/0x20
[  617.564895]  ? do_raw_spin_trylock+0x170/0x1b0
[  617.564903]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  617.564911]  ? kasan_check_write+0x14/0x20
[  617.564919]  ? do_raw_spin_lock+0xc1/0x200
[  617.564928]  ? vprintk_emit+0x3e5/0xdd0
[  617.564937]  ? console_unlock+0x1100/0x1100
[  617.564944]  ? print_usage_bug+0xc0/0xc0
[  617.564953]  ? graph_lock+0x170/0x170
[  617.564961]  ? lock_acquire+0x1dc/0x520
[  617.564971]  ? rcu_dump_cpu_stacks+0x9d/0x1c2
[  617.564979]  ? lock_release+0xa10/0xa10
[  617.564988]  do_raw_spin_lock+0x1a7/0x200
[  617.565002]  _raw_spin_lock_irqsave+0x9e/0xc0
[  617.565009]  ? rcu_dump_cpu_stacks+0x9d/0x1c2
[  617.565018]  rcu_dump_cpu_stacks+0x9d/0x1c2
[  617.565028]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  617.565036]  ? find_next_bit+0x104/0x130
[  617.565046]  check_cpu_stall.isra.61.cold.80+0x36c/0x59a
[  617.565056]  ? print_other_cpu_stall+0x4a0/0x4a0
[  617.565064]  ? graph_lock+0x170/0x170
[  617.565073]  ? debug_check_no_locks_freed+0x310/0x310
[  617.565081]  ? __lock_acquire+0x7f5/0x5130
[  617.565090]  ? debug_check_no_locks_freed+0x310/0x310
[  617.565098]  ? debug_check_no_locks_freed+0x310/0x310
[  617.565106]  ? ___ratelimit.cold.2+0x6a/0x6a
[  617.565115]  ? graph_lock+0x170/0x170
[  617.565121]  ? __lock_is_held+0xb5/0x140
[  617.565132]  ? graph_lock+0x170/0x170
[  617.565140]  ? graph_lock+0x170/0x170
[  617.565150]  ? __lock_is_held+0xb5/0x140
[  617.565160]  rcu_check_callbacks+0x21b/0xad0
[  617.565169]  ? rcu_cpu_stall_reset+0x210/0x210
[  617.565178]  ? trace_hardirqs_off+0xd/0x10
[  617.565186]  ? raise_softirq+0x1b2/0x450
[  617.565195]  ? raise_softirq_irqoff+0x310/0x310
[  617.565205]  ? pvclock_read_flags+0x160/0x160
[  617.565214]  ? account_guest_time+0x3d0/0x3d0
[  617.565223]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  617.565231]  ? hrtimer_run_queues+0x70/0x300
[  617.565240]  ? run_local_timers+0x168/0x1d0
[  617.565248]  ? timer_clear_idle+0x50/0x50
[  617.565256]  ? account_system_time+0x7f/0xb0
[  617.565263]  ? account_process_tick+0x76/0x240
[  617.565272]  update_process_times+0x2d/0x70
[  617.565282]  tick_sched_handle+0xa0/0x180
[  617.565291]  tick_sched_timer+0x42/0x130
[  617.565299]  __hrtimer_run_queues+0x3e3/0x10a0
[  617.565309]  ? tick_sched_do_timer+0x100/0x100
[  617.565318]  ? hrtimer_start_range_ns+0xd10/0xd10
[  617.565327]  ? pvclock_read_flags+0x160/0x160
[  617.565334]  ? kvm_clock_read+0x25/0x30
[  617.565343]  ? kvm_clock_read+0x25/0x30
[  617.565351]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[  617.565360]  ? ktime_get_update_offsets_now+0x3a6/0x570
[  617.565368]  ? do_timer+0x50/0x50
[  617.565376]  ? rcu_nmi_exit+0xd7/0x2b0
[  617.565385]  ? do_raw_spin_lock+0xc1/0x200
[  617.565394]  hrtimer_interrupt+0x286/0x650
[  617.565404]  smp_apic_timer_interrupt+0x15d/0x710
[  617.565413]  ? smp_call_function_single_interrupt+0x650/0x650
[  617.565421]  ? _raw_spin_lock+0x32/0x40
[  617.565429]  ? _raw_spin_unlock+0x22/0x30
[  617.565437]  ? handle_edge_irq+0x330/0x870
[  617.565446]  ? task_prio+0x50/0x50
[  617.565458]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  617.565466]  apic_timer_interrupt+0xf/0x20
[  617.565470]  </IRQ>
[  617.565481] RIP: 0010:snd_pcm_stream_unlock_irq+0xb7/0xf0
[  617.565484] RSP: 0018:ffff88016e98ea38 EFLAGS: 00000293 ORIG_RAX: ffffffffffffff13
[  617.565492] RAX: ffff88018b8d0600 RBX: 0000000000000000 RCX: 1ffff1003171a1d3
[  617.565497] RDX: 0000000000000000 RSI: ffffffff85a1b6d0 RDI: ffffffff88b17bf8
[  617.565502] RBP: ffff88016e98ea40 R08: ffff88018b8d0e78 R09: 0000000000000006
[  617.565506] R10: ffff88018b8d0600 R11: 0000000000000000 R12: 0000000000000004
[  617.565511] R13: 00000000ffffffe0 R14: ffff8801aad0c300 R15: ffff8801ce427b40
[  617.565522]  ? snd_pcm_stream_unlock_irq+0xb0/0xf0
[  617.565531]  ? snd_pcm_stream_unlock_irq+0xb0/0xf0
[  617.565539]  __snd_pcm_lib_xfer+0x739/0x1d10
[  617.565546]  ? print_usage_bug+0xc0/0xc0
[  617.565553]  ? print_usage_bug+0xc0/0xc0
[  617.565561]  ? snd_pcm_hw_rule_noresample_func+0x110/0x110
[  617.565570]  ? __bpf_trace_applptr+0x40/0x40
[  617.565578]  ? pcm_lib_apply_appl_ptr+0x5a0/0x5a0
[  617.565586]  ? mark_held_locks+0xc9/0x160
[  617.565595]  ? retint_kernel+0x10/0x10
[  617.565602]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  617.565610]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  617.565620]  ? retint_kernel+0x10/0x10
[  617.565628]  ? snd_pcm_oss_write3+0xfb/0x220
[  617.565637]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  617.565644]  ? snd_pcm_oss_prepare+0x87/0x1b0
[  617.565652]  snd_pcm_oss_write3+0xe9/0x220
[  617.565661]  io_playback_transfer+0x274/0x310
[  617.565670]  snd_pcm_plug_write_transfer+0x36c/0x470
[  617.565679]  ? snd_pcm_plug_client_channels_buf+0x450/0x450
[  617.565687]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[  617.565695]  ? snd_pcm_plug_client_channels_buf+0x212/0x450
[  617.565703]  snd_pcm_oss_write2+0x25c/0x460
[  617.565711]  ? snd_pcm_oss_write3+0x220/0x220
[  617.565718]  ? find_held_lock+0x36/0x1c0
[  617.565726]  snd_pcm_oss_sync1+0x332/0x5a0
[  617.565734]  ? snd_pcm_oss_write2+0x460/0x460
