0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, 0xffffffffffffffff, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x80000) 23:05:39 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000009ff00000000000000", 0x1e5) 23:05:39 executing program 5: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x80000) [ 108.627459][T10843] do_wp_page+0x5a8/0xba0 [ 108.631786][T10843] handle_mm_fault+0xb11/0x1a50 [ 108.636637][T10843] do_user_addr_fault+0x609/0xbe0 [ 108.641664][T10843] exc_page_fault+0x91/0x220 [ 108.646288][T10843] asm_exc_page_fault+0x1e/0x30 [ 108.651237][T10843] RIP: 0010:copy_user_enhanced_fast_string+0xe/0x40 [ 108.657834][T10843] Code: 89 d1 c1 e9 03 83 e2 07 f3 48 a5 89 d1 f3 a4 31 c0 0f 1f 00 c3 0f 1f 80 00 00 00 00 0f 1f 00 83 fa 40 0f 82 70 ff ff ff 89 d1 a4 31 c0 0f 1f 00 c3 66 2e 0f 1f 84 00 00 00 00 00 89 d1 83 f8 23:05:39 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) preadv(r0, &(0x7f0000001500)=[{&(0x7f0000000300)=""/4096, 0x1000}, {&(0x7f0000000040)=""/213, 0xd5}, {&(0x7f0000000140)=""/40, 0x28}, {&(0x7f0000000180)=""/230, 0xe6}, {&(0x7f0000000280)=""/39, 0x27}, {&(0x7f0000001300)=""/224, 0xe0}, {&(0x7f0000001400)=""/213, 0xd5}], 0x7, 0xffff, 0x9) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) mmap(&(0x7f00002cd000/0x1000)=nil, 0x1000, 0x200000a, 0x12, r2, 0x3fce4000) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x816e000) [ 108.677554][T10843] RSP: 0018:ffffc90010097dd0 EFLAGS: 00010202 [ 108.683716][T10843] RAX: ffff888132c0e9e0 RBX: 0000000000000180 RCX: 0000000000000180 [ 108.691687][T10843] RDX: 0000000000000180 RSI: ffff88812f6d0600 RDI: 0000000020000000 [ 108.699749][T10843] RBP: ffff8881008ee080 R08: 0000000000000000 R09: 0001ffffffffffff [ 108.707717][T10843] R10: 000188812f6d077f R11: ffff888132c0e000 R12: 00007ffffffff000 [ 108.715684][T10843] R13: 0000000020000180 R14: ffff88812f6d0600 R15: 0000000020000000 [ 108.723659][T10843] _copy_to_user+0x77/0x90 23:05:39 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f407000904240000000aff00000000000000", 0x1e5) 23:05:39 executing program 5: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x80000) [ 108.728200][T10843] sg_ioctl_common+0xf3a/0x1770 [ 108.733058][T10843] ? do_vfs_ioctl+0x7c2/0x1410 [ 108.737879][T10843] ? __x64_sys_dup2+0x26/0xf0 [ 108.742592][T10843] sg_ioctl+0x54/0xc0 [ 108.746646][T10843] ? sg_poll+0x240/0x240 [ 108.750880][T10843] __se_sys_ioctl+0xcb/0x140 [ 108.755471][T10843] __x64_sys_ioctl+0x3f/0x50 [ 108.760061][T10843] do_syscall_64+0x3d/0x90 [ 108.764521][T10843] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 108.770421][T10843] RIP: 0033:0x4665e9 [ 108.774321][T10843] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 108.794090][T10843] RSP: 002b:00007f57b5f4d188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 108.802506][T10843] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 108.810730][T10843] RDX: 0000000020000000 RSI: 0000000000002286 RDI: 0000000000000003 [ 108.818796][T10843] RBP: 00007f57b5f4d1d0 R08: 0000000000000000 R09: 0000000000000000 [ 108.827565][T10843] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 108.835547][T10843] R13: 00007ffd50fa5c2f R14: 00007f57b5f4d300 R15: 0000000000022000 23:05:40 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000000), 0x20200, 0x0) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:40 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000000), 0x20200, 0x0) sendfile(r2, r1, 0x0, 0x6) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) r3 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r3, 0x2403, 0x81) dup2(r1, r3) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:40 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) sendmsg$nl_xfrm(r2, &(0x7f00000000c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000300)=@getsadinfo={0x28c, 0x23, 0x800, 0x70bd27, 0x25dfdbfb, 0x0, [@algo_auth_trunc={0xdf, 0x14, {{'sha224-neon\x00'}, 0x498, 0x100, "66d654882b702d80b0673fc74ff7aa2d0501406600580681ba89f1b7c57d3021fd49019128559704b461afd3cd19da29ed6e6ea4d2fd47ae50f94dcdd97bfa3eeeac2f4a924ca7efce8fd8a7dadc2622a93ae42df5011418df59d5df80b3c0cb32e30782afdb8b9697aa5ef8789406ad16455fb55d0c6819b8a3c48b5017c99e7f1289cada99f4c901db9ad11e0bf2a63d4402"}}, @lastused={0xc, 0xf, 0x8001}, @user_kmaddress={0x2c, 0x13, {@in=@broadcast, @in6=@mcast1, 0x0, 0xa}}, @etimer_thresh={0x8}, @policy_type={0xa}, @replay_thresh={0x8, 0xb, 0x5}, @tmpl={0x144, 0x5, [{{@in=@rand_addr=0x64010101, 0x4d4, 0x6c}, 0xa, @in=@broadcast, 0x3502, 0x2, 0x3, 0x2, 0x2, 0x6, 0xfffffffa}, {{@in=@loopback, 0x4d3, 0x33}, 0x2, @in6=@mcast1, 0x3502, 0x3, 0x1, 0xfc, 0x20, 0x100, 0x1}, {{@in=@remote, 0x4d5, 0x6c}, 0xa, @in6=@loopback, 0x0, 0x0, 0x1, 0x2, 0x6, 0x0, 0x3ff}, {{@in=@loopback, 0x4d4, 0x6c}, 0xa, @in6=@local, 0x34ff, 0x0, 0x3, 0xe0, 0x5, 0x10000, 0x6}, {{@in=@rand_addr=0x64010102, 0x4d3, 0x32}, 0xa, @in6=@mcast2, 0x3506, 0x2, 0x0, 0x0, 0x2c, 0x80000001, 0x10000}]}]}, 0x28c}, 0x1, 0x0, 0x0, 0x24008004}, 0x40) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r3 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r3, 0x2403, 0x81) write$binfmt_aout(r3, &(0x7f00000005c0)={{0x10b, 0x3, 0x5, 0x25b, 0x1ad, 0x2, 0x1a6, 0x9}, "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", ['\x00']}, 0x1120) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x816e000) r4 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setresuid(0x0, r5, 0xee00) fchown(r0, r5, 0xee00) 23:05:40 executing program 5: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x80000) 23:05:40 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f407000904240000c00eff00000000000000", 0x1e5) 23:05:40 executing program 1 (fault-call:4 fault-nth:4): r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:05:40 executing program 5: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, 0x0, 0x0, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x80000) 23:05:40 executing program 5: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, 0x0, 0x0, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x80000) [ 109.411006][T10897] FAULT_INJECTION: forcing a failure. [ 109.411006][T10897] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 109.424268][T10897] CPU: 1 PID: 10897 Comm: syz-executor.1 Not tainted 5.14.0-rc2-syzkaller #0 [ 109.433107][T10897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 109.443161][T10897] Call Trace: [ 109.446441][T10897] dump_stack_lvl+0xb7/0x103 [ 109.451034][T10897] dump_stack+0x11/0x1a [ 109.455192][T10897] should_fail+0x23c/0x250 23:05:40 executing program 5: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, 0x0, 0x0, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x80000) 23:05:40 executing program 5: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0x0, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x80000) [ 109.459607][T10897] __alloc_pages+0x102/0x320 [ 109.464188][T10897] alloc_pages_vma+0x513/0x680 [ 109.468955][T10897] ? __anon_vma_prepare+0x236/0x2d0 [ 109.474182][T10897] wp_page_copy+0x14c/0x10c0 [ 109.478767][T10897] ? avc_has_perm+0x59/0x150 [ 109.483360][T10897] ? avc_has_perm+0xc8/0x150 [ 109.488029][T10897] do_wp_page+0x5a8/0xba0 [ 109.492353][T10897] handle_mm_fault+0xb11/0x1a50 [ 109.497197][T10897] do_user_addr_fault+0x609/0xbe0 [ 109.502261][T10897] exc_page_fault+0x91/0x220 23:05:40 executing program 5: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0x0, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x80000) 23:05:40 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000020ff00000000000000", 0x1e5) [ 109.507028][T10897] asm_exc_page_fault+0x1e/0x30 [ 109.511878][T10897] RIP: 0010:copy_user_enhanced_fast_string+0xe/0x40 [ 109.518473][T10897] Code: 89 d1 c1 e9 03 83 e2 07 f3 48 a5 89 d1 f3 a4 31 c0 0f 1f 00 c3 0f 1f 80 00 00 00 00 0f 1f 00 83 fa 40 0f 82 70 ff ff ff 89 d1 a4 31 c0 0f 1f 00 c3 66 2e 0f 1f 84 00 00 00 00 00 89 d1 83 f8 [ 109.538184][T10897] RSP: 0018:ffffc9001018bdd0 EFLAGS: 00010202 [ 109.544241][T10897] RAX: ffff888132d5ca60 RBX: 0000000000000180 RCX: 0000000000000180 [ 109.552273][T10897] RDX: 0000000000000180 RSI: ffff888101df2e00 RDI: 0000000020000000 [ 109.560234][T10897] RBP: ffff8881008ee080 R08: 0000000000000000 R09: 0001ffffffffffff [ 109.568215][T10897] R10: 0001888101df2f7f R11: ffff888132d5c080 R12: 00007ffffffff000 [ 109.576185][T10897] R13: 0000000020000180 R14: ffff888101df2e00 R15: 0000000020000000 [ 109.584207][T10897] _copy_to_user+0x77/0x90 [ 109.588633][T10897] sg_ioctl_common+0xf3a/0x1770 [ 109.593859][T10897] ? do_vfs_ioctl+0x7c2/0x1410 [ 109.598604][T10897] ? __x64_sys_dup2+0x26/0xf0 [ 109.603341][T10897] sg_ioctl+0x54/0xc0 [ 109.607417][T10897] ? sg_poll+0x240/0x240 [ 109.611800][T10897] __se_sys_ioctl+0xcb/0x140 [ 109.616381][T10897] __x64_sys_ioctl+0x3f/0x50 [ 109.620966][T10897] do_syscall_64+0x3d/0x90 [ 109.625403][T10897] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 109.631426][T10897] RIP: 0033:0x4665e9 [ 109.635315][T10897] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 109.654964][T10897] RSP: 002b:00007f57b5f4d188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 109.663487][T10897] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 109.671506][T10897] RDX: 0000000020000000 RSI: 0000000000002286 RDI: 0000000000000003 [ 109.679498][T10897] RBP: 00007f57b5f4d1d0 R08: 0000000000000000 R09: 0000000000000000 [ 109.687459][T10897] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 109.695413][T10897] R13: 00007ffd50fa5c2f R14: 00007f57b5f4d300 R15: 0000000000022000 23:05:41 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000000), 0x20200, 0x0) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:41 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000000), 0x20200, 0x0) sendfile(r2, r1, 0x0, 0x6) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) r3 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r3, 0x2403, 0x81) dup2(r1, r3) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:41 executing program 5: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0x0, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x80000) 23:05:41 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000129ff00000000000000", 0x1e5) 23:05:41 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x816e000) preadv(r1, &(0x7f00000000c0)=[{&(0x7f0000000040)=""/114, 0x72}], 0x1, 0x4e, 0x2) 23:05:41 executing program 1 (fault-call:4 fault-nth:5): r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) [ 110.303392][T10942] FAULT_INJECTION: forcing a failure. [ 110.303392][T10942] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 110.316476][T10942] CPU: 0 PID: 10942 Comm: syz-executor.1 Not tainted 5.14.0-rc2-syzkaller #0 [ 110.325319][T10942] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 110.335388][T10942] Call Trace: [ 110.338696][T10942] dump_stack_lvl+0xb7/0x103 [ 110.343305][T10942] dump_stack+0x11/0x1a [ 110.347455][T10942] should_fail+0x23c/0x250 [ 110.351874][T10942] should_fail_usercopy+0x16/0x20 [ 110.356898][T10942] _copy_to_user+0x1c/0x90 [ 110.361309][T10942] simple_read_from_buffer+0xab/0x120 [ 110.366850][T10942] proc_fail_nth_read+0xf6/0x140 [ 110.371869][T10942] ? rw_verify_area+0x136/0x250 [ 110.376743][T10942] ? proc_fault_inject_write+0x200/0x200 [ 110.382375][T10942] vfs_read+0x154/0x5d0 [ 110.386573][T10942] ? sg_ioctl_common+0x1136/0x1770 [ 110.391728][T10942] ? __fget_light+0x21b/0x260 [ 110.396415][T10942] ? __cond_resched+0x11/0x40 [ 110.401230][T10942] ksys_read+0xce/0x180 [ 110.405443][T10942] __x64_sys_read+0x3e/0x50 [ 110.409946][T10942] do_syscall_64+0x3d/0x90 [ 110.414419][T10942] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 110.420302][T10942] RIP: 0033:0x41936c [ 110.424178][T10942] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 110.444038][T10942] RSP: 002b:00007f57b5f4d170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 23:05:41 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000ec0ff00000000000000", 0x1e5) 23:05:41 executing program 5: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x80000) 23:05:41 executing program 0: r0 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) sendmsg$NL80211_CMD_TDLS_CHANNEL_SWITCH(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x5c, 0x0, 0x200, 0x70bd29, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_OPER_CLASS={0x5, 0xd6, 0x82}, @NL80211_ATTR_OPER_CLASS={0x5, 0xd6, 0x81}, @NL80211_ATTR_OPER_CLASS={0x5, 0xd6, 0x7}, @NL80211_ATTR_OPER_CLASS={0x5, 0xd6, 0x1}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x342}], @NL80211_ATTR_OPER_CLASS={0x5, 0xd6, 0x80}]}, 0x5c}, 0x1, 0x0, 0x0, 0x10}, 0x40) r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r1, 0x2286, 0x816e000) [ 110.452429][T10942] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 000000000041936c [ 110.460438][T10942] RDX: 000000000000000f RSI: 00007f57b5f4d1e0 RDI: 0000000000000005 [ 110.468487][T10942] RBP: 00007f57b5f4d1d0 R08: 0000000000000000 R09: 0000000000000000 [ 110.476518][T10942] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 110.484554][T10942] R13: 00007ffd50fa5c2f R14: 00007f57b5f4d300 R15: 0000000000022000 23:05:41 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:05:41 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f40700090424000001c9ff00000000000000", 0x1e5) 23:05:41 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/bus/container', 0x200000, 0x0) mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1800003, 0x12, r1, 0x1000) move_mount(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', r2, &(0x7f00000000c0)='./file0\x00', 0x20) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x816e000) 23:05:42 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000000), 0x20200, 0x0) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:42 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000000), 0x20200, 0x0) sendfile(r2, r1, 0x0, 0x6) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) r3 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r3, 0x2403, 0x81) dup2(r1, r3) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:42 executing program 5: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x80000) 23:05:42 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2, 0x20000000) 23:05:42 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000fe00000000000000", 0x1e5) 23:05:42 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) r2 = syz_mount_image$ext4(&(0x7f0000000040)='ext2\x00', &(0x7f0000000080)='./file0\x00', 0x507, 0x9, &(0x7f0000001580)=[{&(0x7f00000000c0)="f3bcbb436a11f457", 0x8, 0x200}, {&(0x7f0000000100)="4e37d377a924303d9e745e7592692a0579ebda188e8beab6d83908fd3e57d1f2de603ac05ed8bcf301edc87ddacc93663522", 0x32, 0x5}, {&(0x7f0000000140)="d68cb0046d3d26307cf012577f4fdce87c7ff0ed6d49b6b0e574650ec4edecf536a7e92be1e0a9e843d4263da2cf4c14f553f9ca8bd65f8d1d08e399f0b1deb9e8e1", 0x42, 0xfff}, {&(0x7f00000001c0)="b5c1522abbdd96bd41a1b4fc28cff850bc67201b6939982c9c7aa84d310cbc602bbe386bb7e298c01a84b7b997676cf40523f52ed8812e142781a6bc55e6a5ba05f2d2c96b435393cb67f7c1db962df4806b15c0faf682444fd66337d7d52d8fb6bdfbaa3b9e2bd8897d5e4c398ebf7b3ed034ba05aaacf244cff4bff98e826d8c08c885274a13b7f53e8186003750ebc8c94e12514c4a6d10e9d9780de1510567a526e9d0e51df1c5ab91af0d68cff279793b06ce879368003f540d914386d36a6d63f448f7d39d146406e408b02b108e0cf1fc6621bfe868c3df4c2499914e6bd79c9d71176d568b513ead935bfd109512", 0xf2, 0x9}, {&(0x7f0000000300)="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", 0xfe, 0xffffffff}, {&(0x7f0000000400)="e8510664e4d6be9d6e928f87d55c6fedce704cd8f4d252a2ab7f1bed4005c9acebbefe69742b7c79632cca22a08aee1c8cefad6c7293394151e65222a64a61612003c8a75c5a2e8c777814691b10c07114145964543035c62e0cf3", 0x5b, 0xa71a}, {&(0x7f0000000480)="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", 0x1000, 0x2}, {&(0x7f0000001480)="2e81376b83912df0fb4acd316a54c13035aba15d6fd2d1b28dcee67fb2e79e6ce0f4baf6d2c554583591cb01d6d50553ec7b595a35071b1426e81cd434a3e4c32cff06b70f78a755e51684b309126cd28ffb8b351a19ec", 0x57, 0x5}, {&(0x7f0000001500)="2330fd584efdcbee57840857d988e962c01a320d0cd6e179055e81b4eddedcc610bd1a806e44999c158bfab909d65397cb1de7bf2ed0948a8a39df393ee423a326d7b3aa851748615d9bee3d36eb8762877970a182ef", 0x56, 0x101}], 0x2020004, &(0x7f0000001680)={[{}, {@data_err_abort}, {@errors_remount}, {@sysvgroups}]}) preadv(r2, &(0x7f00000027c0)=[{&(0x7f00000016c0)=""/4096, 0x1000}, {&(0x7f00000026c0)=""/210, 0xd2}], 0x2, 0x6, 0x5) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x816e000) 23:05:42 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x20000, 0x140) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x816e000) 23:05:42 executing program 5: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x80000) 23:05:42 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000002ff00000000000000", 0x1e5) 23:05:42 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x1267, 0x20000000) 23:05:42 executing program 5: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x80000) 23:05:42 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_IO(r2, 0x2285, &(0x7f00000001c0)={0x53, 0x6, 0x27, 0x1, @buffer={0x0, 0x28, &(0x7f00000000c0)=""/40}, &(0x7f0000000100)="840bee246c7f140934f6488307116709633cb4f6d414249d1e0d1acbc8b094d2fef29916415678", &(0x7f0000000140)=""/49, 0x4, 0x4, 0x3, &(0x7f0000000180)}) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000040)={0x4d, 0x8, 0x101, "0bf3cf4610a5d6af953102467a45cf8d110080dbcc8b10a935fa449e10c9ed7e0114fdfacf92aa71b3faf1fa6dd96224e53ca6654acb6a2e70906c98b45e314cb0af6cbbf1c5cdc901efb9aaee"}) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x816e000) 23:05:42 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:43 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000000), 0x20200, 0x0) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) dup2(r1, r2) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:43 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000003ff00000000000000", 0x1e5) 23:05:43 executing program 5: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x80000) 23:05:43 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x1274, 0x20000000) 23:05:43 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) fcntl$lock(r1, 0x26, &(0x7f0000000040)={0x0, 0x4, 0xfffffffffffffffa, 0x7, 0xffffffffffffffff}) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x816e000) 23:05:43 executing program 5: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x80000) 23:05:43 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2284, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r3 = openat2(r2, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x80082, 0x48, 0x7}, 0x18) ioctl$SCSI_IOCTL_SEND_COMMAND(r3, 0x1, &(0x7f0000000300)={0x1000, 0xf792, 0xffff, "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"}) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x816e000) ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f00000000c0)={{0x0, 0x2, 0x7, 0x3, 0x1ff}}) 23:05:43 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x1275, 0x20000000) 23:05:43 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000004ff00000000000000", 0x1e5) 23:05:43 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x1276, 0x20000000) 23:05:43 executing program 5: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x80000) 23:05:43 executing program 3: connect$unix(0xffffffffffffffff, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(0xffffffffffffffff, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:44 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000000), 0x20200, 0x0) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) dup2(r1, r2) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:44 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000009ff00000000000000", 0x1e5) 23:05:44 executing program 5: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x80000) 23:05:44 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2201, 0x20000000) 23:05:44 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) preadv(r1, &(0x7f00000004c0)=[{&(0x7f0000000100)=""/234, 0xea}, {&(0x7f0000000280)=""/61, 0x3d}, {&(0x7f0000000300)=""/188, 0xbc}, {&(0x7f00000003c0)=""/158, 0x9e}, {&(0x7f0000000480)=""/43, 0x2b}], 0x5, 0x7, 0x6) syz_io_uring_setup(0xccd, &(0x7f0000000080), &(0x7f000014c000/0x4000)=nil, &(0x7f00006d4000/0x4000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000040)=0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000580)) syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_FILES_UPDATE={0x14, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000240)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xffffbfff) r4 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r4, 0x0) preadv(r4, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0) r6 = syz_io_uring_setup(0x184, &(0x7f0000000040), &(0x7f00004db000/0x1000)=nil, &(0x7f000010d000/0xf000)=nil, &(0x7f0000000340)=0x0, &(0x7f0000000100)=0x0) r9 = syz_open_dev$loop(&(0x7f0000000180), 0x0, 0x0) syz_io_uring_submit(r7, r8, &(0x7f00000001c0)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd=r9, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, r6}}, 0x0) syz_io_uring_submit(0x0, r3, &(0x7f0000000540)=@IORING_OP_FADVISE={0x18, 0x4, 0x0, @fd_index=0x5, 0x1f, 0x0, 0x6, 0x5}, 0x1) syz_io_uring_submit(r2, 0x0, &(0x7f00000000c0)=@IORING_OP_OPENAT2={0x1c, 0x3, 0x0, r4, &(0x7f0000000040)={0x101001, 0x20}, &(0x7f0000000080)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r5}}, 0x10001) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r0, &(0x7f0000000280), 0x0, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x816e000) 23:05:44 executing program 5: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x80000) 23:05:44 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f407000904240000000aff00000000000000", 0x1e5) 23:05:44 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = open$dir(&(0x7f0000000080)='./file0\x00', 0x400240, 0x40) r2 = openat(r1, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) ioctl$SG_GET_SCSI_ID(r0, 0x2276, &(0x7f0000000040)) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x816e000) 23:05:44 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2202, 0x20000000) 23:05:44 executing program 5: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x80000) 23:05:44 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2203, 0x20000000) 23:05:44 executing program 3: connect$unix(0xffffffffffffffff, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(0xffffffffffffffff, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:44 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) dup2(r1, r2) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:44 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040), 0x8000003, 0x1d9181) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={0x0, 0x4d, 0xd}, 0x18) vmsplice(r2, &(0x7f0000001480)=[{&(0x7f00000001c0)="0b5ad85bd5d24b980eb9f837cc2f9d48839cad199725d50da8cd3481bee357385bb28b9861ecfcb6b53aca00f506e2c9d4e97296c36b1d946efe9b2d67fe1400829947bba3cdf829abd1ae04d54975b3018dfebdbd20c7dd1245cd0774d420f8130e5212b367016b072dd2fbe1438c89ade1ea3062c688765647e39875a4257264b20dc6403e7f2cddd98f07bc042e812fa0b3d95cd44ca5d4", 0x99}, {&(0x7f0000000300)="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", 0x1000}, {&(0x7f0000001300)="2702e215313ee2d6bf2c8b048fa63b308da931687e1d7d1191a9e67aad42393f4de9dffe3f3ad9f764de5ce02fce58da401b0fb87c75f3018452b2a5ed7f7fb0d2e78d95dfc168f9d683843b2a54b558e46f55edcd6e5053663cb980b8cd55455d431b4c8ecc35e758f73e874c22b47af7dd42bd373c1ea14a7e78252429018e96a724f6714b098ca401ae7e65620ba01d0f1c368a66f28a9572611c9c1927ceee34ac6601", 0xa5}, {&(0x7f00000013c0)="12331f9096c7e4d391e222cf2363f65b80aae097d5ed11a00fc0e7205b947d0d32f26a4dcbc6a63aa409bd3e535a166df226e54ce7d49f563f204ac75b108ddb2a3069934ed7ba8cb6b3bf3f90bf68df4c388d1e30d9f47c715f901dd8b4916c6c6c8dafc3a98492f067bb2dd245da352701c1a142de8a0ee562d2e870d2a02e04d8e07a59ce2146f649cb5ccbeeef23fbb6220140e29ebac69d1fa8253c2427f1e5f627", 0xa4}], 0x4, 0x2) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x816e000) preadv(r1, &(0x7f0000000000)=[{&(0x7f0000000080)=""/181, 0xb5}], 0x1, 0x7fffffff, 0xcaa) 23:05:44 executing program 5: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x80000) 23:05:44 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000010ff00000000000000", 0x1e5) 23:05:44 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2205, 0x20000000) 23:05:45 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2270, 0x20000000) 23:05:45 executing program 5: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x80000) 23:05:45 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r2, 0x1, &(0x7f0000000040)={0x22, 0x2a, 0x1, "ac36e20107afb7e4c63504899fbdc9c0715f1f535fff4edf430873be502bb9f08929"}) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x816e000) 23:05:45 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000fe00000000000000", 0x1e5) 23:05:45 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2271, 0x20000000) 23:05:45 executing program 5: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(0xffffffffffffffff, r0, 0x80000) 23:05:45 executing program 3: connect$unix(0xffffffffffffffff, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(0xffffffffffffffff, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:45 executing program 4: connect$unix(0xffffffffffffffff, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x100}], 0x1, 0x0, 0x0, 0x0) r0 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r0, 0x2403, 0x81) dup2(0xffffffffffffffff, r0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:45 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/tty/ldiscs\x00', 0x0, 0x0) ioctl$SG_IO(r2, 0x2285, &(0x7f0000000180)={0x53, 0xfffffffffffffffe, 0x1000, 0x4c, @buffer={0x0, 0x3b, &(0x7f0000000080)=""/59}, &(0x7f0000000300)="16a0f2917ab5c8e21152a17826dd4e9dfa308e9f7c8ffb649d747a33e031015c8378aaae905559a48b6413dd3437595d16d9fd9ece44564bcd746a7c6f69f4460e0839366c3bb0bd04274aa66a204c092998cf11d710221e98dfd7a79fc0e06b8656f92eb431496948754895093f42e4e6fce1586739be1d7c61607997bc5ec7b868bf0c9e5e567803f58f21bb667a172daefb83a5d49c33fd8411e3e4d7d9365f51c3b4d4e2244afbb058f41bc15fea4fb7e228bc74d9c7726cbbe868ce9d2d2c16191167a3a8af3fae3868b220771f3742ad7670b471b30789d06059a5397a4b4b488b92e63f6f2754b16422a6756fc2a18d3add271e55edcc5edf45000ef0e8d10e0ce234437766c4ca7ca3665010a771d5c812be45fca67175f3992274cef096b432e1bb9cd17a5849b4d9e361aec54f9d0a9007bfdc911e1ffe85a3c3398944a7425e2010cab4d7bd29934e5b13c6e41db8fc28ef487d5e68d6fa691c1f0318171d358ccc77753401cc93d2bec71ef381818d0fd4e3a54b13adc0d6084083dfd69254177300e8bce3ce082bf51e87b89554290711defed52c64f82e17c645bc9671dcb12c7256619cc4d98552f998bd42e8c974391f0d2dd47d82f7ba622c7b3ebc94d8b11aa4176b4eb875d76b71588d95de22b3353278eebd1cdca8c637e453fc96d44995c84a8131280698e8434ae40190f8fc3f050db09f40130bbc3ee000f004957acb41b16026feeb7ea3129508f10ee9e4fb5b2cf9cf0542241ad118d0f51b72bd93dcea7ae8b2e94d2dbf79bfb9c0f639b7f2889b8011208bc167f4bc14c92e60f276afac5d74f8c1867c103d57408bc82dc69e1ff9e200df72b3b975986dc50a019a1ed68eb44807175092b894ac30f169ebf068e1fe942e4140c9a212d6e7b45f47b92948e41a341f19817ea5d6aa63407552395338fc720327c1ee028fd9c41505497c96844538405e14ce6d82ffcfc4522d093c85b9f1d84f92ecf61a13dd819455c3debcc5dca15f0ed4a6f653f52e7c0491030a163c90d331642bf3359ab72bc299aa2496f3d5743267f8d13207471ad92e6508023df73a06ffb8e3b542f7f05d02cb60a0fe5a732108bc65de5dec38fd99c9f59b18abba2ba66f95b69823a99394acef7c615b5c7f8f41aa8c25c51dac4ad48eeb639879070552a0ff65610ca4edbd26878f4e62f42f9a3be7834dbfd58ef15d82e8a9588b1d1f8c84022ef1911bc360331186e389818857b2c1b172101270b12817f7ad04c4994f49026bc134a541c45f43f490ddd3321996c4457e67b8aeeba854be64c0c4dcc5e7741718337ccda1930f39e74579eb2a7f2241746e1f7600a1653b58763103f94e7645f953fa9c0f438110ccd1137906eef683cca80383b5c506608135a028be6953deeb60d3992fff35c34869858d330513998c582692d83b5c39920ba344a9fea55da8b69e07eb5afbd5b57cefc82c1cd45024c5db84c31b022bd5b2de9d9517f90104a44b523fcc06890347c1859249eccb9c9851b0899843983faf7c2515f322ed109ede73da26d4a7e35d08954a9c3f6b6fbc442dd13144ce2f62e5342fb6b3c5fe20fb8cdddc26fb3e607c2b08707f5e5aeb602005844de29fb47e9dfa15469d9cecf9c45afe56d6716dbe848f8800f5f45cb4b6615021aae94df29c607a893af52ac42ca7ad2ed0cea11805688d143bb6382c5ecd8005c3f25ddee6b03581bd604afdd4bf07b8b5cd100ade34ebb761356134f9313e85c2d96ee3ea60ba4e3d3cf5f0e79ee9e41fe1ffda77d221aac93125b30b95a1035d84376b1567f71b18e208efabd8107bbb4e6078254379c2f78ab1f323c1dd334a67a17209db0a9e69a5e8a3984a9fbc613aa958d4f08b46750595a756697b5dd9bb6873b5ba2d00188e364275477d6eb7cba7a84d581c3a3cc73e04e775171e0eade215ec4b8d9430c87188a4cdd08cb8ef371f4a128ca3ecc398eaf028f588e027e5cf12e1a19429f2ee97509d67dfa9622ef5282a20db634ae6c187b0be97d0dd76bf5e84f5ea0d99e11adb3ef19e839f18e72e84e4c74810831c22af8f57865bebc0a4896bbb05ccd1fb8d91df06e84c74e5359971e6f4cd73bbaefdd6fe66ba92a9592737577996daa3f9597432169faca1fd802400cca5f4a4dc8ff2a849e0a5dca05e4738c2fcadf2549ea5daeaa2fe22959489398f86027fef4d3d4cd33180647273b9bebc4a854e026642edff1c7b1a79f8d18e6b11a96b585e50ff3e97dad1163d446931d6d82fd7569f3fa54340f5a7bacdc68c70b4c81bb0a3b700c26eec524cfe7ae2f36545ef4271edd48b9cab42091fddb9f5a3f64bc0d0fb616acdd5b4620c8ea8900fea29bd2e7f8b28e86a625bcd6d30c1439f21e9e0001f59de540b1b4c0eeb01295a9bae84657a2de60c0afbc3605ac9dd0fec0d82bfcde6844c17e438aac6680b10f9ffd68b95e6d817c91509c915f02df20111dec2a59dca11e04bdf0f82e1c63815ac53ad6fd3791738e2282c4bd64b9104497a1f1b6391480277095ff5f66a214b89bec377eaf9aa452e7382eefa280cc0d4a468cd4881e4d3ca16479ada83d63ef605f21ae43c5f985d2b1bf31d7f7e8040eb04c66eff667b33470fca61019009424370e03e7252a438e80d9a578ae4c47859fcc4ddae555d9fd6e6a9955f60a02b2b5e05613b942fcc0ef50594e68806cd75bc5575fea6874da78883a1993c40eb7d32350ac3a1c640a882933d386653a41a083af39c9e258f5be5fb6603b8e79e5898cbc7022cad285689d52a0610d0b2cd93125d43d3579790f328cb5182dcbc993bae0505cf5fa487246e5f52fc38ee87b6b27bb6ebf86ba932bb04887e9068f18824d492f33b0026425a69a24ee8d343238be593d79b2ecd35c52df127cff6e8febe334bbfcde73f526f79138cd0dbe0441f63ab9d34b1ea784ec0f5b69d9fdb8db4412eb77d45b10a150e9532d315f56badac8d9587d0b4a5b2cec079d7f47301a47310fce6a03313b4bf05dd20fceb8c51861a13b1eb70aa094749de836a53449fc20043eae7d8656dab144fadde77ff9086c5ad08e98aca408ae2e9ef49ba75d8d090779f58db129a2c0df29a91ebbbca10dcdadf0ba9da586c6d10bdf3e4c04b7be94358f356e856b02f1e688a56585b3ab35478aba2387d3b70f65241a0a11faf0886dc767549e9ccc29d43adb7fba57cdbba316b322fb57e497cba676e13df9ae61847c6d8daf3fea4a967716911e102299d0f880e124483c43dfd6d38be5172f19ed35e8e27ffa33cdd3452b5b6e4428063a4059106bb7b890c8ca666762af87a74b33d7a00697cb2f6c77c62812a7f530e025c5434ebdc46aade27c2643f26c3c677affc007bfd5fc5c351148e6535bc1274f0ff290a1fe15167debf63764a306041246d5fa532530ab327d2208d20a7d30e002e733ff1825245b3d192e3cce55e0b33047ee8c0086229db4e81e4d8360caae668a6739bbd1635dd01ccf93c628012c7194331e251328817efa89ef9d046e22fd9ff7db610d04a94e95cba96cee22087a1a7cc63c377c3c8fef5171d558fd383fff8ea82080289c0dfed05691da2fad9edc66deee49d20d56fa8077c380ba8a2acd441f7b78c48bf0935d8e32fd6c66512e43c4a9394f0ca004b1b954548356352b7f251261999ce8e64bcea11df072b2900650e77c2fb135d19f1e1e373e05c6f3605f1fa425fb9048656bd728f0e299fae9d8d2a2e7d224b4e4ad3fe5ef445e5c22d6c252fbbac4fd2c2b1f589f9b3436fa21dacb22d4823dec621e864112c9cbc1f9ae8f1a98fb58662bbd72518bf0a4381d52355673b1f7e3e71626c2ebfd8b64ca939e0579ddcf2f4f4d51dacdefa1d667979dd12206952521450146b8272238b7ac1d49cdc5c8f6b9e3dbb2dbb9447ab9105beaec2947ae27f44d6ccab51e232af4db3c07d3ed6c5a794f4e8af969925f774a293747ba9fee243fdaea3b34633dbfea1900596bb24f0c091fffe8b0284701520169f18656f8c37a782689d8f1fac40e6d6906c20fa241b21bfaaac3b83b4ee69c651c934e098a4434a3a5bdf7eae8a322a69263db3d7fa2a39b8376335aa9b62b4c9cbe5897f5b81171d3be33261ca279bb6e09dc03c71d1bd836ce5666a4a5982716234154314998f8bb9feea2c2a385994be4ed640969ba18c2c0538d291b06e0b11e005b5c9da826df3f51fc87f027d2a9f5ea40237da1c2abf54b4ab6efd326c2c4228b007490eac07043c47cbe1bcd283df9d83749238d9e21755df8475fc6efde9af12724cbb5c2fd4392de44b717f547846c7dd4f0ad0293aa33b12768e0fff23aefcb43fdb51550935e20ea980954075e6616255c5c7e7e428840d87b880ad34b5f437a2c0d8fe08b8954060b500fbd2fc3e6f582e23106af3e32303afd486833d50b4efa4bfa397be8cb77829a63fcf9dfe3b9f1c3801c9cd624cab079a122dbaece3a2cde58c785aed36e422befea3c9b85521e62a01782dc5f6bbf29c01fc320585a735103a5f368c83e32810d61f1e27221cc5b88b1f0c62ef254bb6adb02fbab476f811c331f73315f16a7392679d7844d803211c91834af6fd24c978ea32a3612c1f01ededc0dadb2aa9823eeff31d3a01fc511baa22e8f9f929dfb04a0185e786bed49502b23ed12e04b2f45fa487378a0bc6a0b1a95c834b8690fd92e9a8330c0fe38776e3dc1b69136b01f418831a601ed56ebb83afc021cae9e893893675ced837ea735fe959a963140f18d2f2af655e5520a99abd53ef22497add5241153b048006421a4096e481edaa4b2bd2459c9f3b59c88f322f4beca5503db1e0fbe943d07e34a4cb04dcb09d55361e7a7ee2a158e811e8700d4c833a236e300160d78a84ba21246daccc4c5ebcfc214e264552e24cbe1425f54935f144b7b7c36a6d57219809cd9694198f72f4618829e4ed2f2f74f9db9295c9ba35581be6f8fa5cf53e044ef34e7292b305663826a3741eaf8be653570a345d9c0bb6543208b6c98cb64f05d64c20538ee72e868b98218912eadaced444ef3f3a1592fa156d61baf8ffbcbf79285e007626efa29521825037cf373c2251d94dd53fad29a41fcd280c25d9ab034f907df34dc98516fec8ada7ba4f4053e45f561761febe2b443e6bc18d2959d67e09c56e76c2c0a430911f0c2dbaa97d2cb725f380105948df1120eef4448eaa9ddcafe12d1a369e1436c0b02bb4a7b9b252bd5c5ed10b2b551c3fbb9f61a0a629d0c24d7e0d20ac9f598efb9aefae0448715ba0d2e2fa4dd53ecb04f5790a4bcc9d1ff075c0e1b5f36287a658ea656c1a419cb4a1a0ae4e6bccb2d3bca7cee61176b787b8d922d43b1ae186f7b63213e909642fb402993eab4aaa2feaeb1ddfdaee5c6d732bd57b55247b8218d55c68c5726c0a3c975d413f0e199bd61cd101ea3659b2cd7c3073594664db14913f0a6f2583c9ee102145f64ea15124bdf816fd7c83cf142ea047df20c97927d0fc94fd48b95da398ca0bfe8487823dbd027f251363080cc1a24563cf4a31613ed3b65ac98f556c09ac69d83ca00393a49d869896cb90f57529dd623f2ff65cb0c83d6bbfa699c9c0a36d13e20ef89b9e1491135bb6d26c76a4fddbbb7b94dc49fb5efa18f30cc75b6061c2db5e0e01dd0aef9b2cf2494b1e0dcc9272dd065dbd093d7a178ac440b272c2b1dca557258c8f3071f6f13909d8be28cd4e6d0bbbce903ff35efaf2ab2709233413a4664118dba0c0b556c3ecb123e764f19c8c7ba8ff42d524244db22ae399", &(0x7f00000000c0)=""/123, 0xa91, 0x10020, 0x2, &(0x7f0000000140)}) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x816e000) ioctl$SCSI_IOCTL_DOORUNLOCK(r0, 0x5381) 23:05:45 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2272, 0x20000000) 23:05:45 executing program 5: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(0xffffffffffffffff, r0, 0x80000) 23:05:45 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff02000000000000", 0x1e5) 23:05:45 executing program 5: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(0xffffffffffffffff, r0, 0x80000) 23:05:45 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2275, 0x20000000) 23:05:45 executing program 0: r0 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) sendto$inet(r0, &(0x7f0000000440)="6f1b96cabe8c18d2e5297449c5ec5a9723cff705066482703de5db9348993b341d936182e0533f8ca2b09abb5075e4b7c1c62cb1d3ca5223b69a7422063b783262a4f4dee73b854b00ecba09918477f21ddc29162a0ad859b63a5451e435a188f49a92b182a3770a21d4dafbeff582eb6e42f5aa9da853d8c95c2f22d9df47818e7c40a3ddec86a04416e4604f8a51e538745e3f1d8fd108919b2fdaafa7de09ab680c6db21a7e97d7b4495d0e58ee348029d1dc4f2f3da554727da351639a09367a84b34a400e6295c06b84e49925d5ad3b3ec99245e9e7b57357bcf4b955f3416b", 0xe2, 0x4000, &(0x7f0000000540)={0x2, 0x4e24, @empty}, 0x10) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000040)="48b550d7a18b2a23622c8897715c0c92476e644d799b07d610a71dc74aee21b8fb155a3fb5450e9eceec2873703ad0c6ef60e66c0b3d1f1948aa8a4c55cf08b418cee8b2f4624ed7a136c18ac947dcf2f8f0697317d02aa2e93c467c08be35207967bf8769ce880090f2e1e78cc9aa5a36a6c020735aa566edddb360d24bec68a61a2af8b7de775186f8718dd10ccc4641832e534f0b140314450c0a0d6d5b74ba0fb6ab78ff", 0xa6}, {&(0x7f0000000100)="7dc30e3f56ef1c24111b5528a5e6fef92630f5920686f3cbdff415990e93e0d6fc6d69d4877f8ebd349993a27fadec8c53d8fffbf0deb50adb4e3ba9682ebd9e434e3c335a12766d97e1318e8bc965e2106444e8185658eff1a6c88cba5be4b6ce792ac65625966cba215a1339e86b627145236e8e2e0e7c7dc8171bf5cb7a2f560bf8dcdb2d2b272198242ec56654951c8d7a982d32e6c46ce3b6813ade66f96974047425cc9cb160", 0xa9}, {&(0x7f00000001c0)="8c2d5ad526bd43c8864a5c170c537280d8737005b98778dd4791ec7a43f715f3737af1d8cd92e57b306630f3cd725015e88382c82c0da9bd83142ad465c1c4c17882e56569066a2970205d599d3900bfc6b012decfc0", 0x56}, {&(0x7f0000000240)="68ba6fd302c273d3602c9584dbd10f1c60deb7500464a146b3b2916c033753500fc46ee36ab9554c805591b2a2c48e6117b000b426d39d7b3ed6b9dac0e4bac9801ea969d540e7d07251f2b1e7b47d4b36b33623eda5", 0x56}, {&(0x7f0000000300)="b0cad4acf0c09017982d1416f47ab69df5cb7a4a1645e8fa18934bbb0059b15970918eb08e333d8693a6306d58230458f4e8e592afd93f60bba72afb215455fc2c0eaa1abbb3104235311f85723cea9b8864a117f5cea1cb1451023829d081af90865ebe2fa0d51891cb7c5acc0d88ae83172281d266feff8d01d583ac5a021248dd0140031f4bf75690da397d8e3402cb2d53796279c5372cf8bc18b627104f241b26f4d0b20562194dc31151d1ea", 0xaf}], 0x5) syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) connect$inet(r2, &(0x7f0000000580)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r1, 0x2286, 0x816e000) 23:05:45 executing program 5: syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r0 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r1, 0xffffffffffffffff, 0x80000) 23:05:45 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff03000000000000", 0x1e5) 23:05:45 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2276, 0x20000000) 23:05:46 executing program 3: socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:46 executing program 4: connect$unix(0xffffffffffffffff, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x100}], 0x1, 0x0, 0x0, 0x0) r0 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r0, 0x2403, 0x81) dup2(0xffffffffffffffff, r0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:46 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2279, 0x20000000) 23:05:46 executing program 0: r0 = socket$netlink(0x10, 0x3, 0xe) sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r0, &(0x7f0000000500)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000400)={0x90, 0x0, 0x8, 0x70bd2c, 0x1, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x8e, 0x1}, {0xc, 0x8f, 0x2}, {0xc, 0x90, 0xb1}}, {@pci={{0x8}, {0x11}}, {0x8}, {0xc, 0x8f, 0x8}, {0xc, 0x90, 0x1}}]}, 0x90}}, 0x4000000) r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f000073d000/0x1000)=nil, 0x1000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000040), 0x0, 0xd9f, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r3, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r4, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_KEY_STATUS(r4, 0xc080661a, &(0x7f0000000240)={@desc={0x1, 0x0, @auto="337bb38b4fab63ce"}}) preadv(r4, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$sock_ipv6_tunnel_SIOCGETPRL(r2, 0x89f4, &(0x7f0000000100)={'syztnl0\x00', &(0x7f0000000080)={'syztnl1\x00', 0x0, 0x4, 0xac, 0x97, 0x6, 0xa, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @local, 0x700, 0x28, 0x0, 0x800}}) sendmsg$GTP_CMD_NEWPDP(r3, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x5c, 0x0, 0x400, 0x70bd25, 0x25dfdbfb, {}, [@GTPA_I_TEI={0x8, 0x8, 0x1}, @GTPA_VERSION={0x8}, @GTPA_FLOW={0x6}, @GTPA_NET_NS_FD={0x8, 0x7, r4}, @GTPA_LINK={0x8, 0x1, r5}, @GTPA_FLOW={0x6, 0x6, 0x4}, @GTPA_LINK={0x8}, @GTPA_FLOW={0x6, 0x6, 0x3}, @GTPA_I_TEI={0x8, 0x8, 0x1}]}, 0x5c}, 0x1, 0x0, 0x0, 0x14}, 0xc000) ioctl$SG_SCSI_RESET(r1, 0x2286, 0x816e000) 23:05:46 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff04000000000000", 0x1e5) 23:05:46 executing program 5: syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r0 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r1, 0xffffffffffffffff, 0x80000) 23:05:46 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x227a, 0x20000000) 23:05:46 executing program 5: syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r0 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r1, 0xffffffffffffffff, 0x80000) 23:05:46 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x227b, 0x20000000) 23:05:46 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff09000000000000", 0x1e5) 23:05:46 executing program 5: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x0) 23:05:46 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x227c, 0x20000000) 23:05:47 executing program 3: socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:47 executing program 4: connect$unix(0xffffffffffffffff, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x100}], 0x1, 0x0, 0x0, 0x0) r0 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r0, 0x2403, 0x81) dup2(0xffffffffffffffff, r0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:47 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff0a000000000000", 0x1e5) 23:05:47 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:47 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x227d, 0x20000000) 23:05:47 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000040)=ANY=[@ANYBLOB="4b0000000080000004000000449e068f2b5e4d80305d22efec6fd40800000062f76fcebaa405e8f023b27fdba0bce0e82f4843d9c6a5f9385ca635b72d95308dc7dd7ea092008fae9cc843bb2b5e165f050f849cbdb558"]) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) r2 = eventfd(0x1e115075) fallocate(r2, 0x12, 0x1cb2, 0x101) r3 = perf_event_open$cgroup(&(0x7f0000000040)={0x4, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}, 0x0, 0x0, 0x0, 0x9, 0x4}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r3, 0x2403, 0x81) r4 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r4, 0x2403, 0x81) r5 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r5, 0x2403, 0x81) io_submit(0x0, 0x5, &(0x7f0000001580)=[&(0x7f00000001c0)={0x0, 0x0, 0x0, 0x8, 0x685, r3, &(0x7f00000000c0)="a9fef8bb6a9ad783b769f7812f3eef1dcf907e95344400c35206e40f0fed1979483f2508a593839b3db7e1404e878d6780102fb1b9dd1111a4b0f26dceb9375f0f3358c24e28a51e519083eadba92726869320b368a4e712ef510d9d1071a969929d27cf7c328700ca94b9d8c5baffe911c6d2d1b66c17f3da79fb6894ec4d76e7c52a722808f8cbc4e5494e18872656d3ca437407f699ac305d736aa4350058c046a75ef2f351e95121f7e5b8b40154e302c33cd92310313d0add65b2e8c3dc3b9a276ac4b9339027f5a8e6bb3a", 0xce, 0x7, 0x0, 0x2, r2}, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x7, 0x7fff, r4, &(0x7f0000000200)="bc3630032932443884bc9c0de7b13492ee7b0f99060a5237817034256979427d166f9727e4563066", 0x28, 0x2, 0x0, 0x1, r1}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x7, 0x7, r2, &(0x7f0000000300)="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", 0x1000, 0xfffffffffffffffb, 0x0, 0x0, r1}, &(0x7f0000001400)={0x0, 0x0, 0x0, 0x1, 0x3, r0, &(0x7f0000001300)="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", 0xfa, 0x0, 0x0, 0x2, r2}, &(0x7f0000001540)={0x0, 0x0, 0x0, 0x2, 0x8, r5, &(0x7f0000001440)="8806f00e04cffe110df060c12c24ac5ff405c61108f102bc2035167ae7ae64b079a7a3d7949651852348c975dc136ea69ce86a06459f85e3227a7e9020fa10ed2f14b2216a1af6aa1671bc23cbec7fc425f08721aea3f607b01b9f15ef8054c78c91d0adac936d30ca74d39688d5dd49f4731dab8d3a5b50fc07602c6a98664f2399a349ed03c0f47af6059d6eae83d1f91beddecfa71462e416af5c9adc52fa4b1ba5cd90ce6887feccf060591a3cd3c6d6d7dd7cf30349ab17554510d5e70bbae5398117e6fb3f6add331e95", 0xcd, 0x4, 0x0, 0x1, r1}]) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) mmap(&(0x7f00001b7000/0x1000)=nil, 0x1000, 0x4, 0x50, r2, 0x6e508000) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x816e000) 23:05:47 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x2, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x816e000) 23:05:47 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x227e, 0x20000000) 23:05:47 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff10000000000000", 0x1e5) 23:05:47 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x227f, 0x20000000) 23:05:47 executing program 0: clone(0xa000, &(0x7f0000000100)="242eed0230f20086722bf14247b5c7000000000000000000003f", &(0x7f0000000080), &(0x7f00000000c0), &(0x7f00000001c0)="2251bedf8478b4c65f2f0bcd7c3479b992989ab6ca71c726d8420b6541635929c6a9c80e3d3af2fa0c92f311ba5f39f23c965d8d281ff468d60d82320f7b1667229e27f4d6dff4b1d552f8bc8d37b7c1a3ea3e3ff7453aea7e4bf0ba7c00a191174cd8eaa80b13f9bfad53894885366103bdb3f2ba95f77bf2b97269521fd680bdcbd2848e6994ca1ebc7bb92573104fb0efd9984bf72fed176c53ad57b878e8423ae4deb26a5aaab3") r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x816e000) 23:05:47 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff29010000000000", 0x1e5) 23:05:48 executing program 3: socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:48 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2282, 0x20000000) 23:05:48 executing program 4: socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) dup2(r1, r2) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:48 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:48 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = accept4$inet(r1, &(0x7f0000000040)={0x2, 0x0, @dev}, &(0x7f0000000080)=0x10, 0x80800) setsockopt$inet_buf(r2, 0x0, 0x34, &(0x7f00000000c0)="8991a9a8a72b33f34a84a1ff6b0774611bc965e84453b4d9a871426cb95d36ce898e1c80d5f194d17c45b31f1b7a825c06a882496f546f14ace54028d13f5921db999455b0b46806d6fe1015ab04214f350d538905472002791474e01a1832e2f570ee7e678d2b8051cf0366dd6fcb63bb181cce8bee96ff63850c9f53c8", 0x7e) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x816e000) 23:05:48 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ffc9010000000000", 0x1e5) 23:05:48 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2283, 0x20000000) 23:05:48 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2284, 0x20000000) 23:05:48 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = creat(&(0x7f0000000280)='./file0\x00', 0x100) ioctl$SG_IO(r1, 0x2285, &(0x7f0000000880)={0x53, 0xfffffffffffffffd, 0x3a, 0x6, @buffer={0x0, 0xf8, &(0x7f0000000600)=""/248}, &(0x7f0000000700)="ebcd9f306ee99ee6ff1f9b5db2cf704b146eb6f0e74a23a4adc58707c2241bce44b7b3bd5c4bf9ebba754f5fc677da4049e2635178052ee8f9fe", &(0x7f0000000740)=""/195, 0x3, 0x10010, 0x3, &(0x7f0000000840)}) r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r2, 0x1, &(0x7f00000003c0)={0x3d, 0x81, 0x81, "871fa54ef03c0317125c297275e093d9675e869ee6e1db5262525b8a007b980dd62ec1499939e4e8b7dd84dd98972274cf40225ac50742f4046ebf3695"}) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r0, &(0x7f0000000500)=[{&(0x7f0000000040)=""/147, 0x93}, {&(0x7f0000000100)=""/200, 0xc8}, {&(0x7f0000000200)=""/72, 0x48}, {&(0x7f0000000300)=""/156, 0x9c}, {&(0x7f0000000580)=""/108, 0x6c}, {&(0x7f0000000440)=""/135, 0x87}], 0x6, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x816e000) 23:05:48 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2285, 0x20000000) 23:05:48 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00030000000000", 0x1e5) 23:05:48 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2287, 0x20000000) 23:05:48 executing program 3: socketpair$unix(0x1, 0x2, 0x0, 0x0) connect$unix(0xffffffffffffffff, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(0xffffffffffffffff, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:48 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0) mmap(&(0x7f0000356000/0x1000)=nil, 0x1000, 0x0, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x816e000) clock_gettime(0x0, &(0x7f00000058c0)) recvmmsg(r1, &(0x7f0000005740)=[{{0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000040)=""/102, 0x66}, {&(0x7f00000000c0)=""/136, 0x88}], 0x2}, 0x86}, {{&(0x7f00000001c0)=@sco, 0x80, &(0x7f0000000400)=[{&(0x7f0000000240)=""/50, 0x32}, {&(0x7f0000000300)=""/211, 0xd3}, {&(0x7f0000000280)}], 0x3, &(0x7f0000000440)=""/4096, 0x1000}, 0x9}, {{&(0x7f0000001440)=@l2, 0x80, &(0x7f0000003900)=[{&(0x7f00000014c0)=""/139, 0x8b}, {&(0x7f0000001580)=""/129, 0x81}, {&(0x7f0000001640)=""/4096, 0x1000}, {&(0x7f0000002640)}, {&(0x7f0000002680)=""/176, 0xb0}, {&(0x7f0000002740)=""/15, 0xf}, {&(0x7f0000002780)=""/4096, 0x1000}, {&(0x7f0000003780)=""/72, 0x48}, {&(0x7f0000003800)=""/134, 0x86}, {&(0x7f00000038c0)}], 0xa, &(0x7f00000039c0)=""/180, 0xb4}, 0x3}, {{&(0x7f0000003a80)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast1}}}, 0x80, &(0x7f0000003dc0)=[{&(0x7f0000003b00)=""/177, 0xb1}, {&(0x7f0000003bc0)=""/99, 0x63}, {&(0x7f0000003c40)=""/186, 0xba}, {&(0x7f0000003d00)=""/190, 0xbe}], 0x4, &(0x7f0000003e00)=""/89, 0x59}}, {{&(0x7f0000003e80)=@nl=@proc, 0x80, &(0x7f00000041c0)=[{&(0x7f0000003f00)=""/5, 0x5}, {&(0x7f0000003f40)=""/72, 0x48}, {&(0x7f0000003fc0)=""/212, 0xd4}, {&(0x7f00000040c0)=""/204, 0xcc}], 0x4, &(0x7f0000004200)=""/249, 0xf9}, 0x33d}, {{&(0x7f0000004300)=@in6={0xa, 0x0, 0x0, @remote}, 0x80, &(0x7f0000005640)=[{&(0x7f0000004380)=""/4096, 0x1000}, {&(0x7f0000005380)=""/177, 0xb1}, {&(0x7f0000005440)=""/222, 0xde}, {&(0x7f0000005540)=""/64, 0x40}, {&(0x7f0000005580)=""/66, 0x42}, {&(0x7f0000005600)=""/43, 0x2b}], 0x6, &(0x7f00000056c0)=""/125, 0x7d}, 0x25ab}], 0x6, 0x2, &(0x7f0000005900)) mknodat$loop(r1, &(0x7f0000000280)='./file0\x00', 0x8000, 0x0) 23:05:49 executing program 4: socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) dup2(r1, r2) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:49 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:49 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00090000000000", 0x1e5) 23:05:49 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2288, 0x20000000) 23:05:49 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x5, 0x4, &(0x7f0000001300)=[{&(0x7f0000000300)="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", 0x1000, 0x7bf}, {&(0x7f00000000c0)="a61a09dba439be3b959dabe301cb14aa2db4c104404bff570d9ad637d9a8f43f4d1b35c341b481aa319b70d2bd14effe15ef55ad32215b65441ae4d20428453303fa3a58b85258c9828c94c22d87bc4b197fceada5f1a9", 0x57, 0x8}, {&(0x7f0000000140)="3d67a9317ad7282078e66f67c1d42fbe9d55b0ddea83cf495734317cf99e54c7b4cffa667db656637685d9129d5e6b560a9bd0f1cbc8213cfae7f6fa77a7c01940290c73890ae37c1978df9219e66de15fdee3201f1afb23c395900c147bef3f34ee94253af1f9b943202d3a8f08b6340e8ae07265e7304c37687b45c0ea48f2b1fd0eda23baffe87ec8d8b40c853750bbafa43d405f8e1c43bed5e1e29510f7620e0838972b3bd9c59f3607d4325f8a8e183936ba8cdd78d970494544d43b4b48a157", 0xc3}, {&(0x7f0000000240)="88d3fe8c4b37990531a21bd13325b57e857b54263a10e571f97ec70589c8428f2829548bd1e498858730f601da6d5cd2b1f588907a8985f70a597b000291236af5cf632bf31b563e3051708b30ee902237f60d", 0x53, 0x6}], 0xa0004, &(0x7f0000001380)=ANY=[@ANYBLOB='utf8=1,\x00\x00\x00ner<', @ANYRESDEC=0xee01, @ANYBLOB=',fsuuid=43787cd3-4c8d-81Td-4cb0-848dd4d9,fsmagic=0x0000000000010000,dont_hash,func=BPRM_CHECK,dont_measure,func=KEXEC_KERNEL_CHECK,fowner>', @ANYRESDEC=0xee01, @ANYBLOB="2c6f626a5f747970653d2fca2c00"]) r3 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r3, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_IO(r3, 0x2285, &(0x7f0000001740)={0x53, 0xffffffffffffffff, 0xca, 0x1f, @buffer={0x0, 0xa4, &(0x7f0000001480)=""/164}, &(0x7f0000001540)="3a460e1b0191e54285fa2f7ac9f8d2f86aea2ccd4487236b9bd6622dc63bc11f9141fd00a6b52e4e419f8a046a244c046581ee443157045c1deae7cff8352a95def9622630657801a1a8876cb3392fdfb9b36f2cad50fdfd676f619225079e7849e1bb09c5fc749af40a9d1b77a4c73fcc5258d354a896c8811b8c033e2db03235f42271a51108475ee22373e8298fd84d1bf8af3774d7fec727444cfbc1d443bc61d3b3433d2c4bdd2821dc650ec6d6cb20503ff40b3c1d9a0442720b9c960a8ef82d85f19fc96fb2ae", &(0x7f0000001640)=""/162, 0x9, 0x10025, 0xffffffffffffffff, &(0x7f0000001700)}) mmap(&(0x7f0000601000/0x1000)=nil, 0x1000, 0x6, 0x33, r2, 0x1b9d9000) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x816e000) 23:05:49 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2289, 0x20000000) 23:05:49 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x800, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x816e000) ioctl$BTRFS_IOC_DEV_REPLACE(r0, 0xca289435, &(0x7f0000000300)={0x3, 0x0, @start={0x0, 0xfe761e31a31601a7, "e4a7f5a5629948c6f020c49563da99fb34bf16cb37a011420d6e5839374de588477e9fdad2da092da056769799c4351653cd4aa72def6c443fbe48c8877d3ea4e7dd593cdaaa3079420a54c631589ab77d8017780e55ce8a3abd29c9252e63683234b3c52dd563b71f8ee93d6cbeee51793aac5ff85c48e63faa5ede4c2dc6914871db994ccf4376c4d270d447ada7315fad71b6f8256dfcfe1722b3cbd06e85b698fad7ac58f6f05740d3b4eb1656151fd0e459900cb2acbab19f2965cfc60b67db1f1b23605493333aa62c38a4e7da98735f712fd7ee9b2372db551548cfc4ae7b0a904b437c5d26e384f09b8eefd5f78b1a89ca44f8b936fdb289db4c484a3884b5d13ff5500bf9a2e7fa3aec294c3357901e353be763bf9f57386d61a2c04080bbd79f7a5d7215c1b29666822b0da923e4aea0a8a52a7edf4b82d4b65e3a58c6d8e63e377e6472c5afe791f630ed496f802dbd9e3cf2a8e100a6898353d320bf70ba6afbd776402677692dd8443fd88c5d9f305fbefa3372ea787898a39acfdf5a550856f63320be752b0788c5d67cda0314a6e6b8f5a8b917a00b901cd7744b298d9b452ac6912c714b5b55c53a49419c922fad7c2caa23abf1e880134fe39d846954ad25ed88f59cc4fddf848f42b509242453160b02769c114d6ed41a8256998c7441a838794f1b4028c49c3af8496742f5fb9dbd8b25a04c051122bb4f2cd022d6f5106528075e2532fccc54721e7d8047d9c66481c0628a406bfd30f86b5787531dee2e92c4b8a2a0c2ae8ba5c82c860a1be4363209e9a69131dc9bb08f27e9d90886cf885e25ce490362dfb1fc559b01550fafa65af754b3fb0614943f15e3c705642c136c776381227e8793368aa75a7c3ee5e5985fafb612608cbe78672f79398c5e51aa09833dadaef76719878745759b36f16986fca9462cadb3d516ddbed65ffbfffd8048f9a5489a578cc337e369d06584bbf59779bebef76efd07ca6792649bbb946017b0d7d18c8990fc7dc59c946598e7d3e9f2c370cc011d4f56f468cadade734be4bef59f34c7f30d92b1e13da7509c02e710974a52d3f320149aebebf4fe5ed98c625b26428b3485612f88a1ca17c831c4f5f907342f913aa0e19c6df99e27ed9a2f284595a457dc865f41b912a16d19ceea6f865c07b05978c987790a1ab7fa84348007d327cb19f22dd2c2bccc3ae8011b924d9a6367ce9490526009528d543140dc473a6c255d4a1eaf6923cc6ba5e5c523e3be074e0d2a21b7ee53a6972fc631e2200ab0a22608d81f640a3e9c2dde3a9be807be4000c6bfc3da0dfba05017f2d933761c3403d47bfac907dc00a409cb4c79685ac7462e33bbe0118bfc24236fbefe9684cc9c3729268d980da60cd8b05372a06ce4e605d3bbcfb4230d12db71b799eca70531f53cac5d7394f5135675dbcd147f", "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"}, [0x6, 0x40, 0xffffffff, 0x4, 0x9, 0x40000000061, 0x2, 0x9, 0x2, 0x4, 0x2, 0x8, 0x100, 0x8, 0x4, 0x80000000, 0x4, 0x8, 0x1, 0x8000, 0x8d9, 0xffffffffffffff00, 0xe000, 0x9, 0x5, 0xfffffffffffffffc, 0x0, 0xcad, 0x7ff, 0x2, 0x8, 0x7, 0x3, 0x3, 0xbb, 0x2, 0x9, 0x7, 0x0, 0xd0, 0x8, 0x5, 0x1, 0x1, 0x490, 0x1, 0x3ff, 0x6, 0x4, 0x8, 0x0, 0x1000, 0xfe, 0x4bdb, 0x10000, 0x20, 0x1, 0xb262, 0xc9ab, 0xfffffffffffffffa, 0x7fff, 0xff, 0x8, 0x8]}) r2 = dup(r1) ioctl$SCSI_IOCTL_SEND_COMMAND(r2, 0x1, &(0x7f0000000040)={0x95, 0x8, 0x8, "2e5a28a789f5cbc48b039757002436b9cc6a1d3494fcf9ce7db484fa1d183adc3aea24d479b4c8364d2e050830b5b76e43626a21362f33a8be262c0311d14add2ca864d3af546b349beb3864af5a402dffbdc7147594cb793544084c2acc6d6ed16173a920800b27e6f9ca759ad01375c7bfa346311006ab37fff734e8b3462e04184a67544ce9e488acca337c6ad9bff327f3fbcb"}) 23:05:49 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x4b47, 0x20000000) 23:05:49 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff000a0000000000", 0x1e5) 23:05:49 executing program 0: r0 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r0, 0x2403, 0x81) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r0, 0x40042409, 0x0) r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x91) r3 = creat(&(0x7f0000000300)='./bus\x00', 0x0) fcntl$setstatus(r3, 0x4, 0x6800) ioctl$FS_IOC_RESVSP(r3, 0x40305828, &(0x7f0000000140)={0x0, 0x0, 0x0, 0xffffffff}) pwritev2(r3, &(0x7f0000000680)=[{&(0x7f0000000bc0)='a', 0x1}], 0x1, 0x0, 0x0, 0x8) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) mmap(&(0x7f0000434000/0x4000)=nil, 0x4000, 0x2000000, 0x10, r1, 0xe4668000) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r1, 0x2286, 0x816e000) 23:05:49 executing program 3: socketpair$unix(0x1, 0x2, 0x0, 0x0) connect$unix(0xffffffffffffffff, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(0xffffffffffffffff, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:49 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x4b49, 0x20000000) 23:05:50 executing program 4: socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) dup2(r1, r2) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:50 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:50 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ffc00e0000000000", 0x1e5) 23:05:50 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000100)=[{&(0x7f0000000040)}, {&(0x7f0000000080)=""/51, 0x33}, {&(0x7f0000000040)=""/64, 0x40}], 0x3, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x816e000) 23:05:50 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5382, 0x20000000) 23:05:50 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00200000000000", 0x1e5) 23:05:50 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000140)={0xde, 0x2, 0xe50c, "6e25adfe85663469b8c1ec981f6b79b6f15732dbed0e0f81fe0a84480846ded20805d03d7e3257c9cdb2d160790dd3ad8ed4e1b4f19f33829c2feba78ac9088d2de619c5d400563b3bc0e65afa4c013bdc1d4b29bad99340a76c55f67e6ae5b7bd95fcf4db5605a0da4f34f707c00165749f4b0d8fe8ad335d2737c9e904b132a25ef8df12dc9131bec5283cc05f3a75c04f9026e79c66c0aab6e97c16ae46ebfd642806f221d2b0148f68a5e8caded6425df0444e196ad52aea1a27ed43a2da6c832d2885d87cf17e6231d8e9a11d50bdad8f0535f9d5be2ba0f81169c4"}) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x816e000) sendmsg$AUDIT_TTY_GET(r1, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x10, 0x3f8, 0x10, 0x70bd26, 0x25dfdbfc, "", ["", "", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x804}, 0x4044041) 23:05:50 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5385, 0x20000000) 23:05:50 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff01290000000000", 0x1e5) 23:05:50 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0xfffffffffffffffd, 0x521000) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x816e000) 23:05:50 executing program 3: socketpair$unix(0x1, 0x2, 0x0, 0x0) connect$unix(0xffffffffffffffff, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(0xffffffffffffffff, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:50 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:05:51 executing program 4: socketpair$unix(0x1, 0x2, 0x0, 0x0) connect$unix(0xffffffffffffffff, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x100}], 0x1, 0x0, 0x0, 0x0) r0 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r0, 0x2403, 0x81) dup2(0xffffffffffffffff, r0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:51 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:51 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x816e000) close(r0) 23:05:51 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff0ec00000000000", 0x1e5) 23:05:51 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x541b, 0x20000000) 23:05:51 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5421, 0x20000000) 23:05:51 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff01c90000000000", 0x1e5) 23:05:51 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x816e000) r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000040), 0x644000, 0x0) sendmsg$NL80211_CMD_SET_BSS(r2, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x28, 0x0, 0x2, 0x70bd2d, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x0, 0x25}}}}, [@NL80211_ATTR_AP_ISOLATE={0x5, 0x60, 0x6}]}, 0x28}, 0x1, 0x0, 0x0, 0x4}, 0x0) 23:05:51 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5450, 0x20000000) 23:05:51 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x78) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x816e000) openat(r1, &(0x7f0000000040)='./file0\x00', 0x80, 0x5) 23:05:51 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00400300000000", 0x1e5) 23:05:51 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(0xffffffffffffffff, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:51 executing program 4: socketpair$unix(0x1, 0x2, 0x0, 0x0) connect$unix(0xffffffffffffffff, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x100}], 0x1, 0x0, 0x0, 0x0) r0 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r0, 0x2403, 0x81) dup2(0xffffffffffffffff, r0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:52 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:52 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5451, 0x20000000) 23:05:52 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x40000, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x816e000) 23:05:52 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00034000000000", 0x1e5) 23:05:52 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x816e000) ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="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"]) 23:05:52 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5452, 0x20000000) 23:05:52 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000001000000", 0x1e5) 23:05:52 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000002000000", 0x1e5) 23:05:52 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5460, 0x20000000) 23:05:52 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_GET_SCSI_ID(r1, 0x2276, &(0x7f0000000040)) r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x816e000) 23:05:52 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(0xffffffffffffffff, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:52 executing program 4: socketpair$unix(0x1, 0x2, 0x0, 0x0) connect$unix(0xffffffffffffffff, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x100}], 0x1, 0x0, 0x0, 0x0) r0 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r0, 0x2403, 0x81) dup2(0xffffffffffffffff, r0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:52 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:52 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000003000000", 0x1e5) 23:05:52 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x816e000) r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000080)={0x6, &(0x7f0000000040)=[{0x400, 0x20, 0x40, 0x5}, {0xffff, 0x1, 0x8, 0x6}, {0x6, 0x2, 0xe4, 0x3}, {0x0, 0x48, 0x3f, 0xc}, {0x1, 0x3f, 0x81, 0x2}, {0x0, 0xf, 0x89, 0x7}]}) ioctl$FS_IOC_ENABLE_VERITY(r2, 0x40806685, &(0x7f0000000140)={0x1, 0x1, 0x1000, 0x16, &(0x7f00000000c0)="a05517056a158482bc4c0326f26618d216f1b9fa6b0a", 0x2b, 0x0, &(0x7f0000000100)="0a62e6ddca1d77f8c48c0c837e52ca7d4759ca121a2d01572d39882c64b0c102f34263b3422f93ac0db0d8"}) 23:05:52 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x40049409, 0x20000000) 23:05:52 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000004000000", 0x1e5) 23:05:52 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x40086602, 0x20000000) 23:05:52 executing program 0: syz_open_dev$sg(&(0x7f0000000040), 0x5, 0x60000) r0 = openat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x80041, 0x3c) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0xf8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={0x0, 0x1}, 0x6, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x2}, 0xffffffffffffffff, 0x3, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r1, 0x2403, 0x81) vmsplice(r1, &(0x7f0000000100)=[{&(0x7f0000000080)="4cd2f463d08b05f7e2d623180409554197d0aa7b9f03e62c68a9f6d7f654d5382577c40b80693010b9a96c8b0b1de4135eedb3076828ed64b58cdcb3e848b2c39f3cd3740d52384109cadfdc506be0f42ad42597e707b6d5ade418959c4f59f8ea5ac86b93ce7c0c64", 0x69}, {&(0x7f0000000000)="b4a0cc04229b1b145a6f93967c044f04d04380c90d1b383a300eabeb21a13d02563f83f1", 0x24}], 0x2, 0x1) openat$nvram(0xffffffffffffff9c, &(0x7f0000000140), 0x40000, 0x0) syz_genetlink_get_family_id$team(&(0x7f00000001c0), r0) r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r2, 0x2286, 0x816e000) 23:05:52 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x40087602, 0x20000000) 23:05:52 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000009000000", 0x1e5) 23:05:52 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x401c5820, 0x20000000) 23:05:53 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(0xffffffffffffffff, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:53 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(0xffffffffffffffff, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) dup2(r1, r2) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:53 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:53 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x80000) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x816e000) write$binfmt_script(r0, &(0x7f0000001440)=ANY=[@ANYBLOB="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"], 0xe1) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) r3 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r3, 0x2403, 0x81) ioctl$BTRFS_IOC_SNAP_CREATE_V2(r2, 0x50009417, &(0x7f0000000440)={{r3}, 0x0, 0x0, @unused=[0x1a, 0x61, 0x3, 0x10001], @name="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"}) preadv(r0, &(0x7f0000000280)=[{&(0x7f0000000140)=""/176, 0xb0}, {&(0x7f0000000200)=""/82, 0x52}], 0x2, 0x100, 0x400) 23:05:53 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff0000000a000000", 0x1e5) 23:05:53 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x4020940d, 0x20000000) 23:05:53 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x80086601, 0x20000000) 23:05:53 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0, 0x810, r1, 0x3000) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) mmap(&(0x7f00001c1000/0x4000)=nil, 0x4000, 0x8, 0x10, r0, 0xe8b9d000) preadv(r1, &(0x7f0000000200)=[{&(0x7f0000000040)=""/44, 0x2c}, {&(0x7f0000000080)=""/95, 0x5f}, {&(0x7f0000000100)=""/127, 0x7f}, {&(0x7f0000000180)=""/89, 0x59}], 0x4, 0x9, 0xffffff81) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x816e000) 23:05:53 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000010000000", 0x1e5) 23:05:53 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000020000000", 0x1e5) 23:05:53 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x80087601, 0x20000000) 23:05:53 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x4000, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) ioctl$BTRFS_IOC_QUOTA_RESCAN_STATUS(r0, 0x8040942d, &(0x7f0000000140)) r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SNDRV_TIMER_IOCTL_STOP(r2, 0x54a1) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x816e000) r3 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x2}, 0x24}, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r3, 0x2403, 0x81) openat$vcs(0xffffffffffffff9c, &(0x7f0000000180), 0x1, 0x0) r4 = socket$inet(0x2, 0x0, 0x454c) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f00000000c0)={&(0x7f00001ca000/0x1000)=nil, &(0x7f00004cb000/0x2000)=nil, &(0x7f00002da000/0x3000)=nil, &(0x7f00007b1000/0x12000)=nil, &(0x7f00003bb000/0x4000)=nil, &(0x7f000071f000/0x2000)=nil, &(0x7f00006f5000/0x1000)=nil, &(0x7f000011e000/0x2000)=nil, &(0x7f0000613000/0x2000)=nil, &(0x7f00005bc000/0x2000)=nil, &(0x7f000044a000/0x4000)=nil, &(0x7f00000001c0)="4d991ef8d261dbb0f0510a5d150d980ade226e8b7ac4020cb253adac4ee9777f0f4ef6e9573636da800a17153afbcf9a5e6f27d7b46fc0e6ed4529ab8d57f4b4711078830898556d07457ef3bd429e46cba0d16b30096e0c97f47f24e650ea6b15cbf8f00e4a5aa5f8ad48c1e6215b96ab0e03c681f534272b", 0x79, r4}, 0x68) 23:05:54 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, 0x0, 0x0) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:54 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(0xffffffffffffffff, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) dup2(r1, r2) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:54 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:54 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000129000000", 0x1e5) 23:05:54 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x801c581f, 0x20000000) 23:05:54 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(0xffffffffffffffff, 0x8983, &(0x7f0000000040)={0x0, 'bond0\x00', {0x2}, 0x200}) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x816e000) 23:05:54 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ffffffff81000000", 0x1e5) 23:05:54 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0xc0045878, 0x20000000) 23:05:54 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000080)={0x3, &(0x7f0000001340)=[{0x5c, 0x7, 0x94, 0x8}, {0x5e, 0xf9, 0x7f, 0x6}, {0x100, 0x80, 0x81, 0x8}]}) writev(r2, &(0x7f0000001300)=[{&(0x7f00000000c0)="fb73ef48c0d6f8fb325ef3da51660339d925ff91464ff807eac674a71d12fa0a8eb7027ddf43f9a53f340289d0faac21f65e73c3cbc20ab835c59d4d53df2fde2b86a0460c0a29881e7c3b9a8065583a83fa16b7459ce0be13cd290eb062da31a0bd83a6e0ada1d88d0c6465d227c6e9cf2cfdcf9abe7f247038a0a755ad0fd85b6c04640e20b43cfa27f64ce7de0c9625f7b953f13eacb056ccdeefa41e09", 0x9f}, {&(0x7f0000000300)="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", 0x1000}, {&(0x7f0000000180)="026dece3c82c5385e278f0b31885be90b7de31e709b16bb0a1a3ef6d353a73aebb0e93b845c0b1d4c2897431dc39fac036eea932c3e71e08b35daec6e3a754e491e3e9c5847bfc5dc33ee4c12d79e68728730a3e25c663e3c38f30083da5b4fd47a5bd1387c75856f6c78fe14ac33f44f0eeb97cda355ad197b229b31bdf501c1816de81fcc7268d", 0x88}, {&(0x7f0000000240)="ea74de0ee7494941bbba0177bd9de9435b33c114748d0fff65250b490fe0fd7e72006d5724e77b90b5456bbe24880e44cada02ac0b17cc2e3b7c21ad54d9a0002fe7e8fb914013e8d089c7faba29", 0x4e}], 0x4) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x816e000) 23:05:54 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ffffffff9e000000", 0x1e5) 23:05:54 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000ec0000000", 0x1e5) 23:05:54 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0xc0045878, 0x20000000) 23:05:54 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, 0x0, 0x0) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:55 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(0xffffffffffffffff, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) dup2(r1, r2) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:55 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:55 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x240c04) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x816e000) 23:05:55 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0xc0189436, 0x20000000) 23:05:55 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff000001c9000000", 0x1e5) 23:05:55 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0xc020660b, 0x20000000) 23:05:55 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x40000) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) r2 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) preadv(r2, &(0x7f0000001400)=[{&(0x7f0000000080)=""/209, 0xd1}, {&(0x7f0000000300)=""/4096, 0x1000}, {&(0x7f0000000180)=""/132, 0x84}, {&(0x7f0000000240)=""/28, 0x1c}, {&(0x7f0000001300)=""/95, 0x5f}, {&(0x7f0000001380)=""/90, 0x5a}], 0x6, 0x1000, 0x1ff) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x816e000) 23:05:55 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ffffffffea000000", 0x1e5) 23:05:55 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0xc0481273, 0x20000000) 23:05:55 executing program 0: r0 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$IPVS_CMD_NEW_SERVICE(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x78, r0, 0x300, 0x70bd2d, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xaa}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x2f70}, @IPVS_CMD_ATTR_DEST={0x4}, @IPVS_CMD_ATTR_DEST={0x50, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x1000}, @IPVS_DEST_ATTR_TUN_TYPE={0x5, 0xd, 0x1}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x4}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x2}, @IPVS_DEST_ATTR_TUN_TYPE={0x5, 0xd, 0x1}, @IPVS_DEST_ATTR_TUN_TYPE={0x5, 0xd, 0x1}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x2}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@empty}]}]}, 0x78}, 0x1, 0x0, 0x0, 0x4000}, 0x80) r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r1, 0x2286, 0x816e000) 23:05:55 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000002) 23:05:55 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, 0x0, 0x0) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:56 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, 0x0, 0x0) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) dup2(r1, r2) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:56 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:56 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ffffffffef000000", 0x1e5) 23:05:56 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000008) 23:05:56 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x816e000) ioctl$BTRFS_IOC_SEND(0xffffffffffffffff, 0x40489426, &(0x7f0000000080)={{r0}, 0x8, &(0x7f0000000040)=[0x0, 0xff, 0x100, 0x1ff, 0x2, 0x4, 0xc, 0x7], 0x8001, 0x0, [0x0, 0x1, 0x10000, 0xfffffffffffffffd]}) 23:05:56 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x816e000) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r3, 0x2403, 0x81) splice(r2, &(0x7f0000000080)=0x1e6c, r3, &(0x7f00000000c0)=0x3f, 0x9, 0x4) 23:05:56 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000010) 23:05:56 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000fffffffff0000000", 0x1e5) 23:05:56 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20002000) 23:05:56 executing program 0: getpeername$packet(0xffffffffffffffff, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f00000000c0)=0x14) sendmsg$ETHTOOL_MSG_CHANNELS_SET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x74, 0x0, 0x2, 0x70bd27, 0x25dfdbfc, {}, [@ETHTOOL_A_CHANNELS_OTHER_COUNT={0x8, 0x8, 0x8}, @ETHTOOL_A_CHANNELS_RX_COUNT={0x8, 0x6, 0xb10}, @ETHTOOL_A_CHANNELS_HEADER={0x48, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r0}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'xfrm0\x00'}]}, @ETHTOOL_A_CHANNELS_COMBINED_COUNT={0x8, 0x9, 0x4}]}, 0x74}, 0x1, 0x0, 0x0, 0x200408d0}, 0x40) r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x0, 0xd9f, 0x0) r3 = openat(r2, &(0x7f00000002c0)='/proc/self/exe\x00', 0x88400, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r3, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r4, 0x0) preadv(r4, &(0x7f0000000280), 0x18, 0xd9f, 0x0) epoll_ctl$EPOLL_CTL_DEL(r4, 0x2, r3) r5 = openat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r5, 0x0) preadv(r5, &(0x7f0000000280), 0x18, 0xd9f, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000400)={0x0, 0xffffffffffffffff, 0x45, 0x40, @scatter={0x1, 0x0, &(0x7f0000000280)=[{&(0x7f0000000240)}]}, &(0x7f0000000300)="c02a9da61cfb32b7832c8afa8bea3e03ba5cb0c37d849e9d8e6e6bff3f1554409e4ba4641ccbce1ea1d534d3be16b8062159e473dda71bdbe10e79c2681902d50d26c4728b", &(0x7f0000000380)=""/16, 0x401, 0x12, 0x0, &(0x7f00000003c0)}) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r1, 0x2286, 0x816e000) 23:05:56 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000fffffffffe000000", 0x1e5) 23:05:56 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:56 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, 0x0, 0x0) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) dup2(r1, r2) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:57 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:57 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20004000) 23:05:57 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f000005c000/0x3000)=nil, 0x3000, 0x180000a, 0x2010, r1, 0x0) preadv(r0, &(0x7f0000000280), 0x0, 0xd9f, 0x1) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x816e000) r2 = dup3(r0, 0xffffffffffffffff, 0x0) ioctl$VT_OPENQRY(r2, 0x5600, &(0x7f0000000040)) 23:05:57 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff81ffffff000000", 0x1e5) 23:05:57 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x8000, 0x0) setsockopt$inet_msfilter(r2, 0x0, 0x29, &(0x7f0000000080)={@dev={0xac, 0x14, 0x14, 0x24}, @dev={0xac, 0x14, 0x14, 0x38}, 0x0, 0x6, [@broadcast, @dev={0xac, 0x14, 0x14, 0x11}, @dev={0xac, 0x14, 0x14, 0x11}, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}]}, 0x28) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x816e000) 23:05:57 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20800000) 23:05:57 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0xff600000) 23:05:57 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff9effffff000000", 0x1e5) 23:05:57 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) ioctl$SCSI_IOCTL_DOORUNLOCK(r1, 0x5381) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/91, 0x5b}, {&(0x7f0000000300)=""/4096, 0x1000}, {&(0x7f0000000100)=""/167, 0xa7}], 0x3, 0xfffffff9, 0x5) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x816e000) 23:05:57 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0xffffffffff600000) 23:05:57 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:57 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, 0x0, 0x0) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) dup2(r1, r2) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:58 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:58 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ffeaffffff000000", 0x1e5) 23:05:58 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) r2 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x201243, 0x0) ioctl$SG_GET_SCSI_ID(r2, 0x2276, &(0x7f00000000c0)) ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, &(0x7f0000000040)=0xc5) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x816e000) 23:05:58 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) ioctl$SG_GET_LOW_DMA(r0, 