[  617.565747]  ? kasan_check_read+0x11/0x20
[  617.565754]  ? rcu_is_watching+0x85/0x140
[  617.565762]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  617.565770]  ? wake_up_q+0x100/0x100
[  617.565779]  ? snd_pcm_format_set_silence+0x203/0x540
[  617.565787]  snd_pcm_oss_sync.isra.29+0x790/0x980
[  617.565795]  ? snd_pcm_oss_sync1+0x5a0/0x5a0
[  617.565806]  ? fsnotify_first_mark+0x330/0x330
[  617.565815]  ? kobject_put+0x8e/0x280
[  617.565823]  snd_pcm_oss_release+0x214/0x290
[  617.565830]  ? snd_pcm_oss_sync.isra.29+0x980/0x980
[  617.565838]  __fput+0x34d/0x890
[  617.565845]  ? fput+0x1a0/0x1a0
[  617.565853]  ? check_same_owner+0x320/0x320
[  617.565861]  ? _raw_spin_unlock_irq+0x27/0x70
[  617.565868]  ____fput+0x15/0x20
[  617.565876]  task_work_run+0x1e4/0x290
[  617.565884]  ? task_work_cancel+0x240/0x240
[  617.565893]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  617.565901]  ? switch_task_namespaces+0xa2/0xd0
[  617.565909]  do_exit+0x1aee/0x2730
[  617.565916]  ? plist_add+0x770/0x770
[  617.565925]  ? mm_update_next_owner+0x980/0x980
[  617.565932]  ? print_usage_bug+0xc0/0xc0
[  617.565940]  ? graph_lock+0x170/0x170
[  617.565948]  ? do_raw_spin_unlock+0x9e/0x2e0
[  617.565956]  ? rcu_note_context_switch+0x710/0x710
[  617.565963]  ? lock_acquire+0x1dc/0x520
[  617.565971]  ? __might_sleep+0x95/0x190
[  617.565980]  ? __lock_acquire+0x7f5/0x5130
[  617.565990]  ? debug_check_no_locks_freed+0x310/0x310
[  617.565998]  ? do_raw_spin_unlock+0x9e/0x2e0
[  617.566006]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  617.566014]  ? kasan_check_write+0x14/0x20
[  617.566022]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  617.566031]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  617.566038]  ? drop_futex_key_refs.isra.13+0x6d/0xe0
[  617.566047]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  617.566053]  ? futex_wait+0x5c1/0x9f0
[  617.566062]  ? futex_wait_setup+0x400/0x400
[  617.566070]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  617.566079]  ? __perf_event_task_sched_out+0x2cc/0x1470
[  617.566087]  ? graph_lock+0x170/0x170
[  617.566096]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  617.566104]  ? graph_lock+0x170/0x170
[  617.566111]  ? perf_event_sync_stat+0x5f0/0x5f0
[  617.566120]  ? memset+0x31/0x40
[  617.566127]  ? find_held_lock+0x36/0x1c0
[  617.566136]  ? lock_downgrade+0x8e0/0x8e0
[  617.566145]  do_group_exit+0x16f/0x430
[  617.566153]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  617.566161]  ? SyS_exit+0x30/0x30
[  617.566169]  ? _raw_spin_unlock_irq+0x27/0x70
[  617.566177]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  617.566186]  get_signal+0x886/0x1960
[  617.566196]  ? ptrace_notify+0x130/0x130
[  617.566204]  ? __schedule+0x80f/0x1e40
[  617.566212]  ? expand_files.part.8+0x9a0/0x9a0
[  617.566220]  ? __sched_text_start+0x8/0x8
[  617.566228]  ? snd_pcm_oss_ioctl_compat+0x30/0x30
[  617.566239]  do_signal+0x98/0x2040
[  617.566247]  ? __vfs_write+0x113/0x880
[  617.566254]  ? __fget_light+0x2ef/0x430
[  617.566261]  ? find_held_lock+0x36/0x1c0
[  617.566268]  ? snd_pcm_oss_ioctl_compat+0x30/0x30
[  617.566276]  ? kernel_read+0x120/0x120
[  617.566284]  ? setup_sigcontext+0x7d0/0x7d0
[  617.566293]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  617.566300]  ? fsnotify+0x415/0x1100
[  617.566307]  ? lock_downgrade+0x8e0/0x8e0
[  617.566315]  ? schedule+0xef/0x430
[  617.566322]  ? __schedule+0x1e40/0x1e40
[  617.566333]  ? exit_to_usermode_loop+0x87/0x310
[  617.566342]  exit_to_usermode_loop+0x28a/0x310
[  617.566351]  ? syscall_slow_exit_work+0x4f0/0x4f0
[  617.566359]  ? do_syscall_64+0xb7/0x9d0
[  617.566368]  do_syscall_64+0x792/0x9d0
[  617.566375]  ? vmalloc_sync_all+0x30/0x30
[  617.566383]  ? _raw_spin_unlock_irq+0x27/0x70
[  617.566391]  ? finish_task_switch+0x1ca/0x820
[  617.566399]  ? syscall_return_slowpath+0x5c0/0x5c0
[  617.566408]  ? syscall_return_slowpath+0x30f/0x5c0
[  617.566418]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  617.566427]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  617.566438]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  617.566443] RIP: 0033:0x455259
[  617.566447] RSP: 002b:00007f393e8bfce8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  617.566454] RAX: fffffffffffffe00 RBX: 000000000072bf80 RCX: 0000000000455259
[  617.566459] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000072bf80
[  617.566464] RBP: 000000000072bf80 R08: 0000000000000000 R09: 000000000072bf58
[  617.566468] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  617.566473] R13: 0000000000a3e81f R14: 00007f393e8c09c0 R15: 0000000000000001
[  617.566477] Code: 5c 00 00 00 00 48 83 e7 f8 49 29 fc 41 8d 4c 24 64 c1 e9 03 f3 48 ab 48 81 c4 48 03 00 00 5b 41 5c 41 5d 41 5e 41 5f 5d c3 f3 90 <e9> 3b ff ff ff 89 f1 81 fe 00 01 00 00 0f 84 9e 03 00 00 41 be 
[  617.566842] NMI backtrace for cpu 1
[  618.599700] CPU: 1 PID: 31915 Comm: syz-executor7 Not tainted 4.16.0+ #18
[  618.606615] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  618.615949] Call Trace:
[  618.618512]  <IRQ>
[  618.620655]  dump_stack+0x1b9/0x294
[  618.624270]  ? dump_stack_print_info.cold.2+0x52/0x52