0x227a, &(0x7f0000000040)) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) ioctl$BTRFS_IOC_SUBVOL_CREATE(r1, 0x5000940e, &(0x7f0000000300)={{r1}, "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"}) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:05:58 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ffefffffff000000", 0x1e5) 23:05:58 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:05:58 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000140)=[{&(0x7f0000000040)=""/51, 0x33}, {&(0x7f0000000080)=""/151, 0x97}], 0x2, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:05:58 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:05:58 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000fff0ffffff000000", 0x1e5) 23:05:58 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:05:58 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:05:58 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) r2 = syz_io_uring_setup(0x184, &(0x7f0000000040)={0x0, 0x0, 0x8, 0xffffffdd, 0x51}, &(0x7f00004db000/0x1000)=nil, &(0x7f000024b000/0x3000)=nil, &(0x7f00000000c0)=0x0, &(0x7f0000000100)=0x0) r5 = syz_open_dev$loop(&(0x7f0000000180), 0x0, 0x0) r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd=r5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r6, r2}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f000071b000/0x3000)=nil, 0x3000, 0x4, 0x0, {0x0, r6}}, 0x8122) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:05:58 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) dup2(r1, r2) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:58 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:58 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:05:58 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:58 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000fffeffffff000000", 0x1e5) 23:05:58 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000001580)=[{&(0x7f0000000040)=""/129, 0x81}, {&(0x7f0000001600)=""/256, 0x100}, {&(0x7f0000000300)=""/4096, 0x1000}, {&(0x7f0000000100)=""/127, 0x7f}, {&(0x7f0000001300)=""/86, 0x56}, {&(0x7f0000001380)=""/88, 0x58}, {&(0x7f0000001400)=""/254, 0xfe}, {&(0x7f0000001500)=""/91, 0x5b}], 0x8, 0xd9f, 0xfffffffd) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:05:59 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x90001, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:05:59 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:05:59 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000100", 0x1e5) 23:05:59 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) mmap(&(0x7f000044d000/0x4000)=nil, 0x4000, 0x8, 0x80010, r2, 0x199cb000) r3 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r3, 0x2403, 0x81) dup2(r3, r0) ioctl$SG_SET_DEBUG(r1, 0x227e, &(0x7f00000000c0)=0x1) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x0, 0x6, 0x7) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:05:59 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:05:59 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:05:59 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) dup2(r1, r2) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:59 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:59 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) umount2(&(0x7f0000000040)='./file0\x00', 0x9) r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) name_to_handle_at(r2, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=@isofs_parent={0x14, 0x2, {0x8, 0xa8, 0x3, 0x1, 0x9, 0xe49}}, &(0x7f0000000100), 0x1000) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r3 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r3, 0x2403, 0x81) dup3(r3, r0, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) ioctl$BTRFS_IOC_QUOTA_RESCAN(r0, 0x4040942c, &(0x7f0000000140)={0x0, 0x948b, [0x6, 0xe16a, 0x8, 0x2, 0x6, 0x9]}) 23:05:59 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000340", 0x1e5) 23:05:59 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:05:59 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, 0x0, 0x0, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:05:59 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) 23:05:59 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, 0xffffffffffffffff, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:05:59 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, 0xffffffffffffffff, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:05:59 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) 23:05:59 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000080), 0x0, 0xd9b, 0xfffffffe) r2 = openat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SET_DEBUG(r2, 0x227e, &(0x7f0000000040)=0x1) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:05:59 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) r2 = fsmount(r1, 0x1, 0x87) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f0000000080)={@private0, 0x4c}) 23:06:00 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, 0xffffffffffffffff, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:00 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:00 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) 23:06:00 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) dup2(r1, r2) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:00 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x10001, 0x3, &(0x7f0000000300)=[{&(0x7f00000000c0)="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", 0xfc, 0x6}, {&(0x7f00000001c0)="d2dedc00d1e2d05dccb2e8cb32a4d0529a336cee4c98dd3e53483a38a85480a75eb5482f95f99d53f3e2dde669b6df477584a65a8833eba2afc4d1f52f18c65d7da15bc28e2e5531a658ee475f093966f25883aa2b50adb15bc4e8ae0309d65a0d030013280b7bf52746503ffe15a5118b5557a47a9a8f3044a027832dff91a99c4938f5", 0x84, 0xba1}, {&(0x7f0000000280)="763b0d3d7a2386d4979686ca4be363", 0xf, 0x7fffffff}], 0x100000, &(0x7f0000000380)={[{'/dev/sg#\x00'}, {'/dev/sg#\x00'}], [{@hash}, {@subj_user}, {@uid_gt={'uid>', 0xffffffffffffffff}}, {@obj_user={'obj_user', 0x3d, ':*-%^,{#'}}, {@dont_hash}, {@subj_type={'subj_type', 0x3d, '/dev/sg#\x00'}}, {@defcontext={'defcontext', 0x3d, 'system_u'}}, {@smackfsroot={'smackfsroot', 0x3d, '/dev/sg#\x00'}}, {@subj_role={'subj_role', 0x3d, '/dev/sg#\x00'}}]}) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:00 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, 0x0, 0x0, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:00 executing program 0: r0 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(0xffffffffffffffff, 0x5386, 0x20000000) 23:06:00 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) 23:06:00 executing program 0: r0 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(0xffffffffffffffff, 0x5386, 0x20000000) 23:06:00 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) 23:06:00 executing program 0: r0 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(0xffffffffffffffff, 0x5386, 0x20000000) 23:06:00 executing program 0: r0 = syz_open_dev$sg(0x0, 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:00 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) 23:06:01 executing program 5: connect$unix(0xffffffffffffffff, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:01 executing program 0: r0 = syz_open_dev$sg(0x0, 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:01 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, 0x0, 0x0, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) dup2(r1, r2) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:01 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) 23:06:01 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, 0x0, 0x0, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:01 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) sendmsg$NLBL_CIPSOV4_C_REMOVE(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000200)={&(0x7f0000001400)=ANY=[@ANYRES32, @ANYRES64, @ANYRESHEX, @ANYRES32, @ANYRESOCT, @ANYRES64, @ANYRESHEX], 0x3}, 0x1, 0x0, 0x0, 0x4}, 0x40025) ioctl$BTRFS_IOC_BALANCE_V2(0xffffffffffffffff, 0xc4009420, &(0x7f0000000540)={0x8, 0x0, {0x5, @usage=0x8, 0x0, 0x5, 0x55e, 0x8, 0x3, 0x9, 0x20, @usage, 0xffffff00, 0x7, [0x100000001, 0x20000000, 0x7, 0x1, 0xfffffffffffffffe, 0xa4d]}, {0x2, @usage=0xfffffffffffffffe, 0x0, 0xfffffffffffffbff, 0x3, 0x100000000, 0x8, 0x0, 0x448, @struct={0x3b64, 0x3}, 0x800, 0x7fff, [0x7, 0x4, 0x0, 0x2, 0x0, 0xd71]}, {0x9, @usage=0xe1, 0x0, 0xe1, 0x4, 0x5, 0x1, 0x3, 0x487, @usage=0x7, 0x2, 0x3, [0xfff, 0x5, 0x0, 0x101, 0xe2b, 0x8]}, {0x78d, 0x40, 0x3}}) ioctl$BTRFS_IOC_DEV_REPLACE(0xffffffffffffffff, 0xca289435, &(0x7f0000000440)={0x1, 0x80000001, @start={0x0, 0x1, "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", "46874dc4eb80f6f00327aa9f6269b5853c63d033eab39ac7f7aab8ad5680da5cdf0318c564adcee7775c8e8c7ae89310c3deee18ecd465ba9cf83e6cdbe441a2886179d98e953318a005fef854d04e2e618bf69afde6990ac27c8c7d316d5381ee044fdc9a0d274e32d6dc792b56c441572279c35a89a35d8822f67e5c732b0dd28d6c0ec09aa947283090c1738c3f588ef0bbc4144319644288db32f54487448693c1e30ddda1f8eca46872121720fd5305e4dcea30977e8b3cd3a7c5beae493bac6d4de978fac7c3d0afa9d3a9c0032c983c7ef820e15ec1ee2cee8c58bc86c8a7cdd266928e5ddd62fafa1b5e08482191f87d74245487c23833338f0f130733276873a6152a03b0a6841f26939f855798873d4d361108faa099569ce8c4a811a8f29d9000647d851f3b8e4ebf151774addd2bfc2c8d88ca7ad36e029072edd9cbb2ce29f57f84af4a5041c231c7e04c1bc8c5ecf89cb334b2273e7d89cdf167c71b19b4e285a1b0c66b82b1d7f61f7a3fad97675c6fe691c9e75d1a539ab120a541c439afd48963917fb35a5d96cfd64123ba119294b512ce713a8745256edd4059d2b7bc887363e88a473eb7e4b56abf2bcef5b8b0a0219f71e02dfc880afe128b0dc64403993c20e221ac6e5499fd11c71b8461f3d30b8f11e2be6228c156173eaba0f4ccb08fdf679b96070134f1aa38a9008243dc14ad20de5586186b33c1870c143905ca2e510b943071c7a80f8c35252d0d6517c4ca179e886580cced9cabc8a94940cb9048414d16956513f97084ef54e516b7120b20005c31569ab3e4b5c450f76831d2ef0e47c02c84f5518cc487cd0b53356babfa1399680f0e6799e0b346e3e9a0dbdf528aa7320e095538fa05cd4eaa7c4c6874c1038b34d622920511453543e6431f566245ae645d8f0fbe2d999e697182a1fe5a989c001f304f1ab25044ab34bb10c7c60ad57487fad3db56b950c64aefef65bbb59139d3b9b99bc5dc1c06e377fd199d36f23de02d77d5e5966aa18cbc339f3e95d87b2726692087b52da81c049c50846efebbb6b212dc52efb9580f396b115cdf1d4c88c8b28e4686a27a30807d1f33f676836c70189e713dacb8900702f9d153dfbb02557cd91f9d27d528e87373eb474968ac65291aa4e88aa801b9bc37cea6d21b2ebac742ea81e343f4190d053b5f657a782bac6229e8a47e2b6905229d57d434b71cb9006b9df70f03dcf0cb20a738ed67a7efd62de957ece3407535ee736cdb20b248d68a0632cc2f9c87f7c28118a3a88300be023dd2bd0e60168d59f2b79c3d2942dde823182319bbd3e2c08b607c4c3bf81507abecf8dfe6e34f444fd7c7db4e15ed8f393ef276105a721692acb1b313665103224b0397ad5f5a34f0d1a35e866e3c0f946bf3041d3be6fa9c2ca752684a2432194ae3bbea75d6d8c9946d98f6"}, [0x80000001, 0xd89, 0x78, 0x0, 0x5, 0x0, 0x8, 0x80, 0x3ff, 0x1, 0x4, 0x7, 0x6534, 0x6, 0x7df, 0x7ff0000000000, 0xf9, 0x2, 0x200000007fffffff, 0x2, 0x20000000000000, 0x8, 0xfffffffffffffffb, 0x3, 0x9, 0x1a88, 0x80, 0xfffffffffffff74e, 0x2, 0x7ff, 0x10, 0x4000000000f7f0, 0x2, 0x9, 0x100000000000008, 0x5, 0x4, 0x42, 0xa, 0x3f, 0x19d366d7, 0x8, 0x7ff, 0x6, 0x6, 0x9, 0x1000, 0x8, 0x4, 0x9709, 0x9b, 0xfffffffffffffffb, 0x1, 0x0, 0x9, 0x1, 0x4, 0x4, 0x4, 0x5, 0x5, 0xfff, 0x4, 0x4]}) r2 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000001a40)={0x0, ""/256, 0x0, 0x0, 0x0, 0x0, ""/16, ""/16, ""/16, 0x0, 0x0}) r5 = openat$full(0xffffffffffffff9c, &(0x7f0000001480), 0x121401, 0x0) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r5, 0x84009422, &(0x7f0000001c40)={0x0, 0x0, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0}}) socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_SET_FILTER(r7, 0x8914, &(0x7f0000000040)='lo\x00\x96o\xd6Q\xb9Y\xa9\xc8J,\x00\xd2\x97\x04\x03\xdc\r') ioctl$PERF_EVENT_IOC_SET_FILTER(r7, 0x8923, &(0x7f0000000680)='lo\x00\x96o8\x0fd\xa1\xe3\xd7]b}\x1f\xa1Y\xad4\x90\x9d`\xd2\x98\x00\x00\x00 \'Y\x17]\x15c\xcaR\xdd\x98OC\x89\x1b\xe7\x84\xe2\x05\x80w\xd2|D\x8dK\x14Bx\xcbuH\xc2\xeec\xbf<>Y\x1a\xfc\x1f9OB\x81\x89\x186\xc5q@n\xb4\xb6s\xb0\x00\x00\x00\x00\x00\b\x00\x00\xda\xef\xecE\xec\xd5I\xb2\x9b\xfe\x8d\x90?\x00\xe9\xe4~g:\xc1\xb2aj\x96\xbb\xa7\xe2\xc0\xdc\xf9Q\b\xeb\x16\x7fT\x11\xd3\r7\xe6\"f\xcf\x8e\xabd\x0ftp\x82\xae\xd2\x15\x8e+c\xf6\xbf\xe14>\xa6-\xa5c\xde\xd7\xab\xea\x1f\xf8s2\x9cVF\xd5\x18\xfe\x0e\x8f \x01\x00\x00y.\xfc*\x82\xa5\xa1p5\xc8{\xf7\xef\xab\xe8\x99\xebw#\x8at\x1c\x80\xfc\xb0\x95\xa2\xa7\xd7,Y]E8\x83X\xf5F\xdc\x88-\xf5\xb0\xb5^\xdb\x1a\xb6\xaa\x14\xe2\xb9\rh^J-\xd1\xbaUn\x04\'l\x1b\xe0o\xdb\xc8\x91%\x1c\xb5\xbf\xb6\x90\xb4\xc2\x7f]/\xb3\xe7\xc9\'\x94\xcfIo\xdf\x04\x95\xb5\x06\x84\x1fH>\xda\xc5\x04 \x94\x88\xeb\'\xd4;6\x7f\xd9\x99-\x1b|G\x8d\xd4\xb9%\xaaQ\xa0K\x10\x03\x93\xe1\xcc\xe7m\x80\'\xf0\xa5\xed(\r\xa8\x0f&\xb1\xf3\xff0\f\x82%_\x92\x8bD\xb9\xd9\xe7\xf2\xe4\xc1i#\xdc\x87A\xb9\xc7\r\x92\xfa\x11\x11\xb5\x1f\x03\x9d\xdd\x1bj\xdf\xacg\xe3\xa0S\xd3\x8a\xe1n\x97\xea\xf5\xa0\'\v\xe9\xa0\xf1 f\xaan\xcf\xb5i\xb6d\xbc\x92\v\xd58\x16\b\xb3_:\xa4!\ny\xc4&\nWMM\xa8\xc4\v\x9f\x01o\xf4\xab&\xb6\x17\x02P\xc3!N\xa1\x86\"\xd7\x04\xf1\xc0!\xed\xff\xee$\xc89\x8cB0\xd1dD\xe0IP\x88\xa2\xf2Y\x9af$$\xf1\x81\x96\xf7P\xac\xca\x80:!\xb4\x94#\xcb^\x9f\'\x03\xe3\x93\xb9\x82\xbf\xcf\xc4\xe3\xf7\x03Oh\xf2r\xca\x8ff\xbb/\x9f*\xaf\x1a \xa5\xa0?%M\xa5\x86\x98\xfa4\'1\xc7\f<\xcc@\xe8\x8a\xac.\xde\xe4\xc7\xf5\x9ck\xa40!\xe9\x14$\xb3\x05m\xb5m\xed\ft\x93\xd8\xa3\x80\'Y\xb9\x05\xbbt|\xbe\xbcz\n\xf3\xf5p\xf8\x9f~\x1b\xd0\v\x1cQ') sendmsg$NLBL_CIPSOV4_C_REMOVE(r7, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000200)={&(0x7f0000001400)=ANY=[@ANYRES32=r6, @ANYRES64=r4, @ANYRESHEX, @ANYRES32=r3, @ANYRESOCT, @ANYRES64, @ANYRESHEX=r2], 0x3}, 0x1, 0x0, 0x0, 0x4}, 0x40025) ioctl$BTRFS_IOC_BALANCE_V2(0xffffffffffffffff, 0xc4009420, &(0x7f0000000540)={0x8, 0x0, {0x5, @usage=0x8, 0x0, 0x5, 0x55e, 0x8, 0x3, 0x9, 0x20, @usage, 0xffffff00, 0x7, [0x100000001, 0x20000000, 0x7, 0x1, 0xfffffffffffffffe, 0xa4d]}, {0x2, @usage=0xfffffffffffffffe, 0x0, 0xfffffffffffffbff, 0x3, 0x100000000, 0x8, 0x0, 0x448, @struct={0x3b64, 0x3}, 0x800, 0x7fff, [0x7, 0x4, 0x0, 0x2, 0x0, 0xd71]}, {0x9, @usage=0xe1, r6, 0xe1, 0x4, 0x5, 0x1, 0x3, 0x487, @usage=0x7, 0x2, 0x3, [0xfff, 0x5, 0x0, 0x101, 0xe2b, 0x8]}, {0x78d, 0x40, 0x3}}) ioctl$BTRFS_IOC_DEV_REPLACE(0xffffffffffffffff, 0xca289435, &(0x7f0000000440)={0x1, 0x80000003, @start={r6, 0x1, "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", "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"}, [0x80000001, 0xd89, 0x78, 0x0, 0x5, 0x0, 0x8, 0x80, 0x3ff, 0x1, 0x4, 0x7, 0x6534, 0x6, 0x7df, 0x7ff0000000000, 0xf9, 0x2, 0x2000000080000003, 0x2, 0x20000000000000, 0x8, 0xfffffffffffffffb, 0x3, 0x9, 0x1a88, 0x80, 0xfffffffffffff74e, 0x2, 0x7ff, 0x10, 0x4000000000f7f0, 0x2, 0x9, 0x100000000000008, 0x5, 0x4, 0x42, 0xa, 0x3f, 0x19d366d7, 0x8, 0x7ff, 0x6, 0x6, 0x9, 0x1000, 0x8, 0x4, 0x9709, 0x9b, 0xfffffffffffffffb, 0x1, 0x0, 0x9, 0x1, 0x4, 0x4, 0x4, 0x5, 0x5, 0xfff, 0x4, 0x4]}) ioctl$BTRFS_IOC_BALANCE_V2(r0, 0xc4009420, &(0x7f0000000300)={0x0, 0x2, {0x4, @usage=0xc000000000, 0x0, 0x1b, 0xfffffffffffffffd, 0x1, 0xb1ed, 0x0, 0x9, @usage=0x8171, 0x9, 0x401, [0x2, 0x5, 0x5, 0x100000000, 0xffff, 0x2]}, {0x4af5, @usage=0x3, 0x0, 0xc2, 0x38f, 0xffff, 0x100000001, 0xffffffff, 0x42b, @struct={0xfffffff9, 0x1200}, 0x81, 0x9, [0x0, 0x8, 0x5, 0x2, 0x5, 0x90000000000000]}, {0xffff, @usage=0x32da, 0x0, 0x5, 0x0, 0x4, 0x8001, 0x6, 0x54, @usage=0x80, 0x2, 0x0, [0x8, 0x800, 0x3, 0x6, 0x9, 0x10001]}, {0x3, 0x1000, 0x5}}) ioctl$BTRFS_IOC_BALANCE_V2(0xffffffffffffffff, 0xc4009420, &(0x7f0000000700)={0x8, 0x6, {0x80000000, @struct={0x7ff, 0x1}, 0x0, 0x8, 0xfffffffffffffff7, 0x5, 0x6, 0x6, 0x80, @struct={0x6, 0x6}, 0x3, 0x7, [0x0, 0x1, 0x8, 0x28, 0x9, 0x11e]}, {0x7fff, @usage=0x5, r6, 0x6, 0x8, 0x8ab, 0x1, 0x9, 0x2, @usage=0x3, 0x7, 0x1d, [0x73c23788, 0xfffffffffffffffa, 0x7fff, 0x7, 0x4, 0x8001]}, {0x80000000000, @usage=0x5, r8, 0x5, 0x46, 0x6, 0xff, 0xf5ca, 0x4, @struct={0x3, 0xfffffffb}, 0x7, 0x9, [0x8, 0x5, 0x78e, 0x1ff, 0x9d6, 0xa24d]}, {0x5, 0x2, 0x7ff}}) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:01 executing program 0: r0 = syz_open_dev$sg(0x0, 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:01 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) 23:06:01 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:01 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) [ 130.443539][T12053] Y­4`Ò˜: renamed from lo 23:06:01 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000001", 0x1e5) 23:06:01 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_NEXT_CMD_LEN(r1, 0x2283, &(0x7f0000003580)=0xf5) r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r3, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_IO(r3, 0x2285, &(0x7f0000003500)={0x0, 0xffffffffffffffff, 0x1000, 0x1, @scatter={0x6, 0x0, &(0x7f0000001440)=[{&(0x7f0000000040)=""/182, 0xb6}, {&(0x7f0000000100)=""/244, 0xf4}, {&(0x7f0000000300)=""/4096, 0x1000}, {&(0x7f0000000200)=""/169, 0xa9}, {&(0x7f0000001300)=""/242, 0xf2}, {&(0x7f0000001400)=""/40, 0x28}]}, &(0x7f00000014c0)="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", &(0x7f00000024c0)=""/4096, 0xd4e8, 0x10000, 0x3, &(0x7f00000034c0)}) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:02 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:02 executing program 5: connect$unix(0xffffffffffffffff, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:02 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000ffffff", 0x1e5) 23:06:02 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, 0x0, 0x0, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) dup2(r1, r2) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:02 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:02 executing program 1: fork() r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) write(r1, &(0x7f0000000040)="959ed558a9aaccc9f5f14498616cf8a9330f6e52239b790a063ad59133007acd4fb9a2b430a2f837c4164e723d9c785c7d54fa314eecbd805f11e430c31f27cc5bb87c15f47a4554a3491b6f85ed7efccab65e4ebfacc6eb9a581c1745af1364767fb81bcaa820266c90411c716f570755d9f2127d2e7f92b17d254b96de6c8b58ba5c93dec88642c40300f1ffa372c2863f21402bb3927394afe6d24e856468e3800d48bb76ef8c28bb91535ecc63f59e69cab2d100ec5d4c103bf0405b0b508cbe4936297257733489ce97e3d7d74f25", 0xd1) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:02 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:02 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000ffffff", 0x1e5) 23:06:02 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:02 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:02 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:02 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) socket$inet6_udp(0xa, 0x2, 0x0) r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000100)='freezer.self_freezing\x00', 0x0, 0x0) r3 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r3, 0x2403, 0x81) r4 = syz_open_dev$usbmon(&(0x7f0000000180), 0xb48, 0x402) ioctl$FIDEDUPERANGE(r0, 0xc0189436, &(0x7f00000001c0)={0x400000000000, 0xd1f, 0x4, 0x0, 0x0, [{{r2}, 0x6}, {{r1}, 0x7}, {{r3}, 0x5}, {{r4}, 0x3}]}) ioctl$SG_GET_LOW_DMA(r2, 0x227a, &(0x7f0000000140)) r5 = syz_open_dev$vcsa(&(0x7f00000000c0), 0x7, 0x20000) preadv(r5, &(0x7f0000000080)=[{&(0x7f0000000040)=""/8, 0x8}], 0x0, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:02 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff0000000000000e", 0x1e5) 23:06:03 executing program 5: connect$unix(0xffffffffffffffff, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:03 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x10, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:03 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, 0x0, 0x0, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) dup2(r1, r2) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:03 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:03 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000001", 0x1e5) 23:06:03 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) ioctl$SG_EMULATED_HOST(r0, 0x2203, &(0x7f0000000040)) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:03 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x10, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:03 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x10, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:03 executing program 1: arch_prctl$ARCH_MAP_VDSO_X32(0x2001, 0x1f) r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) ioctl$SCSI_IOCTL_DOORUNLOCK(r0, 0x5381) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SET_TIMEOUT(r1, 0x2201, &(0x7f0000000040)=0x6) r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(r2, 0x80489439, &(0x7f0000000080)) r3 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r3, 0x2403, 0x81) ioctl$BTRFS_IOC_QGROUP_LIMIT(r3, 0x8030942b, &(0x7f0000000100)={0x7fffffff, {0x20, 0x2, 0x1, 0x2, 0x5}}) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:03 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, 0xffffffffffffffff, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:03 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000ffffff", 0x1e5) 23:06:03 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = openat2(r1, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x4002, 0x358, 0x1}, 0x18) ioctl$SG_IO(r2, 0x2285, &(0x7f0000000240)={0x53, 0xfffffffffffffffc, 0x72, 0x0, @buffer={0x0, 0x1c, &(0x7f00000000c0)=""/28}, &(0x7f0000000100)="9cfd62063e3428afe6c9adccbc13b2ec513eebc03eec2ba70efc50a46a796bb04fdad5541d2e847fc2e8c06802926780e2f799899fe2b7fa10c09805a2afcadd8677a5238814a990516e3981be4e8ae33c340194d2b128443529ce404aa72b9cb9477b332d5edc17439b52a3e9f192f325c9", &(0x7f0000000180)=""/73, 0x9, 0x10, 0x2, &(0x7f0000000200)}) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:04 executing program 5: socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:04 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, 0xffffffffffffffff, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:04 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) dup2(r1, r2) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:04 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:04 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000ffffff", 0x1e5) 23:06:04 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x385341, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:04 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, 0xffffffffffffffff, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:04 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x210842, 0x4) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800001, 0x12, r1, 0xfffff000) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) r3 = syz_open_dev$tty1(0xc, 0x4, 0x1) writev(r3, &(0x7f00000005c0)=[{&(0x7f0000000040)="9f8194be5ace602f096d07ff00cd66299667b70536342623b372d82fefa01f9a2d83297f99b4e597f4e9fad324868e83f474d0c3549b712f00c51c638e6aea4a8d9b3b5286b31a260e60482bb0b4179b314a", 0xff7c}], 0x1) accept4$inet6(r2, 0x0, &(0x7f00000001c0), 0x80800) connect$packet(0xffffffffffffffff, &(0x7f0000001380)={0x11, 0xf5, 0x0, 0x1, 0x7, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x43}}, 0x14) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:04 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:04 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000ffffff", 0x1e5) 23:06:04 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:04 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:05 executing program 5: socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:05 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000ffffff", 0x1e5) 23:06:05 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) r2 = perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) dup2(r1, r2) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:05 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040), 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:05 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:05 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f0000001300)={0x53, 0xfffffffffffffffc, 0x1000, 0xf8, @scatter={0x1, 0x0, &(0x7f0000000140)=[{&(0x7f0000000040)=""/193, 0xc1}]}, &(0x7f0000000300)="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", &(0x7f0000000180)=""/132, 0x6, 0x11, 0x0, &(0x7f0000000240)}) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:05 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00020000000000", 0x1e5) 23:06:05 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, 0x0, 0x0, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:05 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x8, 0x7}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r3, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) openat(r3, &(0x7f00000000c0)='./file0\x00', 0x2000, 0x90) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) mmap(&(0x7f0000423000/0x2000)=nil, 0x2000, 0x1800003, 0x12, r2, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:05 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00030000000000", 0x1e5) 23:06:05 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, 0x0, 0x0, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:05 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, 0x0, 0x0, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:05 executing program 5: socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:05 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, 0xffffffffffffffff, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) splice(r0, &(0x7f0000000080)=0x3, r0, &(0x7f00000000c0)=0x3ff, 0x6, 0x1) ioctl$SG_GET_ACCESS_COUNT(r0, 0x2289, &(0x7f0000000040)) r1 = signalfd(r0, &(0x7f0000000100)={[0x4]}, 0x8) ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000140)={0x3c, 0x3, 0x0, "89da5e24a6da8d5e952663873cb406506e6d6ff3f991b40e3a6b026cf23badabe2b7cac276ea35671c4af237b3019e656259ccaa1c6c59af650f0e79"}) 23:06:05 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) r2 = perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) dup2(r1, r2) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:05 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040), 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:05 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00040000000000", 0x1e5) 23:06:05 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0x0, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:05 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) preadv(r0, &(0x7f0000000180)=[{&(0x7f0000000040)=""/193, 0xc1}, {&(0x7f0000000140)=""/36, 0x24}], 0x2, 0x875b, 0x3) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) r3 = inotify_init() r4 = fspick(r1, &(0x7f0000000480)='./file0\x00', 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) r6 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r6, 0x2403, 0x81) io_uring_register$IORING_REGISTER_FILES_UPDATE(r1, 0x6, &(0x7f0000000500)={0x401, 0x0, &(0x7f00000004c0)=[r2, r0, r1, r3, r1, r4, r1, r5, r6]}, 0x9) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r7 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r7, 0x0) preadv(r7, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_IO(r7, 0x2285, &(0x7f0000000400)={0x53, 0xfffffffffffffffb, 0xf3, 0x2b, @buffer={0x0, 0x10, &(0x7f00000001c0)=""/16}, &(0x7f0000000300)="9c986725fe0691598e5f4620df3ea485253a60ceba698433b6946340870cc246ff6402a2a95856f2cb8cd0b2fef3b3dacc300a47353aca11bd14bbb4175b179c1edcdaf2b6edadbd058fd6a4f440662bf95c94b2344e6f9c8cdd78b2cb500777324bf6ab8304ff69d02aaff72f5a0f4cb7a33b88709a14a75395db04da5034f911bc607652f799e1db982b64295abc2e58890e9a1f8947cf02485979f05e383227e1d03504a2b5c13778f1f5e526fa2e5f65cd40a077a1808637394d6ef518fcec1d14a55a29d2e6f1b3816bdddd2b5ab7b571847a9c1be97065d08ee54b6908569e5797563c10340ec26357016d3b7cb20ac8", &(0x7f0000000200)=""/116, 0x73, 0x2, 0x0, &(0x7f0000000280)}) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:05 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0x0, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:06 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) r2 = epoll_create1(0x0) r3 = openat(r1, &(0x7f0000000040)='./file0\x00', 0x200, 0x0) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r2, 0x50009418, &(0x7f0000000300)={{r3}, 0x0, 0x4, @unused=[0x1, 0x1, 0x9, 0x80], @devid}) 23:06:06 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00090000000000", 0x1e5) 23:06:06 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0x0, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:06 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000100)='./file1\x00', 0x1, 0x7, &(0x7f00000005c0)=[{&(0x7f0000000140)="aeb81f8e6fcb070c3e5b2ab25ff166b2444140a2ff7f014a4141f112296ce48b5caff0ebca896c6affd30b80b457b4e350a21d1e00709d3d034478ed18e530f4612ea933840180c1657c926ce6740c5a914fa468b18868834de71061ded2a9c7366ebebc64315bb2793e00bb2e4a8284", 0x70, 0x6}, {&(0x7f00000001c0)="db73fc870538dcea9b7af48f042db75283d6727c2b6c47af3c48bdd46c5737accc51d82731d587148c5d4cc6f5cf359d8536c90ce2154aa6dd79bccea304126d7be12f3a93f95a3f8935a38abd712f901eee1b648596666f1848fb4b95d8c3dcad1fcbb1534155e61bd3ca2fe191f84eb5b87a84d6fc618bf4c33155511b9f631a48874fced564fe7b87928b907ce9e28f6b6e8dc1cac09685eb9c8a13b98302f8fbc741ac56e87bc66bd0b1add369a213cd43f46f7cf6afb83e44b94b11a551d8b3e5767a30639cf628e57b11999489df634d4e92db40b477934fe464caff8657aa6a84494269642115e863b31db86b7ea2903a", 0xf4, 0xffff}, {&(0x7f0000000300)="5a3bb3cc459755829798542a597725d407e1c7aebe81fdb9c6e381293006d761c61a36663d7c18a3e3afa7d518f2e091ba2a46006bcb65d73f39bba8ec9c3311f2334f8be06742d0cd0108f0a04f7c78894d57b0f1d54e633cd0d5a11491a26152cf44", 0x63, 0x2}, {&(0x7f0000000380)="d9719fe7d9e89df8f25b8bf4d8705d88bb71a65ee7a0fd679ea70ef26573271c90d05fcf89da2b021e5e259f5ad0b48460711290e23dcffb0753e6a0d5b93be1bc87a3b20fac0a69a472fbf89b3be3d69377bd5e32292f3d176bc4c9f768df1d5e628b48cd189d9ae8d3f4ab7b88e0390ab983e90f022b475e428437d7cef0fbb16230b3dd532fd10cc5b2d41ce43ba91ba863568b62321e", 0x98, 0x9}, {&(0x7f0000000440)="c5e45ac467d059ecc7a6b39f51170ada4c7ca4cc77952645a51ecbf3376f169ef6d7e257da3a5b6347dc9ce3d0e8fe17ef093824bd5b921922ae93e87b2d43a9e900f217ab5997434ee6c8cae122711a508691665f5b3a957e29caac79db873f276c5095a395cf18a4531a773a554c79b6d4212f", 0x74, 0x100000000}, {&(0x7f00000004c0)="25aef7721518bd6d53b6d69becd4711bd47abdcef9098d2e728eed987dff8e6033532bf30d95149d4d546c6019f66f4b256c20aafa0583ee47e76fe617c33eac4cdc90c9f26642ec40c4227df3cfe648a0f3ca6b122194e09ae8b700b4305a437a50eddfb4914c0f798beb0dd6c9b111f9a18e87819dfebbc796d732ca088df38072ccb66f867914045eccd532d0f0b4041e5a237d239e7eb2e1ff3d9f599816cb476d7642a58a48882ebbcf85821942ca4a", 0xb2, 0x2}, {&(0x7f0000000580)="045bea9e8606681a2b677c111f218770794a85a1502323830e9ca7fe77d7a60eb4d3f61a2b601f64ba0a6f7ae0088c34631c5c2de74ba932a26ac0519d57", 0x3e, 0x7}], 0x2210000, &(0x7f0000000680)={[{@shortname_lower}, {@shortname_mixed}, {@utf8}, {@fat=@discard}, {@rodir}, {@rodir}], [{@context={'context', 0x3d, 'unconfined_u'}}, {@rootcontext={'rootcontext', 0x3d, 'staff_u'}}, {@smackfsdef={'smackfsdef', 0x3d, 'cgroup.type\x00'}}, {@audit}, {@audit}]}) openat(r2, &(0x7f00000000c0)='./file0\x00', 0x400, 0x100) r3 = openat$cgroup_type(r1, &(0x7f0000000080), 0x2, 0x0) ftruncate(r3, 0x80) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:06 executing program 5: socketpair$unix(0x1, 0x2, 0x0, 0x0) connect$unix(0xffffffffffffffff, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:06 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff000a0000000000", 0x1e5) 23:06:06 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) r2 = perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(r1, r2) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:06 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040), 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:06 executing program 0: syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r0 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(0xffffffffffffffff, 0x5386, 0x20000000) 23:06:06 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:06 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00100000000000", 0x1e5) 23:06:06 executing program 0: syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r0 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(0xffffffffffffffff, 0x5386, 0x20000000) 23:06:06 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00290100000000", 0x1e5) 23:06:06 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000280), 0x15b082, 0x0) r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000380), r1) ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r1, 0x89f3, &(0x7f0000000400)={'ip_vti0\x00', &(0x7f00000003c0)={'syztnl1\x00', 0x0, 0xffc4, 0x8000, 0x6, 0x9d, {{0x5, 0x4, 0x1, 0x33, 0x14, 0x64, 0x40, 0x81, 0x29, 0x0, @dev={0xac, 0x14, 0x14, 0x17}, @multicast1}}}}) sendmsg$MPTCP_PM_CMD_SET_LIMITS(r2, &(0x7f0000000540)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000500)={&(0x7f0000000440)={0x84, r3, 0x0, 0x70bd2d, 0x25dfdbfe, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x1}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x1}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x6}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x5}, @MPTCP_PM_ATTR_ADDR={0x38, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e24}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x31}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r4}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @local}]}, @MPTCP_PM_ATTR_SUBFLOWS={0x8}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x3}]}, 0x84}, 0x1, 0x0, 0x0, 0x40004}, 0x20004000) r5 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x101400, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r5, 0x0) syz_mount_image$msdos(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x8, 0x1, &(0x7f00000001c0)=[{&(0x7f00000000c0)="1dbac5ebd55fdad0b5142ed44d50c6212f4d4987f261bd6987cb34824b0f24500e67d1007ba4c501282e64495f2e2ce5ac3e339be341f79ae71de43cb885086b6b964f7be7119305139eac807730c68e994ab476191109baf010bb4607b59e1e0f906ed567af515a234c55d482247575adeaa3984d3262e5c687f7d38101c3dea7fffa7b79aaba7c78293e06861447579eb379093b28201fbbbfd19942a2a97791c868a4c6ebef617f8ef6280559b0aa6fa21f3108f933ab3ddd334de8a532ac0f88c295d0eef1ae5e2506f2035725fab4443b7a040ff5e8b164029891512ac6bc87174477cbdc12759af6e2d91a4c0d", 0xf0, 0x6}], 0x1008400, &(0x7f0000000200)={[{@dots}, {@nodots}, {@dots}, {@fat=@dos1xfloppy}, {@fat=@errors_continue}, {@dots}, {@dots}], [{@subj_role={'subj_role', 0x3d, '/!