[  618.629443]  ? lock_release+0xa10/0xa10
[  618.633403]  nmi_cpu_backtrace.cold.4+0x19/0xce
[  618.638055]  ? lapic_can_unplug_cpu.cold.26+0x3f/0x3f
[  618.643226]  nmi_trigger_cpumask_backtrace+0x151/0x192
[  618.648499]  arch_trigger_cpumask_backtrace+0x14/0x20
[  618.653671]  rcu_dump_cpu_stacks+0x175/0x1c2
[  618.658061]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  618.663063]  check_cpu_stall.isra.61.cold.80+0x36c/0x59a
[  618.668501]  ? print_other_cpu_stall+0x4a0/0x4a0
[  618.673240]  ? graph_lock+0x170/0x170
[  618.677956]  ? debug_check_no_locks_freed+0x310/0x310
[  618.683131]  ? __lock_acquire+0x7f5/0x5130
[  618.687354]  ? debug_check_no_locks_freed+0x310/0x310
[  618.692524]  ? debug_check_no_locks_freed+0x310/0x310
[  618.697697]  ? ___ratelimit.cold.2+0x6a/0x6a
[  618.702092]  ? graph_lock+0x170/0x170
[  618.705876]  ? __lock_is_held+0xb5/0x140
[  618.709924]  ? graph_lock+0x170/0x170
[  618.713706]  ? graph_lock+0x170/0x170
[  618.717496]  ? __lock_is_held+0xb5/0x140
[  618.721551]  rcu_check_callbacks+0x21b/0xad0
[  618.725946]  ? rcu_cpu_stall_reset+0x210/0x210
[  618.730515]  ? trace_hardirqs_off+0xd/0x10
[  618.734735]  ? raise_softirq+0x1b2/0x450
[  618.738778]  ? raise_softirq_irqoff+0x310/0x310
[  618.743432]  ? pvclock_read_flags+0x160/0x160
[  618.747909]  ? account_guest_time+0x3d0/0x3d0
[  618.752385]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  618.757904]  ? hrtimer_run_queues+0x70/0x300
[  618.762294]  ? run_local_timers+0x168/0x1d0
[  618.766597]  ? timer_clear_idle+0x50/0x50
[  618.770726]  ? account_system_time+0x7f/0xb0
[  618.775113]  ? account_process_tick+0x76/0x240
[  618.779677]  update_process_times+0x2d/0x70
[  618.783981]  tick_sched_handle+0xa0/0x180
[  618.788110]  tick_sched_timer+0x42/0x130
[  618.792152]  __hrtimer_run_queues+0x3e3/0x10a0
[  618.796718]  ? tick_sched_do_timer+0x100/0x100
[  618.801286]  ? hrtimer_start_range_ns+0xd10/0xd10
[  618.806112]  ? pvclock_read_flags+0x160/0x160
[  618.810591]  ? kvm_clock_read+0x25/0x30
[  618.814551]  ? kvm_clock_read+0x25/0x30
[  618.818506]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[  618.823504]  ? ktime_get_update_offsets_now+0x3a6/0x570
[  618.828850]  ? do_timer+0x50/0x50
[  618.832294]  ? rcu_nmi_exit+0xd7/0x2b0
[  618.836164]  ? do_raw_spin_lock+0xc1/0x200
[  618.840381]  hrtimer_interrupt+0x286/0x650
[  618.844604]  smp_apic_timer_interrupt+0x15d/0x710
[  618.849428]  ? smp_call_function_single_interrupt+0x650/0x650
[  618.855292]  ? _raw_spin_lock+0x32/0x40
[  618.859251]  ? _raw_spin_unlock+0x22/0x30
[  618.863379]  ? handle_edge_irq+0x330/0x870
[  618.867599]  ? task_prio+0x50/0x50
[  618.871135]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  618.875960]  apic_timer_interrupt+0xf/0x20
[  618.880180]  </IRQ>
[  618.882403] RIP: 0010:snd_pcm_stream_unlock_irq+0xb7/0xf0
[  618.887917] RSP: 0018:ffff88016e98ea38 EFLAGS: 00000293 ORIG_RAX: ffffffffffffff13
[  618.895609] RAX: ffff88018b8d0600 RBX: 0000000000000000 RCX: 1ffff1003171a1d3
[  618.902862] RDX: 0000000000000000 RSI: ffffffff85a1b6d0 RDI: ffffffff88b17bf8
[  618.910112] RBP: ffff88016e98ea40 R08: ffff88018b8d0e78 R09: 0000000000000006
[  618.917366] R10: ffff88018b8d0600 R11: 0000000000000000 R12: 0000000000000004
[  618.924616] R13: 00000000ffffffe0 R14: ffff8801aad0c300 R15: ffff8801ce427b40
[  618.931883]  ? snd_pcm_stream_unlock_irq+0xb0/0xf0
[  618.936799]  ? snd_pcm_stream_unlock_irq+0xb0/0xf0
[  618.941708]  __snd_pcm_lib_xfer+0x739/0x1d10
[  618.946099]  ? print_usage_bug+0xc0/0xc0
[  618.950139]  ? print_usage_bug+0xc0/0xc0
[  618.954182]  ? snd_pcm_hw_rule_noresample_func+0x110/0x110
[  618.959793]  ? __bpf_trace_applptr+0x40/0x40
[  618.964186]  ? pcm_lib_apply_appl_ptr+0x5a0/0x5a0
[  618.969010]  ? mark_held_locks+0xc9/0x160
[  618.973157]  ? retint_kernel+0x10/0x10
[  618.977026]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  618.982026]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  618.986767]  ? retint_kernel+0x10/0x10
[  618.990649]  ? snd_pcm_oss_write3+0xfb/0x220
[  618.995052]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  619.000569]  ? snd_pcm_oss_prepare+0x87/0x1b0
[  619.005052]  snd_pcm_oss_write3+0xe9/0x220
[  619.009275]  io_playback_transfer+0x274/0x310
[  619.013758]  snd_pcm_plug_write_transfer+0x36c/0x470
[  619.018847]  ? snd_pcm_plug_client_channels_buf+0x450/0x450
[  619.024538]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[  619.029534]  ? snd_pcm_plug_client_channels_buf+0x212/0x450
[  619.035236]  snd_pcm_oss_write2+0x25c/0x460
[  619.039541]  ? snd_pcm_oss_write3+0x220/0x220
[  619.044279]  ? find_held_lock+0x36/0x1c0
[  619.048321]  snd_pcm_oss_sync1+0x332/0x5a0
[  619.052629]  ? snd_pcm_oss_write2+0x460/0x460
[  619.057111]  ? kasan_check_read+0x11/0x20
[  619.061250]  ? rcu_is_watching+0x85/0x140
[  619.065380]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  619.070553]  ? wake_up_q+0x100/0x100
[  619.074250]  ? snd_pcm_format_set_silence+0x203/0x540
[  619.079425]  snd_pcm_oss_sync.isra.29+0x790/0x980
[  619.084252]  ? snd_pcm_oss_sync1+0x5a0/0x5a0
[  619.088644]  ? fsnotify_first_mark+0x330/0x330
[  619.093215]  ? kobject_put+0x8e/0x280
[  619.096999]  snd_pcm_oss_release+0x214/0x290
[  619.101388]  ? snd_pcm_oss_sync.isra.29+0x980/0x980
[  619.106383]  __fput+0x34d/0x890
[  619.109644]  ? fput+0x1a0/0x1a0
[  619.112905]  ? check_same_owner+0x320/0x320
[  619.117218]  ? _raw_spin_unlock_irq+0x27/0x70
[  619.121699]  ____fput+0x15/0x20
[  619.124959]  task_work_run+0x1e4/0x290
[  619.128828]  ? task_work_cancel+0x240/0x240
[  619.133133]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  619.138652]  ? switch_task_namespaces+0xa2/0xd0
[  619.143307]  do_exit+0x1aee/0x2730
[  619.146828]  ? plist_add+0x770/0x770
[  619.150526]  ? mm_update_next_owner+0x980/0x980
[  619.155177]  ? print_usage_bug+0xc0/0xc0
[  619.159223]  ? graph_lock+0x170/0x170
[  619.163002]  ? do_raw_spin_unlock+0x9e/0x2e0
[  619.167391]  ? rcu_note_context_switch+0x710/0x710
[  619.172298]  ? lock_acquire+0x1dc/0x520
[  619.176263]  ? __might_sleep+0x95/0x190
[  619.180220]  ? __lock_acquire+0x7f5/0x5130
[  619.184445]  ? debug_check_no_locks_freed+0x310/0x310
[  619.189622]  ? do_raw_spin_unlock+0x9e/0x2e0
[  619.194011]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  619.198585]  ? kasan_check_write+0x14/0x20
[  619.202808]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  619.207984]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  619.213503]  ? drop_futex_key_refs.isra.13+0x6d/0xe0
[  619.218586]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  619.224108]  ? futex_wait+0x5c1/0x9f0
[  619.227894]  ? futex_wait_setup+0x400/0x400
[  619.232198]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  619.237717]  ? __perf_event_task_sched_out+0x2cc/0x1470
[  619.243066]  ? graph_lock+0x170/0x170
[  619.246853]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  619.252371]  ? graph_lock+0x170/0x170
[  619.256156]  ? perf_event_sync_stat+0x5f0/0x5f0
[  619.260808]  ? memset+0x31/0x40
[  619.264070]  ? find_held_lock+0x36/0x1c0
[  619.268122]  ? lock_downgrade+0x8e0/0x8e0
[  619.272259]  do_group_exit+0x16f/0x430
[  619.276150]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  619.280716]  ? SyS_exit+0x30/0x30
[  619.284155]  ? _raw_spin_unlock_irq+0x27/0x70
[  619.288633]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  619.293632]  get_signal+0x886/0x1960
[  619.297332]  ? ptrace_notify+0x130/0x130
[  619.301381]  ? __schedule+0x80f/0x1e40
[  619.305251]  ? expand_files.part.8+0x9a0/0x9a0
[  619.309816]  ? __sched_text_start+0x8/0x8
[  619.313945]  ? snd_pcm_oss_ioctl_compat+0x30/0x30
[  619.318774]  do_signal+0x98/0x2040
[  619.322297]  ? __vfs_write+0x113/0x880
[  619.326167]  ? __fget_light+0x2ef/0x430
[  619.330128]  ? find_held_lock+0x36/0x1c0
[  619.334171]  ? snd_pcm_oss_ioctl_compat+0x30/0x30
[  619.338997]  ? kernel_read+0x120/0x120
[  619.342870]  ? setup_sigcontext+0x7d0/0x7d0
[  619.347178]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  619.352695]  ? fsnotify+0x415/0x1100
[  619.356388]  ? lock_downgrade+0x8e0/0x8e0
[  619.360521]  ? schedule+0xef/0x430
[  619.364041]  ? __schedule+0x1e40/0x1e40
[  619.368006]  ? exit_to_usermode_loop+0x87/0x310
[  619.372659]  exit_to_usermode_loop+0x28a/0x310
[  619.377227]  ? syscall_slow_exit_work+0x4f0/0x4f0
[  619.382052]  ? do_syscall_64+0xb7/0x9d0
[  619.386010]  do_syscall_64+0x792/0x9d0
[  619.389882]  ? vmalloc_sync_all+0x30/0x30
[  619.394011]  ? _raw_spin_unlock_irq+0x27/0x70
[  619.398487]  ? finish_task_switch+0x1ca/0x820
[  619.402969]  ? syscall_return_slowpath+0x5c0/0x5c0
[  619.407884]  ? syscall_return_slowpath+0x30f/0x5c0
[  619.412801]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  619.418149]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  619.422982]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  619.428153] RIP: 0033:0x455259
[  619.431324] RSP: 002b:00007f393e8bfce8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  619.439014] RAX: fffffffffffffe00 RBX: 000000000072bf80 RCX: 0000000000455259
[  619.446262] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000072bf80
[  619.453512] RBP: 000000000072bf80 R08: 0000000000000000 R09: 000000000072bf58
[  619.460763] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  619.468012] R13: 0000000000a3e81f R14: 00007f393e8c09c0 R15: 0000000000000001
[  619.475661] INFO: NMI handler (nmi_cpu_backtrace_handler) took too long to run: 1.854 msecs
[  621.609018] INFO: rcu_bh self-detected stall on CPU
[  621.610027] INFO: rcu_bh detected stalls on CPUs/tasks:
[  621.614092] 	1-....: (1 GPs behind) idle=28e/1/4611686018427387906 softirq=139250/141063 fqs=30745 
[  621.628593] 	
[  621.628606] 	1-....: (1 GPs behind) idle=28e/1/4611686018427387906 softirq=139250/141063 fqs=30745 
[  621.628612] 	
[  621.630305]  (t=125002 jiffies g=-155 c=-156 q=1)
[  621.639474] (detected by 0, t=125002 jiffies, g=-155, c=-156, q=1)
[  621.641166] NMI backtrace for cpu 1
[  621.655897] CPU: 1 PID: 31915 Comm: syz-executor7 Not tainted 4.16.0+ #18
[  621.662801] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  621.672136] Call Trace:
[  621.674698]  <IRQ>
[  621.676838]  dump_stack+0x1b9/0x294
[  621.680450]  ? dump_stack_print_info.cold.2+0x52/0x52
[  621.685623]  ? lock_release+0xa10/0xa10
[  621.689586]  nmi_cpu_backtrace.cold.4+0x19/0xce