(\')@'}}]}) preadv(r5, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:06 executing program 0: syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r0 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(0xffffffffffffffff, 0x5386, 0x20000000) 23:06:06 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) r2 = syz_open_dev$vcsa(&(0x7f0000000040), 0x600, 0x40342) ioctl$SG_GET_NUM_WAITING(r2, 0x227d, &(0x7f0000000080)) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:07 executing program 0: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000000), 0x20200, 0x0) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:07 executing program 5: socketpair$unix(0x1, 0x2, 0x0, 0x0) connect$unix(0xffffffffffffffff, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:07 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00c90100000000", 0x1e5) 23:06:07 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) r2 = perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, r2) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:07 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x90101) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) write$P9_RLERROR(r1, &(0x7f0000000040)={0x12, 0x7, 0x2, {0x9, '/dev/sg#\x00'}}, 0x12) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:07 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:07 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000300000000", 0x1e5) 23:06:07 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000900000000", 0x1e5) 23:06:07 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) r3 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r3, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r3, 0x1, &(0x7f0000002640)=ANY=[@ANYBLOB="c80000dbc30900000000000000004200000091b38988a65bcc6866631041be3791093238d3a340e2311f28f2352386032b8159cb1bce957a4103080426007ddd32317c17d4a664be4de83a1a17c6bc57bf7cff5f94201450e5405fb9a4bb654b8be7d07d6b8cd25e69fcf365757b3c331588a526e430876c0fd64b90e639c3de2c6d879db39d475586c6c8d31f864adaf416b62c22fd0b01bc97aa24b9dd65449156e93511803080499eabdadd3d7bd4446c0ac0cba2ff2eb58d4200a35c46de447b937957b13b107db2e509e05631e8aa8e405c3c6bebe4063ec05494e1cf588e5faf70b1340de75f49003ad75232087510b7ecd29ac979762f090906133bdc1b3a7ab91dc272d9447a7aa60edb9c47fda47af6cb29504d"]) mmap(&(0x7f00002fe000/0x1000)=nil, 0x1000, 0x2000000, 0x13, r2, 0xbde14000) ioctl$BTRFS_IOC_SCRUB(r1, 0xc400941b, &(0x7f00000039c0)={0x0, 0x7, 0x44}) preadv(0xffffffffffffffff, &(0x7f00000025c0)=[{&(0x7f0000000300)=""/4096, 0x1000}, {&(0x7f0000001300)=""/4096, 0x1000}, {&(0x7f0000002300)=""/243, 0xf3}, {&(0x7f0000002400)=""/193, 0xc1}, {&(0x7f0000002500)=""/155, 0x9b}], 0x5, 0x3, 0x2) vmsplice(r2, &(0x7f0000000180)=[{&(0x7f00000000c0)="836b0eb0f01bde2aa68e8a53e6b1ae8dbc95135e3176f86c83b40e96623f1bb857677c213b5b33ed11e7cee13551c7e3ed834c71a81182ab25fd4828d4c77c6a55fb542cf43c1d618b4ee7c37c8f4618602be519f3de2eb35a5aee184c3f675be7c3afa47ba6d71dad0a93ae837179dafa032646b9570c85092596ed8989ef5f4feaff55faa1caac3ad0a45ec18a1f879e87bb49ddfecba9ac5d0dee4f01da40de8c851a87", 0xa5}], 0x1, 0xd) preadv(r3, &(0x7f0000003900)=[{&(0x7f00000001c0)=""/93, 0x5d}, {&(0x7f0000002780)=""/151, 0x97}, {&(0x7f0000000240)=""/98, 0x62}, {&(0x7f0000002840)=""/46, 0x2e}, {&(0x7f0000002880)=""/4096, 0x1000}, {&(0x7f0000003880)}, {&(0x7f00000038c0)=""/3, 0x3}], 0x7, 0x7, 0xfffffffe) r4 = signalfd(r1, &(0x7f0000003880)={[0xff]}, 0x8) ioctl$SCSI_IOCTL_SEND_COMMAND(r4, 0x1, &(0x7f0000003980)={0xb, 0xffffffff, 0x3, "e5dcd85247d19f0f2b85c6"}) 23:06:07 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000a00000000", 0x1e5) 23:06:07 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000640)=[{&(0x7f0000000040)=""/119, 0x77}, {&(0x7f00000000c0)=""/171, 0xab}, {&(0x7f0000000780)=""/227, 0xe3}, {&(0x7f0000000300)=""/240, 0xf0}, {&(0x7f0000000400)=""/106, 0x6a}, {&(0x7f0000000480)=""/41, 0x29}, {&(0x7f00000006c0)=""/131, 0x83}, {&(0x7f0000000540)=""/206, 0xce}], 0x8, 0xd9f, 0x7) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:07 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00c00e00000000", 0x1e5) 23:06:08 executing program 0: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000000), 0x20200, 0x0) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:08 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) r2 = perf_event_open$cgroup(&(0x7f00000000c0)={0x1, 0x80, 0x3, 0x4, 0x4, 0x0, 0x0, 0x7, 0x5a020, 0x1d, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x2, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1ff, 0x2, @perf_config_ext={0x25e, 0x5}, 0x10000, 0x100000001, 0x9, 0x7, 0x2, 0x8, 0x7, 0x0, 0x3, 0x0, 0x80000000}, r1, 0x2, 0xffffffffffffffff, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x8, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB="2c6130303030303030303030303080000000000000006769643d691e8edce7df04007a72daec0500000000000000652e4c1a3f9c1289e85ff0f40aefce40a00f06fdb14c45b40f4de2b77eaff9d68972e914157a4a6f199d5c8ed39b21dc6e38b52042a840dd64f36e498631e0b1cf360c87732bf35394138b58f3b8f47f531620ac4cb62b3b5bd077af0e4a60c1eaae96c51ab8c3b1f7aac91265b40c9ea2934c5b1509fa160e9eb3e4c86159a13be717ff446a33a910e12c13289279b552186a7f2363b3538ab7ef7bc30532374274c510981f6ff446abf47e8c2a5e3c3ff916", @ANYRESHEX=0xee00, @ANYBLOB=',context=staff_u,smackfsroot=/dev/sg#\x00,permit_directio,fscontext=sysadm_u,fowner<', @ANYRESDEC=0xee01, @ANYBLOB=',fsmagic=0x0000000000000003,measure,fscontext=sysadm_u,measure,fsmagic=0x00000000000000ff,\x00']) preadv(r1, &(0x7f0000000380)=[{&(0x7f0000000280)=""/28, 0x1c}, {&(0x7f0000000300)=""/77, 0x4d}], 0x2, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:08 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00002000000000", 0x1e5) 23:06:08 executing program 5: socketpair$unix(0x1, 0x2, 0x0, 0x0) connect$unix(0xffffffffffffffff, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:08 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) r2 = perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, r2) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:08 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:08 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800001, 0x12, r1, 0xc20f9000) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040), 0x430980, 0x0) writev(r2, &(0x7f0000000180)=[{&(0x7f0000000080)="e3ed58c2333513e56012907ae545827e3c036d52ad6d1cd961bf1b4c298d9963dc446e21e34104206f50c2cf45a8311c09f2c3556a58caed615d61d17e0fed290033d4260e4c693c1efd43029a7b25b947d3cf28a908c53b06ea691c5220280b03dbb3", 0x63}, {&(0x7f0000000100)="cc22d724adb3ea034eafd7a9b839e9da8fcdce58b5abaf2d0850e152099ff66fee46426cd788f33d49efe4b256c3dbe258500b8ca471cfa35c1fe602b63540ebdc73a1d0b2e1d417dded627a2547c23e73b7a3549e6ecdfbbfe969a18afc982ed241e5e0c939f3bd3dd96f5ea13068edd2b7ce5fd8322e0dae33be688628fb", 0x7f}], 0x2) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:08 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00012900000000", 0x1e5) 23:06:08 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000040), 0x7f, 0x30382) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000), 0xf7944f0f647d78f9, 0x0) ioctl$SG_NEXT_CMD_LEN(r2, 0x2283, &(0x7f0000000080)=0xfa) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r3 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0), 0x4100, 0x0) ioctl$SG_GET_REQUEST_TABLE(r3, 0x2286, &(0x7f0000000100)) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:08 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff000ec000000000", 0x1e5) 23:06:08 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff0001c900000000", 0x1e5) 23:06:08 executing program 1: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCSRS485(r0, 0x542f, &(0x7f0000000040)={0xfd4c, 0x4b1, 0x8}) r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000080)='net/psched\x00') mmap(&(0x7f0000300000/0x3000)=nil, 0x3000, 0x1800003, 0x2010, r3, 0x2cecd000) r4 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r4, 0x0) preadv(r4, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r5, 0x0) preadv(r5, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_io_uring_complete(0x0) syz_open_pts(r4, 0x60000) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r1, 0x2286, 0x20000000) 23:06:09 executing program 0: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000000), 0x20200, 0x0) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:09 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00004003000000", 0x1e5) 23:06:09 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1800003, 0x10, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x0, 0x8001, 0x3) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:09 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:09 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(0xffffffffffffffff, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:09 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:09 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000340000000", 0x1e5) 23:06:09 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000280)='/sys/module/nf_conntrack_sip', 0xe4201, 0x0) ioctl$sock_SIOCGIFVLAN_SET_VLAN_NAME_TYPE_CMD(r2, 0x8982, &(0x7f0000000380)={0x6, 'bond_slave_0\x00', {0x1f}, 0x80}) r3 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r3, 0x2403, 0x81) preadv(r3, &(0x7f00000003c0), 0x0, 0x3, 0xff) pipe(&(0x7f0000000040)={0xffffffffffffffff}) ioctl$SG_IO(r4, 0x2285, &(0x7f0000000300)={0x7a, 0xfffffffffffffffd, 0xe5, 0x54, @buffer={0x0, 0x57, &(0x7f0000000080)=""/87}, &(0x7f0000000100)="f5752f1d0462ea5572c577575b1d29ddc2f50bbf11d3d30b3f012717b448c7ab0039428b6018947d4fd9ea6ff8ae96c5f41f741d5818a54768b64f229bdeae9ff82c2d0f1de1b7e94ec705b9b6ceaeedc2acce380d50671230b0fc74ccee45a719452f82b61325d9efb3e22431a826110aca1d87e33eb09d1f11e50d2c6e5d6837b9deb5498e31c4008153456d794010928ce9607e5815ba73779743b04db9d7b907a8847d105faf79622dc10f5af499f6c2b550c0f7039d49b280f8ff15645035bdeaa8d26f5e500710d7a70f328ed56e84fcb3ac6a768d30c5fe01d93c2e85718475df2b", &(0x7f0000000200)=""/32, 0x2, 0x25, 0x3, &(0x7f0000000240)}) sendmsg(r1, &(0x7f0000000b80)={&(0x7f00000003c0)=@alg={0x26, 'aead\x00', 0x0, 0x0, 'generic-gcm-aesni\x00'}, 0x80, &(0x7f0000000440), 0x0, &(0x7f0000000480)=[{0xd8, 0x111, 0x6, "e2938e0c9b18ad12740132efb1ada8681b7d7d05b3b3ecb282501b2f23fd14cb9af4e1e0ec6dc264c634cddba4582799f8fce1764c21895acbf42bdf3c9c758f4ad59c1f57dad66e8d1bd463416f214b9e4bee18381064db7bac620b501825a9a3df072e15e07274e8015c9c758409b54918e103fe0b08f9b9d72b1f90d32cfafaaa3e05761c55687ef430ded612bf5612c9d2e690c697b19018de105b97f7d0eee4f89e698541b9940f9654f3518912e0c197d7acfdada925594d62933ef532c625f2"}, {0x18, 0x116, 0x96, "3a1db429b7295431"}, {0xf8, 0x101, 0x7fff, "c18cd185462581862d8bdbc3fe60807f8b9dfefd8c29fe52f13af2d3387c09cc586d2cda1bb19d21e81cc553d07d49e2a14ab2aaa6ded719f8dd7f17792e5239985551c68d0ea0bf972cddee045e2e8ada1e7e901998f299f273b3c8cc049d569ee4f85d4c7dcdf9b1a59d4833430b83c737c2eaa4d585ce103f775b7e6978e9a61ed3515c2890c3baf3fdc16f8beac22aa96fdbe8dfacaa7c1f104bfb3fc7fd85d4c7b96a64023d5c599b6bc7545a17222a9a0a0c39fff20363f1e87aac45de0f3dd16e3e1ad0f0c0d52954e3b433684280f447d3a8eabe8ea360da5215bb58b6"}, {0xe8, 0x10c, 0x0, "795c7a9d5c42612254a9a605aeb1e8795eadf60e7e2ff824ca3348dc1cc18387d94f7a6224e021603d7bd295ff85f07140d3a5564b39594e1ecad2e3d1e073fed3ef702622e01fe88cbe3c217aa7092ad91e13a64075acb435b2e8ab2e46246112f50bbfb249a06028131933c50122d91b240bd93335d9506a658d4fde9599730fd88f31ada58f010a87c508b489e34a612bc6d2171fe0e4d45ea5087480bde7df77fbe77d9c5a0b86d3ac44c0e6b808c85b636dcaaf986bd3a21dac884fd547a943f7203e4aa65d22855f90e179f8cf2ab69cf0796e"}, {0xd8, 0x116, 0x672, "9a5e171fa1adeaeb7cdb40d9fad3f8c2bc627e22f3692fd504873412ad16246bf6bf56c228aa871db53cdee4e7d07306b9a3d35fb68bd29ed6e484c4a7cf7177c9f40ff690d65a4b27ed78587b57c73373008d666219d18b69e9f3d67a8420953d2df73606f843241f45641e6931991563e63d53cda04bfa85c233991165f6d23c5d69c9dd4e820367754f090ae10cf9ed803e1a25a74d95a06051dde6d77ba58a64d133d7dc9363e04019876cac8ce15c891ad16a1cbc24e7f0d14e371ade74a97362d18a8a"}, {0xe0, 0x1, 0x7, "3580d3ee209894746bdcecc4a60d278aed48e92e28846b95b69ffb029d13aee04ebf224204aa9f525841871741026ec120b8b030e6a4df1df51ea2abce03a7ffb0417dea71fdd67bae37ce3d9a6a5ee285e60bedfedc48dc8081a7445ea955eb687c931d7b930f895a1196794fae25cd1edbcd6e6ac2c4d290da4876ac227bb655d831e164cff02a3be7c3a2ad5e0cfa9cb58182ad35c1bc4af88d54b1cc99dbedf44ca8034d82607230013b97c5ac3772a5475fa7774650a937aaacf8bf5b05516b568e9311965f2029"}, {0x90, 0x109, 0xffffff69, "e2952551c21dba7dd2f0c4bd1f51a1ae7634c1b4185a5c1cb2043da9035e2859dd9e8ff9fc27552d84b51e1f16063d735e640425b312ca6dcd7c7e20331634b1c8396cfec5e0cb1800bd222239988d12bb734b386f1176a3df8ef44e234d8b6fa706e125d1786cc841d9409895054549e79276db8a8b46ff8e"}, {0xe8, 0x0, 0xffff, "06f5cdccad357e76c0a0f9f564cf56eeeea2a17629b222f13f00f29f6bd40a65a4054b16478cd7cd7701e9d236c54ccdb433e916156cf8d38e4fba6c067cc0be75a521c85c1ad875ebdc0bc6447e0a3b6ad537909a43b675538a6a389d5114e80b0bcc66da4505feeb7a151c352efb527b693625f96162e764ee5cbd4d9881742eaa8dcf6fac3304b82a2de3cc88fccb473d50baffe7fac41795c6cebc99e01d49f4718098419076a3a923dfa0d1280b611e286ae21ee8fd658940dbd4b30e30951ec45a4ebb9946da63c952298b49e59d5c70a3648f56"}, {0x68, 0x115, 0xfff, "0069a9c6b84009af5797d82f5ceb56e172b43b11231fb87b07e8e476b0ec9910340e4f3abc2005b915f6275996e42e7fbb149663a7fb2c35af9460d1f4029c82ef354cf5279bde534be1f2eb4c6713c76ccef8bdbe72561f"}, {0x68, 0x117, 0x8, "925769d064ca69a3d4ba5b28d387a6af6807d65133b98b47ebc369e4c0c1a00d2e6132086213c54a33cb649731d8ea41a8b36fc0b04ca6f67da5a875f7208cfe2b42c6b6551998a5103a2ed23aa52984f12ee13a7ae677"}], 0x6d0}, 0x4000000) 23:06:09 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) ioctl$SG_NEXT_CMD_LEN(r0, 0x2283, &(0x7f0000000040)=0xa7) mmap(&(0x7f00005e8000/0x3000)=nil, 0x3000, 0x3800003, 0x10, r0, 0x5650f000) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:09 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000010000", 0x1e5) 23:06:09 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r1, 0x2403, 0x81) fsetxattr$trusted_overlay_opaque(r1, &(0x7f0000000280), &(0x7f0000002300), 0x2, 0x2) r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000240)=[{&(0x7f0000000300)=""/4096, 0x1000}, {&(0x7f0000001300)=""/4096, 0x1000}, {&(0x7f0000000040)=""/219, 0xdb}, {&(0x7f0000000140)=""/212, 0xd4}], 0x4, 0xd9f, 0x0) preadv(0xffffffffffffffff, &(0x7f0000002440)=[{&(0x7f0000002340)=""/202, 0xca}], 0x1, 0x10000, 0x3ff) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:09 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000020000", 0x1e5) 23:06:10 executing program 0: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000000), 0x20200, 0x0) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:10 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = syz_open_dev$vcsa(&(0x7f0000000080), 0x1, 0x246002) r2 = openat(r1, &(0x7f0000000040)='./file0\x00', 0x109000, 0x1a) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:10 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000030000", 0x1e5) 23:06:10 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(0xffffffffffffffff, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:10 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:10 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:10 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) ioctl$SG_IO(r1, 0x2285, &(0x7f0000001400)={0x0, 0xffffffffffffffff, 0xc1, 0x81, @scatter={0x3, 0x0, &(0x7f0000000180)=[{&(0x7f0000000040)=""/171, 0xab}, {&(0x7f0000000100)=""/122, 0x7a}, {&(0x7f0000000300)=""/4096, 0x1000}]}, &(0x7f00000001c0)="ecf67f691c3db991a2e087f09f50dfc2bfd7fe095896fb97685283be3c8c0a6364d4cbc2b915ed10dcd9982644fe2f61d0972bb979860271f168b7344b363ed937fc692bb539d64d16acd34bc959fe681f49257167626a68c2f246df4769bc49850bd33da8b72710f091eb6c315e81401b9ce7f576cf74a6733376b1d14a497ba9bed4ccda1f7b3217aabddcf7cc287cf8268308b55ad40ef51eb4b751621db143652949ed3e56bf185b8bc0c94cedb572c9f9af0f525dfa0b127f1be24a4068b3", &(0x7f0000001300)=""/173, 0xffffff80, 0x14, 0x0, &(0x7f00000013c0)}) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:10 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000040000", 0x1e5) 23:06:10 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$BTRFS_IOC_SET_FEATURES(r1, 0x40309439, &(0x7f0000000040)={0x2, 0x3, 0xa}) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:10 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000090000", 0x1e5) 23:06:10 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/dm_mirror', 0x101000, 0x37) r2 = openat(r1, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) ioctl$SCSI_IOCTL_TEST_UNIT_READY(r2, 0x2) preadv(r0, &(0x7f0000002800)=[{&(0x7f0000000080)=""/232, 0xe8}, {&(0x7f0000000180)=""/81, 0x51}, {&(0x7f0000000300)=""/249, 0xf9}, {&(0x7f0000000400)=""/4096, 0x1000}, {&(0x7f0000001400)=""/249, 0xf9}, {&(0x7f0000001500)=""/248, 0xf8}, {&(0x7f0000000200)}, {&(0x7f0000001600)=""/246, 0xf6}, {&(0x7f0000001700)=""/228, 0xe4}, {&(0x7f0000001800)=""/4096, 0x1000}], 0xa, 0xfffffffe, 0x2) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:10 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff000000000a0000", 0x1e5) 23:06:11 executing program 0 (fault-call:4 fault-nth:0): r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:11 executing program 1: r0 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) recvmsg(r0, &(0x7f0000001600)={&(0x7f0000000040)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @initdev}}}, 0x80, &(0x7f0000001580)=[{&(0x7f00000000c0)=""/200, 0xc8}, {&(0x7f00000001c0)=""/146, 0x92}, {&(0x7f0000000300)=""/151, 0x97}, {&(0x7f00000003c0)=""/4096, 0x1000}, {&(0x7f00000013c0)=""/84, 0x54}, {&(0x7f0000000280)=""/57, 0x39}, {&(0x7f0000001440)=""/79, 0x4f}, {&(0x7f00000014c0)=""/147, 0x93}], 0x8}, 0x10000) ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f00000016c0)={'ip6tnl0\x00', &(0x7f0000001640)={'ip6tnl0\x00', 0x0, 0x4, 0x7, 0x4, 0x8b2, 0x4a, @private1, @mcast1, 0x700, 0x1, 0x2, 0x7}}) bind(r1, &(0x7f0000001700)=@xdp={0x2c, 0xa, r2, 0x1c}, 0x80) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) ioctl$BTRFS_IOC_QGROUP_ASSIGN(r0, 0x40189429, &(0x7f0000000000)={0x0, 0x8, 0xffffffffffff8000}) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r3 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r3, 0x2403, 0x81) ioctl$BTRFS_IOC_QUOTA_RESCAN(r3, 0x4040942c, &(0x7f00000018c0)={0x0, 0x7f, [0x6fa, 0x9, 0x0, 0x6, 0x4, 0x5]}) ioctl$SG_SCSI_RESET(0xffffffffffffffff, 0x2286, 0x20000000) sendmsg$ETHTOOL_MSG_CHANNELS_GET(r0, &(0x7f0000001880)={&(0x7f0000001780)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000001840)={&(0x7f00000017c0)={0x68, 0x0, 0x8, 0x70bd26, 0x25dfdbff, {}, [@HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'xfrm0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvtap0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_hsr\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}]}, 0x68}, 0x1, 0x0, 0x0, 0x10}, 0xa4bef6389b8a8bb3) 23:06:11 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000100000", 0x1e5) 23:06:11 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(0xffffffffffffffff, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:11 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:11 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:11 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) ioctl$SCSI_IOCTL_GET_PCI(r1, 0x5387, &(0x7f0000000180)) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = io_uring_setup(0x126f, &(0x7f0000000040)={0x0, 0x586, 0x0, 0x2, 0x145, 0x0, r1}) pread64(r2, &(0x7f00000000c0)=""/192, 0xc0, 0xfffffffffffffffe) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) [ 140.266761][T12595] FAULT_INJECTION: forcing a failure. [ 140.266761][T12595] name failslab, interval 1, probability 0, space 0, times 0 [ 140.279401][T12595] CPU: 1 PID: 12595 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 140.288165][T12595] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 140.298262][T12595] Call Trace: [ 140.301544][T12595] dump_stack_lvl+0xb7/0x103 [ 140.306137][T12595] dump_stack+0x11/0x1a [ 140.310330][T12595] should_fail+0x23c/0x250 23:06:11 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000200000", 0x1e5) 23:06:11 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x5, 0x123041) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) syz_io_uring_setup(0xccd, &(0x7f0000000080), &(0x7f000014c000/0x4000)=nil, &(0x7f00006d4000/0x4000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000040)=0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_FILES_UPDATE={0x14, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000240)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xffffbfff) r4 = syz_open_dev$vcsu(&(0x7f0000000100), 0x9, 0x0) getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000000140), &(0x7f0000000180)=0xc) syz_io_uring_setup(0xccd, &(0x7f0000000080), &(0x7f000014c000/0x4000)=nil, &(0x7f00006d4000/0x4000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000040)=0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000200)=@IORING_OP_FILES_UPDATE={0x14, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000240)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xffffbfff) syz_io_uring_submit(r2, r6, &(0x7f0000000040)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x1, 0x4007, @fd_index=0x9, 0x2, 0x0, 0x0, 0x2, 0x0, {0x2}}, 0x9) [ 140.314791][T12595] ? __anon_vma_prepare+0x41/0x2d0 [ 140.319974][T12595] __should_failslab+0x81/0x90 [ 140.324735][T12595] should_failslab+0x5/0x20 [ 140.329275][T12595] kmem_cache_alloc+0x46/0x2e0 [ 140.334129][T12595] __anon_vma_prepare+0x41/0x2d0 [ 140.339060][T12595] wp_page_copy+0xb0e/0x10c0 [ 140.343642][T12595] ? __fsnotify_parent+0x32f/0x430 [ 140.348756][T12595] do_wp_page+0x5a8/0xba0 [ 140.353073][T12595] handle_mm_fault+0xb11/0x1a50 [ 140.357923][T12595] do_user_addr_fault+0x609/0xbe0 23:06:11 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000001290000", 0x1e5) 23:06:11 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) sendmsg$NFNL_MSG_ACCT_GET(r1, &(0x7f0000001340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000001300)={&(0x7f0000001400)=ANY=[@ANYBLOB="20000000018701010000000000000000ff0000000c0003400000000000000008220116ba717979afca6738057b85b2e3b623ea017b4043df406e5785fdfa72d5c00b2f9fd78c54937c3d2c5010103dea6105ce2c70e9896f532b69dfa74bb40c836b396be568ad682a35f425498ca2"], 0x20}, 0x1, 0x0, 0x0, 0x804}, 0x20000100) r2 = open$dir(&(0x7f0000000280)='./file0\x00', 0x321141, 0x1) fspick(r2, &(0x7f0000001380)='./file0\x00', 0x0) syz_open_procfs(0x0, &(0x7f00000013c0)='attr\x00') ioctl$SG_IO(r1, 0x2285, &(0x7f00000001c0)={0x53, 0xffffffffffffffff, 0x1d, 0x0, @buffer={0x0, 0x1000, &(0x7f0000000300)=""/4096}, &(0x7f0000000040)="abe623116f6251819a97fd0bc05adaa8ecda3ecae36010217b7f567b07", &(0x7f0000000080)=""/195, 0xd12f, 0x0, 0xffffffffffffffff, &(0x7f0000000180)}) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) [ 140.362971][T12595] ? avc_has_extended_perms+0x5d8/0x7b0 [ 140.368505][T12595] exc_page_fault+0x91/0x220 [ 140.373157][T12595] asm_exc_page_fault+0x1e/0x30 [ 140.378004][T12595] RIP: 0010:__put_user_nocheck_4+0x3/0x11 [ 140.383712][T12595] Code: 00 00 48 39 d9 73 54 0f 1f 00 66 89 01 31 c9 0f 1f 00 c3 0f 1f 44 00 00 48 bb fd ef ff ff ff 7f 00 00 48 39 d9 73 34 0f 1f 00 <89> 01 31 c9 0f 1f 00 c3 66 0f 1f 44 00 00 48 bb f9 ef ff ff ff 7f [ 140.403311][T12595] RSP: 0018:ffffc90001007e08 EFLAGS: 00010297 [ 140.409395][T12595] RAX: 0000000000000000 RBX: 00007fffffffeffd RCX: 0000000020000000 23:06:11 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00ffffff810000", 0x1e5) [ 140.417365][T12595] RDX: 00018881009561cc RSI: 0000000000000022 RDI: ffff8881009561cc [ 140.425324][T12595] RBP: ffffc90001007e70 R08: 0000000000000000 R09: 00018881009561cf [ 140.433289][T12595] R10: 000000000000000b R11: ffff88812f491000 R12: 0000000000005386 [ 140.441345][T12595] R13: 0000000000000003 R14: 0000000020000000 R15: ffff888102cd2800 [ 140.449315][T12595] scsi_ioctl_common+0x180/0x5d0 [ 140.454308][T12595] ? do_vfs_ioctl+0x7c2/0x1410 [ 140.459100][T12595] ? alloc_vfsmnt+0x66/0x2e0 [ 140.463721][T12595] scsi_ioctl+0x22/0xa0 [ 140.467870][T12595] sg_ioctl+0x87/0xc0 [ 140.471836][T12595] ? sg_poll+0x240/0x240 [ 140.476165][T12595] __se_sys_ioctl+0xcb/0x140 [ 140.480742][T12595] __x64_sys_ioctl+0x3f/0x50 [ 140.485314][T12595] do_syscall_64+0x3d/0x90 [ 140.489727][T12595] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 140.495646][T12595] RIP: 0033:0x4665e9 [ 140.499536][T12595] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 140.519127][T12595] RSP: 002b:00007f90e3def188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 140.527529][T12595] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 140.535493][T12595] RDX: 0000000020000000 RSI: 0000000000005386 RDI: 0000000000000003 [ 140.543595][T12595] RBP: 00007f90e3def1d0 R08: 0000000000000000 R09: 0000000000000000 [ 140.551555][T12595] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 140.559638][T12595] R13: 00007ffca946bc3f R14: 00007f90e3def300 R15: 0000000000022000 23:06:11 executing program 0 (fault-call:4 fault-nth:1): r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:11 executing program 1: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$net_dm(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NET_DM_CMD_START(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, r1, 0x4, 0x70bd2d, 0x25dfdbfe, {}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x2400c090}, 0xc0) r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x200000f, 0x4010, r3, 0xb9f5c000) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r2, 0x2286, 0x20000000) 23:06:11 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00ffffff9e0000", 0x1e5) [ 140.721697][T12650] FAULT_INJECTION: forcing a failure. [ 140.721697][T12650] name failslab, interval 1, probability 0, space 0, times 0 [ 140.734396][T12650] CPU: 1 PID: 12650 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 140.743158][T12650] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 140.753218][T12650] Call Trace: [ 140.756490][T12650] dump_stack_lvl+0xb7/0x103 [ 140.761067][T12650] dump_stack+0x11/0x1a [ 140.765208][T12650] should_fail+0x23c/0x250 [ 140.769646][T12650] ? __anon_vma_prepare+0x92/0x2d0 [ 140.774757][T12650] __should_failslab+0x81/0x90 [ 140.779504][T12650] should_failslab+0x5/0x20 [ 140.784026][T12650] kmem_cache_alloc+0x46/0x2e0 [ 140.788868][T12650] ? __anon_vma_prepare+0x41/0x2d0 [ 140.794049][T12650] __anon_vma_prepare+0x92/0x2d0 [ 140.799019][T12650] wp_page_copy+0xb0e/0x10c0 [ 140.803598][T12650] ? __fsnotify_parent+0x32f/0x430 [ 140.808703][T12650] do_wp_page+0x5a8/0xba0 [ 140.813022][T12650] handle_mm_fault+0xb11/0x1a50 [ 140.817868][T12650] do_user_addr_fault+0x609/0xbe0 [ 140.822881][T12650] ? avc_has_extended_perms+0x5d8/0x7b0 [ 140.828486][T12650] exc_page_fault+0x91/0x220 [ 140.833094][T12650] asm_exc_page_fault+0x1e/0x30 [ 140.838095][T12650] RIP: 0010:__put_user_nocheck_4+0x3/0x11 [ 140.843823][T12650] Code: 00 00 48 39 d9 73 54 0f 1f 00 66 89 01 31 c9 0f 1f 00 c3 0f 1f 44 00 00 48 bb fd ef ff ff ff 7f 00 00 48 39 d9 73 34 0f 1f 00 <89> 01 31 c9 0f 1f 00 c3 66 0f 1f 44 00 00 48 bb f9 ef ff ff ff 7f [ 140.863517][T12650] RSP: 0018:ffffc90000f9fe08 EFLAGS: 00010297 [ 140.869584][T12650] RAX: 0000000000000000 RBX: 00007fffffffeffd RCX: 0000000020000000 [ 140.877618][T12650] RDX: 00018881009561cc RSI: 0000000000000022 RDI: ffff8881009561cc [ 140.885673][T12650] RBP: ffffc90000f9fe70 R08: 0000000000000000 R09: 00018881009561cf [ 140.893718][T12650] R10: 000000000000000b R11: ffff88812f790000 R12: 0000000000005386 [ 140.901682][T12650] R13: 0000000000000003 R14: 0000000020000000 R15: ffff888102cd2800 [ 140.909639][T12650] scsi_ioctl_common+0x180/0x5d0 [ 140.914616][T12650] ? do_vfs_ioctl+0x7c2/0x1410 [ 140.919364][T12650] ? alloc_vfsmnt+0x66/0x2e0 [ 140.923971][T12650] scsi_ioctl+0x22/0xa0 [ 140.928121][T12650] sg_ioctl+0x87/0xc0 [ 140.932092][T12650] ? sg_poll+0x240/0x240 [ 140.936353][T12650] __se_sys_ioctl+0xcb/0x140 [ 140.940944][T12650] __x64_sys_ioctl+0x3f/0x50 [ 140.945515][T12650] do_syscall_64+0x3d/0x90 [ 140.949916][T12650] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 140.955803][T12650] RIP: 0033:0x4665e9 [ 140.959686][T12650] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 140.979277][T12650] RSP: 002b:00007f90e3def188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 140.987674][T12650] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 140.995633][T12650] RDX: 0000000020000000 RSI: 0000000000005386 RDI: 0000000000000003 [ 141.003626][T12650] RBP: 00007f90e3def1d0 R08: 0000000000000000 R09: 0000000000000000 [ 141.011681][T12650] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 141.019658][T12650] R13: 00007ffca946bc3f R14: 00007f90e3def300 R15: 0000000000022000 23:06:12 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, 0x0, 0x0) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:12 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:12 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:12 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r2, 0x1, &(0x7f0000000300)={0x1000, 0x3, 0x4, "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"}) 23:06:12 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff0000000ec00000", 0x1e5) 23:06:12 executing program 0 (fault-call:4 fault-nth:2): r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:12 executing program 1: prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]}) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @ext={0x151, &(0x7f0000000500)="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"}}], 0x1c) wait4(0x0, 0x0, 0x80000000, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)}, {&(0x7f0000000000)="0832f497d38350418e4bb321019511dc5df26e9a0b7ecb6974f527cc14538d1efb1ffe03284f6d33265be9c604b293f20e96beeb2aa4c457ac37a3a3f1ce8682500fcecd80", 0x45}], 0x2, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x17) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) r1 = gettid() tkill(r1, 0x1b) r2 = syz_open_dev$sg(&(0x7f0000000080), 0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) chdir(&(0x7f0000000040)='./file0\x00') mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r3, 0x0) wait4(r0, &(0x7f0000000140), 0x80000000, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r2, 0x2286, 0x20000000) [ 141.173216][T12667] FAULT_INJECTION: forcing a failure. [ 141.173216][T12667] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 141.186459][T12667] CPU: 1 PID: 12667 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 141.195216][T12667] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 141.205262][T12667] Call Trace: [ 141.208594][T12667] dump_stack_lvl+0xb7/0x103 [ 141.213191][T12667] dump_stack+0x11/0x1a [ 141.217329][T12667] should_fail+0x23c/0x250 [ 141.221749][T12667] __alloc_pages+0x102/0x320 [ 141.226322][T12667] alloc_pages_vma+0x513/0x680 [ 141.231137][T12667] ? __anon_vma_prepare+0x236/0x2d0 [ 141.236359][T12667] wp_page_copy+0x14c/0x10c0 [ 141.240944][T12667] ? __fsnotify_parent+0x32f/0x430 [ 141.246059][T12667] do_wp_page+0x5a8/0xba0 [ 141.250369][T12667] handle_mm_fault+0xb11/0x1a50 [ 141.255198][T12667] do_user_addr_fault+0x609/0xbe0 [ 141.260202][T12667] ? avc_has_extended_perms+0x5d8/0x7b0 [ 141.265726][T12667] exc_page_fault+0x91/0x220 [ 141.270355][T12667] asm_exc_page_fault+0x1e/0x30 [ 141.275191][T12667] RIP: 0010:__put_user_nocheck_4+0x3/0x11 [ 141.280944][T12667] Code: 00 00 48 39 d9 73 54 0f 1f 00 66 89 01 31 c9 0f 1f 00 c3 0f 1f 44 00 00 48 bb fd ef ff ff ff 7f 00 00 48 39 d9 73 34 0f 1f 00 <89> 01 31 c9 0f 1f 00 c3 66 0f 1f 44 00 00 48 bb f9 ef ff ff ff 7f [ 141.300528][T12667] RSP: 0018:ffffc90001453e08 EFLAGS: 00010297 [ 141.306571][T12667] RAX: 0000000000000000 RBX: 00007fffffffeffd RCX: 0000000020000000 [ 141.314555][T12667] RDX: 00018881009561cc RSI: 0000000000000022 RDI: ffff8881009561cc [ 141.322502][T12667] RBP: ffffc90001453e70 R08: 0000000000000000 R09: 00018881009561cf [ 141.330450][T12667] R10: 000000000000000b R11: ffff88810887d000 R12: 0000000000005386 [ 141.338411][T12667] R13: 0000000000000003 R14: 0000000020000000 R15: ffff888102cd2800 [ 141.346470][T12667] scsi_ioctl_common+0x180/0x5d0 [ 141.351462][T12667] ? do_vfs_ioctl+0x7c2/0x1410 [ 141.356204][T12667] ? alloc_vfsmnt+0x66/0x2e0 [ 141.360772][T12667] scsi_ioctl+0x22/0xa0 [ 141.364922][T12667] sg_ioctl+0x87/0xc0 [ 141.368986][T12667] ? sg_poll+0x240/0x240 [ 141.373225][T12667] __se_sys_ioctl+0xcb/0x140 [ 141.377807][T12667] __x64_sys_ioctl+0x3f/0x50 [ 141.382373][T12667] do_syscall_64+0x3d/0x90 [ 141.386837][T12667] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 141.392731][T12667] RIP: 0033:0x4665e9 [ 141.396603][T12667] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 23:06:12 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000001c90000", 0x1e5) [ 141.416188][T12667] RSP: 002b:00007f90e3def188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 141.424588][T12667] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665e9 [ 141.432612][T12667] RDX: 0000000020000000 RSI: 0000000000005386 RDI: 0000000000000003 [ 141.440564][T12667] RBP: 00007f90e3def1d0 R08: 0000000000000000 R09: 0000000000000000 [ 141.448510][T12667] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 141.456651][T12667] R13: 00007ffca946bc3f R14: 00007f90e3def300 R15: 0000000000022000 23:06:12 executing program 0 (fault-call:4 fault-nth:3): r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) [ 141.475835][ T25] kauditd_printk_skb: 4 callbacks suppressed [ 141.475846][ T25] audit: type=1326 audit(1627254372.679:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=system_u:system_r:kernel_t:s0 pid=12674 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x4665e9 code=0x7ffc0000 23:06:12 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00ffffffea0000", 0x1e5) [ 141.507749][ T25] audit: type=1326 audit(1627254372.699:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=system_u:system_r:kernel_t:s0 pid=12674 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x4665e9 code=0x7ffc0000 [ 141.532522][ T25] audit: type=1326 audit(1627254372.709:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=system_u:system_r:kernel_t:s0 pid=12674 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=157 compat=0 ip=0x4665e9 code=0x7ffc0000 [ 141.546004][T12688] FAULT_INJECTION: forcing a failure. [ 141.546004][T12688] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 141.557455][ T25] audit: type=1326 audit(1627254372.709:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=system_u:system_r:kernel_t:s0 pid=12674 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x4665e9 code=0x7ffc0000 [ 141.569517][T12688] CPU: 1 PID: 12688 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 [ 141.602656][T12688] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 141.612711][T12688] Call Trace: [ 141.615982][T12688] dump_stack_lvl+0xb7/0x103 [ 141.620563][T12688] dump_stack+0x11/0x1a [ 141.624727][T12688] should_fail+0x23c/0x250 [ 141.629220][T12688] should_fail_usercopy+0x16/0x20 [ 141.634249][T12688] _copy_to_user+0x1c/0x90 [ 141.638660][T12688] simple_read_from_buffer+0xab/0x120 [ 141.644024][T12688] proc_fail_nth_read+0xf6/0x140 [ 141.648966][T12688] ? rw_verify_area+0x136/0x250 [ 141.653817][T12688] ? proc_fault_inject_write+0x200/0x200 [ 141.659558][T12688] vfs_read+0x154/0x5d0 [ 141.663705][T12688] ? scsi_ioctl_common+0x180/0x5d0 [ 141.666589][ T25] audit: type=1326 audit(1627254372.709:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=system_u:system_r:kernel_t:s0 pid=12674 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x4665e9 code=0x7ffc0000 [ 141.668809][T12688] ? __fget_light+0x21b/0x260 [ 141.668828][T12688] ? __cond_resched+0x11/0x40 [ 141.702185][T12688] ksys_read+0xce/0x180 [ 141.706334][T12688] __x64_sys_read+0x3e/0x50 [ 141.710898][T12688] do_syscall_64+0x3d/0x90 [ 141.715374][T12688] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 141.721320][T12688] RIP: 0033:0x41936c [ 141.725251][T12688] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 141.744859][T12688] RSP: 002b:00007f90e3def170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 141.750344][ T25] audit: type=1326 audit(1627254372.709:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=system_u:system_r:kernel_t:s0 pid=12674 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=56 compat=0 ip=0x4665e9 code=0x7ffc0000 23:06:13 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) [ 141.753376][T12688] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 000000000041936c [ 141.753390][T12688] RDX: 000000000000000f RSI: 00007f90e3def1e0 RDI: 0000000000000005 [ 141.753403][T12688] RBP: 00007f90e3def1d0 R08: 0000000000000000 R09: 0000000000000000 [ 141.801528][T12688] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 141.809513][T12688] R13: 00007ffca946bc3f R14: 00007f90e3def300 R15: 0000000000022000 23:06:13 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x100010, r1, 0x0) ioctl$SG_GET_SG_TABLESIZE(r0, 0x227f, &(0x7f0000000080)) ioctl$F2FS_IOC_GET_FEATURES(0xffffffffffffffff, 0x8004f50c, &(0x7f0000000000)) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) [ 141.841115][ T25] audit: type=1326 audit(1627254372.709:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=system_u:system_r:kernel_t:s0 pid=12674 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x4665e9 code=0x7ffc0000 [ 141.868343][ T25] audit: type=1326 audit(1627254372.709:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=system_u:system_r:kernel_t:s0 pid=12674 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x4665e9 code=0x7ffc0000 [ 141.912738][ T25] audit: type=1326 audit(1627254372.719:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=system_u:system_r:kernel_t:s0 pid=12691 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=231 compat=0 ip=0x4665e9 code=0x7ffc0000 [ 141.948214][ T25] audit: type=1326 audit(1627254372.739:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=system_u:system_r:kernel_t:s0 pid=12674 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=1 compat=0 ip=0x4665e9 code=0x7ffc0000 23:06:13 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, 0x0, 0x0) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:13 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00ffffffef0000", 0x1e5) 23:06:13 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2, 0x20000000) 23:06:13 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) ioctl$FICLONERANGE(r0, 0x4020940d, &(0x7f0000000040)={{r0}, 0x59, 0x7, 0x7fffffff}) r1 = openat(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', 0x601f81, 0x1) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) write(r2, &(0x7f0000000140)="085e0bd55241ede3669d7e52e635c25730ae464d3dbbe2e279424d1d185f8ce0619fce3ea40d0983f0f41d68c4278e8a1771ad8dde05476fa4cfda48c8cee77d0bd66f040988f046d93a82a10e", 0x4d) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) r3 = syz_open_procfs(0x0, &(0x7f0000000080)='map_files\x00') r4 = pidfd_getfd(r3, r3, 0x0) ioctl$VT_WAITACTIVE(r4, 0x5607) poll(&(0x7f00000000c0)=[{r3, 0x600}], 0x1, 0x200) 23:06:13 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(r0, 0x0, 0x0, 0x2, 0x0) 23:06:13 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:13 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00fffffff00000", 0x1e5) 23:06:13 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5, 0x20000000) 23:06:13 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x6, 0x20000000) 23:06:13 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00fffffffe0000", 0x1e5) 23:06:13 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x1267, 0x20000000) 23:06:13 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff0081ffffff0000", 0x1e5) 23:06:14 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, 0x0, 0x0) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:14 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x1274, 0x20000000) 23:06:14 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff009effffff0000", 0x1e5) 23:06:14 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) r2 = syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x92fd, 0x9, &(0x7f0000000700)=[{&(0x7f00000000c0)="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", 0xfa, 0x1ff}, {&(0x7f00000001c0)="620ad81ac39cfa04daf5f7921e174992cce2eebfdcbeafe688d84c6d322c4fa9507107c24d9537b4faa89bb936aa447fb600ab512d2b0d1874769cc204f99ec4b22f0fd1e7f134fd0d86b20cda3cb8ac93ce180900c66986c4100abe894419962b7134d787cbd2a0b26b72b550b33e24759a534f172010dca9286b520ad5dcd2d2ccf93cb041a46623cbdade0617b47a3046d524320d970a5714008f493889bffc", 0xa1, 0x1f}, {&(0x7f0000000300)="9e0f901f4064d1096d21735d6ca8041f6541c92ec386abd54d8df9b75d8ab017b473509b2dc005d56a8d0318360a6202dce3c6356c6f3be306a5e7ace49702a6d461", 0x42, 0x1}, {&(0x7f0000000280)="7a93c1b56ffe2801ffecee5333a7e1a5d9efb46a28868b800e2b0311532e426c77e80240080d5de6ecb087", 0x2b, 0x1000}, {&(0x7f0000000380), 0x0, 0x1}, {&(0x7f00000003c0)="f41d91ce7dde32519ebfa54182d63bd8b9058ce6eddea0a0ed53c1d9612a675de61810b3ddeb17d4b0a51ee410adaaa715e058d611dfe6fc66098bbcd14911c98f07d3ac0dbdf09ae36b7ff6e7d919c688c4e3f5af3856129f44c58e6f9b5cbde646113fd7dc2422dee152876472815a03c1b58f859dec7cf88101", 0x7b, 0x7f}, {&(0x7f0000000440)="3e73a706161b8004c3fad3662d34bde138c4bab82a9dce86aedf87f61fd9af14dad210216cc245f30a212e35363bd439306eecc6bb8f68460a25c81182a43b8b136bee344e3310d7a7fc9ce89fa6345ffe2a34c4779ff7a4aa412094547ef80ad8af7f486eff501fa7300b7c41a21c06a2565966f37af5eef366da2f7d9fd87d0e0db59080e4e14c09f9df8a4bcf41ad556a416062e45a07b01f4339bc427ab78e540b0c44955a8eb747235afe4822e8cea18712d98b9b16762fc4f339e1c24695ed9e96e2eee2d82a04756173e079db6f5b53284fde141baf1e835e453ec58f47dc", 0xe2, 0x7a76}, {&(0x7f0000000540)="98752011bfcd5920ec6805943eae3a069690ce9886635603bd910b17360c72ba5c0919b9c63e79a7c887f3b913ae118ba3ce103050e4ca95d4c53ad8b9b463c9f1a5a8508a14b4888f8e1fd21139e3b06782a95e627c84d012a368d5535e52d17fb73026e6c934f6cb76afe7371cdc4d70afa2817287a16d7cbf5de6736fe41aff54", 0x82, 0xfdbf}, {&(0x7f0000000600)="cb383c47778793a66e9071567dd1d1ba9b479fb983de22f6b99a27828ab5ad8c522f25c1f86c27e92cf7cf610c5b069d0e976d642320917d097534ca20da9de24b34ae2d8b8e60b6a4c71ae6e9820227b7a0645a38bca602583b4a11e660f5727f697f04aef7b9a1adf2e7f51f96f1ebf63d63d124b36de77c50b7ecee1c8cb8d07b13934c530b28937dff3ed179b23ee5c41a5e6da1ad7f82ca5f8f7a625429009c7a8d0916d7aa6122e426bf6eccd2d937d66f987d488663840f5a6234d534779aa9da317c8575adf295db17f291536b3ca465f607464bdf7405d26b50302e778eeab661f5a4cdede04f77cf39aaba9e49100a51e866", 0xf7, 0x8}], 0x90480, &(0x7f0000000800)={[{@map_normal}], [{@rootcontext={'rootcontext', 0x3d, 'root'}}, {@defcontext={'defcontext', 0x3d, 'system_u'}}, {@func={'func', 0x3d, 'KEXEC_INITRAMFS_CHECK'}}, {@euid_lt={'euid<', 0xee01}}, {@smackfsfloor={'smackfsfloor', 0x3d, '*@[-[-!'}}]}) ioctl$EXT4_IOC_SWAP_BOOT(r2, 0x6611) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:14 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(r0, 0x0, 0x0, 0x2, 0x0) 23:06:14 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:14 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x1275, 0x20000000) 23:06:14 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00eaffffff0000", 0x1e5) 23:06:14 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = openat(r1, &(0x7f00000002c0)='/proc/self/exe\x00', 0x200000, 0x20) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) vmsplice(r2, &(0x7f0000000240)=[{&(0x7f0000000040)="5c0f7a7337f6e80b26eaea12c4f7e017c7c3bad01ff8d162957f2a9c479a967b7ae5430d3e4089a4fd732422bcb9cdfb94ad6dac2adc73fb7fb593d380e4352036538c522c33e2b882263a7b2b48a07a0ec78eaf12dc88f67b80f3bb3053d5d2dd1fec3052fb05ee9d54171b5d1d8b0a8e17827d028009505e804109751b26acebd84b51282312f93cf5b0082baad66355", 0x91}, {&(0x7f0000000100)="9bb01f8bb90249ba4735f3129779a084a9f9e8131fa846030fe03b59987fcbb44f1793e3a4bbd847aefb58b69f98ec834ffd57d7ccacc693e9a1a41f5e10023c65537113e1385578707ae0d0653abd96ea6e863bfeba20c681a29c4b0df8ff5121304018d0a4428ef30eaed880ebade6c76124e84545477059309e1d0492feb9f40a8cfaab071a1de8b29ce62c61dc432292792448c7acc8cbbfe9bd1c0652d282a889882f4818ce5af32fd5a1dcc77430c38f7b8235aa78f0a334e74824587d879d1ccdf31e5fdae61465a7d1aa64cc09a40d38261c0a49de9ff96cbe280ece4e85", 0xe2}, {&(0x7f0000000200)="ebb16debf679a2121c9a23c6b6d7de", 0xf}], 0x3, 0x1) 23:06:14 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x1276, 0x20000000) 23:06:14 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_IO(r2, 0x2285, &(0x7f0000001300)={0x0, 0xffffffffffffffff, 0x62, 0x5, @buffer={0x0, 0xc2, &(0x7f00000000c0)=""/194}, &(0x7f00000001c0)="e73488444e76e784fd2af207cdf26e30a2d409607c9916f902e300941283d4443124c4894f9cba8ddab2014093bb480b35415e442de6bd57b637a9eeccccc34c053dfc807677f62551aa8451fba1d6e8694b873363ef3203923526fddc6dad077a47", &(0x7f0000000300)=""/4096, 0x6, 0x11, 0x0, &(0x7f0000000240)}) r3 = socket$inet6_udp(0xa, 0x2, 0x0) splice(0xffffffffffffffff, &(0x7f0000000040)=0xa2, r3, &(0x7f0000000080)=0xffffffffffffff6b, 0x9, 0x6) preadv(r1, &(0x7f0000000280), 0x0, 0x90, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:14 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00efffffff0000", 0x1e5) 23:06:15 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(r0, 0x0, 0x0, 0x2, 0x0) 23:06:15 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:15 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2201, 0x20000000) 23:06:15 executing program 1: r0 = dup(0xffffffffffffffff) r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) fallocate(r0, 0x0, 0xfffffffffffff673, 0x8) r3 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r3, 0x2403, 0x81) mmap(&(0x7f0000247000/0x2000)=nil, 0x2000, 0x2000000, 0x68013, r3, 0x23fa2000) ioctl$SG_SCSI_RESET(r1, 0x2286, 0x20000000) 23:06:15 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00f0ffffff0000", 0x1e5) 23:06:15 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:15 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00feffffff0000", 0x1e5) 23:06:15 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2202, 0x20000000) 23:06:15 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x1000) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:15 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000001", 0x1e5) 23:06:15 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2203, 0x20000000) 23:06:15 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) ioctl$TCSETS(0xffffffffffffffff, 0x5402, &(0x7f0000000040)={0x4, 0x86, 0x2, 0x1f, 0xc, "bf87eaea15d3fa3296dda3518e57885936d3ad"}) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:16 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000003", 0x1e5) 23:06:16 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2205, 0x20000000) 23:06:16 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x0, 0x0) 23:06:16 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x6, 0x0, 0x0, 0x0, 0x0, 0xc74, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}, 0x14c50, 0x0, 0x0, 0x0, 0x3, 0x0, 0xff, 0x0, 0x2}, r1, 0x0, r1, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) ioctl$TIOCGPGRP(r1, 0x540f, &(0x7f0000000040)=0x0) fcntl$setown(r2, 0x8, r3) 23:06:16 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:16 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(0xffffffffffffffff, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:16 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2270, 0x20000000) 23:06:16 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) 23:06:16 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000500)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000540)=[{&(0x7f0000000440)=""/151, 0x97}, {&(0x7f0000000580)=""/25, 0x19}], 0x2, 0x200d9f, 0xfffffffe) r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r3, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_IO(r3, 0x2285, &(0x7f00000003c0)={0x53, 0xffffffffffffffff, 0x10, 0x7, @scatter={0x1, 0x0, &(0x7f0000000240)=[{&(0x7f0000000140)=""/196, 0xc4}]}, &(0x7f0000000280)="6669fc55761af8c2a9e23e7f206bf7da", &(0x7f0000000300)=""/89, 0x5, 0x0, 0xffffffffffffffff, &(0x7f0000000380)}) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$GIO_UNISCRNMAP(r2, 0x4b69, &(0x7f0000000040)=""/245) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:16 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2271, 0x20000000) 23:06:16 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) 23:06:16 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) r2 = syz_open_dev$sg(&(0x7f0000000040), 0x1f8000000000000, 0x0) preadv(r2, &(0x7f0000000040), 0x0, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:16 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2272, 0x20000000) 23:06:16 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) 23:06:16 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x0, 0x0) 23:06:16 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$BTRFS_IOC_SNAP_CREATE(0xffffffffffffffff, 0x50009401, &(0x7f0000000300)={{r1}, "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"}) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000040)={0x16, 0x7fffffff, 0x1, "74e203f82fbe00e679a4c13d19561785e33ed4c38cad"}) 23:06:16 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2275, 0x20000000) 23:06:16 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(0xffffffffffffffff, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:16 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) 23:06:16 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:16 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x5594e32cb17e824c, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x6800007, 0x20010, r0, 0x0) preadv(r1, &(0x7f0000000280), 0x0, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:16 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2276, 0x20000000) 23:06:16 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2279, 0x20000000) 23:06:16 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000300)={0x0, 0xfffffffffffffffe, 0x88, 0x6, @buffer={0x0, 0xcc, &(0x7f00000000c0)=""/204}, &(0x7f00000001c0)="06b1a86f09183cb2394274affd45a10ab54f20957cd3be46a226304eb952378cb9d4601fd454e68cc60bf106def99ed84e91ac3de9550be3ceb035faec19bb66386cb76e58d13bb9c96818f3406e5e43a69017bc2f8578a0bd224e4ea156b35d05e13053dafca4bf4912d38482ec4672967975564d159a453246edf86f928b74178af5447411e569", &(0x7f0000000280)=""/54, 0x123, 0x23, 0x0, &(0x7f00000002c0)}) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x100) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x8) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) r3 = signalfd4(r2, &(0x7f0000000440)={[0xffffffffffffffff]}, 0x8, 0x80000) perf_event_open(&(0x7f00000003c0)={0x3, 0x80, 0x40, 0xfc, 0x4, 0x9, 0x0, 0x80000001, 0xc0000, 0x5, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x3, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x95, 0x4, @perf_bp={&(0x7f0000000380), 0x4}, 0x2400, 0x3f1c4317, 0x8, 0x3, 0x6c, 0xb6, 0x1f, 0x0, 0x9, 0x0, 0xe08}, 0x0, 0xb, r3, 0x0) 23:06:16 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) 23:06:17 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x227a, 0x20000000) 23:06:17 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x0, 0x0) 23:06:17 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x10000, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$F2FS_IOC_WRITE_CHECKPOINT(r2, 0xf507, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:17 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x227b, 0x20000000) 23:06:17 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(0xffffffffffffffff, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:17 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) 23:06:17 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x227c, 0x20000000) 23:06:17 executing program 1: mremap(&(0x7f0000208000/0x3000)=nil, 0x3000, 0x3000, 0x0, &(0x7f00000f8000/0x3000)=nil) r0 = syz_open_dev$sg(&(0x7f00000000c0), 0xfffffffffffffffa, 0x0) r1 = openat$incfs(0xffffffffffffffff, &(0x7f0000000040)='.log\x00', 0x80000, 0x4) openat(r1, &(0x7f0000000080)='./file0\x00', 0x101000, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:17 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, 0x0, 0x0, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:17 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) preadv(r2, &(0x7f0000000340)=[{&(0x7f0000000040)=""/86, 0x56}, {&(0x7f00000000c0)=""/181, 0xb5}, {&(0x7f0000000180)=""/111, 0x6f}, {&(0x7f0000000200)=""/154, 0x9a}, {&(0x7f0000000440)=""/83, 0x53}], 0x5, 0xda0, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:17 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x227d, 0x20000000) 23:06:17 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) 23:06:17 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x227e, 0x20000000) 23:06:18 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x227f, 0x20000000) 23:06:18 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) 23:06:18 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) ioctl$SG_GET_SCSI_ID(r0, 0x2276, &(0x7f0000000040)) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) preadv(r2, &(0x7f0000000280)=[{&(0x7f0000000300)=""/4096, 0x1000}, {&(0x7f00000000c0)=""/40, 0x28}, {&(0x7f0000000100)=""/182, 0xb6}, {&(0x7f00000001c0)=""/184, 0xb8}], 0x4, 0xc3da, 0xc000) r3 = dup3(0xffffffffffffffff, r0, 0x80000) perf_event_open(&(0x7f0000001340)={0x3, 0x80, 0xfe, 0xff, 0x3, 0x0, 0x0, 0x3f, 0x10000, 0x5, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x10000, 0x4, @perf_config_ext={0x3, 0x200}, 0xc20, 0x0, 0xffffff9b, 0x6, 0x8, 0x6, 0x100, 0x0, 0x10f8, 0x0, 0x7f}, 0x0, 0x3, 0xffffffffffffffff, 0x3) ioctl$sock_inet6_SIOCSIFADDR(r3, 0x8916, &(0x7f0000000080)={@private1={0xfc, 0x1, '\x00', 0x1}, 0x7e}) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x180000b, 0x10010, r1, 0x4000) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) r4 = dup3(r3, 0xffffffffffffffff, 0x80000) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r4, 0x40042409, 0x0) r5 = socket$inet6_icmp(0xa, 0x2, 0x3a) r6 = socket$inet6_udp(0xa, 0x2, 0x0) r7 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000280)={'sit0\x00', 0x0}) ioctl$sock_inet6_SIOCADDRT(r6, 0x890b, &(0x7f00000002c0)={@mcast2, @local, @loopback={0xfe80000007000000, 0x2}, 0x0, 0x0, 0x0, 0xf000000, 0x0, 0x20d20002, r8}) ioctl$sock_inet6_SIOCSIFADDR(r5, 0x8916, &(0x7f0000001300)={@empty, 0xa, r8}) 23:06:18 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:18 executing program 4 (fault-call:7 fault-nth:0): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:18 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0xc5731000) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:18 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2282, 0x20000000) 23:06:18 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, 0x0, 0x0, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:18 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) 23:06:18 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) r2 = openat$null(0xffffffffffffff9c, &(0x7f0000001900), 0x0, 0x0) ioctl$SG_SET_FORCE_PACK_ID(r2, 0x227b, &(0x7f0000001940)) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) readv(r0, &(0x7f0000000080)=[{&(0x7f0000000040)}], 0x1) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$SG_IO(r3, 0x2285, &(0x7f0000001880)={0x53, 0xfffffffffffffffc, 0x82, 0x9, @scatter={0x3, 0x0, &(0x7f0000001640)=[{&(0x7f00000014c0)=""/68, 0x44}, {&(0x7f0000001540)=""/3, 0x3}, {&(0x7f0000001580)=""/179, 0xb3}]}, &(0x7f0000001680)="bb8b85b766ecf2fedbd2805bd59dcee351bcc45b5ee48fe1d151d03192e535b0808a8c0e2366dcca66dc6fa8ad86a0251353252c3c8feb25f85d52cea4d18e06c6889dff9474b1e442d5a46f107e4e9c63e9340c80952227c0ed13860e354b87d3cf6bc062098f6a2b685ac20c7a521042f5c7f02147cb84160cc8d50a13ca995a4b", &(0x7f0000001740)=""/213, 0x6e, 0x0, 0x3, &(0x7f0000001840)}) ioctl$SCSI_IOCTL_DOORUNLOCK(0xffffffffffffffff, 0x5381) ioctl$SG_IO(r1, 0x2285, &(0x7f0000001440)={0x53, 0xffffffffffffffff, 0x67, 0xff, @scatter={0x3, 0x0, &(0x7f0000000040)=[{&(0x7f00000000c0)=""/61, 0x3d}, {&(0x7f0000000140)=""/207, 0xcf}, {&(0x7f0000000300)=""/4096, 0x1000}]}, &(0x7f0000000240)="df9785d9238e0c4e2b8d6a02ea79b801f09ef0ee034b03bdceeb2faaad921fdbf9af63c3cf02c5e18370fa4b49b8b40037dc8ff6f44e4558dd18afb9e63aeba677da422791ca0668fcc918874a2d8def924d17b04ea2a4a3d74f28f93eca9f5f3eda7543022400", &(0x7f0000001300)=""/201, 0x7ff, 0x21, 0x2, &(0x7f0000001400)}) 23:06:18 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2283, 0x20000000) 23:06:18 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff0000000000ffff", 0x1e5) 23:06:18 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3, 0x20010, r1, 0xf7239000) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:18 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2284, 0x20000000) 23:06:18 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) ioctl$SG_SET_FORCE_PACK_ID(r1, 0x227b, &(0x7f0000000080)=0x1) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r3 = openat$random(0xffffffffffffff9c, &(0x7f00000000c0), 0x80400, 0x0) r4 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000100), 0x2400c2, 0x0) sendfile(r3, r4, &(0x7f0000000140)=0x6, 0xe3) ioctl$SG_SET_RESERVED_SIZE(r2, 0x2275, &(0x7f0000000040)=0x1) r5 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r5, 0x2403, 0x81) ioctl$BTRFS_IOC_TREE_SEARCH(r5, 0xd0009411, &(0x7f0000000300)={{0x0, 0x6a0, 0x8c01, 0xfff, 0x6, 0x7, 0x3bed, 0x4, 0x5e, 0x0, 0x8, 0x100000001, 0x101, 0x8001, 0x6}}) [ 147.605705][T13068] FAULT_INJECTION: forcing a failure. [ 147.605705][T13068] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 147.618899][T13068] CPU: 1 PID: 13068 Comm: syz-executor.4 Not tainted 5.14.0-rc2-syzkaller #0 [ 147.627774][T13068] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 147.637823][T13068] Call Trace: [ 147.641160][T13068] dump_stack_lvl+0xb7/0x103 [ 147.645754][T13068] dump_stack+0x11/0x1a [ 147.649938][T13068] should_fail+0x23c/0x250 [ 147.654374][T13068] should_fail_usercopy+0x16/0x20 [ 147.659469][T13068] _copy_from_user+0x1c/0xd0 [ 147.664050][T13068] do_recvmmsg+0x250/0x9f0 [ 147.668529][T13068] ? fsnotify_perm+0x59/0x2e0 [ 147.673209][T13068] ? __fsnotify_parent+0x32f/0x430 [ 147.678331][T13068] ? get_pid_task+0x8b/0xc0 [ 147.682850][T13068] ? vfs_write+0x50c/0x770 [ 147.687295][T13068] ? __fget_light+0x21b/0x260 [ 147.692023][T13068] ? __cond_resched+0x11/0x40 [ 147.696702][T13068] __x64_sys_recvmmsg+0xcf/0x150 [ 147.701768][T13068] ? exit_to_user_mode_prepare+0x65/0x190 [ 147.707575][T13068] do_syscall_64+0x3d/0x90 [ 147.712031][T13068] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 147.717923][T13068] RIP: 0033:0x4665e9 [ 147.721850][T13068] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 147.741451][T13068] RSP: 002b:00007f4d4aad9188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 147.749856][T13068] RAX: ffffffffffffffda RBX: 000000000056c0f0 RCX: 00000000004665e9 [ 147.757815][T13068] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 147.765778][T13068] RBP: 00007f4d4aad91d0 R08: 0000000000000000 R09: 0000000000000000 [ 147.773847][T13068] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001 [ 147.781842][T13068] R13: 00007ffec27dc74f R14: 00007f4d4aad9300 R15: 0000000000022000 23:06:19 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:19 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2285, 0x20000000) 23:06:19 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff0000000000ffff", 0x1e5) 23:06:19 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) mmap(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x1000008, 0x12, r2, 0xe35a000) mmap(&(0x7f00007b3000/0x2000)=nil, 0x2000, 0x1, 0x2010, r0, 0xe0194000) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:19 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, 0x0, 0x0, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:19 executing program 4 (fault-call:7 fault-nth:1): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:19 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) r2 = openat$cgroup_ro(r1, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x0, 0x0) ioctl$F2FS_IOC_GET_FEATURES(r2, 0x8004f50c, &(0x7f0000000080)) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:19 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) 23:06:19 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:19 executing program 1: sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x401, 0x0, 0x0, {0x3, 0x0, 0x4}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0xc000804}, 0x40000) r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f00003fc000/0x4000)=nil, 0x4000, 0x2800008, 0x80010, r1, 0xc0005000) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x400000, 0x0) r3 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000280), 0x4002, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r3, 0x2288, &(0x7f0000000300)) ioctl$SCSI_IOCTL_SEND_COMMAND(r2, 0x1, &(0x7f0000000340)=ANY=[@ANYBLOB="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"]) r4 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r4, 0x2403, 0x81) mmap(&(0x7f00003ff000/0x3000)=nil, 0x3000, 0x6000000, 0x10, r4, 0xcaccf000) 23:06:19 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) 23:06:19 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2287, 0x20000000) [ 148.500717][T13118] FAULT_INJECTION: forcing a failure. [ 148.500717][T13118] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 148.513811][T13118] CPU: 0 PID: 13118 Comm: syz-executor.4 Not tainted 5.14.0-rc2-syzkaller #0 [ 148.522971][T13118] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 148.533035][T13118] Call Trace: [ 148.536415][T13118] dump_stack_lvl+0xb7/0x103 [ 148.541013][T13118] dump_stack+0x11/0x1a [ 148.545180][T13118] should_fail+0x23c/0x250 [ 148.549633][T13118] should_fail_usercopy+0x16/0x20 [ 148.554659][T13118] _copy_from_user+0x1c/0xd0 [ 148.559240][T13118] do_recvmmsg+0x250/0x9f0 [ 148.563659][T13118] ? fsnotify_perm+0x59/0x2e0 [ 148.568330][T13118] ? __fsnotify_parent+0x32f/0x430 [ 148.573439][T13118] ? __fget_light+0x21b/0x260 [ 148.578110][T13118] ? __cond_resched+0x11/0x40 [ 148.582812][T13118] __x64_sys_recvmmsg+0xcf/0x150 [ 148.587795][T13118] ? exit_to_user_mode_prepare+0x65/0x190 [ 148.593513][T13118] do_syscall_64+0x3d/0x90 [ 148.597960][T13118] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 148.603912][T13118] RIP: 0033:0x4665e9 [ 148.607799][T13118] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 148.628170][T13118] RSP: 002b:00007f4d4aad9188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 148.636572][T13118] RAX: ffffffffffffffda RBX: 000000000056c0f0 RCX: 00000000004665e9 [ 148.644541][T13118] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 148.652541][T13118] RBP: 00007f4d4aad91d0 R08: 0000000000000000 R09: 0000000000000000 [ 148.660583][T13118] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001 [ 148.668553][T13118] R13: 00007ffec27dc74f R14: 00007f4d4aad9300 R15: 0000000000022000 23:06:20 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:20 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f00000e7000/0x3000)=nil, 0x3000, 0x3, 0x10010, r1, 0xfda78000) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000001640)=[{&(0x7f0000000040)=""/45, 0x2d}, {&(0x7f0000000080)=""/179, 0xb3}, {&(0x7f0000000140)=""/222, 0xde}, {&(0x7f0000001700)=""/71, 0x47}, {&(0x7f0000000300)=""/243, 0xf3}, {&(0x7f0000000400)=""/239, 0xef}, {&(0x7f0000000500)=""/191, 0xbf}, {&(0x7f0000000600)=""/64, 0x40}, {&(0x7f0000000640)=""/4096, 0x1000}], 0x9, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, 0x100000000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) preadv(r2, &(0x7f0000001a00)=[{&(0x7f0000000240)=""/124, 0x7c}, {&(0x7f00000005c0)=""/1, 0x1}, {&(0x7f0000001780)=""/211, 0xd3}, {&(0x7f0000001880)=""/172, 0xac}, {&(0x7f0000001940)=""/161, 0xa1}], 0x5, 0x5, 0x800) 23:06:20 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2288, 0x20000000) 23:06:20 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff0000000000ffff", 0x1e5) 23:06:20 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:20 executing program 4 (fault-call:7 fault-nth:2): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:20 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2289, 0x20000000) 23:06:20 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x163a02, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:20 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff0000000000ffff", 0x1e5) 23:06:20 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x4b47, 0x20000000) 23:06:20 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) ioctl$SG_NEXT_CMD_LEN(r1, 0x2283, &(0x7f0000000040)) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:20 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x4b49, 0x20000000) [ 149.370022][T13163] FAULT_INJECTION: forcing a failure. [ 149.370022][T13163] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 149.383303][T13163] CPU: 0 PID: 13163 Comm: syz-executor.4 Not tainted 5.14.0-rc2-syzkaller #0 [ 149.392152][T13163] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 149.402207][T13163] Call Trace: [ 149.405476][T13163] dump_stack_lvl+0xb7/0x103 [ 149.410090][T13163] dump_stack+0x11/0x1a [ 149.414300][T13163] should_fail+0x23c/0x250 [ 149.418717][T13163] should_fail_usercopy+0x16/0x20 [ 149.423734][T13163] _copy_from_user+0x1c/0xd0 [ 149.428369][T13163] do_recvmmsg+0x250/0x9f0 [ 149.432809][T13163] ? fsnotify_perm+0x59/0x2e0 [ 149.437515][T13163] ? __fsnotify_parent+0x32f/0x430 [ 149.442647][T13163] ? __fget_light+0x21b/0x260 [ 149.447306][T13163] ? __cond_resched+0x11/0x40 [ 149.451976][T13163] __x64_sys_recvmmsg+0xcf/0x150 [ 149.456926][T13163] ? exit_to_user_mode_prepare+0x65/0x190 [ 149.462719][T13163] do_syscall_64+0x3d/0x90 [ 149.467126][T13163] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 149.473185][T13163] RIP: 0033:0x4665e9 [ 149.477068][T13163] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 149.496668][T13163] RSP: 002b:00007f4d4aad9188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 149.505243][T13163] RAX: ffffffffffffffda RBX: 000000000056c0f0 RCX: 00000000004665e9 [ 149.513279][T13163] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 149.521248][T13163] RBP: 00007f4d4aad91d0 R08: 0000000000000000 R09: 0000000000000000 [ 149.529207][T13163] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001 [ 149.537166][T13163] R13: 00007ffec27dc74f R14: 00007f4d4aad9300 R15: 0000000000022000 23:06:21 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640), 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:21 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff0000000000ffff", 0x1e5) 23:06:21 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000040)=0x1) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:21 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5380, 0x20000000) 23:06:21 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:21 executing program 4 (fault-call:7 fault-nth:3): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:21 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, 0xffffffffffffffff, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:21 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff0000000000ffff", 0x1e5) 23:06:21 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5381, 0x20000000) 23:06:21 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_IO(r2, 0x2285, &(0x7f0000000540)={0x0, 0xfffffffffffffffb, 0xed, 0x2, @scatter={0x3, 0x0, &(0x7f0000000200)=[{&(0x7f0000000040)=""/248, 0xf8}, {&(0x7f0000000140)=""/132, 0x84}, {&(0x7f0000000300)=""/238, 0xee}]}, &(0x7f0000000400)="5cb371ed164615ae0095d3a117dcc1bad9fd7b4fdc7efb75770510df03ce5d7abcd8df16c6c0df2824e8bbd870e34aed21bc0f244cae60794f87f243f3461f9eea1b011982de6b6ae850f143bd24fc407eef2adcedf5e8f5b437b8c27ac8d7c89cbc43886354fd675edf9a5d8d15bfc86d7e9f55a7b36b0e77cbaa4db9efc975ef6fdef90f580fbee936009040186ef6412e7966bc237bbe2f267d0c046e178fc53e4ee31212f6bd90d4a6684cca6f0a8ddd16b67ff37ad508bc04a450cf933cc1b352199bf9df5fadc06fb5d5c11a38335e6fe39a772e5160eaff42a1f3228806dc33d7c44c2a05a207ec44bd", &(0x7f0000000240)=""/79, 0x2, 0x14, 0x3, &(0x7f0000000500)}) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:21 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5382, 0x20000000) 23:06:21 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000200000000", 0x1e5) [ 150.260502][T13213] FAULT_INJECTION: forcing a failure. [ 150.260502][T13213] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 150.273560][T13213] CPU: 1 PID: 13213 Comm: syz-executor.4 Not tainted 5.14.0-rc2-syzkaller #0 [ 150.282315][T13213] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 150.292450][T13213] Call Trace: [ 150.295727][T13213] dump_stack_lvl+0xb7/0x103 [ 150.300339][T13213] dump_stack+0x11/0x1a [ 150.304491][T13213] should_fail+0x23c/0x250 [ 150.308953][T13213] should_fail_usercopy+0x16/0x20 [ 150.314038][T13213] _copy_from_user+0x1c/0xd0 [ 150.318715][T13213] do_recvmmsg+0x250/0x9f0 [ 150.323129][T13213] ? fsnotify_perm+0x59/0x2e0 [ 150.328292][T13213] ? __fsnotify_parent+0x32f/0x430 [ 150.333455][T13213] ? __list_del_entry_valid+0x54/0xc0 [ 150.338823][T13213] ? __switch_to+0x145/0x480 [ 150.343399][T13213] ? __fget_light+0x21b/0x260 [ 150.348072][T13213] ? __cond_resched+0x11/0x40 [ 150.352759][T13213] __x64_sys_recvmmsg+0xcf/0x150 [ 150.357687][T13213] ? exit_to_user_mode_prepare+0x65/0x190 [ 150.363481][T13213] do_syscall_64+0x3d/0x90 [ 150.367960][T13213] ? irqentry_exit+0xe/0x30 [ 150.372522][T13213] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 150.378413][T13213] RIP: 0033:0x4665e9 [ 150.382290][T13213] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 150.401893][T13213] RSP: 002b:00007f4d4aad9188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 150.410295][T13213] RAX: ffffffffffffffda RBX: 000000000056c0f0 RCX: 00000000004665e9 [ 150.418271][T13213] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 150.426238][T13213] RBP: 00007f4d4aad91d0 R08: 0000000000000000 R09: 0000000000000000 [ 150.434201][T13213] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001 [ 150.442188][T13213] R13: 00007ffec27dc74f R14: 00007f4d4aad9300 R15: 0000000000022000 23:06:22 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640), 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:22 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = memfd_create(&(0x7f0000000040)='/dev/sg#\x00', 0x2) pipe2(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}, 0x800) ioctl$SG_SCSI_RESET(r2, 0x2284, 0x0) mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1800003, 0x10, r1, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000280), 0x18, 0xd9f, 0x0) pwritev2(r3, &(0x7f00000001c0)=[{&(0x7f00000000c0)}, {&(0x7f0000000200)="0e4b9ca6e45788806a20a7e6fa79c4ba9959b9b66d9eafa11615dbbc15f9e20576cc892fb94352a990347883fb433ae8c2548227e3b5f6cd2b60fde036748a438a944b56883a49f693f0434b2ac70ea7aed76878f160adf2743ecec4ee3f232a67b878bf838871f9c27f4635cf09324492843419f40f39b4de5983acea2a3405d88757d63afc08c615e93e6dfb4a7cc83a6f252f587c16831393e5162c3d1799720000e9", 0xa4}], 0x2, 0xdf0e, 0x8, 0xd) mmap(&(0x7f00004dd000/0x1000)=nil, 0x1000, 0x3, 0x100010, 0xffffffffffffffff, 0xc40a5000) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:22 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5385, 0x20000000) 23:06:22 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000300000000", 0x1e5) 23:06:22 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:22 executing program 4 (fault-call:7 fault-nth:4): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:22 executing program 1: r0 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl(r0, 0x1, &(0x7f0000000200)="7e4a3d338cee99dc6c8da74fe821be152d3bbd96e4aedaec0ada32b176db3b594a1d737cb757b269422efba3964bc5c77834bc65cf4693b67c73a21e0389b7c2afae5d94bbac2b7e4efb01") execveat(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=[&(0x7f0000000080)='{+*-[{/[{@\xf3^}\x00', &(0x7f00000000c0)='\'#+\x00', &(0x7f0000000100)='&\x9e@\x00'], &(0x7f00000001c0)=[&(0x7f0000000180)='\x00'], 0x800) r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r1, 0x2286, 0x20000000) ioctl$BTRFS_IOC_SCRUB_PROGRESS(r2, 0xc400941d, &(0x7f0000000300)={0x0, 0x78b6df9d, 0x9, 0x1}) 23:06:22 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000400000000", 0x1e5) 23:06:22 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5387, 0x20000000) 23:06:22 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000900000000", 0x1e5) 23:06:22 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0xffffffffffffff6c, 0x0, 0x0, 0x2, 0x0, 0x0, 0x9ee9ec2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) mmap(&(0x7f000047c000/0x1000)=nil, 0x1000, 0x1800003, 0x12, r2, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:22 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000a00000000", 0x1e5) [ 151.171089][T13266] FAULT_INJECTION: forcing a failure. [ 151.171089][T13266] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 151.184271][T13266] CPU: 1 PID: 13266 Comm: syz-executor.4 Not tainted 5.14.0-rc2-syzkaller #0 [ 151.193034][T13266] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 151.203162][T13266] Call Trace: [ 151.206442][T13266] dump_stack_lvl+0xb7/0x103 [ 151.211097][T13266] dump_stack+0x11/0x1a [ 151.215335][T13266] should_fail+0x23c/0x250 [ 151.219739][T13266] should_fail_usercopy+0x16/0x20 [ 151.224841][T13266] _copy_from_user+0x1c/0xd0 [ 151.229472][T13266] do_recvmmsg+0x250/0x9f0 [ 151.233876][T13266] ? fsnotify_perm+0x59/0x2e0 [ 151.238551][T13266] ? __fsnotify_parent+0x32f/0x430 [ 151.243652][T13266] ? __fget_light+0x21b/0x260 [ 151.248321][T13266] ? __cond_resched+0x11/0x40 [ 151.252987][T13266] __x64_sys_recvmmsg+0xcf/0x150 [ 151.257928][T13266] ? exit_to_user_mode_prepare+0x65/0x190 [ 151.263692][T13266] do_syscall_64+0x3d/0x90 [ 151.268106][T13266] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 151.274052][T13266] RIP: 0033:0x4665e9 [ 151.277942][T13266] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 151.297579][T13266] RSP: 002b:00007f4d4aad9188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 151.306008][T13266] RAX: ffffffffffffffda RBX: 000000000056c0f0 RCX: 00000000004665e9 [ 151.313992][T13266] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 151.321966][T13266] RBP: 00007f4d4aad91d0 R08: 0000000000000000 R09: 0000000000000000 [ 151.329947][T13266] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001 [ 151.337902][T13266] R13: 00007ffec27dc74f R14: 00007f4d4aad9300 R15: 0000000000022000 23:06:23 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640), 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:23 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x541b, 0x20000000) 23:06:23 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) r2 = syz_open_dev$char_usb(0xc, 0xb4, 0x8) fsetxattr$security_capability(r2, &(0x7f00000000c0), &(0x7f0000000100)=@v3={0x3000000, [{0x5, 0xffff8000}, {0x6, 0x1000}], 0xee01}, 0x18, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) r3 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r3, 0x2403, 0x81) pidfd_getfd(0xffffffffffffffff, r3, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:23 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00001000000000", 0x1e5) 23:06:23 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040), 0x0, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:23 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x1, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$BTRFS_IOC_QGROUP_LIMIT(r0, 0x8030942b, &(0x7f0000000040)={0x3ff, {0x11, 0x34, 0x5, 0x1, 0x8}}) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x10001, 0x1ff}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) r3 = socket$packet(0x11, 0x2, 0x300) fsetxattr$trusted_overlay_nlink(r2, &(0x7f0000000180), &(0x7f00000001c0)={'L+', 0x2}, 0x16, 0x2) splice(r2, &(0x7f0000000100)=0xd27e, r3, &(0x7f0000000140)=0x4, 0x5, 0x5) r4 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x2, 0xe6df}, 0x80, 0x0, 0x0, 0x6, 0x0, 0xfffffffc, 0x4}, 0xffffffffffffffff, 0x0, r1, 0x0) r5 = pidfd_getfd(r1, r0, 0x0) ioctl$SG_SET_TIMEOUT(r5, 0x2201, &(0x7f00000000c0)=0x7) ioctl$PERF_EVENT_IOC_RESET(r4, 0x2403, 0x81) mmap(&(0x7f0000430000/0x3000)=nil, 0x3000, 0x300000c, 0x100010, r4, 0x290f2000) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:23 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00002901000000", 0x1e5) 23:06:23 executing program 4 (fault-call:7 fault-nth:5): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:23 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5421, 0x20000000) 23:06:23 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5450, 0x20000000) 23:06:23 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f000024b000/0x2000)=nil, 0x2000, 0x180000a, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000080)={0xcb, 0x1, 0x446f, "30cda516d4bee1184c2f115c41f2bd887c239d55be3b4c93bba6647260578714e7bb79d57504f9c19fd2bedbb223a00c27a012102b96c7e404ac7061b0a2995fe2b455fae97ec077ea4c2e67391997ec6371cbd57784df26f29d412eb3f0cc81ceb48483da1c5895b5e7e36045860943d057a896e8cfbe42b8fbb139a4d7e605de7eaf5e676a7f41f09abba4ba2b9181a14fcd4463b176ab52faa85ca092549aa24914c990965a31c4515216ef4faada91ed1fa7434fe8feae796aa957e9477afcc286b262ad38ad885f3d"}) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) r2 = dup2(r1, 0xffffffffffffffff) ioctl$SCSI_IOCTL_SEND_COMMAND(r2, 0x1, &(0x7f0000000000)={0x20, 0x0, 0x6, "d5ad5090716d3d9e220500f59d10fc69b8411eeed314856297555faef7d0fd04"}) 23:06:23 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5451, 0x20000000) [ 152.050666][T13314] FAULT_INJECTION: forcing a failure. [ 152.050666][T13314] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 152.063744][T13314] CPU: 0 PID: 13314 Comm: syz-executor.4 Not tainted 5.14.0-rc2-syzkaller #0 [ 152.072553][T13314] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 152.082600][T13314] Call Trace: [ 152.085870][T13314] dump_stack_lvl+0xb7/0x103 [ 152.090524][T13314] dump_stack+0x11/0x1a [ 152.094686][T13314] should_fail+0x23c/0x250 [ 152.099132][T13314] should_fail_usercopy+0x16/0x20 [ 152.104158][T13314] _copy_from_user+0x1c/0xd0 [ 152.108743][T13314] do_recvmmsg+0x250/0x9f0 [ 152.113153][T13314] ? fsnotify_perm+0x59/0x2e0 [ 152.117902][T13314] ? __fsnotify_parent+0x32f/0x430 [ 152.123004][T13314] ? __fget_light+0x21b/0x260 [ 152.127674][T13314] ? __cond_resched+0x11/0x40 [ 152.132381][T13314] __x64_sys_recvmmsg+0xcf/0x150 [ 152.137373][T13314] ? exit_to_user_mode_prepare+0x65/0x190 [ 152.143107][T13314] do_syscall_64+0x3d/0x90 [ 152.147520][T13314] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 152.153490][T13314] RIP: 0033:0x4665e9 [ 152.157376][T13314] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 152.176989][T13314] RSP: 002b:00007f4d4aad9188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 152.185401][T13314] RAX: ffffffffffffffda RBX: 000000000056c0f0 RCX: 00000000004665e9 [ 152.193392][T13314] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 152.201349][T13314] RBP: 00007f4d4aad91d0 R08: 0000000000000000 R09: 0000000000000000 [ 152.209390][T13314] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001 [ 152.217365][T13314] R13: 00007ffec27dc74f R14: 00007f4d4aad9300 R15: 0000000000022000 23:06:23 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:23 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff0000c901000000", 0x1e5) 23:06:23 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) ioctl$BTRFS_IOC_SCRUB(r0, 0xc400941b, &(0x7f0000000300)={0x0, 0x6, 0x79}) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:23 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5452, 0x20000000) 23:06:23 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040), 0x0, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:23 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000003000000", 0x1e5) 23:06:23 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5460, 0x20000000) 23:06:24 executing program 4 (fault-call:7 fault-nth:6): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:24 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000240)={0x53, 0xfffffffffffffffc, 0xd9, 0x6, @scatter={0x3, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000300)=""/4096, 0x1000}, {&(0x7f0000000040)=""/201, 0xc9}, {&(0x7f0000000140)=""/96, 0x60}]}, &(0x7f0000001300)="e80bd72587382551a894e7f1cabba39d01c99d085c48b8ace22bd9b058af939c52dc5b690022f9369df7b88ed9e02c1a96e60d5cc3e8f3e2b168ba4f063ff608316cbf3961a7afab7c86963d7f7a42d9db8c2bea431fe6e24079cff45a3560b3bc075bd23f38a5f263a11f43af6c1673c811ecf39bfea16d64c9d2a2b8be9917fcee8370442b120f0b5e3833ed9e0a9461327275e66adad603cd1aefb8fc899f2517c3aa64966e777491cf88e7d5faa24956189e878611c5c5ed8b8fa775df911909b8655d46092d80288eb066cbd9a8a0d2601145ada9b293", &(0x7f0000001400)=""/245, 0x3, 0x10013, 0x3, &(0x7f0000000200)}) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:24 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000009000000", 0x1e5) 23:06:24 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x40049409, 0x20000000) 23:06:24 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff0000000a000000", 0x1e5) [ 152.815537][ C0] sd 0:0:1:0: [sg0] tag#7356 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 152.825938][ C0] sd 0:0:1:0: [sg0] tag#7356 CDB: opcode=0xe8 (vendor) [ 152.832827][ C0] sd 0:0:1:0: [sg0] tag#7356 CDB[00]: e8 0b