[  621.694241]  ? lapic_can_unplug_cpu.cold.26+0x3f/0x3f
[  621.699420]  nmi_trigger_cpumask_backtrace+0x151/0x192
[  621.704682]  arch_trigger_cpumask_backtrace+0x14/0x20
[  621.709859]  rcu_dump_cpu_stacks+0x175/0x1c2
[  621.714261]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  621.719266]  check_cpu_stall.isra.61.cold.80+0x36c/0x59a
[  621.725049]  ? print_other_cpu_stall+0x4a0/0x4a0
[  621.729789]  ? graph_lock+0x170/0x170
[  621.733577]  ? debug_check_no_locks_freed+0x310/0x310
[  621.738749]  ? __lock_acquire+0x7f5/0x5130
[  621.742971]  ? debug_check_no_locks_freed+0x310/0x310
[  621.748142]  ? debug_check_no_locks_freed+0x310/0x310
[  621.753313]  ? ___ratelimit.cold.2+0x6a/0x6a
[  621.757705]  ? graph_lock+0x170/0x170
[  621.761484]  ? __lock_is_held+0xb5/0x140
[  621.765530]  ? show_rcu_gp_kthreads+0x30/0x30
[  621.770006]  ? graph_lock+0x170/0x170
[  621.773791]  ? graph_lock+0x170/0x170
[  621.777583]  ? __lock_is_held+0xb5/0x140
[  621.781632]  rcu_check_callbacks+0x21b/0xad0
[  621.786038]  ? rcu_cpu_stall_reset+0x210/0x210
[  621.790606]  ? trace_hardirqs_off+0xd/0x10
[  621.794821]  ? raise_softirq+0x1b2/0x450
[  621.798867]  ? raise_softirq_irqoff+0x310/0x310
[  621.803519]  ? pvclock_read_flags+0x160/0x160
[  621.808005]  ? account_guest_time+0x3d0/0x3d0
[  621.812485]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  621.818525]  ? hrtimer_run_queues+0x70/0x300
[  621.822916]  ? run_local_timers+0x168/0x1d0
[  621.827220]  ? timer_clear_idle+0x50/0x50
[  621.831350]  ? account_system_time+0x7f/0xb0
[  621.835749]  ? account_process_tick+0x76/0x240
[  621.840314]  update_process_times+0x2d/0x70
[  621.844732]  tick_sched_handle+0xa0/0x180
[  621.848870]  tick_sched_timer+0x42/0x130
[  621.852916]  __hrtimer_run_queues+0x3e3/0x10a0
[  621.857480]  ? tick_sched_do_timer+0x100/0x100
[  621.862048]  ? hrtimer_start_range_ns+0xd10/0xd10
[  621.866878]  ? pvclock_read_flags+0x160/0x160
[  621.871355]  ? kvm_clock_read+0x25/0x30
[  621.875327]  ? kvm_clock_read+0x25/0x30
[  621.879294]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[  621.884298]  ? ktime_get_update_offsets_now+0x3a6/0x570
[  621.889655]  ? do_timer+0x50/0x50
[  621.893089]  ? rcu_nmi_exit+0xd7/0x2b0
[  621.896965]  ? do_raw_spin_lock+0xc1/0x200
[  621.901186]  hrtimer_interrupt+0x286/0x650
[  621.905412]  smp_apic_timer_interrupt+0x15d/0x710
[  621.910237]  ? smp_call_function_single_interrupt+0x650/0x650
[  621.916107]  ? _raw_spin_lock+0x32/0x40
[  621.920065]  ? _raw_spin_unlock+0x22/0x30
[  621.924196]  ? handle_edge_irq+0x330/0x870
[  621.928415]  ? task_prio+0x50/0x50
[  621.931941]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  621.936770]  apic_timer_interrupt+0xf/0x20
[  621.940988]  </IRQ>
[  621.943213] RIP: 0010:snd_pcm_stream_unlock_irq+0xb7/0xf0
[  621.948729] RSP: 0018:ffff88016e98ea38 EFLAGS: 00000293 ORIG_RAX: ffffffffffffff13
[  621.956506] RAX: ffff88018b8d0600 RBX: 0000000000000000 RCX: 1ffff1003171a1d3
[  621.963757] RDX: 0000000000000000 RSI: ffffffff85a1b6d0 RDI: ffffffff88b17bf8
[  621.971008] RBP: ffff88016e98ea40 R08: ffff88018b8d0e78 R09: 0000000000000006
[  621.978260] R10: ffff88018b8d0600 R11: 0000000000000000 R12: 0000000000000004
[  621.985509] R13: 00000000ffffffe0 R14: ffff8801aad0c300 R15: ffff8801ce427b40
[  621.992773]  ? snd_pcm_stream_unlock_irq+0xb0/0xf0
[  621.997685]  ? snd_pcm_stream_unlock_irq+0xb0/0xf0
[  622.002598]  __snd_pcm_lib_xfer+0x739/0x1d10
[  622.007003]  ? print_usage_bug+0xc0/0xc0
[  622.011044]  ? print_usage_bug+0xc0/0xc0
[  622.015103]  ? snd_pcm_hw_rule_noresample_func+0x110/0x110
[  622.020709]  ? __bpf_trace_applptr+0x40/0x40
[  622.025101]  ? pcm_lib_apply_appl_ptr+0x5a0/0x5a0
[  622.029927]  ? mark_held_locks+0xc9/0x160
[  622.034057]  ? retint_kernel+0x10/0x10
[  622.037925]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  622.042925]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  622.047672]  ? retint_kernel+0x10/0x10
[  622.051542]  ? snd_pcm_oss_write3+0x165/0x220
[  622.056108]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  622.061625]  ? snd_pcm_oss_prepare+0x87/0x1b0
[  622.066103]  snd_pcm_oss_write3+0xe9/0x220
[  622.070322]  io_playback_transfer+0x274/0x310
[  622.074823]  snd_pcm_plug_write_transfer+0x36c/0x470
[  622.079908]  ? snd_pcm_plug_client_channels_buf+0x450/0x450
[  622.085601]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[  622.090601]  ? snd_pcm_plug_client_channels_buf+0x212/0x450
[  622.096293]  snd_pcm_oss_write2+0x25c/0x460
[  622.100685]  ? snd_pcm_oss_write3+0x220/0x220
[  622.105161]  ? find_held_lock+0x36/0x1c0
[  622.109205]  snd_pcm_oss_sync1+0x332/0x5a0
[  622.113422]  ? snd_pcm_oss_write2+0x460/0x460
[  622.117904]  ? kasan_check_read+0x11/0x20
[  622.122037]  ? rcu_is_watching+0x85/0x140
[  622.126168]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  622.131777]  ? wake_up_q+0x100/0x100
[  622.135487]  ? snd_pcm_format_set_silence+0x203/0x540
[  622.140662]  snd_pcm_oss_sync.isra.29+0x790/0x980
[  622.145487]  ? snd_pcm_oss_sync1+0x5a0/0x5a0
[  622.149879]  ? fsnotify_first_mark+0x330/0x330
[  622.156704]  ? kobject_put+0x8e/0x280
[  622.160488]  snd_pcm_oss_release+0x214/0x290
[  622.164882]  ? snd_pcm_oss_sync.isra.29+0x980/0x980
[  622.169880]  __fput+0x34d/0x890
[  622.173145]  ? fput+0x1a0/0x1a0
[  622.176414]  ? check_same_owner+0x320/0x320
[  622.180717]  ? _raw_spin_unlock_irq+0x27/0x70
[  622.185196]  ____fput+0x15/0x20
[  622.188466]  task_work_run+0x1e4/0x290
[  622.193827]  ? task_work_cancel+0x240/0x240
[  622.198132]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  622.203649]  ? switch_task_namespaces+0xa2/0xd0
[  622.208299]  do_exit+0x1aee/0x2730
[  622.211824]  ? plist_add+0x770/0x770
[  622.215526]  ? mm_update_next_owner+0x980/0x980
[  622.220176]  ? print_usage_bug+0xc0/0xc0
[  622.224219]  ? graph_lock+0x170/0x170
[  622.228001]  ? do_raw_spin_unlock+0x9e/0x2e0
[  622.232390]  ? rcu_note_context_switch+0x710/0x710
[  622.237298]  ? lock_acquire+0x1dc/0x520
[  622.241433]  ? __might_sleep+0x95/0x190
[  622.245393]  ? __lock_acquire+0x7f5/0x5130
[  622.249624]  ? debug_check_no_locks_freed+0x310/0x310
[  622.254797]  ? do_raw_spin_unlock+0x9e/0x2e0
[  622.259188]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  622.263752]  ? kasan_check_write+0x14/0x20
[  622.267968]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  622.273140]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  622.278660]  ? drop_futex_key_refs.isra.13+0x6d/0xe0
[  622.283746]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  622.289270]  ? futex_wait+0x5c1/0x9f0
[  622.293058]  ? futex_wait_setup+0x400/0x400
[  622.297362]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  622.302882]  ? __perf_event_task_sched_out+0x2cc/0x1470
[  622.308228]  ? graph_lock+0x170/0x170
[  622.312010]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  622.317527]  ? graph_lock+0x170/0x170
[  622.321307]  ? perf_event_sync_stat+0x5f0/0x5f0
[  622.325972]  ? memset+0x31/0x40
[  622.329233]  ? find_held_lock+0x36/0x1c0
[  622.333280]  ? lock_downgrade+0x8e0/0x8e0
[  622.337415]  do_group_exit+0x16f/0x430
[  622.341286]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  622.345856]  ? SyS_exit+0x30/0x30
[  622.349292]  ? _raw_spin_unlock_irq+0x27/0x70
[  622.353766]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  622.358766]  get_signal+0x886/0x1960
[  622.362466]  ? ptrace_notify+0x130/0x130
[  622.366507]  ? __schedule+0x80f/0x1e40
[  622.370375]  ? expand_files.part.8+0x9a0/0x9a0
[  622.374950]  ? __sched_text_start+0x8/0x8
[  622.379077]  ? snd_pcm_oss_ioctl_compat+0x30/0x30
[  622.383918]  do_signal+0x98/0x2040
[  622.387452]  ? __vfs_write+0x113/0x880
[  622.391321]  ? __fget_light+0x2ef/0x430
[  622.395274]  ? find_held_lock+0x36/0x1c0
[  622.399317]  ? snd_pcm_oss_ioctl_compat+0x30/0x30
[  622.404142]  ? kernel_read+0x120/0x120
[  622.408010]  ? setup_sigcontext+0x7d0/0x7d0
[  622.412310]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  622.417835]  ? fsnotify+0x415/0x1100
[  622.421526]  ? lock_downgrade+0x8e0/0x8e0
[  622.425657]  ? schedule+0xef/0x430
[  622.429178]  ? __schedule+0x1e40/0x1e40
[  622.433145]  ? exit_to_usermode_loop+0x87/0x310
[  622.437800]  exit_to_usermode_loop+0x28a/0x310
[  622.442365]  ? syscall_slow_exit_work+0x4f0/0x4f0
[  622.447191]  ? do_syscall_64+0xb7/0x9d0
[  622.451153]  do_syscall_64+0x792/0x9d0
[  622.455022]  ? vmalloc_sync_all+0x30/0x30
[  622.459152]  ? _raw_spin_unlock_irq+0x27/0x70
[  622.463627]  ? finish_task_switch+0x1ca/0x820
[  622.468102]  ? syscall_return_slowpath+0x5c0/0x5c0
[  622.473015]  ? syscall_return_slowpath+0x30f/0x5c0
[  622.477938]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  622.483284]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  622.488113]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  622.493299] RIP: 0033:0x455259
[  622.496476] RSP: 002b:00007f393e8bfce8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  622.504167] RAX: fffffffffffffe00 RBX: 000000000072bf80 RCX: 0000000000455259
[  622.511416] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000072bf80
[  622.518670] RBP: 000000000072bf80 R08: 0000000000000000 R09: 000000000072bf58
[  622.525930] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  622.533180] R13: 0000000000a3e81f R14: 00007f393e8c09c0 R15: 0000000000000001
[  622.540454] Sending NMI from CPU 0 to CPUs 1:
[  622.544947] NMI backtrace for cpu 1
[  622.544956] CPU: 1 PID: 31915 Comm: syz-executor7 Not tainted 4.16.0+ #18
[  622.544961] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  622.544975] RIP: 0010:native_queued_spin_lock_slowpath+0x204/0xde0
[  622.544979] RSP: 0018:ffff8801db1070b0 EFLAGS: 00000002
[  622.544985] RAX: 0000000000000000 RBX: ffffed003b620e2f RCX: 0000000000000004
[  622.544990] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffffffff88b8eec0
[  622.544995] RBP: ffff8801db107420 R08: fffffbfff1171dd9 R09: fffffbfff1171dd8
[  622.545000] R10: fffffbfff1171dd8 R11: ffffffff88b8eec3 R12: ffffffff88b8eec0
[  622.545005] R13: ffff8801db1073f8 R14: 0000000000000001 R15: dffffc0000000000
[  622.545012] FS:  00007f393e8c0700(0000) GS:ffff8801db100000(0000) knlGS:0000000000000000
[  622.545017] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  622.545022] CR2: ffffffffff600400 CR3: 00000001ccc17000 CR4: 00000000001406e0