d7 25 87 38 25 51 a8 94 e7 f1 ca bb a3 9d [ 152.842493][ C0] sd 0:0:1:0: [sg0] tag#7356 CDB[10]: 01 c9 9d 08 5c 48 b8 ac e2 2b d9 b0 58 af 93 9c [ 152.852072][ C0] sd 0:0:1:0: [sg0] tag#7356 CDB[20]: 52 dc 5b 69 00 22 f9 36 9d f7 b8 8e d9 e0 2c 1a [ 152.861623][ C0] sd 0:0:1:0: [sg0] tag#7356 CDB[30]: 96 e6 0d 5c c3 e8 f3 e2 b1 68 ba 4f 06 3f f6 08 [ 152.871176][ C0] sd 0:0:1:0: [sg0] tag#7356 CDB[40]: 31 6c bf 39 61 a7 af ab 7c 86 96 3d 7f 7a 42 d9 [ 152.880839][ C0] sd 0:0:1:0: [sg0] tag#7356 CDB[50]: db 8c 2b ea 43 1f e6 e2 40 79 cf f4 5a 35 60 b3 [ 152.890572][ C0] sd 0:0:1:0: [sg0] tag#7356 CDB[60]: bc 07 5b d2 3f 38 a5 f2 63 a1 1f 43 af 6c 16 73 [ 152.900120][ C0] sd 0:0:1:0: [sg0] tag#7356 CDB[70]: c8 11 ec f3 9b fe a1 6d 64 c9 d2 a2 b8 be 99 17 [ 152.909694][ C0] sd 0:0:1:0: [sg0] tag#7356 CDB[80]: fc ee 83 70 44 2b 12 0f 0b 5e 38 33 ed 9e 0a 94 [ 152.919266][ C0] sd 0:0:1:0: [sg0] tag#7356 CDB[90]: 61 32 72 75 e6 6a da d6 03 cd 1a ef b8 fc 89 9f [ 152.920579][T13367] FAULT_INJECTION: forcing a failure. [ 152.920579][T13367] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 152.928815][ C0] sd 0:0:1:0: [sg0] tag#7356 CDB[a0]: 25 17 c3 aa 64 96 6e 77 74 91 cf 88 e7 d5 fa a2 [ 152.941823][T13367] CPU: 1 PID: 13367 Comm: syz-executor.4 Not tainted 5.14.0-rc2-syzkaller #0 [ 152.951541][ C0] sd 0:0:1:0: [sg0] tag#7356 CDB[b0]: 49 56 18 9e 87 86 11 c5 c5 ed 8b 8f a7 75 df 91 [ 152.951556][ C0] sd 0:0:1:0: [sg0] tag#7356 CDB[c0]: 19 09 b8 65 5d 46 09 2d 80 28 8e b0 66 cb d9 a8 [ 152.951569][ C0] sd 0:0:1:0: [sg0] tag#7356 CDB[d0]: a0 d2 60 11 45 ad a9 b2 93 [ 152.959408][ C0] sd 0:0:1:0: [sg0] tag#7357 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 152.960493][T13367] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 152.970039][ C0] sd 0:0:1:0: [sg0] tag#7357 CDB: opcode=0xe8 (vendor) [ 152.979541][T13367] Call Trace: [ 152.979549][T13367] dump_stack_lvl+0xb7/0x103 [ 152.987255][ C0] sd 0:0:1:0: [sg0] tag#7357 CDB[00]: e8 0b d7 25 87 38 25 51 a8 94 e7 f1 ca bb a3 9d [ 152.997528][T13367] dump_stack+0x11/0x1a [ 152.997546][T13367] should_fail+0x23c/0x250 [ 153.007585][ C0] sd 0:0:1:0: [sg0] tag#7357 CDB[10]: 01 c9 9d 08 5c 48 b8 ac e2 2b d9 b0 58 af 93 9c [ 153.007600][ C0] sd 0:0:1:0: [sg0] tag#7357 CDB[20]: 52 dc 5b 69 00 22 f9 36 9d f7 b8 8e d9 e0 2c 1a [ 153.014413][T13367] should_fail_usercopy+0x16/0x20 [ 153.017709][ C0] sd 0:0:1:0: [sg0] tag#7357 CDB[30]: 96 e6 0d 5c c3 e8 f3 e2 b1 68 ba 4f 06 3f f6 08 [ 153.022264][T13367] _copy_from_user+0x1c/0xd0 [ 153.022289][T13367] do_recvmmsg+0x250/0x9f0 [ 153.031814][ C0] sd 0:0:1:0: [sg0] tag#7357 CDB[40]: 31 6c bf 39 61 a7 af ab 7c 86 96 3d 7f 7a 42 d9 [ 153.031829][ C0] sd 0:0:1:0: [sg0] tag#7357 CDB[50]: db 8c 2b ea 43 1f e6 e2 40 79 cf f4 5a 35 60 b3 [ 153.031842][ C0] sd 0:0:1:0: [sg0] tag#7357 CDB[60]: bc 07 5b d2 3f 38 a5 f2 63 a1 1f 43 af 6c 16 73 [ 153.031855][ C0] sd 0:0:1:0: [sg0] tag#7357 CDB[70]: c8 11 ec f3 9b fe a1 6d 64 c9 d2 a2 b8 be 99 17 [ 153.031887][ C0] sd 0:0:1:0: [sg0] tag#7357 CDB[80]: fc ee 83 70 44 2b 12 0f 0b 5e 38 33 ed 9e 0a 94 [ 153.036008][T13367] ? fsnotify_perm+0x59/0x2e0 [ 153.040418][ C0] sd 0:0:1:0: [sg0] tag#7357 CDB[90]: 61 32 72 75 e6 6a da d6 03 cd 1a ef b8 fc 89 9f [ 153.049920][T13367] ? __fsnotify_parent+0x32f/0x430 [ 153.059471][ C0] sd 0:0:1:0: [sg0] tag#7357 CDB[a0]: 25 17 c3 aa 64 96 6e 77 74 91 cf 88 e7 d5 fa a2 [ 153.064477][T13367] ? __fget_light+0x21b/0x260 [ 153.074007][ C0] sd 0:0:1:0: [sg0] tag#7357 CDB[b0]: 49 56 18 9e 87 86 11 c5 c5 ed 8b 8f a7 75 df 91 [ 153.078551][T13367] ? __cond_resched+0x11/0x40 [ 153.082952][ C0] sd 0:0:1:0: [sg0] tag#7357 CDB[c0]: 19 09 b8 65 5d 46 09 2d 80 28 8e b0 66 cb d9 a8 [ 153.092649][T13367] __x64_sys_recvmmsg+0xcf/0x150 [ 153.102185][ C0] sd 0:0:1:0: [sg0] tag#7357 CDB[d0]: a0 d2 60 11 45 ad a9 b2 93 [ 153.111684][T13367] ? exit_to_user_mode_prepare+0x65/0x190 [ 153.206147][T13367] do_syscall_64+0x3d/0x90 [ 153.210547][T13367] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 153.216426][T13367] RIP: 0033:0x4665e9 [ 153.220325][T13367] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 153.239983][T13367] RSP: 002b:00007f4d4aad9188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 153.248372][T13367] RAX: ffffffffffffffda RBX: 000000000056c0f0 RCX: 00000000004665e9 [ 153.256320][T13367] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 153.264267][T13367] RBP: 00007f4d4aad91d0 R08: 0000000000000000 R09: 0000000000000000 [ 153.272302][T13367] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001 [ 153.280253][T13367] R13: 00007ffec27dc74f R14: 00007f4d4aad9300 R15: 0000000000022000 23:06:24 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:24 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x40086602, 0x20000000) 23:06:24 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff0000c00e000000", 0x1e5) 23:06:24 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = open$dir(&(0x7f0000000200)='./file0\x00', 0x210081, 0x1b2) writev(r1, &(0x7f0000000240)=[{&(0x7f0000001300)="1eb13b40106dfd5f8dbcde8568e46a35d97599d70531d985044931cf804846d342bb47cf16c4b19a643f50c160bfa88c3b7fb0be629eed853608ae4d04323e8e11901e8a432dd3421123173e459c73f24216359f390fd6b3cf894aa0a6fbd63e66ca67e77abe75583186a1cdab0e75491a057f4843139dce682763dc8e4317e9c8ff3f467044d6729d10b779666e6b2ab25bfb6a0553", 0x96}], 0x1) r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f00000001c0)=[{&(0x7f0000000300)=""/4096, 0x1000}, {&(0x7f00000000c0)=""/85, 0x55}, {&(0x7f0000000140)=""/90, 0x5a}], 0x3, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) r3 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r3, 0x2403, 0x81) readahead(r3, 0x2, 0x1) 23:06:24 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040), 0x0, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:24 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) vmsplice(r2, &(0x7f00000000c0)=[{&(0x7f0000000300)="aceeff15da0fc07570ae89eacfec62c1396b76ef169987cca5ce91f649c2447c25ed33d838254ec632079bbda70c3465c14c5d7bb6c42328a32b416e29163776877ca886a3651df8149dc4a4545719bb6abc1d80346e47155b68c620e32587e616237eeb5961d9d72b4503e6ec93c8e7352af65a2d8997ebcdde3a077ebf7502fbf2b95d65b2fc9b70f3fd04a438e02e1242f5ae5b1f84e3347a046a33da48d93aa43e5217e1aaaf9cac0eed59ec2e60966e0d9518cf64eaf7f23456bb8c72", 0xbf}, {&(0x7f0000000080)="fba66550b4cbdfeff660c4bfacb2be04d21225bc674a", 0x16}], 0x2, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000100), 0x400200, 0x0) ioctl$SG_GET_REQUEST_TABLE(r3, 0x2286, &(0x7f0000000140)) 23:06:24 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x40087602, 0x20000000) 23:06:24 executing program 4 (fault-call:7 fault-nth:7): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:24 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000020000000", 0x1e5) 23:06:24 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x401c5820, 0x20000000) 23:06:24 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x202042, 0x35) getxattr(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)=ANY=[@ANYBLOB='syste(\b$\'\x00'], &(0x7f00000000c0)=""/115, 0x73) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r0, &(0x7f0000000200)=[{&(0x7f0000000140)=""/187, 0xbb}, {&(0x7f0000000480)=""/174, 0xffffff7d}, {&(0x7f0000000300)=""/44, 0x2c}, {&(0x7f0000000340)=""/196, 0xc4}], 0x4, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:24 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000129000000", 0x1e5) [ 153.775056][T13418] FAULT_INJECTION: forcing a failure. [ 153.775056][T13418] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 153.788753][T13418] CPU: 0 PID: 13418 Comm: syz-executor.4 Not tainted 5.14.0-rc2-syzkaller #0 [ 153.797540][T13418] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 153.807594][T13418] Call Trace: [ 153.810864][T13418] dump_stack_lvl+0xb7/0x103 [ 153.815454][T13418] dump_stack+0x11/0x1a [ 153.819608][T13418] should_fail+0x23c/0x250 [ 153.824025][T13418] should_fail_usercopy+0x16/0x20 [ 153.829107][T13418] _copy_from_user+0x1c/0xd0 [ 153.833694][T13418] do_recvmmsg+0x250/0x9f0 [ 153.838431][T13418] ? fsnotify_perm+0x59/0x2e0 [ 153.843145][T13418] ? __fsnotify_parent+0x32f/0x430 [ 153.848273][T13418] ? __fget_light+0x21b/0x260 [ 153.853074][T13418] ? __cond_resched+0x11/0x40 [ 153.857758][T13418] __x64_sys_recvmmsg+0xcf/0x150 [ 153.862695][T13418] ? exit_to_user_mode_prepare+0x65/0x190 [ 153.868466][T13418] do_syscall_64+0x3d/0x90 [ 153.872897][T13418] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 153.878788][T13418] RIP: 0033:0x4665e9 [ 153.882673][T13418] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 153.902290][T13418] RSP: 002b:00007f4d4aad9188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 153.910712][T13418] RAX: ffffffffffffffda RBX: 000000000056c0f0 RCX: 00000000004665e9 [ 153.918754][T13418] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 153.926721][T13418] RBP: 00007f4d4aad91d0 R08: 0000000000000000 R09: 0000000000000000 [ 153.934738][T13418] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001 [ 153.942694][T13418] R13: 00007ffec27dc74f R14: 00007f4d4aad9300 R15: 0000000000022000 23:06:25 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:25 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) mmap(&(0x7f00005d9000/0x1000)=nil, 0x1000, 0x8, 0x30, r0, 0xf5127000) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:25 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x4020940d, 0x20000000) 23:06:25 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000ec0000000", 0x1e5) 23:06:25 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:25 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000333000/0x4000)=nil, 0x4000, 0x1800003, 0x100010, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:25 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x80086601, 0x20000000) 23:06:25 executing program 4 (fault-call:7 fault-nth:8): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:25 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff000001c9000000", 0x1e5) 23:06:25 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) fcntl$setownex(r1, 0xf, &(0x7f0000000040)={0x1}) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:25 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x80087601, 0x20000000) 23:06:25 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000040030000", 0x1e5) [ 154.629282][T13469] FAULT_INJECTION: forcing a failure. [ 154.629282][T13469] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 154.642566][T13469] CPU: 0 PID: 13469 Comm: syz-executor.4 Not tainted 5.14.0-rc2-syzkaller #0 [ 154.651364][T13469] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 154.661600][T13469] Call Trace: [ 154.664935][T13469] dump_stack_lvl+0xb7/0x103 [ 154.669530][T13469] dump_stack+0x11/0x1a [ 154.673721][T13469] should_fail+0x23c/0x250 [ 154.678195][T13469] should_fail_usercopy+0x16/0x20 [ 154.683231][T13469] _copy_from_user+0x1c/0xd0 [ 154.687811][T13469] do_recvmmsg+0x250/0x9f0 [ 154.692219][T13469] ? fsnotify_perm+0x59/0x2e0 [ 154.696892][T13469] ? __fsnotify_parent+0x32f/0x430 [ 154.702029][T13469] ? __fget_light+0x21b/0x260 [ 154.706689][T13469] ? __cond_resched+0x11/0x40 [ 154.711429][T13469] __x64_sys_recvmmsg+0xcf/0x150 [ 154.716398][T13469] ? exit_to_user_mode_prepare+0x65/0x190 [ 154.722113][T13469] do_syscall_64+0x3d/0x90 [ 154.726603][T13469] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 154.732497][T13469] RIP: 0033:0x4665e9 [ 154.736401][T13469] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 154.756174][T13469] RSP: 002b:00007f4d4aad9188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 154.764599][T13469] RAX: ffffffffffffffda RBX: 000000000056c0f0 RCX: 00000000004665e9 [ 154.772561][T13469] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 154.780637][T13469] RBP: 00007f4d4aad91d0 R08: 0000000000000000 R09: 0000000000000000 [ 154.788694][T13469] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001 [ 154.796667][T13469] R13: 00007ffec27dc74f R14: 00007f4d4aad9300 R15: 0000000000022000 23:06:26 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, 0x0, 0x0, 0x2, 0x0) 23:06:26 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x5, 0x8800) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000240)=[{&(0x7f0000000300)=""/232, 0xe8}], 0x1, 0x800, 0x3) ioctl$SG_SET_TIMEOUT(r1, 0x2201, &(0x7f0000000480)=0x1000) r2 = openat2(r1, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x2300, 0x40, 0x4}, 0x18) ioctl$SG_GET_REQUEST_TABLE(r2, 0x2286, &(0x7f00000000c0)) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) r3 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000280), 0x1, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r3, 0x1, &(0x7f00000004c0)=ANY=[@ANYBLOB="380000000900000001000000b69a8855bc6f8b883277e9c5db2e0d2b5ce179a123ba2c74e8804274824de3625dd443a3d38d2e06b408a16408b63dbc9cd9964f7a4cc69a846687"]) 23:06:26 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x801c581f, 0x20000000) 23:06:26 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000003400000", 0x1e5) 23:06:26 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:26 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = inotify_init1(0x800) sendmsg$NL80211_CMD_SET_BSS(r1, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x30, 0x0, 0x200, 0x70bd2b, 0x25dfdbfe, {{}, {@val={0x8}, @val={0xc, 0x99, {0x4, 0x49}}}}, [@NL80211_ATTR_BSS_SHORT_PREAMBLE={0x5, 0x1d, 0x1f}]}, 0x30}, 0x1, 0x0, 0x0, 0x4004014}, 0x84) pwrite64(r2, &(0x7f0000000040)="ac347b21e20d9abf2691dd7d5bcf7efbcf33f7c0b23dc3a4ef1c50365f6f3d1c9970c5e67c45eabe3581fd9c3061f308795d4a5b70d5e1047cd85c8aeea379f277aad3c91bc8f39f6b18e782217501b9e1094fd8dfa48464d1d4aeff35901d8372c3b2ef790ab2269b342db1c9c6b2778ddf69bf7109aaecd5a9b738f0d7461710454664fce59d1d170be9cb34a16e", 0x8f, 0x109) r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCVHANGUP(r3, 0x5437, 0x0) io_setup(0x9, &(0x7f0000000000)=0x0) io_submit(r4, 0x1, &(0x7f0000000040)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x5, 0x0, r3, 0x0}]) io_cancel(r4, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x6, 0x7, r2, &(0x7f0000000200)="4ed0fcb7889f55fdc6a60fe1a724d935791b31ee5cb33eac56104eb9985a507ed369d4bedeba7e7ecb20d9e15bcac1c48a6f34c5b379817aefe9d496ef30", 0x3e, 0x48d, 0x0, 0x2, r1}, &(0x7f0000000280)) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:26 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0xc0045878, 0x20000000) 23:06:26 executing program 4 (fault-call:7 fault-nth:9): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:26 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000100", 0x1e5) 23:06:26 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0xc0045878, 0x20000000) 23:06:26 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000200", 0x1e5) 23:06:26 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0xc0189436, 0x20000000) [ 155.493731][T13521] FAULT_INJECTION: forcing a failure. [ 155.493731][T13521] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 155.506957][T13521] CPU: 0 PID: 13521 Comm: syz-executor.4 Not tainted 5.14.0-rc2-syzkaller #0 [ 155.515773][T13521] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 155.525980][T13521] Call Trace: [ 155.529352][T13521] dump_stack_lvl+0xb7/0x103 [ 155.533946][T13521] dump_stack+0x11/0x1a [ 155.538314][T13521] should_fail+0x23c/0x250 [ 155.542728][T13521] should_fail_usercopy+0x16/0x20 [ 155.547759][T13521] _copy_from_user+0x1c/0xd0 [ 155.552356][T13521] do_recvmmsg+0x250/0x9f0 [ 155.556780][T13521] ? fsnotify_perm+0x59/0x2e0 [ 155.561462][T13521] ? __fsnotify_parent+0x32f/0x430 [ 155.566573][T13521] ? __fget_light+0x21b/0x260 [ 155.571259][T13521] ? __cond_resched+0x11/0x40 [ 155.575935][T13521] __x64_sys_recvmmsg+0xcf/0x150 [ 155.580976][T13521] ? exit_to_user_mode_prepare+0x65/0x190 [ 155.586700][T13521] do_syscall_64+0x3d/0x90 [ 155.591114][T13521] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 155.597060][T13521] RIP: 0033:0x4665e9 [ 155.600947][T13521] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 155.620639][T13521] RSP: 002b:00007f4d4aad9188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 155.629051][T13521] RAX: ffffffffffffffda RBX: 000000000056c0f0 RCX: 00000000004665e9 [ 155.637109][T13521] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 155.645229][T13521] RBP: 00007f4d4aad91d0 R08: 0000000000000000 R09: 0000000000000000 [ 155.653209][T13521] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002 [ 155.661284][T13521] R13: 00007ffec27dc74f R14: 00007f4d4aad9300 R15: 0000000000022000 23:06:27 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000300", 0x1e5) 23:06:27 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, 0x0, 0x0, 0x2, 0x0) 23:06:27 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0xc020660b, 0x20000000) 23:06:27 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000040), 0x6, 0x580) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x20000000) 23:06:27 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:27 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640), 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:27 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0xc0481273, 0x20000000) 23:06:27 executing program 4 (fault-call:7 fault-nth:10): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:27 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000400", 0x1e5) 23:06:27 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000002) 23:06:27 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000900", 0x1e5) 23:06:27 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000010) 23:06:27 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000a00", 0x1e5) [ 156.353377][T13579] FAULT_INJECTION: forcing a failure. [ 156.353377][T13579] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 156.366452][T13579] CPU: 1 PID: 13579 Comm: syz-executor.4 Not tainted 5.14.0-rc2-syzkaller #0 [ 156.375215][T13579] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 156.385273][T13579] Call Trace: [ 156.388548][T13579] dump_stack_lvl+0xb7/0x103 [ 156.393203][T13579] dump_stack+0x11/0x1a [ 156.397363][T13579] should_fail+0x23c/0x250 [ 156.401797][T13579] should_fail_usercopy+0x16/0x20 [ 156.406888][T13579] _copy_from_user+0x1c/0xd0 [ 156.411561][T13579] do_recvmmsg+0x250/0x9f0 [ 156.416028][T13579] ? fsnotify_perm+0x59/0x2e0 [ 156.420695][T13579] ? __fsnotify_parent+0x32f/0x430 [ 156.425823][T13579] ? __switch_to+0x145/0x480 [ 156.430415][T13579] ? finish_task_switch+0xce/0x290 [ 156.435535][T13579] ? __schedule+0x42a/0x670 [ 156.440038][T13579] ? __cond_resched+0x11/0x40 [ 156.444715][T13579] ? fpregs_restore_userregs+0x93/0x1c0 [ 156.450298][T13579] __x64_sys_recvmmsg+0xcf/0x150 [ 156.455432][T13579] ? exit_to_user_mode_prepare+0x65/0x190 [ 156.461173][T13579] do_syscall_64+0x3d/0x90 [ 156.465599][T13579] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 156.471547][T13579] RIP: 0033:0x4665e9 [ 156.475434][T13579] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 156.495485][T13579] RSP: 002b:00007f4d4aad9188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 156.503904][T13579] RAX: ffffffffffffffda RBX: 000000000056c0f0 RCX: 00000000004665e9 [ 156.511865][T13579] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 156.519838][T13579] RBP: 00007f4d4aad91d0 R08: 0000000000000000 R09: 0000000000000000 [ 156.527799][T13579] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002 [ 156.535848][T13579] R13: 00007ffec27dc74f R14: 00007f4d4aad9300 R15: 0000000000022000 23:06:28 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, 0x0, 0x0, 0x2, 0x0) 23:06:28 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20002000) 23:06:28 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000001000", 0x1e5) 23:06:28 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:28 executing program 1 (fault-call:5 fault-nth:0): r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x0) 23:06:28 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000002000", 0x1e5) 23:06:28 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20004000) 23:06:28 executing program 4 (fault-call:7 fault-nth:11): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:28 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20800000) 23:06:28 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000012900", 0x1e5) [ 157.127437][T13605] FAULT_INJECTION: forcing a failure. [ 157.127437][T13605] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 157.140606][T13605] CPU: 1 PID: 13605 Comm: syz-executor.1 Not tainted 5.14.0-rc2-syzkaller #0 [ 157.149379][T13605] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 157.159729][T13605] Call Trace: [ 157.163009][T13605] dump_stack_lvl+0xb7/0x103 [ 157.167601][T13605] dump_stack+0x11/0x1a [ 157.172060][T13605] should_fail+0x23c/0x250 23:06:28 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0xff600000) 23:06:28 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff0000ffffff8100", 0x1e5) [ 157.176478][T13605] should_fail_usercopy+0x16/0x20 [ 157.181557][T13605] _copy_to_user+0x1c/0x90 [ 157.185970][T13605] simple_read_from_buffer+0xab/0x120 [ 157.191344][T13605] proc_fail_nth_read+0xf6/0x140 [ 157.196301][T13605] ? rw_verify_area+0x136/0x250 [ 157.201211][T13605] ? proc_fault_inject_write+0x200/0x200 [ 157.206874][T13605] vfs_read+0x154/0x5d0 [ 157.211038][T13605] ? __fput+0x43e/0x4e0 [ 157.215203][T13605] ? __fget_light+0x21b/0x260 [ 157.219871][T13605] ? __cond_resched+0x11/0x40 [ 157.224561][T13605] ksys_read+0xce/0x180 [ 157.228728][T13605] __x64_sys_read+0x3e/0x50 [ 157.233247][T13605] do_syscall_64+0x3d/0x90 [ 157.235264][T13626] FAULT_INJECTION: forcing a failure. [ 157.235264][T13626] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 157.237705][T13605] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 157.237731][T13605] RIP: 0033:0x41936c [ 157.260600][T13605] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 157.280194][T13605] RSP: 002b:00007f57b5f4d170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 157.288594][T13605] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000041936c [ 157.296548][T13605] RDX: 000000000000000f RSI: 00007f57b5f4d1e0 RDI: 0000000000000006 [ 157.304503][T13605] RBP: 00007f57b5f4d1d0 R08: 0000000000000000 R09: 0000000000000000 [ 157.312459][T13605] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 157.320412][T13605] R13: 00007ffd50fa5c2f R14: 00007f57b5f4d300 R15: 0000000000022000 [ 157.328371][T13626] CPU: 0 PID: 13626 Comm: syz-executor.4 Not tainted 5.14.0-rc2-syzkaller #0 [ 157.337218][T13626] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 157.347276][T13626] Call Trace: [ 157.350548][T13626] dump_stack_lvl+0xb7/0x103 [ 157.355131][T13626] dump_stack+0x11/0x1a [ 157.359269][T13626] should_fail+0x23c/0x250 [ 157.363676][T13626] should_fail_usercopy+0x16/0x20 [ 157.368836][T13626] _copy_from_user+0x1c/0xd0 [ 157.373431][T13626] do_recvmmsg+0x250/0x9f0 [ 157.377839][T13626] ? fsnotify_perm+0x59/0x2e0 [ 157.382590][T13626] ? __fsnotify_parent+0x32f/0x430 [ 157.387696][T13626] ? __fget_light+0x21b/0x260 [ 157.392502][T13626] ? __cond_resched+0x11/0x40 [ 157.397171][T13626] __x64_sys_recvmmsg+0xcf/0x150 [ 157.402098][T13626] ? exit_to_user_mode_prepare+0x65/0x190 [ 157.407823][T13626] do_syscall_64+0x3d/0x90 [ 157.412228][T13626] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 157.418200][T13626] RIP: 0033:0x4665e9 [ 157.422141][T13626] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 157.441775][T13626] RSP: 002b:00007f4d4aad9188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 157.450194][T13626] RAX: ffffffffffffffda RBX: 000000000056c0f0 RCX: 00000000004665e9 [ 157.458166][T13626] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 157.466123][T13626] RBP: 00007f4d4aad91d0 R08: 0000000000000000 R09: 0000000000000000 [ 157.474082][T13626] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002 [ 157.482063][T13626] R13: 00007ffec27dc74f R14: 00007f4d4aad9300 R15: 0000000000022000 23:06:29 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x0, 0x0) 23:06:29 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0xffffffffff600000) 23:06:29 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x0) 23:06:29 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:29 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff0000ffffff9e00", 0x1e5) 23:06:29 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000400)={0x83, 0x6, 0xb2d, "0ef87563ec81ea7d45e0e09e4885defe54e483ead61939a61916341585a3a750cc90dd962377c758d2b5f4bf6cd06e846f72adb9a804bc70cd77fd186aa18a9b819477f24992a8ee32702b9847e423f06bf66bfbd393260face4449427544fe973cc31c89ae944f81eb00cc6dca31789357b496f262c74aa0c972e8ed7244c62cbeb4c"}) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000700)=[{&(0x7f0000000740)=""/19, 0x10}, {&(0x7f0000000340)=""/147, 0x93}, {&(0x7f0000000640)=""/66, 0xfffffefd}, {&(0x7f00000006c0)=""/27, 0x1b}], 0x4, 0x10000, 0x0) r3 = openat$cgroup_freezer_state(r2, &(0x7f0000000280), 0x2, 0x0) fsync(r3) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r2, 0x1, &(0x7f00000004c0)=ANY=[@ANYBLOB="d700000004000000ffff0000aadffd35c790c44ec49578aa51b88e9af29a8e074ae6f448f014c82a3ce8bfc82df0c4b81d35396b420db21cd8cdfb75a24fef41f29b055125be64470548759117660dbc2e5fd023cd313e1917e389e4ba3e8469020cc251a4e38cd149eb9202c9594a7a3ed8fd41115eaea486857ac66273e9cba4137ade4ce17f4086f70a6af38f9158c467d56ec001d28e6026a7891fffa70804991d039b27454592f9c473021c0dff5e81f73782cc27489fabb60504ff4dfa20c1c0893971653c17dba11445d40ca41455f744cfd2bdbc6247761aba7f3dcad2b03b186748ea47f634401e8acb6da9c95170b726be393db819e167c56762742ce183632ad37ff8f35b434ff0f991182bb09d06fdfc5c83eab47469e25a5154a73084f4190d6cc0f47f4f7e4429403219d62d6179071dfe5562328ef1dba38eb58db01ca5a66b43059195de5c08f46633e39b629c53192939e0fbb94a8010c501345a79e9baa0945224caf3973a"]) preadv(r1, &(0x7f0000000240)=[{&(0x7f0000000040)=""/144, 0x90}, {&(0x7f0000000100)=""/89, 0x59}, {&(0x7f0000000180)=""/113, 0x71}], 0x3, 0xd9f, 0x7fff) r4 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r4, 0x2403, 0x81) ioctl$F2FS_IOC_GET_PIN_FILE(r4, 0x8004f50e, &(0x7f0000000200)) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:29 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x1000000000000) 23:06:29 executing program 4 (fault-call:7 fault-nth:12): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:29 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SG_NEXT_CMD_LEN(r0, 0x2283, &(0x7f0000000080)=0xdb) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000000)={0x2, &(0x7f0000000040)=[{0x30, 0x0, 0x0, 0xfffff028}, {0x6}]}, 0x10) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) r3 = syz_open_dev$sg(&(0x7f00000000c0), 0x7, 0x100) preadv(r3, &(0x7f0000001540)=[{&(0x7f0000000100)=""/170, 0xaa}, {&(0x7f00000001c0)=""/2, 0x2}, {&(0x7f0000000340)=""/197, 0xc5}, {&(0x7f0000000440)=""/4096, 0x1000}, {&(0x7f0000000200)=""/166, 0xa6}, {&(0x7f0000001440)=""/203, 0xcb}], 0x6, 0x3, 0x4) 23:06:29 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0xffffffff00000000) 23:06:29 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff000000000ec000", 0x1e5) 23:06:29 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f00000013c0)={0x0, 0xfffffffffffffffe, 0x1000, 0x4, @scatter={0x3, 0x0, &(0x7f0000000300)=[{&(0x7f0000000040)=""/223, 0xdf}, {&(0x7f0000000140)=""/185, 0xb9}, {&(0x7f0000000200)=""/165, 0xa5}]}, &(0x7f0000000340)="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", &(0x7f0000001340)=""/20, 0x7, 0x1003c, 0x3, &(0x7f0000001380)}) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) [ 158.106118][T13681] FAULT_INJECTION: forcing a failure. [ 158.106118][T13681] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 158.119198][T13681] CPU: 1 PID: 13681 Comm: syz-executor.4 Not tainted 5.14.0-rc2-syzkaller #0 [ 158.127992][T13681] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 158.138134][T13681] Call Trace: [ 158.141400][T13681] dump_stack_lvl+0xb7/0x103 [ 158.145979][T13681] dump_stack+0x11/0x1a [ 158.150117][T13681] should_fail+0x23c/0x250 [ 158.154529][T13681] should_fail_usercopy+0x16/0x20 [ 158.159786][T13681] _copy_from_user+0x1c/0xd0 [ 158.164458][T13681] do_recvmmsg+0x250/0x9f0 [ 158.168859][T13681] ? fsnotify_perm+0x59/0x2e0 [ 158.173540][T13681] ? __fsnotify_parent+0x32f/0x430 [ 158.178640][T13681] ? __fget_light+0x21b/0x260 [ 158.183297][T13681] ? __cond_resched+0x11/0x40 [ 158.187975][T13681] __x64_sys_recvmmsg+0xcf/0x150 [ 158.192906][T13681] ? exit_to_user_mode_prepare+0x65/0x190 [ 158.198612][T13681] do_syscall_64+0x3d/0x90 [ 158.203023][T13681] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 158.208994][T13681] RIP: 0033:0x4665e9 [ 158.212872][T13681] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 158.232610][T13681] RSP: 002b:00007f4d4aad9188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 158.241011][T13681] RAX: ffffffffffffffda RBX: 000000000056c0f0 RCX: 00000000004665e9 [ 158.248968][T13681] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 158.257068][T13681] RBP: 00007f4d4aad91d0 R08: 0000000000000000 R09: 0000000000000000 [ 158.265038][T13681] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002 [ 158.273020][T13681] R13: 00007ffec27dc74f R14: 00007f4d4aad9300 R15: 0000000000022000 23:06:29 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x0, 0x0) 23:06:29 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r1, 0x40082404, &(0x7f00000000c0)=0x80) 23:06:29 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff0000000001c900", 0x1e5) 23:06:30 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:30 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000080), 0x40, 0x468342) ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x1, &(0x7f0000000240)=ANY=[@ANYBLOB="440000003f000000790000000a663bd5560d6c413300963ad2918bdd62c7517349c5b833a4a16cbc088fc37deba01e1fe49f997acefa4e6232237e270000000000000000000000000000000096c82e3a3d4eb611cca5511e3264711edd680ec88da5edfded1bf17ca4fb1656963b85f112"]) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000100), 0x12000, 0x0) epoll_ctl$EPOLL_CTL_MOD(r2, 0x3, r0, &(0x7f0000000180)={0x10}) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r3 = socket$inet_icmp(0x2, 0x2, 0x1) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r3) lsetxattr$trusted_overlay_redirect(&(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), &(0x7f0000000200)='./file0\x00', 0x8, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) ioctl$F2FS_IOC_FLUSH_DEVICE(r1, 0x4008f50a, &(0x7f0000000140)={0x1, 0x40}) 23:06:30 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff0000ffffffea00", 0x1e5) 23:06:30 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x3, 0x12901) r1 = creat(&(0x7f00000000c0)='./file0\x00', 0x5) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0xffffffffffffffff, 0x7c, 0x3, @buffer={0x0, 0x9c, &(0x7f0000000100)=""/156}, &(0x7f00000001c0)="cf02a67f0c6a3cd0a5528a0e3bba4f6cacd6ef32db0bfb9787e17b57bb7502befba3ac6be5ae342d9742b6484d54179be99818e0955f77c3cf7a799aa3846ef70ffba25c4c450cbe9168bd5d56e90afc27a6d7768832cdd408bd8ceaa658a67712e1852557961262e20456b17c1f0b96db7fc1918cf4eb6b81ce16e6", &(0x7f0000000300)=""/130, 0x2, 0x10041, 0x0, &(0x7f0000000240)}) r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r3 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}, 0x0, 0x10000000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r3, r0, 0x0) 23:06:30 executing program 4 (fault-call:7 fault-nth:13): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:30 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x0, 0xda3, 0x0) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x200202, 0x0) dup3(r2, r1, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:30 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) getresgid(&(0x7f0000000200)=0x0, &(0x7f0000000240), &(0x7f0000000280)) r3 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setresuid(0x0, r4, 0xee00) mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x1800400, &(0x7f0000000300)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {}, 0x2c, {[{@version_9p2000}, {@cache_loose}, {@afid={'afid', 0x3d, 0x1}}, {@version_9p2000}, {@dfltgid={'dfltgid', 0x3d, r2}}, {@aname}], [{@smackfshat={'smackfshat', 0x3d, '/dev/sg#\x00'}}, {@fowner_gt={'fowner>', r4}}, {@mask={'mask', 0x3d, 'MAY_WRITE'}}, {@obj_user}]}}) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) setxattr$trusted_overlay_opaque(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), &(0x7f0000000140), 0x2, 0x1) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r5 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r5, r0, 0x0) 23:06:30 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff0000ffffffef00", 0x1e5) 23:06:30 executing program 0: sendmsg$NLBL_CALIPSO_C_LIST(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x2c, 0x0, 0x100, 0x70bd25, 0x25dfdbff, {}, [@NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_MTYPE={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8002}, 0x14) r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r0, &(0x7f0000000080)=[{&(0x7f0000000040)}], 0x1, 0xd9f, 0x0) fsetxattr$system_posix_acl(r1, &(0x7f0000000040)='system.posix_acl_access\x00', &(0x7f00000000c0)=ANY=[@ANYBLOB="40000000000000e2ff03000000000000", @ANYRES32, @ANYBLOB="040006000000000008000500", @ANYRES32, @ANYBLOB="08000300", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32, @ANYBLOB="10000600000000002000000000000000"], 0x44, 0x1) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) [ 158.968128][T13733] FAULT_INJECTION: forcing a failure. [ 158.968128][T13733] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 158.981183][T13733] CPU: 1 PID: 13733 Comm: syz-executor.4 Not tainted 5.14.0-rc2-syzkaller #0 [ 158.989985][T13733] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 159.000143][T13733] Call Trace: [ 159.003856][T13733] dump_stack_lvl+0xb7/0x103 [ 159.008532][T13733] dump_stack+0x11/0x1a [ 159.012685][T13733] should_fail+0x23c/0x250 [ 159.017105][T13733] should_fail_usercopy+0x16/0x20 [ 159.022131][T13733] _copy_from_user+0x1c/0xd0 [ 159.026770][T13733] do_recvmmsg+0x250/0x9f0 [ 159.031300][T13733] ? fsnotify_perm+0x59/0x2e0 [ 159.036036][T13733] ? __fsnotify_parent+0x32f/0x430 [ 159.041185][T13733] ? __fget_light+0x21b/0x260 [ 159.045954][T13733] ? __cond_resched+0x11/0x40 [ 159.050649][T13733] __x64_sys_recvmmsg+0xcf/0x150 [ 159.055583][T13733] ? exit_to_user_mode_prepare+0x65/0x190 [ 159.061314][T13733] do_syscall_64+0x3d/0x90 [ 159.065722][T13733] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 159.071609][T13733] RIP: 0033:0x4665e9 [ 159.075505][T13733] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 159.095222][T13733] RSP: 002b:00007f4d4aad9188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 159.103634][T13733] RAX: ffffffffffffffda RBX: 000000000056c0f0 RCX: 00000000004665e9 [ 159.111777][T13733] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 159.119742][T13733] RBP: 00007f4d4aad91d0 R08: 0000000000000000 R09: 0000000000000000 [ 159.127707][T13733] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002 [ 159.135725][T13733] R13: 00007ffec27dc74f R14: 00007f4d4aad9300 R15: 0000000000022000 23:06:30 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff0000fffffff000", 0x1e5) 23:06:30 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x0, 0x0) 23:06:30 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) preadv(r3, &(0x7f0000001300)=[{&(0x7f00000000c0)=""/255, 0xff}, {&(0x7f0000000300)=""/4096, 0x1000}, {&(0x7f00000001c0)=""/231, 0xe7}], 0x3, 0xffff, 0x10000) dup3(r2, r0, 0x0) 23:06:30 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:30 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) preadv(0xffffffffffffffff, &(0x7f00000014c0)=[{&(0x7f0000000040)=""/146, 0x92}, {&(0x7f0000000100)=""/18, 0x12}, {&(0x7f0000000300)=""/4096, 0x1000}, {&(0x7f0000000140)=""/2, 0x2}, {&(0x7f0000000180)=""/117, 0x75}, {&(0x7f0000000200)=""/110, 0x6e}, {&(0x7f0000001300)=""/198, 0xc6}, {&(0x7f0000000280)=""/45, 0x2d}, {&(0x7f0000001400)=""/36, 0x24}, {&(0x7f0000001440)=""/108, 0x6c}], 0xa, 0x7, 0xf273) r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$LOOP_CHANGE_FD(r2, 0x4c06, r1) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:30 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) mmap(&(0x7f00004df000/0x1000)=nil, 0x1000, 0x2000000, 0x10, r0, 0x1f5c000) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) mmap(&(0x7f0000715000/0x4000)=nil, 0x4000, 0x1, 0x4000030, r2, 0x45c65000) r3 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r3, r0, 0x0) socket$inet(0x2, 0x2, 0x4) r4 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r4, 0x2403, 0x81) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r4, 0x50009418, &(0x7f0000000400)={{r0}, 0x0, 0x18, @unused=[0x9, 0x3, 0xf0, 0x2], @subvolid=0xe000000000000000}) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f0000000300)={{{@in=@remote, @in6=@ipv4={""/10, ""/2, @initdev}}}, {{@in6=@dev}, 0x0, @in6=@loopback}}, &(0x7f00000001c0)=0xe8) 23:06:30 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff0000fffffffe00", 0x1e5) 23:06:30 executing program 4 (fault-call:7 fault-nth:14): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:30 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff000081ffffff00", 0x1e5) 23:06:30 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x0) 23:06:30 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000840)={0x53, 0xffffffffffffffff, 0xf2, 0x80, @scatter={0x9, 0x0, &(0x7f0000000600)=[{&(0x7f0000000040)=""/28, 0x1c}, {&(0x7f0000000080)=""/125, 0x7d}, {&(0x7f0000000100)=""/211, 0xd3}, {&(0x7f0000000200)=""/161, 0xa1}, {&(0x7f0000000300)=""/6, 0x6}, {&(0x7f0000000340)=""/96, 0x60}, {&(0x7f00000003c0)=""/187, 0xbb}, {&(0x7f0000000480)=""/253, 0xfd}, {&(0x7f0000000580)=""/126, 0x7e}]}, &(0x7f00000006c0)="5f8dc0dd3f4d5532c92d3431f9ae319e5f3809b16340ebfe3efaa42ba634f1847f11971f87f138833b3ab84296528975c3e9b7145866bc1e74c069966cd2a53901f748551a77d5f8cfa38a4121aa9764f7c446e0ae1568e77841d7472d7201ccf0a0b3114ec933b62af1a74890761b9657fb609e455b9e7d485e92051765ba78447a5d5eb8ea3b98bba0ae468d5a55ca42319ad8c441a758bb721bc4957a676f1005dc8e56b723057447f93ced05930ac788e87a3a828fb731f8ccef5d23b90508ef702da814d550b1c830f00d3f0a79d4b0cfc32fb4856f40fea38162067330a44848a32062320bb05fdd30f978f18f9be4", &(0x7f00000007c0)=""/31, 0x5, 0x60, 0x2, &(0x7f0000000800)}) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f000047a000/0x11000)=nil, 0x11000, 0x0, 0x100010, r1, 0x0) r3 = openat$incfs(r1, &(0x7f00000008c0)='.pending_reads\x00', 0x3cc82, 0x88) syz_io_uring_submit(r2, 0x0, &(0x7f0000001f80)=@IORING_OP_SENDMSG={0x9, 0x2, 0x0, r3, 