[  622.545030] DR0: 0000000020000000 DR1: 0000000020000000 DR2: 0000000000000000
[  622.545034] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000600
[  622.545036] Call Trace:
[  622.545040]  <IRQ>
[  622.545047]  ? lock_downgrade+0x8e0/0x8e0
[  622.545055]  ? vprintk_func+0x81/0xe7
[  622.545064]  ? .slowpath+0x15/0x15
[  622.545070]  ? find_held_lock+0x36/0x1c0
[  622.545079]  ? lock_downgrade+0x8e0/0x8e0
[  622.545089]  ? graph_lock+0x170/0x170
[  622.545098]  ? kasan_check_read+0x11/0x20
[  622.545106]  ? do_raw_spin_unlock+0x9e/0x2e0
[  622.545114]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  622.545122]  ? find_held_lock+0x36/0x1c0
[  622.545131]  ? lock_downgrade+0x8e0/0x8e0
[  622.545139]  ? lock_acquire+0x1dc/0x520
[  622.545149]  ? check_cpu_stall.isra.61.cold.80+0x374/0x59a
[  622.545157]  ? lock_release+0xa10/0xa10
[  622.545167]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  622.545176]  ? trace_hardirqs_off+0xd/0x10
[  622.545185]  do_raw_spin_lock+0x1a7/0x200
[  622.545195]  _raw_spin_lock_irqsave+0x9e/0xc0
[  622.545203]  ? check_cpu_stall.isra.61.cold.80+0x374/0x59a
[  622.545212]  check_cpu_stall.isra.61.cold.80+0x374/0x59a
[  622.545221]  ? print_other_cpu_stall+0x4a0/0x4a0
[  622.545229]  ? graph_lock+0x170/0x170
[  622.545239]  ? debug_check_no_locks_freed+0x310/0x310
[  622.545246]  ? __lock_acquire+0x7f5/0x5130
[  622.545256]  ? debug_check_no_locks_freed+0x310/0x310
[  622.545264]  ? debug_check_no_locks_freed+0x310/0x310
[  622.545272]  ? ___ratelimit.cold.2+0x6a/0x6a
[  622.545280]  ? graph_lock+0x170/0x170
[  622.545287]  ? __lock_is_held+0xb5/0x140
[  622.545297]  ? show_rcu_gp_kthreads+0x30/0x30
[  622.545310]  ? graph_lock+0x170/0x170
[  622.545318]  ? graph_lock+0x170/0x170
[  622.545328]  ? __lock_is_held+0xb5/0x140
[  622.545338]  rcu_check_callbacks+0x21b/0xad0
[  622.545347]  ? rcu_cpu_stall_reset+0x210/0x210
[  622.545357]  ? trace_hardirqs_off+0xd/0x10
[  622.545366]  ? raise_softirq+0x1b2/0x450
[  622.545375]  ? raise_softirq_irqoff+0x310/0x310
[  622.545385]  ? pvclock_read_flags+0x160/0x160
[  622.545393]  ? account_guest_time+0x3d0/0x3d0
[  622.545402]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  622.545410]  ? hrtimer_run_queues+0x70/0x300
[  622.545418]  ? run_local_timers+0x168/0x1d0
[  622.545425]  ? timer_clear_idle+0x50/0x50
[  622.545433]  ? account_system_time+0x7f/0xb0
[  622.545441]  ? account_process_tick+0x76/0x240
[  622.545449]  update_process_times+0x2d/0x70
[  622.545459]  tick_sched_handle+0xa0/0x180
[  622.545467]  tick_sched_timer+0x42/0x130
[  622.545476]  __hrtimer_run_queues+0x3e3/0x10a0
[  622.545485]  ? tick_sched_do_timer+0x100/0x100
[  622.545494]  ? hrtimer_start_range_ns+0xd10/0xd10
[  622.545503]  ? pvclock_read_flags+0x160/0x160
[  622.545511]  ? kvm_clock_read+0x25/0x30
[  622.545519]  ? kvm_clock_read+0x25/0x30
[  622.545527]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[  622.545536]  ? ktime_get_update_offsets_now+0x3a6/0x570
[  622.545544]  ? do_timer+0x50/0x50
[  622.545552]  ? rcu_nmi_exit+0xd7/0x2b0
[  622.545560]  ? do_raw_spin_lock+0xc1/0x200
[  622.545569]  hrtimer_interrupt+0x286/0x650
[  622.545580]  smp_apic_timer_interrupt+0x15d/0x710
[  622.545588]  ? smp_call_function_single_interrupt+0x650/0x650
[  622.545596]  ? _raw_spin_lock+0x32/0x40
[  622.545604]  ? _raw_spin_unlock+0x22/0x30
[  622.545612]  ? handle_edge_irq+0x330/0x870
[  622.545621]  ? task_prio+0x50/0x50
[  622.545631]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  622.545640]  apic_timer_interrupt+0xf/0x20
[  622.545643]  </IRQ>
[  622.545653] RIP: 0010:snd_pcm_stream_unlock_irq+0xb7/0xf0
[  622.545657] RSP: 0018:ffff88016e98ea38 EFLAGS: 00000293 ORIG_RAX: ffffffffffffff13
[  622.545665] RAX: ffff88018b8d0600 RBX: 0000000000000000 RCX: 1ffff1003171a1d3
[  622.545669] RDX: 0000000000000000 RSI: ffffffff85a1b6d0 RDI: ffffffff88b17bf8
[  622.545674] RBP: ffff88016e98ea40 R08: ffff88018b8d0e78 R09: 0000000000000006
[  622.545679] R10: ffff88018b8d0600 R11: 0000000000000000 R12: 0000000000000004
[  622.545684] R13: 00000000ffffffe0 R14: ffff8801aad0c300 R15: ffff8801ce427b40
[  622.545694]  ? snd_pcm_stream_unlock_irq+0xb0/0xf0
[  622.545704]  ? snd_pcm_stream_unlock_irq+0xb0/0xf0
[  622.545712]  __snd_pcm_lib_xfer+0x739/0x1d10
[  622.545719]  ? print_usage_bug+0xc0/0xc0
[  622.545726]  ? print_usage_bug+0xc0/0xc0
[  622.545735]  ? snd_pcm_hw_rule_noresample_func+0x110/0x110
[  622.545742]  ? __bpf_trace_applptr+0x40/0x40
[  622.545751]  ? pcm_lib_apply_appl_ptr+0x5a0/0x5a0
[  622.545758]  ? mark_held_locks+0xc9/0x160
[  622.545767]  ? retint_kernel+0x10/0x10
[  622.545775]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  622.545783]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  622.545792]  ? retint_kernel+0x10/0x10
[  622.545801]  ? snd_pcm_oss_write3+0x165/0x220
[  622.545810]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  622.545817]  ? snd_pcm_oss_prepare+0x87/0x1b0
[  622.545825]  snd_pcm_oss_write3+0xe9/0x220
[  622.545834]  io_playback_transfer+0x274/0x310
[  622.545843]  snd_pcm_plug_write_transfer+0x36c/0x470
[  622.545852]  ? snd_pcm_plug_client_channels_buf+0x450/0x450