0x0, &(0x7f0000001f40)={&(0x7f0000000900)=@sco, 0x80, &(0x7f0000001b40)=[{&(0x7f0000000980)="762c2a9b7712fc53503aed2229e998b80bac3e9f26a3ecf51718ff610260a805ddaf381b316d87b31e83d7be27c2d37917d2cea60cf3b50948badaff1d3c5bb7842f60c5fee43703453259de9eccbb70cd4cd8b3a00ee9003893095ec23dd04a560ee89a6b578c815f6280f646ca506a8c89d27c24976bf07a3f106d4df9702d38e734be6b8bdd88ba107b9011450b", 0x8f}, {&(0x7f0000000a40)="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", 0x1000}, {&(0x7f0000001a40)="ddf48aafe157f3ef554e259c46b456298667932116c7c2131940b85194d96490a459535a30760c8fb76467513651b5fc682ffa30e998c9174d9b0b67d7e2214f3918ddc20fef11b6ce55f0f4afa24388941d17358986b90ab9d38263fbf7b23fdfe856bfc6b61e1bdf8211653f11dd6a6cce7ab545ec50ed9d795d6cbef9d510e0896aed5e70723dfb0108ff2a9cb6c1abe1c73faa40ec96b8c49c0fc8f3b03a3b2defc3d2b82ba0234471075f0be046b7b4236e65628b800ae22a8837c720229f953b4c1f59d02a45a0a5888695a49761c969b880e154144467a242e7eb6f7afeb4e2385ab7b0c71ad0c6ab4a17cafc695c98c1c407", 0xf6}], 0x3, &(0x7f0000001b80)=[{0x30, 0x10e, 0x5, "ffa55a72843cbe54802344779092a0388e16cf89b3c517b389ce74"}, {0x88, 0x6, 0x6, "e20fc03f55fb1c69798be6eeb6b6a48af0574670b99c63f62e236aa79e5e6e8c757fe08ad02ae4d112ff81c42a6da76deab369e0f95dc0e0b51ba0eaf8abfc4f0b71d67afc2f381221dfd013a986ab79b588937db84b788b82173e0fa460e45e050ba94ccc0cfbf65b463d22c2264de7fedc99166e91bd76"}, {0x108, 0x1, 0xffff, "6f225fe83d08690a5f56cd53feeb15acf3a627587c5d6e8f1d1f2d741ccc91c0389f2e54d52c10349eebf1d107bfd74db595babb6989d01c3cd7f12a802861f2b15617c0eee745a27d4f66c5dd5b5bf1ca70d03908a6deabe9e1ae170decec0355287e40a78dd84a6994fce649f026c96d43838ec8454ccc01ff81983d5faa871d50b34eb73b93b3f4193b756712c3e89dd2ed1e63076d8612370c818eaca5facfe5b4cbba148d40491e344ff54d2e62bd1420c2c69daf631c1e5dfcbc0f50af9450874648493db7b1babf1590c4c36b5361c0dd6c743a018ab61562dd1cd9c9cf6e48e0bb7d4828a76d7731fa1172802e"}, {0xe0, 0x88, 0x22ef, "48b8b21a52938540a63fa4a401522f879ae922623fd094c72fc07e71add50f5155bdd0109327f613b47b6e0ccbed7a3850b90eaf0fdd3f1a6ea41129edd20fbe01ea6b56659c31c97a5d286ea9ee1c372ae5629153edddaa185aa9ef8a0a4e63bbfdaab687ee2b14440d7561b8f9387424cb754a1dd5e3daf7a43abf4187ee79ac5e12dae45831fdcdae5613c600e0a191738dcab1029a73ed6aa5e155462ebd0d0067ce577afcc9328de9d82172709f9e55aab7c8bcd514339abba3710e4acd52a634a5b363fe2bc533a6d122146f98"}, {0xc0, 0x10e, 0x6, "e633a125510318666fca39685363f1b72e4006ba238d9366336476032625e78615f9edb1db9b43ab12bf6f3491fe33bab941c7cfa6cfcaa57992cf6e347039523cf4b07328a984c92135831ea1a871b66bf72736698d09a1355b93ab6505b71560cc12d696c6055db5050b551b62dc95f1f828c96b262c92a8e2c470b9eab414a5a81ace8c0ea74d444ace5b57e7096e28fcee7520fa5762250333e55cbb31633be97e848bf8adc3f9c9204ae6"}, {0x40, 0x101, 0x6, "4118cd436d284e39a4a08093ee62d253e88a4db998473df03cd16abeb1a220877ed0a0d7fe59a7b2133b00e50d5f74"}], 0x3a0}, 0x0, 0x8000, 0x1}, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:31 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00009effffff00", 0x1e5) 23:06:31 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) r2 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000140), 0x10000, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r2, 0x1, &(0x7f0000000300)={0xb8, 0x800, 0x0, "376cfc69bad3f79d65a1a5eb78227214fdfe92064dcd4ff20422334c007de3cf2243021ac9257ac26a45554580b235f912398c4b17df9d9d964d35c4f12fd6fc37c0e4d3ebeb655b6cc5e1c9cd35f6877096d929a2a6102538d030f229ec0422036ad581b48863633e445241eff2ae547332376e4f91dc922f1ce01d95b379b9e2872af6cb5e5f96fdd49f1059a923fc7d5cedb635f7e8fd92c166354487bbbe5e95ccf9e7500baf4ce0dfd86974ab539ce49ff035675802"}) r3 = openat2(r1, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)={0x200000, 0x40, 0x1}, 0x18) ioctl$SG_IO(r3, 0x2285, &(0x7f00000013c0)={0x0, 0xfffffffffffffffb, 0xc0, 0xd, @buffer={0x0, 0x10, &(0x7f0000001440)=""/16}, &(0x7f0000001300)="75ee94c56836f48c287855408b5f4716215a900734cfbced01e8e53b5e7a5c9fc728ecbc786146250cedfe4ff25aa191f2fac53ee498a7a95878c837beae4e34365a41b0f38dcc315fbff09363f7bd5f855f61a858504d7beb22ca31ba20881464353aa33286fde34033a9cb628428204fc7d4239b88b10ff44686d8a3579a89fe42e095bc2e19cfd63e039455a865dd90ec8c1ee2e939d971b30c1bf9a7a27e60f37905840954848d0ad9f1f3c5d4dfd676d138e4fd399653b9120e1206e0bf", &(0x7f0000000240)=""/37, 0x5, 0x14, 0xffffffffffffffff, &(0x7f0000000280)}) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r4 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r4, r0, 0x0) [ 159.763190][ C0] sd 0:0:1:0: [sg0] tag#7298 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 159.773570][ C0] sd 0:0:1:0: [sg0] tag#7298 CDB: Persistent reserve out, sa=0xd [ 159.781427][ C0] sd 0:0:1:0: [sg0] tag#7298 CDB[00]: 5f 8d c0 dd 3f 4d 55 32 c9 2d 34 31 f9 ae 31 9e [ 159.790985][ C0] sd 0:0:1:0: [sg0] tag#7298 CDB[10]: 5f 38 09 b1 63 40 eb fe 3e fa a4 2b a6 34 f1 84 [ 159.800958][ C0] sd 0:0:1:0: [sg0] tag#7298 CDB[20]: 7f 11 97 1f 87 f1 38 83 3b 3a b8 42 96 52 89 75 [ 159.810534][ C0] sd 0:0:1:0: [sg0] tag#7298 CDB[30]: c3 e9 b7 14 58 66 bc 1e 74 c0 69 96 6c d2 a5 39 [ 159.820114][ C0] sd 0:0:1:0: [sg0] tag#7298 CDB[40]: 01 f7 48 55 1a 77 d5 f8 cf a3 8a 41 21 aa 97 64 [ 159.829730][ C0] sd 0:0:1:0: [sg0] tag#7298 CDB[50]: f7 c4 46 e0 ae 15 68 e7 78 41 d7 47 2d 72 01 cc [ 159.839304][ C0] sd 0:0:1:0: [sg0] tag#7298 CDB[60]: f0 a0 b3 11 4e c9 33 b6 2a f1 a7 48 90 76 1b 96 [ 159.848965][ C0] sd 0:0:1:0: [sg0] tag#7298 CDB[70]: 57 fb 60 9e 45 5b 9e 7d 48 5e 92 05 17 65 ba 78 [ 159.858595][ C0] sd 0:0:1:0: [sg0] tag#7298 CDB[80]: 44 7a 5d 5e b8 ea 3b 98 bb a0 ae 46 8d 5a 55 ca [ 159.868177][ C0] sd 0:0:1:0: [sg0] tag#7298 CDB[90]: 42 31 9a d8 c4 41 a7 58 bb 72 1b c4 95 7a 67 6f [ 159.877871][ C0] sd 0:0:1:0: [sg0] tag#7298 CDB[a0]: 10 05 dc 8e 56 b7 23 05 74 47 f9 3c ed 05 93 0a [ 159.887452][ C0] sd 0:0:1:0: [sg0] tag#7298 CDB[b0]: c7 88 e8 7a 3a 82 8f b7 31 f8 cc ef 5d 23 b9 05 [ 159.897008][ C0] sd 0:0:1:0: [sg0] tag#7298 CDB[c0]: 08 ef 70 2d a8 14 d5 50 b1 c8 30 f0 0d 3f 0a 79 [ 159.906578][ C0] sd 0:0:1:0: [sg0] tag#7298 CDB[d0]: d4 b0 cf c3 2f b4 85 6f 40 fe a3 81 62 06 73 30 [ 159.910645][T13797] FAULT_INJECTION: forcing a failure. [ 159.910645][T13797] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 159.916152][ C0] sd 0:0:1:0: [sg0] tag#7298 CDB[e0]: a4 48 48 a3 20 62 32 0b b0 5f dd 30 f9 78 f1 8f [ 159.929161][T13797] CPU: 1 PID: 13797 Comm: syz-executor.4 Not tainted 5.14.0-rc2-syzkaller #0 [ 159.938695][ C0] sd 0:0:1:0: [sg0] tag#7298 CDB[f0]: 9b e4 [ 159.947421][T13797] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 159.947432][T13797] Call Trace: [ 159.947439][T13797] dump_stack_lvl+0xb7/0x103 [ 159.971337][T13797] dump_stack+0x11/0x1a [ 159.975526][T13797] should_fail+0x23c/0x250 [ 159.979950][T13797] should_fail_usercopy+0x16/0x20 [ 159.984970][T13797] _copy_from_user+0x1c/0xd0 [ 159.989603][T13797] do_recvmmsg+0x250/0x9f0 [ 159.994014][T13797] ? fsnotify_perm+0x59/0x2e0 [ 159.998686][T13797] ? __fsnotify_parent+0x32f/0x430 [ 160.003883][T13797] ? set_next_entity+0x23a/0x3d0 [ 160.008881][T13797] ? __list_del_entry_valid+0x54/0xc0 [ 160.014257][T13797] ? __fget_light+0x21b/0x260 [ 160.019046][T13797] ? __cond_resched+0x11/0x40 [ 160.023724][T13797] __x64_sys_recvmmsg+0xcf/0x150 [ 160.028684][T13797] ? exit_to_user_mode_prepare+0x65/0x190 [ 160.034399][T13797] do_syscall_64+0x3d/0x90 [ 160.038900][T13797] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 160.044805][T13797] RIP: 0033:0x4665e9 [ 160.048689][T13797] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 160.068295][T13797] RSP: 002b:00007f4d4aab8188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 160.076733][T13797] RAX: ffffffffffffffda RBX: 000000000056c1a8 RCX: 00000000004665e9 [ 160.084721][T13797] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 160.092690][T13797] RBP: 00007f4d4aab81d0 R08: 0000000000000000 R09: 0000000000000000 [ 160.100930][T13797] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002 [ 160.108892][T13797] R13: 00007ffec27dc74f R14: 00007f4d4aab8300 R15: 0000000000022000 [ 160.120259][ C0] sd 0:0:1:0: [sg0] tag#7299 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 160.130676][ C0] sd 0:0:1:0: [sg0] tag#7299 CDB: Persistent reserve out, sa=0xd [ 160.138395][ C0] sd 0:0:1:0: [sg0] tag#7299 CDB[00]: 5f 8d c0 dd 3f 4d 55 32 c9 2d 34 31 f9 ae 31 9e [ 160.147991][ C0] sd 0:0:1:0: [sg0] tag#7299 CDB[10]: 5f 38 09 b1 63 40 eb fe 3e fa a4 2b a6 34 f1 84 [ 160.157541][ C0] sd 0:0:1:0: [sg0] tag#7299 CDB[20]: 7f 11 97 1f 87 f1 38 83 3b 3a b8 42 96 52 89 75 [ 160.167105][ C0] sd 0:0:1:0: [sg0] tag#7299 CDB[30]: c3 e9 b7 14 58 66 bc 1e 74 c0 69 96 6c d2 a5 39 [ 160.176671][ C0] sd 0:0:1:0: [sg0] tag#7299 CDB[40]: 01 f7 48 55 1a 77 d5 f8 cf a3 8a 41 21 aa 97 64 [ 160.186228][ C0] sd 0:0:1:0: [sg0] tag#7299 CDB[50]: f7 c4 46 e0 ae 15 68 e7 78 41 d7 47 2d 72 01 cc [ 160.195813][ C0] sd 0:0:1:0: [sg0] tag#7299 CDB[60]: f0 a0 b3 11 4e c9 33 b6 2a f1 a7 48 90 76 1b 96 [ 160.205361][ C0] sd 0:0:1:0: [sg0] tag#7299 CDB[70]: 57 fb 60 9e 45 5b 9e 7d 48 5e 92 05 17 65 ba 78 [ 160.214937][ C0] sd 0:0:1:0: [sg0] tag#7299 CDB[80]: 44 7a 5d 5e b8 ea 3b 98 bb a0 ae 46 8d 5a 55 ca [ 160.224486][ C0] sd 0:0:1:0: [sg0] tag#7299 CDB[90]: 42 31 9a d8 c4 41 a7 58 bb 72 1b c4 95 7a 67 6f [ 160.234042][ C0] sd 0:0:1:0: [sg0] tag#7299 CDB[a0]: 10 05 dc 8e 56 b7 23 05 74 47 f9 3c ed 05 93 0a [ 160.243611][ C0] sd 0:0:1:0: [sg0] tag#7299 CDB[b0]: c7 88 e8 7a 3a 82 8f b7 31 f8 cc ef 5d 23 b9 05 [ 160.253264][ C0] sd 0:0:1:0: [sg0] tag#7299 CDB[c0]: 08 ef 70 2d a8 14 d5 50 b1 c8 30 f0 0d 3f 0a 79 [ 160.262819][ C0] sd 0:0:1:0: [sg0] tag#7299 CDB[d0]: d4 b0 cf c3 2f b4 85 6f 40 fe a3 81 62 06 73 30 [ 160.272373][ C0] sd 0:0:1:0: [sg0] tag#7299 CDB[e0]: a4 48 48 a3 20 62 32 0b b0 5f dd 30 f9 78 f1 8f [ 160.281954][ C0] sd 0:0:1:0: [sg0] tag#7299 CDB[f0]: 9b e4 23:06:31 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) ioctl$SG_SET_RESERVED_SIZE(r1, 0x2275, &(0x7f0000000040)=0xfff) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:31 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x1000000000000052, 0xd9f, 0x1) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x0) 23:06:31 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:31 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff0000eaffffff00", 0x1e5) 23:06:31 executing program 3 (fault-call:6 fault-nth:0): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:31 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2284, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:31 executing program 4 (fault-call:7 fault-nth:15): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:31 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = openat$null(0xffffffffffffff9c, &(0x7f00000000c0), 0x400, 0x0) preadv(r2, &(0x7f0000000140)=[{&(0x7f0000000100)=""/61, 0x3d}], 0x1, 0x8, 0x590) r3 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r3, r0, 0x0) 23:06:31 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff0000efffffff00", 0x1e5) 23:06:31 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x41112, r1, 0xfffff000) preadv(r0, &(0x7f00000019c0)=[{&(0x7f00000000c0)=""/112, 0x70}, {&(0x7f0000000140)=""/248, 0xf8}, {&(0x7f0000000700)=""/177, 0xb1}, {&(0x7f0000000240)=""/8, 0x8}, {&(0x7f00000007c0)=""/101, 0x65}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000001840)=""/222, 0xde}, {&(0x7f0000001940)=""/96, 0x60}], 0x8, 0x7fffffff, 0x7) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x700, 0x0) ioctl$SCSI_IOCTL_SYNC(r0, 0x4) mount$9p_fd(0x0, &(0x7f0000000280)='./file0\x00', &(0x7f0000001a40), 0x201002, &(0x7f0000001a80)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {}, 0x2c, {[{@version_L}], [{@obj_user={'obj_user', 0x3d, '/dev/zero\x00'}}, {@context={'context', 0x3d, 'root'}}]}}) r3 = socket$packet(0x11, 0x3, 0x300) mmap(&(0x7f0000632000/0x2000)=nil, 0x2000, 0x3000002, 0x10, r3, 0x0) ioctl$GIO_FONTX(r2, 0x4b6b, &(0x7f0000000080)={0x1c9, 0x1c, &(0x7f0000000300)}) 23:06:31 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) syz_mount_image$msdos(&(0x7f00000000c0), &(0x7f0000000100)='./file0\x00', 0x4, 0xa, &(0x7f0000000800)=[{&(0x7f0000000140)="d8e61b106f9b77eca7dd3e0b8ab073cd88b60a3f07ac41a1418c1e208e49c874c0e49fbde20f34dbf374af2bb1030747ea045382797afad91a1e13f53254d6bbdf1e64cd84671e6bc1a0f6d95f1463ba9cf82429dfef90868fa4669517a38ef560974b8d91f115f0df7ccc1ba7c07561b2309ff3d2e2ec739258cbdf18a809a4c9eecb2f51cc0dbb69d614f7272a1e4f2960cb5d70df0884a5d6ac3a312019b32f4de2ef49a9bdf661901bcadc2884b47aaf6508f8b93c7f76376c51002aaededa98b9dcc5a0fd5636", 0xc9}, {&(0x7f0000000300)="4be098df29f39751c2e597c2b04fcd0242e513a80febc97633f9df5db25d50b82f9352aa337096da0cd298398b9caf2ee06fbc359f1d6a124d32b111a15fe18a4bbd716fc0f1d0d408934a8d87250fc20735d02ecfc5a851dd9ece757caa2acd9719fee32f2bbb5aaaf008aae64517cacdf1e831f90cf8017a6d9429db31621e9227976e69aa2055d8bd0ab0ad57b1c95c41e39c4b52038d8421abb4636695931794e34c0a74c13734e1", 0xaa, 0x81}, {&(0x7f0000000240)="20a608dcffac1ea4e2beb5469ff2ffb2bc5f28c8457c4ea9ffe28c868a150a2a99926667791b7f004fe1414652845f3f0cdc4dccc0613712d0523f8bc3f9cdf055faa70dafb1aea5bce2dcbcdefbbab64e8f3f5adfdd6006cbaf30d4b77feaf0f2884def15aeaf9ccdb9994d60c3a91a5830caa928", 0x75, 0x1}, {&(0x7f00000003c0)="0f6bbc1fdec432beabc3cda0e49fa58f21ab5ef115bebee38433198d49166c7bc50ad31a8594d482916a28a77d4cfc2e0ec55b05ccf41d27e6cd9ebb5ae8c95b6e6c980338fea9f5aae552a00117747f22d18139e5af465a3e7b826d53fa3b04ad380709e197c73316c994612024397f6680eb488cf3451aa34239fd2cda5678b751c55b3e50b4ace40d489849696de4fa89ef9aa1e1f61ebf", 0x99, 0xeba}, {&(0x7f0000000480)="247d9489e572280813464722823934098823ecf71d811517f27037a7e9cfecd0fdf13eac3d2d53b991c7a13ef399c1c337e71aa0087d8d", 0x37, 0x7fff}, {&(0x7f00000004c0)="1b9cfbc4b6f158", 0x7, 0xffffffffffff1ecb}, {&(0x7f0000000500)="95eb5aeacdeed34c7daea5986402edc10bb827cacfee3372874cfe1764755b5d3b692afcc3f74fc3793e48fd71feee6bf5cee3d5055848f3624d13a434c6b1d756b91a531b78757f8fe242b6d546cf432716064480fb0b13175dad189f0899120b7c8de471ee5030f7e43c58719fa4f8fd780c4f1de14ede46f9751cf8f8dab69f5a7da451ba71e32c6e509550b0f1ded1e4e819bee427fa7270769a81f11799fba4b48ef38eaf13365ecc2c82fb93a25c64b2e9ef0899b3034d55c536e244d36c47f023d560c40fa36366d67f5c8cb071", 0xd1}, {&(0x7f0000000600)="4f3bcc1c", 0x4, 0xfffffffffffffffc}, {&(0x7f0000000640)="94db14a7484569b967cb13e7c7beac604c73ab8a73857e834930e3e277125ff03aba7c57950942e3dac7390aed14ebaacc0f3426d0ddedb174b2ceae2242caf81c0f7af66c543c53120b830b0fe90fe7dea0b32dbe34f4978cb058ce4856d5af84362cff734d3e062c81b6c7850655e70db4c6d64339fd9ae7a0f0f74e2709cdf23e08a8ac26c969387eccccd1b63f5a85558df5bf18909a49865e62db82ac26dd67f8bb590c0349367e8cae3831c5a54bce076d113a34ac9b1ca50f05b8b186d419", 0xc2, 0x9}, {&(0x7f0000000740)="b9f0c08ea68a072ff5a5249359304e6568abd9fd9ae034574303d5b8b1855cce17790c0683118484f584fe8f0ae4511f0b4fd1ca155b0232a558df7c068d9278359673d5569b1d5bde45828c42cf585408ad0a0687d28397e1e4d148cb52b6a8c6c46dc8e93a680480019edacf3d4c6cfdb430286e29039c3d46dc10a0cabeaf66f07aeb50958489e4b0b8e90515008bfa2623138c77cd4cca213af985", 0x9d, 0x2}], 0x40, &(0x7f0000000900)={[{@fat=@codepage={'codepage', 0x3d, '850'}}, {@dots}, {@nodots}, {@dots}], [{@fscontext={'fscontext', 0x3d, 'sysadm_u'}}]}) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x0) 23:06:31 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x5, 0x500) r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$SG_IO(r1, 0x2285, &(0x7f0000000480)={0x53, 0xffffffffffffffff, 0x30, 0x7, @scatter={0x4, 0x0, &(0x7f0000000280)=[{&(0x7f0000000080)=""/10, 0xa}, {&(0x7f00000000c0)=""/95, 0x5f}, {&(0x7f0000000140)=""/35, 0x23}, {&(0x7f0000000180)=""/253, 0xfd}]}, &(0x7f0000000300)="e4bbf39fc40029a92c723a0832e38dfd7f388438a928c0243aca6d6e3e7ab764bc038ae9da9a0827b277d5784ffa6cb0", &(0x7f0000000340)=""/245, 0x4, 0x30, 0x1, &(0x7f0000000440)}) r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x14c00, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:31 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff0000f0ffffff00", 0x1e5) 23:06:31 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r3 = dup3(r2, r0, 0x0) r4 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r4, 0x2403, 0x81) getsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000140)={{{@in=@initdev, @in=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@private}, 0x0, @in6=@mcast2}}, &(0x7f0000000240)=0xe8) r6 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r6, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setresuid(0x0, r7, 0xee00) mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x1, &(0x7f0000000300)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r4, @ANYBLOB=',cache=loose,version=9p2000.u,mask=^MAY_WRITE,fsmagic=0x0000000000000005,subj_user=,fowner>', @ANYRESDEC=r5, @ANYBLOB=',audit,fowner>', @ANYRESDEC=r7, @ANYBLOB=',subj_tyue=-%{-,\x00']) [ 160.713152][T13853] FAULT_INJECTION: forcing a failure. [ 160.713152][T13853] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 160.713193][T13854] FAULT_INJECTION: forcing a failure. [ 160.713193][T13854] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 160.726367][T13853] CPU: 1 PID: 13853 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 160.726390][T13853] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 160.726401][T13853] Call Trace: [ 160.761640][T13853] dump_stack_lvl+0xb7/0x103 [ 160.766227][T13853] dump_stack+0x11/0x1a [ 160.770370][T13853] should_fail+0x23c/0x250 [ 160.774799][T13853] should_fail_usercopy+0x16/0x20 [ 160.780021][T13853] _copy_from_user+0x1c/0xd0 [ 160.784768][T13853] do_recvmmsg+0x250/0x9f0 [ 160.789279][T13853] ? fsnotify_perm+0x59/0x2e0 [ 160.793993][T13853] ? __fsnotify_parent+0x32f/0x430 [ 160.799181][T13853] ? get_pid_task+0x8b/0xc0 [ 160.803667][T13853] ? vfs_write+0x50c/0x770 [ 160.808087][T13853] ? __fget_light+0x21b/0x260 [ 160.812757][T13853] ? __cond_resched+0x11/0x40 [ 160.817422][T13853] __x64_sys_recvmmsg+0xcf/0x150 [ 160.822528][T13853] ? exit_to_user_mode_prepare+0x65/0x190 [ 160.828677][T13853] do_syscall_64+0x3d/0x90 [ 160.833116][T13853] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 160.839003][T13853] RIP: 0033:0x4665e9 [ 160.842908][T13853] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 160.862623][T13853] RSP: 002b:00007f1a49a72188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 160.871019][T13853] RAX: ffffffffffffffda RBX: 000000000056c1a8 RCX: 00000000004665e9 [ 160.878991][T13853] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 160.887032][T13853] RBP: 00007f1a49a721d0 R08: 0000000000000000 R09: 0000000000000000 [ 160.894988][T13853] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001 [ 160.903082][T13853] R13: 00007ffc07a1dbbf R14: 00007f1a49a72300 R15: 0000000000022000 [ 160.911041][T13854] CPU: 0 PID: 13854 Comm: syz-executor.4 Not tainted 5.14.0-rc2-syzkaller #0 [ 160.919894][T13854] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 160.929935][T13854] Call Trace: [ 160.933204][T13854] dump_stack_lvl+0xb7/0x103 [ 160.937972][T13854] dump_stack+0x11/0x1a [ 160.942129][T13854] should_fail+0x23c/0x250 [ 160.946567][T13854] should_fail_usercopy+0x16/0x20 [ 160.951596][T13854] _copy_from_user+0x1c/0xd0 [ 160.956181][T13854] do_recvmmsg+0x250/0x9f0 [ 160.960599][T13854] ? fsnotify_perm+0x59/0x2e0 [ 160.965275][T13854] ? __fsnotify_parent+0x32f/0x430 [ 160.970500][T13854] ? __fget_light+0x21b/0x260 [ 160.975172][T13854] ? __cond_resched+0x11/0x40 [ 160.979917][T13854] __x64_sys_recvmmsg+0xcf/0x150 [ 160.984926][T13854] ? exit_to_user_mode_prepare+0x65/0x190 [ 160.990636][T13854] do_syscall_64+0x3d/0x90 [ 160.995050][T13854] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 161.001167][T13854] RIP: 0033:0x4665e9 [ 161.005056][T13854] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 161.024919][T13854] RSP: 002b:00007f4d4aad9188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 161.033414][T13854] RAX: ffffffffffffffda RBX: 000000000056c0f0 RCX: 00000000004665e9 [ 161.041437][T13854] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 161.049397][T13854] RBP: 00007f4d4aad91d0 R08: 0000000000000000 R09: 0000000000000000 [ 161.057380][T13854] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002 [ 161.065372][T13854] R13: 00007ffec27dc74f R14: 00007f4d4aad9300 R15: 0000000000022000 23:06:32 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:32 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x21) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r2, 0x1, &(0x7f0000000040)={0xc4, 0x1, 0x5, "7e16c08174ce86992fc06815ce5efe3ee97b2a6efbc2317759f5ac064374ee3167e188504ed6fe7d87f0cc5f637bc1e662cd6f31a80e84560334d2727b0a9d6e4a6978ff8042c7157dc0729d18d483fd64cd762e00995dde951bc24c67e71ce4f5e54b054040a4a5d2ec7aeb00b7f61778df95eda606defef1088456850b69f6483c0b8cc5c840946613a8d7cacb81168f9387b5bf77d741b84a4dd02e616662712d4ca3db467e1157ea2d49363b9e4945f2abcf17e4d456aa2f3ee82d7adf4ddeda3daa"}) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:32 executing program 1: r0 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) openat(r1, &(0x7f00000000c0)='./file0\x00', 0x175800, 0x106) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x1800003, 0x12, 0xffffffffffffffff, 0x4000) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$FIGETBSZ(r0, 0x2, &(0x7f0000000000)) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, 0xffffffffffffffff, 0x0) 23:06:32 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff0000feffffff00", 0x1e5) 23:06:32 executing program 4 (fault-call:7 fault-nth:16): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:32 executing program 3 (fault-call:6 fault-nth:1): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:32 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f00000000c0)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x0) 23:06:32 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_IO(r1, 0x2285, &(0x7f0000000240)={0x0, 0xfffffffffffffffc, 0x2c, 0x3f, @buffer={0x0, 0x72, &(0x7f0000000040)=""/114}, &(0x7f00000000c0)="bfddef2fc5533b3156673828472085ff2d7daa5fac7b67e7c49f82d59c3e8cce2f62a2699e5fb87e00dac89e", &(0x7f0000000100)=""/195, 0x3, 0x0, 0x1, &(0x7f0000000200)}) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) mmap(&(0x7f0000634000/0x4000)=nil, 0x4000, 0xe, 0x80010, r1, 0x5278d000) 23:06:32 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) 23:06:32 executing program 0: fgetxattr(0xffffffffffffffff, &(0x7f0000000040)=@random={'btrfs.', '/!.@\x00'}, &(0x7f0000000080)=""/169, 0xa9) r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2284, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:32 executing program 1: r0 = dup(0xffffffffffffffff) sendmsg$IPCTNL_MSG_EXP_GET_STATS_CPU(r0, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x14, 0x3, 0x2, 0x801, 0x0, 0x0, {0x0, 0x0, 0x8}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x40080}, 0x4004045) r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r3 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11014, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r3, r1, 0x0) 23:06:32 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) [ 161.585386][T13904] FAULT_INJECTION: forcing a failure. [ 161.585386][T13904] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 161.598901][T13904] CPU: 1 PID: 13904 Comm: syz-executor.4 Not tainted 5.14.0-rc2-syzkaller #0 [ 161.608107][T13904] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 161.618151][T13904] Call Trace: [ 161.621420][T13904] dump_stack_lvl+0xb7/0x103 [ 161.626016][T13904] dump_stack+0x11/0x1a [ 161.630170][T13904] should_fail+0x23c/0x250 [ 161.634591][T13904] should_fail_usercopy+0x16/0x20 [ 161.639632][T13904] _copy_from_user+0x1c/0xd0 [ 161.644227][T13904] do_recvmmsg+0x250/0x9f0 [ 161.644465][T13905] FAULT_INJECTION: forcing a failure. [ 161.644465][T13905] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 161.648661][T13904] ? fsnotify_perm+0x59/0x2e0 [ 161.666331][T13904] ? __fsnotify_parent+0x32f/0x430 [ 161.671449][T13904] ? __fget_light+0x21b/0x260 [ 161.676112][T13904] ? __cond_resched+0x11/0x40 [ 161.680827][T13904] __x64_sys_recvmmsg+0xcf/0x150 [ 161.685753][T13904] ? exit_to_user_mode_prepare+0x65/0x190 [ 161.691459][T13904] do_syscall_64+0x3d/0x90 [ 161.695866][T13904] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 161.701745][T13904] RIP: 0033:0x4665e9 [ 161.705622][T13904] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 161.725303][T13904] RSP: 002b:00007f4d4aad9188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 161.734133][T13904] RAX: ffffffffffffffda RBX: 000000000056c0f0 RCX: 00000000004665e9 [ 161.742087][T13904] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 161.750044][T13904] RBP: 00007f4d4aad91d0 R08: 0000000000000000 R09: 0000000000000000 [ 161.757999][T13904] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002 [ 161.765953][T13904] R13: 00007ffec27dc74f R14: 00007f4d4aad9300 R15: 0000000000022000 [ 161.773913][T13905] CPU: 0 PID: 13905 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 161.782713][T13905] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 161.792752][T13905] Call Trace: [ 161.796029][T13905] dump_stack_lvl+0xb7/0x103 [ 161.800612][T13905] dump_stack+0x11/0x1a [ 161.804796][T13905] should_fail+0x23c/0x250 [ 161.809227][T13905] should_fail_usercopy+0x16/0x20 [ 161.814244][T13905] _copy_from_user+0x1c/0xd0 [ 161.818857][T13905] do_recvmmsg+0x250/0x9f0 [ 161.823269][T13905] ? fsnotify_perm+0x59/0x2e0 [ 161.827947][T13905] ? __fsnotify_parent+0x32f/0x430 [ 161.833067][T13905] ? __fget_light+0x21b/0x260 [ 161.837730][T13905] ? __cond_resched+0x11/0x40 [ 161.842432][T13905] __x64_sys_recvmmsg+0xcf/0x150 [ 161.847366][T13905] ? exit_to_user_mode_prepare+0x65/0x190 [ 161.853259][T13905] do_syscall_64+0x3d/0x90 [ 161.857690][T13905] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 161.863591][T13905] RIP: 0033:0x4665e9 [ 161.867495][T13905] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 161.887406][T13905] RSP: 002b:00007f1a49a72188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 161.895824][T13905] RAX: ffffffffffffffda RBX: 000000000056c1a8 RCX: 00000000004665e9 [ 161.903798][T13905] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 161.911916][T13905] RBP: 00007f1a49a721d0 R08: 0000000000000000 R09: 0000000000000000 [ 161.920094][T13905] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001 [ 161.928053][T13905] R13: 00007ffc07a1dbbf R14: 00007f1a49a72300 R15: 0000000000022000 23:06:33 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:33 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r3 = dup3(r2, r0, 0x0) getdents(r3, &(0x7f00000000c0)=""/28, 0x1c) r4 = socket$inet_icmp(0x2, 0x2, 0x1) pipe2(&(0x7f0000000100)={0xffffffffffffffff}, 0x4000) r6 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000180), 0x101000, 0x0) sendmsg$NFT_MSG_GETSET(r6, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB="300068080a0a050000000000000000000100000a080006406dd72d7a3406389a636e6e6c696d697400"/57], 0x30}, 0x1, 0x0, 0x0, 0x4}, 0x20040080) ioctl$F2FS_IOC_MOVE_RANGE(r4, 0xc020f509, &(0x7f0000000140)={r5, 0x4b3, 0xfffffffffffffffd, 0x10000}) 23:06:33 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x181000, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:33 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) 23:06:33 executing program 4 (fault-call:7 fault-nth:17): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:33 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_IO(r2, 0x2285, &(0x7f00000001c0)={0x53, 0xffffffffffffffff, 0x82, 0x33, @buffer={0x0, 0x17, &(0x7f0000000040)=""/23}, &(0x7f0000000080)="b2bedee3051bd341b48b7bb7037972023abc4e6d93f1bb3a5a7b9ee2f7e0aed40d4981dcc436a4a98ade10a4cd8173076a748d18c305fdc6ffb6c655b3fcb2a01877b1382a4c4f94cce7970ee399a24d345e7bc594c88044ba19de69fad1399eee1b1764238df4f7381c39bfd87cc4450833eac0597b7aee903a9888f0855d509236", &(0x7f0000000140)=""/9, 0x0, 0x12, 0xffffffffffffffff, &(0x7f0000000180)}) 23:06:33 executing program 3 (fault-call:6 fault-nth:2): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:33 executing program 1: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f00000000c0)={0x3f, 0x1, 0xfffffffffffffffa, 0xffffffff, 0x0, 0x3}) r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r3 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r3, r1, 0x0) 23:06:33 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) 23:06:33 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r3 = syz_open_dev$vcsn(&(0x7f00000000c0), 0x200, 0x4000) r4 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1800003, 0x12, r1, 0x0) preadv(r4, &(0x7f0000000280), 0x18, 0xd9f, 0x0) renameat2(r3, &(0x7f0000000100)='./file0\x00', r4, &(0x7f0000000140)='./file0\x00', 0x1) dup3(r2, r0, 0x0) ftruncate(r3, 0x9b5f) 23:06:33 executing program 0: syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r0 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) setxattr$trusted_overlay_redirect(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x8, 0x1) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(0xffffffffffffffff, 0x5386, 0x20000000) 23:06:33 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r3 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r3, r0, 0x0) [ 162.470566][T13954] FAULT_INJECTION: forcing a failure. [ 162.470566][T13954] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 162.483664][T13954] CPU: 0 PID: 13954 Comm: syz-executor.4 Not tainted 5.14.0-rc2-syzkaller #0 [ 162.492424][T13954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 162.502468][T13954] Call Trace: [ 162.505869][T13954] dump_stack_lvl+0xb7/0x103 [ 162.510575][T13954] dump_stack+0x11/0x1a [ 162.514814][T13954] should_fail+0x23c/0x250 [ 162.519334][T13954] should_fail_usercopy+0x16/0x20 [ 162.524360][T13954] _copy_from_user+0x1c/0xd0 [ 162.528941][T13954] do_recvmmsg+0x250/0x9f0 [ 162.530265][T13955] FAULT_INJECTION: forcing a failure. [ 162.530265][T13955] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 162.533386][T13954] ? fsnotify_perm+0x59/0x2e0 [ 162.551171][T13954] ? __fsnotify_parent+0x32f/0x430 [ 162.556276][T13954] ? set_next_entity+0x23a/0x3d0 [ 162.561240][T13954] ? __list_del_entry_valid+0x54/0xc0 [ 162.566963][T13954] ? __fget_light+0x21b/0x260 [ 162.571626][T13954] ? __cond_resched+0x11/0x40 [ 162.576340][T13954] __x64_sys_recvmmsg+0xcf/0x150 [ 162.581309][T13954] ? exit_to_user_mode_prepare+0x65/0x190 [ 162.587026][T13954] do_syscall_64+0x3d/0x90 [ 162.591518][T13954] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 162.597492][T13954] RIP: 0033:0x4665e9 [ 162.601393][T13954] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 162.621511][T13954] RSP: 002b:00007f4d4aad9188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 162.630265][T13954] RAX: ffffffffffffffda RBX: 000000000056c0f0 RCX: 00000000004665e9 [ 162.638343][T13954] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 162.646304][T13954] RBP: 00007f4d4aad91d0 R08: 0000000000000000 R09: 0000000000000000 [ 162.654272][T13954] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002 [ 162.662323][T13954] R13: 00007ffec27dc74f R14: 00007f4d4aad9300 R15: 0000000000022000 [ 162.670285][T13955] CPU: 1 PID: 13955 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 162.679169][T13955] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 162.689395][T13955] Call Trace: [ 162.692676][T13955] dump_stack_lvl+0xb7/0x103 [ 162.697323][T13955] dump_stack+0x11/0x1a [ 162.701516][T13955] should_fail+0x23c/0x250 [ 162.705953][T13955] should_fail_usercopy+0x16/0x20 [ 162.711152][T13955] _copy_from_user+0x1c/0xd0 [ 162.715836][T13955] do_recvmmsg+0x250/0x9f0 [ 162.720335][T13955] ? fsnotify_perm+0x59/0x2e0 [ 162.725026][T13955] ? __fsnotify_parent+0x32f/0x430 [ 162.730133][T13955] ? __fget_light+0x21b/0x260 [ 162.734817][T13955] ? __cond_resched+0x11/0x40 [ 162.739614][T13955] __x64_sys_recvmmsg+0xcf/0x150 [ 162.744646][T13955] ? exit_to_user_mode_prepare+0x65/0x190 [ 162.750448][T13955] do_syscall_64+0x3d/0x90 [ 162.754901][T13955] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 162.760956][T13955] RIP: 0033:0x4665e9 [ 162.764898][T13955] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 162.784598][T13955] RSP: 002b:00007f1a49a72188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 162.793192][T13955] RAX: ffffffffffffffda RBX: 000000000056c1a8 RCX: 00000000004665e9 [ 162.801208][T13955] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 162.809313][T13955] RBP: 00007f1a49a721d0 R08: 0000000000000000 R09: 0000000000000000 [ 162.817288][T13955] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001 [ 162.825265][T13955] R13: 00007ffc07a1dbbf R14: 00007f1a49a72300 R15: 0000000000022000 23:06:34 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:34 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) 23:06:34 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x380000f, 0x2010, r1, 0xee0af000) preadv(r1, &(0x7f0000000040), 0x0, 0x7fffffff, 0x7) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) ioctl$FIGETBSZ(r0, 0x2, &(0x7f0000000040)) 23:06:34 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) ioctl$SG_NEXT_CMD_LEN(r0, 0x2283, &(0x7f00000000c0)=0xb0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x0) 23:06:34 executing program 4 (fault-call:7 fault-nth:18): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:34 executing program 3 (fault-call:6 fault-nth:3): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:34 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) 23:06:34 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x400101, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:34 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) 23:06:34 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_NEXT_CMD_LEN(r1, 0x2283, &(0x7f0000000180)=0x800072) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r3, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r4 = syz_io_uring_complete(0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r4, 0x1, &(0x7f0000000040)=ANY=[]) 23:06:34 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) 23:06:34 executing program 1: r0 = accept4(0xffffffffffffffff, 0x0, &(0x7f00000000c0), 0x80800) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$batadv(&(0x7f00000001c0), 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000000)) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000040)={0x1c, r2, 0x85b35f7921e1632d, 0x0, 0x0, {0x6}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0xc7}]}, 0x1c}}, 0x0) sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x24, r2, 0x400, 0x70bd2c, 0x25dfdbfe, {}, [@BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x20}, 0x805) r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r4, 0x0) preadv(r4, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r5 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r5, r3, 0x0) [ 163.352236][T14006] FAULT_INJECTION: forcing a failure. [ 163.352236][T14006] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 163.365526][T14006] CPU: 1 PID: 14006 Comm: syz-executor.4 Not tainted 5.14.0-rc2-syzkaller #0 [ 163.374375][T14006] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 163.384515][T14006] Call Trace: [ 163.387802][T14006] dump_stack_lvl+0xb7/0x103 [ 163.392428][T14006] dump_stack+0x11/0x1a [ 163.396701][T14006] should_fail+0x23c/0x250 [ 163.401208][T14006] should_fail_usercopy+0x16/0x20 [ 163.406238][T14006] _copy_from_user+0x1c/0xd0 [ 163.410193][T14008] FAULT_INJECTION: forcing a failure. [ 163.410193][T14008] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 163.410826][T14006] do_recvmmsg+0x250/0x9f0 [ 163.428715][T14006] ? fsnotify_perm+0x59/0x2e0 [ 163.433455][T14006] ? __fsnotify_parent+0x32f/0x430 [ 163.438557][T14006] ? __fget_light+0x21b/0x260 [ 163.443397][T14006] ? __cond_resched+0x11/0x40 [ 163.448412][T14006] __x64_sys_recvmmsg+0xcf/0x150 [ 163.453358][T14006] ? exit_to_user_mode_prepare+0x65/0x190 [ 163.459066][T14006] do_syscall_64+0x3d/0x90 [ 163.463495][T14006] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 163.469484][T14006] RIP: 0033:0x4665e9 [ 163.473519][T14006] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 163.493341][T14006] RSP: 002b:00007f4d4aad9188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 163.501754][T14006] RAX: ffffffffffffffda RBX: 000000000056c0f0 RCX: 00000000004665e9 [ 163.509720][T14006] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 163.517673][T14006] RBP: 00007f4d4aad91d0 R08: 0000000000000000 R09: 0000000000000000 [ 163.525996][T14006] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002 [ 163.533950][T14006] R13: 00007ffec27dc74f R14: 00007f4d4aad9300 R15: 0000000000022000 [ 163.541909][T14008] CPU: 0 PID: 14008 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 163.550673][T14008] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 163.560755][T14008] Call Trace: [ 163.564033][T14008] dump_stack_lvl+0xb7/0x103 [ 163.568624][T14008] dump_stack+0x11/0x1a [ 163.572796][T14008] should_fail+0x23c/0x250 [ 163.577349][T14008] should_fail_usercopy+0x16/0x20 [ 163.582380][T14008] _copy_from_user+0x1c/0xd0 [ 163.587053][T14008] do_recvmmsg+0x250/0x9f0 [ 163.591503][T14008] ? fsnotify_perm+0x59/0x2e0 [ 163.596233][T14008] ? __fsnotify_parent+0x32f/0x430 [ 163.601336][T14008] ? __fget_light+0x21b/0x260 [ 163.606005][T14008] ? __cond_resched+0x11/0x40 [ 163.610745][T14008] __x64_sys_recvmmsg+0xcf/0x150 [ 163.615674][T14008] ? exit_to_user_mode_prepare+0x65/0x190 [ 163.621482][T14008] do_syscall_64+0x3d/0x90 [ 163.625958][T14008] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 163.631854][T14008] RIP: 0033:0x4665e9 [ 163.635746][T14008] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 163.655354][T14008] RSP: 002b:00007f1a49a72188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 163.663780][T14008] RAX: ffffffffffffffda RBX: 000000000056c1a8 RCX: 00000000004665e9 [ 163.671827][T14008] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 163.679791][T14008] RBP: 00007f1a49a721d0 R08: 0000000000000000 R09: 0000000000000000 [ 163.687822][T14008] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001 [ 163.696084][T14008] R13: 00007ffc07a1dbbf R14: 00007f1a49a72300 R15: 0000000000022000 23:06:35 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:35 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) writev(r0, &(0x7f0000000240)=[{&(0x7f0000000040)="7b6b248c08a758ede2d747e76d61d89a995d7bacc3061377b04c798f761796340b46538ac53a675c207375027afcee06dda5d0e050eea848fb34d8b53b57256ac3b51b3b83c7db0bd99da49da7573c313b2506270fd1b11ccf0285690a74dd373aefb7078077583a520c78e3fc91f90360de7dbc014ba8adf96b038887e86a917f930b82604731aefa29ae0820631f008b5ffc3973d768e000bf55200e78dad2c91352134be76b", 0xa7}, {&(0x7f0000000100)="61fb9d07590d5d4500d98b3be5e8a9fdbda960f42e681bcace7e18", 