[  622.545860]  ? __sanitizer_cov_trace_cmp4+0x16/0x20
[  622.545868]  ? snd_pcm_plug_client_channels_buf+0x212/0x450
[  622.545876]  snd_pcm_oss_write2+0x25c/0x460
[  622.545884]  ? snd_pcm_oss_write3+0x220/0x220
[  622.545891]  ? find_held_lock+0x36/0x1c0
[  622.545899]  snd_pcm_oss_sync1+0x332/0x5a0
[  622.545907]  ? snd_pcm_oss_write2+0x460/0x460
[  622.545916]  ? kasan_check_read+0x11/0x20
[  622.545923]  ? rcu_is_watching+0x85/0x140
[  622.545931]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  622.545939]  ? wake_up_q+0x100/0x100
[  622.545948]  ? snd_pcm_format_set_silence+0x203/0x540
[  622.545956]  snd_pcm_oss_sync.isra.29+0x790/0x980
[  622.545964]  ? snd_pcm_oss_sync1+0x5a0/0x5a0
[  622.545974]  ? fsnotify_first_mark+0x330/0x330
[  622.545983]  ? kobject_put+0x8e/0x280
[  622.545991]  snd_pcm_oss_release+0x214/0x290
[  622.545999]  ? snd_pcm_oss_sync.isra.29+0x980/0x980
[  622.546006]  __fput+0x34d/0x890
[  622.546013]  ? fput+0x1a0/0x1a0
[  622.546021]  ? check_same_owner+0x320/0x320
[  622.546029]  ? _raw_spin_unlock_irq+0x27/0x70
[  622.546037]  ____fput+0x15/0x20
[  622.546044]  task_work_run+0x1e4/0x290
[  622.546052]  ? task_work_cancel+0x240/0x240
[  622.546061]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  622.546069]  ? switch_task_namespaces+0xa2/0xd0
[  622.546078]  do_exit+0x1aee/0x2730
[  622.546084]  ? plist_add+0x770/0x770
[  622.546093]  ? mm_update_next_owner+0x980/0x980
[  622.546100]  ? print_usage_bug+0xc0/0xc0
[  622.546109]  ? graph_lock+0x170/0x170
[  622.546116]  ? do_raw_spin_unlock+0x9e/0x2e0
[  622.546124]  ? rcu_note_context_switch+0x710/0x710
[  622.546131]  ? lock_acquire+0x1dc/0x520
[  622.546140]  ? __might_sleep+0x95/0x190
[  622.546148]  ? __lock_acquire+0x7f5/0x5130
[  622.546159]  ? debug_check_no_locks_freed+0x310/0x310
[  622.546167]  ? do_raw_spin_unlock+0x9e/0x2e0
[  622.546175]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  622.546182]  ? kasan_check_write+0x14/0x20
[  622.546191]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  622.546200]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  622.546207]  ? drop_futex_key_refs.isra.13+0x6d/0xe0
[  622.546216]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  622.546222]  ? futex_wait+0x5c1/0x9f0
[  622.546231]  ? futex_wait_setup+0x400/0x400
[  622.546239]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  622.546249]  ? __perf_event_task_sched_out+0x2cc/0x1470
[  622.546257]  ? graph_lock+0x170/0x170
[  622.546266]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  622.546275]  ? graph_lock+0x170/0x170
[  622.546282]  ? perf_event_sync_stat+0x5f0/0x5f0
[  622.546290]  ? memset+0x31/0x40
[  622.546298]  ? find_held_lock+0x36/0x1c0
[  622.546311]  ? lock_downgrade+0x8e0/0x8e0
[  622.546320]  do_group_exit+0x16f/0x430
[  622.546328]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  622.546335]  ? SyS_exit+0x30/0x30
[  622.546344]  ? _raw_spin_unlock_irq+0x27/0x70
[  622.546351]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  622.546360]  get_signal+0x886/0x1960
[  622.546370]  ? ptrace_notify+0x130/0x130
[  622.546378]  ? __schedule+0x80f/0x1e40
[  622.546386]  ? expand_files.part.8+0x9a0/0x9a0
[  622.546394]  ? __sched_text_start+0x8/0x8
[  622.546402]  ? snd_pcm_oss_ioctl_compat+0x30/0x30
[  622.546412]  do_signal+0x98/0x2040
[  622.546421]  ? __vfs_write+0x113/0x880
[  622.546428]  ? __fget_light+0x2ef/0x430
[  622.546434]  ? find_held_lock+0x36/0x1c0
[  622.546441]  ? snd_pcm_oss_ioctl_compat+0x30/0x30
[  622.546449]  ? kernel_read+0x120/0x120
[  622.546458]  ? setup_sigcontext+0x7d0/0x7d0
[  622.546466]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  622.546474]  ? fsnotify+0x415/0x1100
[  622.546480]  ? lock_downgrade+0x8e0/0x8e0
[  622.546488]  ? schedule+0xef/0x430
[  622.546496]  ? __schedule+0x1e40/0x1e40
[  622.546507]  ? exit_to_usermode_loop+0x87/0x310
[  622.546516]  exit_to_usermode_loop+0x28a/0x310
[  622.546525]  ? syscall_slow_exit_work+0x4f0/0x4f0
[  622.546533]  ? do_syscall_64+0xb7/0x9d0
[  622.546542]  do_syscall_64+0x792/0x9d0
[  622.546549]  ? vmalloc_sync_all+0x30/0x30
[  622.546557]  ? _raw_spin_unlock_irq+0x27/0x70
[  622.546565]  ? finish_task_switch+0x1ca/0x820
[  622.546574]  ? syscall_return_slowpath+0x5c0/0x5c0
[  622.546582]  ? syscall_return_slowpath+0x30f/0x5c0
[  622.546592]  ? entry_SYSCALL_64_after_hwframe+0x52/0xb7
[  622.546601]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  622.546611]  entry_SYSCALL_64_after_hwframe+0x42/0xb7
[  622.546617] RIP: 0033:0x455259
[  622.546620] RSP: 002b:00007f393e8bfce8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  622.546628] RAX: fffffffffffffe00 RBX: 000000000072bf80 RCX: 0000000000455259
[  622.546632] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000072bf80
[  622.546637] RBP: 000000000072bf80 R08: 0000000000000000 R09: 000000000072bf58
[  622.546641] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  622.546646] R13: 0000000000a3e81f R14: 00007f393e8c09c0 R15: 0000000000000001
[  622.546650] Code: 5c 00 00 00 00 48 83 e7 f8 49 29 fc 41 8d 4c 24 64 c1 e9 03 f3 48 ab 48 81 c4 48 03 00 00 5b 41 5c 41 5d 41 5e 41 5f 5d c3 f3 90 <e9> 3b ff ff ff 89 f1 81 fe 00 01 00 00 0f 84 9e 03 00 00 41 be