0x1b}, {&(0x7f0000000140)="4376657c87b205dc4c0adc625c8aa2516a92b9e37ef027730bca3eaff870b54f83f2424658149194470cda2ebf7e6eb43071506aab9ff0b2f67e61f80a044e76659c5141bb6ec82e275c1ec2ed7f2c", 0x4f}, {&(0x7f00000001c0)="90bd0758e18ac0ba5b4ac7c1fb9421da44e8526d391444e4cbf70db2759ae7d1d6a2121efdf2f1ba6b1ace27f3a3662b33984fd2a8f801f4a3322c3e3efc85851cb55dc2071c9a8aac6da86ee53e1f5bcb697cad6ae88e7fc15e28a8f2b8f5ce0157a5a064c3e597f3b979", 0x6b}], 0x4) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) r3 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r3, 0x2403, 0x81) splice(r2, &(0x7f0000000280)=0x1, r3, &(0x7f0000000300)=0x94ab, 0x2, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:35 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) 23:06:35 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) vmsplice(r2, &(0x7f0000002300)=[{&(0x7f0000000300)="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", 0x1000}, {&(0x7f00000000c0)="5a96d2426bf9274293289edab709492974b0808adf6a186f0efdc17a680305deed59c1e4914addc60163940a109c087d0a499f01722e56cbc0a1e964c61e999bb1e923f404a44b8560fce4ab8d2c2d515b547d70928cc4c119dc33eeec8b83bc07e6c0c73c996ade95e91b6263543cb42db962a7ad098487498e28ed44e91fe9fb0f2de5cb457b8bea8c6f111885f2da7efc827f759405cfcbb31ca9bb", 0x9d}, {&(0x7f0000000180)="ccf2e9bfe5c73604ff1f75e576ac9e42b7f81190baec08e537da32bb2cd0a0aeb3010f3fa3cb2134bd5ed48d", 0x2c}, {&(0x7f00000001c0)}, {&(0x7f0000000200)="2411f7c14379e4f879d4658b4de42f6f8d5a3c339025de723388a252dae1a00d76a4d9278e97975f9ef10dad715e9574e1f0638f299b4af4f9608c43c6db420e14ecbaba7af37867c214aaf324dd0755c74c2b9040c9", 0x56}, {&(0x7f0000001300)="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", 0x1000}], 0x6, 0x1) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r3 = perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r3, r0, 0x0) 23:06:35 executing program 4 (fault-call:7 fault-nth:19): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:35 executing program 3 (fault-call:6 fault-nth:4): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:35 executing program 0: ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000100)={0x0, {0x2, 0x4e21, @remote}, {0x2, 0x4e22, @empty}, {0x2, 0x4e21, @empty}, 0x1, 0x0, 0x0, 0x0, 0x4a2, &(0x7f00000000c0)='veth1\x00', 0x6, 0x100, 0x3ff}) r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) ioctl$BTRFS_IOC_ADD_DEV(r2, 0x5000940a, &(0x7f0000000300)={{r1}, "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"}) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:35 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) 23:06:35 executing program 1: get_robust_list(0xffffffffffffffff, &(0x7f0000001540)=&(0x7f0000001500)={0x0, 0x0, &(0x7f00000014c0)={&(0x7f0000001480)}}, &(0x7f0000001580)=0x18) r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000001400)=[{&(0x7f00000000c0)=""/152, 0x98}, {&(0x7f0000000180)=""/167, 0xa7}, {&(0x7f0000000240)=""/25, 0x19}, {&(0x7f0000000280)=""/28, 0x1c}, {&(0x7f0000000300)=""/4096, 0x1000}, {&(0x7f0000001300)=""/236, 0xec}], 0x6, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}, 0x0, 0x2}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x0) 23:06:35 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) 23:06:35 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) preadv(r2, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/230, 0xe6}], 0x1, 0x1, 0xeb52) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r3, 0x0) perf_event_open(&(0x7f00000009c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mmap(&(0x7f00000d5000/0x1000)=nil, 0x1000, 0x0, 0x2010, r1, 0x24c6a000) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r4 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, r1, 0x0, 0xffffffffffffffff, 0x0) dup3(r4, r0, 0x0) 23:06:35 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x4c00, 0xa) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) [ 164.230324][T14066] FAULT_INJECTION: forcing a failure. [ 164.230324][T14066] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 164.243491][T14066] CPU: 0 PID: 14066 Comm: syz-executor.4 Not tainted 5.14.0-rc2-syzkaller #0 [ 164.252275][T14066] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 164.262381][T14066] Call Trace: [ 164.265686][T14066] dump_stack_lvl+0xb7/0x103 [ 164.270274][T14066] dump_stack+0x11/0x1a [ 164.274420][T14066] should_fail+0x23c/0x250 [ 164.278832][T14066] should_fail_usercopy+0x16/0x20 [ 164.283849][T14066] _copy_from_user+0x1c/0xd0 [ 164.288475][T14066] do_recvmmsg+0x250/0x9f0 [ 164.292891][T14066] ? fsnotify_perm+0x59/0x2e0 [ 164.297685][T14066] ? __fsnotify_parent+0x32f/0x430 [ 164.302787][T14066] ? __fget_light+0x21b/0x260 [ 164.307451][T14066] ? __cond_resched+0x11/0x40 [ 164.312134][T14066] __x64_sys_recvmmsg+0xcf/0x150 [ 164.317120][T14066] ? exit_to_user_mode_prepare+0x65/0x190 [ 164.322849][T14066] do_syscall_64+0x3d/0x90 [ 164.327258][T14066] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 164.333180][T14066] RIP: 0033:0x4665e9 [ 164.337057][T14066] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 164.356655][T14066] RSP: 002b:00007f4d4aad9188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 164.365083][T14066] RAX: ffffffffffffffda RBX: 000000000056c0f0 RCX: 00000000004665e9 [ 164.373046][T14066] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 164.381235][T14066] RBP: 00007f4d4aad91d0 R08: 0000000000000000 R09: 0000000000000000 [ 164.389590][T14066] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002 [ 164.397637][T14066] R13: 00007ffec27dc74f R14: 00007f4d4aad9300 R15: 0000000000022000 [ 164.405925][T14068] FAULT_INJECTION: forcing a failure. [ 164.405925][T14068] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 164.419033][T14068] CPU: 0 PID: 14068 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 164.427866][T14068] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 164.437904][T14068] Call Trace: [ 164.441177][T14068] dump_stack_lvl+0xb7/0x103 [ 164.445817][T14068] dump_stack+0x11/0x1a [ 164.449961][T14068] should_fail+0x23c/0x250 [ 164.454380][T14068] should_fail_usercopy+0x16/0x20 [ 164.459403][T14068] _copy_from_user+0x1c/0xd0 [ 164.463989][T14068] do_recvmmsg+0x250/0x9f0 [ 164.468399][T14068] ? fsnotify_perm+0x59/0x2e0 [ 164.473113][T14068] ? __fsnotify_parent+0x32f/0x430 [ 164.478282][T14068] ? __fget_light+0x21b/0x260 [ 164.482999][T14068] ? __cond_resched+0x11/0x40 [ 164.487733][T14068] __x64_sys_recvmmsg+0xcf/0x150 [ 164.492661][T14068] ? exit_to_user_mode_prepare+0x65/0x190 [ 164.498394][T14068] do_syscall_64+0x3d/0x90 [ 164.502884][T14068] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 164.508782][T14068] RIP: 0033:0x4665e9 [ 164.512706][T14068] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 164.532322][T14068] RSP: 002b:00007f1a49a72188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 164.540886][T14068] RAX: ffffffffffffffda RBX: 000000000056c1a8 RCX: 00000000004665e9 [ 164.548880][T14068] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 164.556899][T14068] RBP: 00007f1a49a721d0 R08: 0000000000000000 R09: 0000000000000000 [ 164.564862][T14068] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001 [ 164.572846][T14068] R13: 00007ffc07a1dbbf R14: 00007f1a49a72300 R15: 0000000000022000 23:06:36 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640), 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:36 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff000000000000ff", 0x1e5) 23:06:36 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040), 0xfffffffffffffffd, 0x480200) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x400000, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setresuid(0x0, r3, 0xee00) lchown(&(0x7f0000000000)='./file0\x00', r3, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:36 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f0000001640)={0x53, 0xffffffffffffffff, 0x91, 0x6, @scatter={0x1, 0x0, &(0x7f0000000500)=[{&(0x7f0000000440)=""/137, 0x89}]}, &(0x7f0000000540)="bf3c6b3983802c7e5d21e00c3a28eed32c5452a7579bfc78954049bc910b082ca88d57c7836c28ee5be6a07c01d7c8437656aa3ccc617c4a7d01b6fdb1d4a3f8be540b3c01ef7ce60b0dd9ed6366282df7298e95459a48b6fa67cab25139266c82d89dcdf6a41a0c942ed34c98b269d3a4241ac5fb74f9bf52a3df63755d65b036574c8a7c94400cc3d001a2ae892d3412", &(0x7f0000000600)=""/4096, 0x6, 0x10000, 0x1, &(0x7f0000001600)}) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r3 = dup3(r2, r0, 0x0) r4 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$FS_IOC_FIEMAP(r4, 0xc020660b, &(0x7f0000000380)={0x7, 0xecc, 0x3, 0xff, 0x2, [{0x9, 0x7, 0x33e, '\x00', 0x1}, {0x89d, 0x6, 0x8}]}) ioctl$PERF_EVENT_IOC_RESET(r4, 0x2403, 0x81) statx(r3, &(0x7f0000000100)='./file0\x00', 0x6000, 0x80, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0, 0x0}, &(0x7f0000000280)=0xc) fsetxattr$system_posix_acl(r4, &(0x7f00000000c0)='system.posix_acl_access\x00', &(0x7f0000000300)={{}, {0x1, 0x4}, [{0x2, 0x4, 0xee00}, {0x2, 0x47a3f9dfee752e48, 0xee00}, {0x2, 0x1, 0xee00}], {0x4, 0x4}, [{0x8, 0x0, r5}, {0x8, 0x2, r6}], {}, {0x20, 0x2}}, 0x4c, 0x2) [ 164.937343][ C0] sd 0:0:1:0: [sg0] tag#7300 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 164.947746][ C0] sd 0:0:1:0: [sg0] tag#7300 CDB: Volume set (out), Send DVD structure [ 164.956022][ C0] sd 0:0:1:0: [sg0] tag#7300 CDB[00]: bf 3c 6b 39 83 80 2c 7e 5d 21 e0 0c 3a 28 ee d3 [ 164.965584][ C0] sd 0:0:1:0: [sg0] tag#7300 CDB[10]: 2c 54 52 a7 57 9b fc 78 95 40 49 bc 91 0b 08 2c [ 164.975142][ C0] sd 0:0:1:0: [sg0] tag#7300 CDB[20]: a8 8d 57 c7 83 6c 28 ee 5b e6 a0 7c 01 d7 c8 43 23:06:36 executing program 4 (fault-call:7 fault-nth:20): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:36 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff000000000000ff", 0x1e5) 23:06:36 executing program 3 (fault-call:6 fault-nth:5): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:36 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) syz_open_dev$sg(&(0x7f0000000100), 0x2708, 0x204000) r2 = openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x280000, 0x0) r3 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r4 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), r2) sendmsg$TIPC_CMD_SET_NETID(r2, &(0x7f0000000300)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x24, r4, 0x8, 0x70bd29, 0x25dfdbfe, {{}, {}, {0x8, 0x2, 0x1}}, [""]}, 0x24}}, 0x20000001) ioctl$PERF_EVENT_IOC_RESET(r3, 0x2403, 0x81) r5 = perf_event_open$cgroup(&(0x7f0000000140)={0x5, 0x80, 0x0, 0x20, 0x0, 0x7, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x1, @perf_bp={0x0, 0x1}, 0x100a0, 0xc, 0xfa, 0x0, 0x7, 0x0, 0xfffe, 0x0, 0x0, 0x0, 0x4}, r2, 0x1, r3, 0x1) ioctl$PERF_EVENT_IOC_RESET(r5, 0x2403, 0x81) splice(r5, &(0x7f0000000040)=0x479d, r0, &(0x7f0000000080)=0x6, 0x3f, 0xa) [ 164.984843][ C0] sd 0:0:1:0: [sg0] tag#7300 CDB[30]: 76 56 aa 3c cc 61 7c 4a 7d 01 b6 fd b1 d4 a3 f8 [ 164.994603][ C0] sd 0:0:1:0: [sg0] tag#7300 CDB[40]: be 54 0b 3c 01 ef 7c e6 0b 0d d9 ed 63 66 28 2d [ 165.004172][ C0] sd 0:0:1:0: [sg0] tag#7300 CDB[50]: f7 29 8e 95 45 9a 48 b6 fa 67 ca b2 51 39 26 6c [ 165.013742][ C0] sd 0:0:1:0: [sg0] tag#7300 CDB[60]: 82 d8 9d cd f6 a4 1a 0c 94 2e d3 4c 98 b2 69 d3 [ 165.023410][ C0] sd 0:0:1:0: [sg0] tag#7300 CDB[70]: a4 24 1a c5 fb 74 f9 bf 52 a3 df 63 75 5d 65 b0 [ 165.033120][ C0] sd 0:0:1:0: [sg0] tag#7300 CDB[80]: 36 57 4c 8a 7c 94 40 0c c3 d0 01 a2 ae 89 2d 34 [ 165.042699][ C0] sd 0:0:1:0: [sg0] tag#7300 CDB[90]: 12 [ 165.049139][ C1] sd 0:0:1:0: [sg0] tag#7301 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 165.059519][ C1] sd 0:0:1:0: [sg0] tag#7301 CDB: Volume set (out), Send DVD structure [ 165.067799][ C1] sd 0:0:1:0: [sg0] tag#7301 CDB[00]: bf 3c 6b 39 83 80 2c 7e 5d 21 e0 0c 3a 28 ee d3 [ 165.077358][ C1] sd 0:0:1:0: [sg0] tag#7301 CDB[10]: 2c 54 52 a7 57 9b fc 78 95 40 49 bc 91 0b 08 2c [ 165.086938][ C1] sd 0:0:1:0: [sg0] tag#7301 CDB[20]: a8 8d 57 c7 83 6c 28 ee 5b e6 a0 7c 01 d7 c8 43 [ 165.096679][ C1] sd 0:0:1:0: [sg0] tag#7301 CDB[30]: 76 56 aa 3c cc 61 7c 4a 7d 01 b6 fd b1 d4 a3 f8 [ 165.106262][ C1] sd 0:0:1:0: [sg0] tag#7301 CDB[40]: be 54 0b 3c 01 ef 7c e6 0b 0d d9 ed 63 66 28 2d [ 165.115826][ C1] sd 0:0:1:0: [sg0] tag#7301 CDB[50]: f7 29 8e 95 45 9a 48 b6 fa 67 ca b2 51 39 26 6c [ 165.125394][ C1] sd 0:0:1:0: [sg0] tag#7301 CDB[60]: 82 d8 9d cd f6 a4 1a 0c 94 2e d3 4c 98 b2 69 d3 23:06:36 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) mmap(&(0x7f0000763000/0x4000)=nil, 0x4000, 0x1, 0x50, r2, 0xe46b6000) 23:06:36 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) 23:06:36 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000a80)={0x53, 0xfffffffffffffffc, 0xe5, 0x1, @scatter={0x7, 0x0, &(0x7f0000000880)=[{&(0x7f0000000440)=""/230, 0xe6}, {&(0x7f0000000280)=""/45, 0x2d}, {&(0x7f0000000540)=""/235, 0xeb}, {&(0x7f0000000640)=""/192, 0xc0}, {&(0x7f0000000700)=""/238, 0xee}, {&(0x7f0000000800)=""/51, 0x33}, {&(0x7f0000000840)=""/7, 0x7}]}, &(0x7f0000000900)="27482545b85575f41141c97aadf200ad4c9e8304bdddf77401d3947edaa2bca92ac1a5c0371ae024310e6e40b46e3cd0e264b2c9b6091aacd49bb97c6894b0e579d02e8e99fb5cfd6cabcd0b18445e34db278539136787a2ae043aa93bafe2021842180c5e2eeecc21b6eea93c86d7a8e8c292c01ce31e4884331dca8d2b94d0109f065729242b22c0decd1cc25b2911cc03c168ab4855ae42b08de03a664ee6a63ac3bc15dca073595e0a3608c1d4d0108ace76149c58ab784ec064f52449442139498b72fce6b6b9b7d13adf2139e818e4ed963bd320ddc9f0753db18c124f4f05d68666", &(0x7f0000000a00)=""/21, 0x8a56, 0x10011, 0x1, &(0x7f0000000a40)}) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20006, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}, 0x0, 0x0, 0x200}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r3 = creat(&(0x7f00000000c0)='./file0\x00', 0x2) ioctl$SG_IO(r3, 0x2285, &(0x7f00000003c0)={0x0, 0xfffffffffffffffb, 0xaa, 0x81, @buffer={0x0, 0x49, &(0x7f0000000100)=""/73}, &(0x7f0000000180)="9c598379a615f6a3cd2464988ce44fde2f4776a992929b5d19933c88c3c2f1310b50c904e4a9567aff40362256bdd6d561a4010f46b8715cae242e52211aa639d1d98bad2915995e6adc47cf4db3f25f5eb9757212a1b299de16288527869963f2ca27113cbd5302a5fce34ab3b0d1892eaa2b9e8460305021e424756aa128db2dc0e6caec63398e86a22fe4197f487a2328dc5d543957ed30d85236c33913acdcc46c40e77792bd2116", &(0x7f0000000300)=""/187, 0x5, 0x34, 0xffffffffffffffff, &(0x7f0000000240)}) dup3(r2, r0, 0x0) [ 165.135414][ C1] sd 0:0:1:0: [sg0] tag#7301 CDB[70]: a4 24 1a c5 fb 74 f9 bf 52 a3 df 63 75 5d 65 b0 [ 165.144996][ C1] sd 0:0:1:0: [sg0] tag#7301 CDB[80]: 36 57 4c 8a 7c 94 40 0c c3 d0 01 a2 ae 89 2d 34 [ 165.154711][ C1] sd 0:0:1:0: [sg0] tag#7301 CDB[90]: 12 [ 165.189576][T14107] FAULT_INJECTION: forcing a failure. [ 165.189576][T14107] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 165.202759][T14107] CPU: 1 PID: 14107 Comm: syz-executor.4 Not tainted 5.14.0-rc2-syzkaller #0 [ 165.211529][T14107] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 165.221579][T14107] Call Trace: [ 165.224852][T14107] dump_stack_lvl+0xb7/0x103 [ 165.229436][T14107] dump_stack+0x11/0x1a [ 165.233583][T14107] should_fail+0x23c/0x250 [ 165.238430][T14107] should_fail_usercopy+0x16/0x20 [ 165.243458][T14107] _copy_from_user+0x1c/0xd0 [ 165.245069][T14112] FAULT_INJECTION: forcing a failure. [ 165.245069][T14112] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 165.248050][T14107] do_recvmmsg+0x250/0x9f0 [ 165.265473][T14107] ? fsnotify_perm+0x59/0x2e0 [ 165.270145][T14107] ? __fsnotify_parent+0x32f/0x430 [ 165.275343][T14107] ? __fget_light+0x21b/0x260 [ 165.280003][T14107] ? __cond_resched+0x11/0x40 [ 165.284692][T14107] __x64_sys_recvmmsg+0xcf/0x150 [ 165.289618][T14107] ? exit_to_user_mode_prepare+0x65/0x190 [ 165.295380][T14107] do_syscall_64+0x3d/0x90 [ 165.299806][T14107] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 165.305773][T14107] RIP: 0033:0x4665e9 [ 165.309681][T14107] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 165.329314][T14107] RSP: 002b:00007f4d4aad9188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 165.337722][T14107] RAX: ffffffffffffffda RBX: 000000000056c0f0 RCX: 00000000004665e9 [ 165.345803][T14107] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 165.354038][T14107] RBP: 00007f4d4aad91d0 R08: 0000000000000000 R09: 0000000000000000 [ 165.362000][T14107] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002 [ 165.369963][T14107] R13: 00007ffec27dc74f R14: 00007f4d4aad9300 R15: 0000000000022000 [ 165.378015][T14112] CPU: 0 PID: 14112 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 165.386961][T14112] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 165.397014][T14112] Call Trace: [ 165.400297][T14112] dump_stack_lvl+0xb7/0x103 [ 165.404938][T14112] dump_stack+0x11/0x1a [ 165.409156][T14112] should_fail+0x23c/0x250 [ 165.413636][T14112] should_fail_usercopy+0x16/0x20 [ 165.418666][T14112] _copy_from_user+0x1c/0xd0 [ 165.423382][T14112] do_recvmmsg+0x250/0x9f0 [ 165.428079][T14112] ? fsnotify_perm+0x59/0x2e0 [ 165.432966][T14112] ? __fsnotify_parent+0x32f/0x430 [ 165.438079][T14112] ? __fget_light+0x21b/0x260 [ 165.442750][T14112] ? __cond_resched+0x11/0x40 [ 165.447423][T14112] __x64_sys_recvmmsg+0xcf/0x150 [ 165.452358][T14112] ? exit_to_user_mode_prepare+0x65/0x190 [ 165.458189][T14112] do_syscall_64+0x3d/0x90 [ 165.462706][T14112] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 165.468956][T14112] RIP: 0033:0x4665e9 23:06:36 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) [ 165.472837][T14112] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 165.492454][T14112] RSP: 002b:00007f1a49a72188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 165.500872][T14112] RAX: ffffffffffffffda RBX: 000000000056c1a8 RCX: 00000000004665e9 [ 165.508841][T14112] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 165.516820][T14112] RBP: 00007f1a49a721d0 R08: 0000000000000000 R09: 0000000000000000 [ 165.524806][T14112] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001 [ 165.532967][T14112] R13: 00007ffc07a1dbbf R14: 00007f1a49a72300 R15: 0000000000022000 23:06:37 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640), 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:37 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x0) 23:06:37 executing program 0: socket$nl_sock_diag(0x10, 0x3, 0x4) r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) ioctl$SG_GET_VERSION_NUM(r0, 0x2282, &(0x7f0000000040)) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(0xffffffffffffffff, 0x2284, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:37 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff000000000000ff", 0x1e5) 23:06:37 executing program 4 (fault-call:7 fault-nth:21): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:37 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff000000000000ff", 0x1e5) 23:06:37 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r2, 0x8008f513, &(0x7f0000000200)) ftruncate(r1, 0xfffe) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r3 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r3, 0x2403, 0x81) lseek(r3, 0x2dd, 0x4) r4 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r5 = dup3(r4, r0, 0x0) perf_event_open$cgroup(&(0x7f0000000100)={0x3, 0x80, 0x3f, 0x0, 0x4, 0x0, 0x0, 0xba, 0x1, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_bp={&(0x7f00000000c0), 0x1}, 0x100, 0x2cd, 0xfffffffb, 0x0, 0x1, 0x1, 0x3, 0x0, 0x8, 0x0, 0x9}, r1, 0x4, r5, 0x1) openat2(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)={0x200, 0x131, 0x4}, 0x18) 23:06:37 executing program 3 (fault-call:6 fault-nth:6): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:37 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff000000000000ff", 0x1e5) [ 166.080669][T14155] FAULT_INJECTION: forcing a failure. [ 166.080669][T14155] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 166.093825][T14155] CPU: 0 PID: 14155 Comm: syz-executor.4 Not tainted 5.14.0-rc2-syzkaller #0 [ 166.102700][T14155] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 166.112942][T14155] Call Trace: [ 166.116299][T14155] dump_stack_lvl+0xb7/0x103 [ 166.120971][T14155] dump_stack+0x11/0x1a [ 166.125172][T14155] should_fail+0x23c/0x250 [ 166.129631][T14155] should_fail_usercopy+0x16/0x20 [ 166.134651][T14155] _copy_from_user+0x1c/0xd0 [ 166.139294][T14155] do_recvmmsg+0x250/0x9f0 [ 166.143793][T14155] ? fsnotify_perm+0x59/0x2e0 [ 166.148461][T14155] ? __fsnotify_parent+0x32f/0x430 [ 166.153570][T14155] ? __fget_light+0x21b/0x260 [ 166.158247][T14155] ? __cond_resched+0x11/0x40 [ 166.163017][T14155] __x64_sys_recvmmsg+0xcf/0x150 [ 166.168131][T14155] ? exit_to_user_mode_prepare+0x65/0x190 [ 166.174025][T14155] do_syscall_64+0x3d/0x90 [ 166.178521][T14155] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 166.184584][T14155] RIP: 0033:0x4665e9 [ 166.188470][T14155] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 166.208203][T14155] RSP: 002b:00007f4d4aad9188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 166.216648][T14155] RAX: ffffffffffffffda RBX: 000000000056c0f0 RCX: 00000000004665e9 23:06:37 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) sendfile(r1, r1, &(0x7f00000000c0)=0xa0000000000, 0x4) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x3, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0x1}, 0x2632b}, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x0) 23:06:37 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff000000000000ff", 0x1e5) [ 166.224675][T14155] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 166.232988][T14155] RBP: 00007f4d4aad91d0 R08: 0000000000000000 R09: 0000000000000000 [ 166.241024][T14155] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002 [ 166.249059][T14155] R13: 00007ffec27dc74f R14: 00007f4d4aad9300 R15: 0000000000022000 23:06:37 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000002000000", 0x1e5) [ 166.324346][T14168] FAULT_INJECTION: forcing a failure. [ 166.324346][T14168] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 166.337514][T14168] CPU: 1 PID: 14168 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 166.346279][T14168] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 166.356424][T14168] Call Trace: [ 166.359716][T14168] dump_stack_lvl+0xb7/0x103 [ 166.364314][T14168] dump_stack+0x11/0x1a [ 166.368471][T14168] should_fail+0x23c/0x250 [ 166.372894][T14168] should_fail_usercopy+0x16/0x20 [ 166.378192][T14168] _copy_from_user+0x1c/0xd0 [ 166.382790][T14168] do_recvmmsg+0x250/0x9f0 [ 166.387300][T14168] ? fsnotify_perm+0x59/0x2e0 [ 166.392004][T14168] ? __fsnotify_parent+0x32f/0x430 [ 166.397177][T14168] ? __fget_light+0x21b/0x260 [ 166.401855][T14168] ? __cond_resched+0x11/0x40 [ 166.406595][T14168] __x64_sys_recvmmsg+0xcf/0x150 [ 166.411563][T14168] ? exit_to_user_mode_prepare+0x65/0x190 [ 166.417295][T14168] do_syscall_64+0x3d/0x90 [ 166.421710][T14168] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 166.427609][T14168] RIP: 0033:0x4665e9 [ 166.431499][T14168] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 166.451169][T14168] RSP: 002b:00007f1a49a72188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 166.459670][T14168] RAX: ffffffffffffffda RBX: 000000000056c1a8 RCX: 00000000004665e9 [ 166.467718][T14168] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 166.475694][T14168] RBP: 00007f1a49a721d0 R08: 0000000000000000 R09: 0000000000000000 [ 166.483671][T14168] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001 [ 166.491675][T14168] R13: 00007ffc07a1dbbf R14: 00007f1a49a72300 R15: 0000000000022000 23:06:37 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640), 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:37 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000003000000", 0x1e5) 23:06:37 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='./file1\x00', 0x40a082, 0x11c) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800007, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r3 = socket$inet6(0xa, 0x802, 0x0) setsockopt$inet6_buf(r3, 0x29, 0x39, &(0x7f0000000040)="ff0204000000000100000000000000000000000000000205", 0x18) r4 = dup3(0xffffffffffffffff, r2, 0x80000) r5 = socket$inet_icmp(0x2, 0x2, 0x1) mmap(&(0x7f00006c1000/0x1000)=nil, 0x1000, 0x2, 0x10, r5, 0xd66b2000) getsockopt$inet6_opts(r4, 0x29, 0x39, &(0x7f0000001800)=""/216, &(0x7f00000006c0)=0xd8) r6 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r6, 0x0) sendmmsg$unix(r2, &(0x7f0000001a80)=[{&(0x7f0000000300)=@file={0x1, './file1\x00'}, 0x6e, &(0x7f0000000680)=[{&(0x7f0000000380)="ddf532815e651e367d0c6e0eeab36ea9cba28316fe6404f2bb455c7f90e45ac0f964f1f6069aecce5367eda65e986466d1e6510c4dbc98de3603d3c0ee6427efddb6a2743fd9e7482557fb9d8a58fff041a7400adaca0f56482cf0af02931c8afc4f818db7ed157101fa98db999e8ccf2218c6a344edfe6f7f84dba388adfcde3330778dbada52d97c1312639312a3ea81caf67602fef7b59d19c7ed5a44b9b5a295c8ea287d9121265053fe6354bcdfe185da09ec6784dd817673d29ff2b2d64f059317d39aca885d13cc85023e2effe097a7c43a9ed98c359861ddd40a25799813481863b5d8968a1aacc03d1534d94ade", 0xf2}, {&(0x7f0000000480)="8a5e49c329036cda736f562eaae6028915637fd022205ce75b3ee06c216ad20bd730dfee210c6750d0dfb5185935c44f015d30d8ee3807ae00e8feaf867a1c3dac160f2f8bf012dce523dcfd013fa7e727ced3b5522880c8e2949efb7c94265113be7f825ece17c9bf3c17da03be4833a17832464b2399d10d8e662ffcfb32b21baef64b991c56aa2d3b338b0545039ad5f30df669c04733713770323d194f3a9b973913fcdf4ef2f5d3ec3516c5d1aa1a20dba8432eba71c90e4bb6fc00d50d4c368f", 0xc3}, {&(0x7f0000000580)="ff5185f04c793a237839aff596f26950ff05db33c3efa6c19f2ce4854b3400676572317fac8c4a0814cab2a6778186eea262b89ece68634855cf5ce9c326c84cda293d0d060c622e62f095fad5c61ea45a30c41d01251b6f3e2f45ee07a1636193333a4db4e3b3410989084f1b17e9bb7a93a72272809ad69c54e64a8c749472356911c2c36cf33b2476087624cb1527bb22a2b6d2834f6eb709c398d3290d0dc189fad572932efdf38c6f493c8bf06cb9cb376807b95d19bcad38943478a3cbb47e2cce87ca20f302", 0xc9}, {&(0x7f0000000700)="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", 0x1000}], 0x4, &(0x7f0000001980)=ANY=[@ANYBLOB="24000000000000000100000001000000", @ANYRES32=r6, @ANYRES32=r5, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="00c34510bf36ad8d5f000000000000ff03000000", @ANYRES32=r4, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32=r4, @ANYRES32, @ANYRES32, @ANYRES32=r2, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0xee01, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000020000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32=r6, @ANYBLOB='\x00\x00\x00\x00'], 0xf8, 0x48010}], 0x1, 0x20048085) preadv(r6, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r7 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x403, 0x2, @perf_bp={0x0, 0x1}, 0x40001, 0x3ff}, r6, 0x0, 0xffffffffffffffff, 0x3) preadv(r3, &(0x7f0000000280)=[{&(0x7f00000000c0)=""/245, 0xf5}, {&(0x7f00000001c0)=""/43, 0x2b}, {&(0x7f0000000200)=""/96, 0x60}], 0x3, 0x2, 0x9) dup3(r7, r0, 0x0) 23:06:37 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) r2 = socket$unix(0x1, 0x2, 0x0) fsetxattr(r2, &(0x7f00000000c0)=@known='security.selinux\x00', &(0x7f0000000100)=',\x00', 0x2, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r3 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r3, r0, 0x0) 23:06:38 executing program 4 (fault-call:7 fault-nth:22): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:38 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000004000000", 0x1e5) 23:06:38 executing program 1: r0 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x14001, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000140)={&(0x7f00000000c0), 0xc, &(0x7f0000000100)={&(0x7f0000000300)={0x328, 0x3c, 0x8, 0x70bd26, 0x25dfdbfc, {0x10}, [@typed={0x8, 0x57, 0x0, 0x0, @pid}, @nested={0x309, 0x3f, 0x0, 0x1, [@generic="53e7d44c8e0dd3b7a769377f9f2fb25e223fa6b61340f5b1dfe9953e941e7afd1aa8270e1f9b97c6fa0fef07063ebcc934d90917bae83cc171e34cb2ebc8403b925d46cb8fb950c654dbc51d191d42a75b849156e22f888e45e752e6cc9f3cfc9bc212e3a5b9785a17158cb011a7e0e9a9c25c9a6b18cb44f4300e7a3138d539b9203125e33350319122316810611baa330b9a55c87443db8d33243d55cd1732177a", @generic="ae9260d4363a521a3d53f9d7ab49233b33ba96ee3601c767fed92fefc9611e97e9412c5d6548847fdf59da84469d54152fe7bcd88c391d9a7dd1abbf10c20a458962ac15087aaa18a9350e20c3a7fc6f4116a05fa0ed8555cb84b7e2e5c45447759163209daa3c410bfa739d02f8b0e5f0ad8c59471d5a995bd576ca11f479a8b920ee894b589940a699ad9bb1fede43ae8b8824506a4431bf60900f1ab746a1b5828543f3d8c8b2d4b601d8c1ee229c32ba1ed5262b9181d9bdc6801cc3b59d5c6b5e7ee1cf5f1993d3bee499e321d8c23569a0e651b2188dac46385814450ab07b07ea44419dd69968", @generic="190f9b080c6b46acfe3250ffbd480b34d83688f9b6151b2030bf7a2fb43c273fec63be3940401fc5591b23e999b930e64b7b834025673ffc719393dfeeb9eeafcb8cc627ce11ede9f6f618d17f6914aac681c694c63382ccbd3e17017dcd4ef5ec5ab3dc7f28626459b0b773499bcf3a8a35a8f013f96f249228d8fbe00a89768280a196ad3b00d7668fae09298a4eb6b23797eb527edf6de4c4264f9f2a5f2323c0e53f516a37cf99d3ac25eda55f04ec941cd2dfdbee15105b6afa488b137ab1a351c9d87b5f5e", @typed={0x4, 0x73}, @generic="cac13337e00627d3d6f5920e4b48131f647e9390ee670ca802bd6f8830798fee58f1d456e11f4170cf2d4772eceb36f72c6617d5fb4dcc94a9c8ebce60460bca174f93a618cc9c8aba651087fcfd6e06fd5eb72b50ff3a22921d36945855ac756bc303d2427b8d80b6944e841a974e76a3cb6819a7da20d5afc0165860341e510658347bb375aeff8ff609705467a70a130c2f339447a0e3d708463c545e9db673ee0a6c21", @typed={0x8, 0x5, 0x0, 0x0, @ipv4=@rand_addr=0x64010102}]}]}, 0x328}, 0x1, 0x0, 0x0, 0x1}, 0x4000) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, 0xffffffffffffffff, 0x0) [ 166.766860][ T25] kauditd_printk_skb: 11 callbacks suppressed [ 166.766871][ T25] audit: type=1400 audit(1627254397.969:138): avc: denied { mac_admin } for pid=14187 comm="syz-executor.1" capability=33 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1 [ 166.796617][T14188] SELinux: Context , is not valid (left unmapped). 23:06:38 executing program 3 (fault-call:6 fault-nth:7): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:38 executing program 1: unshare(0x62000000) prctl$PR_MPX_ENABLE_MANAGEMENT(0x2b) r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = socket(0x80000000000000a, 0x2, 0x0) setsockopt$inet6_group_source_req(r1, 0x29, 0x2e, &(0x7f0000000200)={0x1, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @empty}}}, 0x108) r2 = socket(0x80000000000000a, 0x2, 0x0) setsockopt$inet6_group_source_req(r2, 0x29, 0x2e, &(0x7f0000000080)={0x1, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @remote}}}, 0x108) close(r2) prctl$PR_MPX_ENABLE_MANAGEMENT(0x2b) r3 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000300)={0x1000, 0xfff, 0x4, "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"}) r4 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x5}, 0x0, 0x1, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x800000}, 0xffffffffffffffff, 0x10, 0xffffffffffffffff, 0x0) openat(r3, &(0x7f0000000200)='./file0\x00', 0x202100, 0x40) dup3(r4, r0, 0x0) lsetxattr$security_capability(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), &(0x7f0000000140)=@v3={0x3000000, [{0x2, 0x97}, {0x1ff, 0xff}], 0xffffffffffffffff}, 0x18, 0x2) r5 = openat$zero(0xffffffffffffff9c, &(0x7f00000001c0), 0x200000, 0x0) ioctl$SCSI_IOCTL_DOORLOCK(r5, 0x5380) r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/module/psmouse', 0x111201, 0x4) mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x1010, r6, 0x417af000) 23:06:38 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000009000000", 0x1e5) [ 166.855805][ T25] audit: type=1400 audit(1627254398.019:139): avc: denied { relabelto } for pid=14187 comm="syz-executor.1" name="UNIX" dev="sockfs" ino=32485 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=unix_dgram_socket permissive=1 trawcon="," [ 166.943134][T14216] FAULT_INJECTION: forcing a failure. [ 166.943134][T14216] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 166.956359][T14216] CPU: 1 PID: 14216 Comm: syz-executor.4 Not tainted 5.14.0-rc2-syzkaller #0 [ 166.965335][T14216] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 166.975454][T14216] Call Trace: [ 166.978787][T14216] dump_stack_lvl+0xb7/0x103 [ 166.983547][T14216] dump_stack+0x11/0x1a [ 166.987725][T14216] should_fail+0x23c/0x250 [ 166.992232][T14216] should_fail_usercopy+0x16/0x20 [ 166.997258][T14216] _copy_from_user+0x1c/0xd0 [ 167.001853][T14216] do_recvmmsg+0x250/0x9f0 [ 167.006322][T14216] ? fsnotify_perm+0x59/0x2e0 [ 167.011174][T14216] ? __fsnotify_parent+0x32f/0x430 [ 167.016286][T14216] ? __fget_light+0x21b/0x260 [ 167.021036][T14216] ? __cond_resched+0x11/0x40 [ 167.025834][T14216] __x64_sys_recvmmsg+0xcf/0x150 [ 167.030877][T14216] ? exit_to_user_mode_prepare+0x65/0x190 [ 167.036625][T14216] do_syscall_64+0x3d/0x90 [ 167.041068][T14216] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 167.047060][T14216] RIP: 0033:0x4665e9 [ 167.050978][T14216] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 167.071146][T14216] RSP: 002b:00007f4d4aad9188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 167.079639][T14216] RAX: ffffffffffffffda RBX: 000000000056c0f0 RCX: 00000000004665e9 23:06:38 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff0000000a000000", 0x1e5) 23:06:38 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000010000000", 0x1e5) [ 167.087666][T14216] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 167.095670][T14216] RBP: 00007f4d4aad91d0 R08: 0000000000000000 R09: 0000000000000000 [ 167.103682][T14216] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002 [ 167.111732][T14216] R13: 00007ffec27dc74f R14: 00007f4d4aad9300 R15: 0000000000022000 [ 167.233164][T14233] FAULT_INJECTION: forcing a failure. [ 167.233164][T14233] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 167.246415][T14233] CPU: 1 PID: 14233 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 167.255174][T14233] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 167.265428][T14233] Call Trace: [ 167.268809][T14233] dump_stack_lvl+0xb7/0x103 [ 167.273424][T14233] dump_stack+0x11/0x1a [ 167.277584][T14233] should_fail+0x23c/0x250 [ 167.282024][T14233] should_fail_usercopy+0x16/0x20 [ 167.287071][T14233] _copy_from_user+0x1c/0xd0 [ 167.291675][T14233] do_recvmmsg+0x250/0x9f0 [ 167.296150][T14233] ? fsnotify_perm+0x59/0x2e0 [ 167.300836][T14233] ? __fsnotify_parent+0x32f/0x430 [ 167.305985][T14233] ? __fget_light+0x21b/0x260 [ 167.310748][T14233] ? __cond_resched+0x11/0x40 [ 167.315442][T14233] __x64_sys_recvmmsg+0xcf/0x150 [ 167.320436][T14233] ? exit_to_user_mode_prepare+0x65/0x190 [ 167.326207][T14233] do_syscall_64+0x3d/0x90 [ 167.330631][T14233] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 167.336546][T14233] RIP: 0033:0x4665e9 [ 167.340439][T14233] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 167.360130][T14233] RSP: 002b:00007f1a49a72188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 167.368563][T14233] RAX: ffffffffffffffda RBX: 000000000056c1a8 RCX: 00000000004665e9 [ 167.376537][T14233] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 167.384726][T14233] RBP: 00007f1a49a721d0 R08: 0000000000000000 R09: 0000000000000000 [ 167.392848][T14233] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001 [ 167.400808][T14233] R13: 00007ffc07a1dbbf R14: 00007f1a49a72300 R15: 0000000000022000 23:06:38 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:38 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r1, 0x81f8943c, &(0x7f00000000c0)) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}, 0x0, 0x0, 0xb59e}, r1, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x0) 23:06:38 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000029010000", 0x1e5) 23:06:38 executing program 4 (fault-call:7 fault-nth:23): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:38 executing program 3 (fault-call:6 fault-nth:8): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:39 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff000000c9010000", 0x1e5) 23:06:39 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x10000) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x191081, 0x2) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x1}, 0x0, 0x0, 0x2, 0x0, 0x0, 0x4}, 0xffffffffffffffff, 0x0, r1, 0x0) r3 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x800, 0x0) r4 = openat$full(0xffffffffffffff9c, &(0x7f00000001c0), 0x4240, 0x0) perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1, 0x2, 0x0, 0x2, 0x0, 0x80, 0x1641, 0xc, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x6, 0x1, @perf_bp={&(0x7f0000000100), 0x2}, 0xc1, 0x9, 0x3, 0x5, 0x6, 0x7ff, 0x80, 0x0, 0x2, 0x0, 0x20040}, 0xffffffffffffffff, 0x0, r4, 0xb) ioctl$SG_SCSI_RESET(r3, 0x2284, 0x0) dup3(r2, r0, 0x0) 23:06:39 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0xffffffffffffffff, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x4, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x5}, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x2000000000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x0) 23:06:39 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000030000", 0x1e5) [ 167.864022][T14269] FAULT_INJECTION: forcing a failure. [ 167.864022][T14269] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 167.877146][T14269] CPU: 0 PID: 14269 Comm: syz-executor.4 Not tainted 5.14.0-rc2-syzkaller #0 [ 167.885935][T14269] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 167.895994][T14269] Call Trace: [ 167.899277][T14269] dump_stack_lvl+0xb7/0x103 [ 167.903882][T14269] dump_stack+0x11/0x1a [ 167.908132][T14269] should_fail+0x23c/0x250 23:06:39 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000090000", 0x1e5) 23:06:39 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x420600, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x180000b, 0x30, r1, 0x23109000) ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x40082406, &(0x7f00000000c0)='/dev/sg#\x00') preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x0) [ 167.912600][T14269] should_fail_usercopy+0x16/0x20 [ 167.917634][T14269] _copy_from_user+0x1c/0xd0 [ 167.922280][T14269] do_recvmmsg+0x250/0x9f0 [ 167.926703][T14269] ? fsnotify_perm+0x59/0x2e0 [ 167.931391][T14269] ? __fsnotify_parent+0x32f/0x430 [ 167.936514][T14269] ? __fget_light+0x21b/0x260 [ 167.941266][T14269] ? __cond_resched+0x11/0x40 [ 167.946134][T14269] __x64_sys_recvmmsg+0xcf/0x150 [ 167.951252][T14269] ? exit_to_user_mode_prepare+0x65/0x190 [ 167.956989][T14269] do_syscall_64+0x3d/0x90 23:06:39 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) ioctl$SG_GET_REQUEST_TABLE(r0, 0x2286, &(0x7f0000000040)) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000200)=[{&(0x7f00000001c0)=""/3, 0x3}, {&(0x7f0000000300)=""/232, 0xe8}], 0x2, 0xda0, 0xfffffffb) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) r2 = pidfd_getfd(r1, r1, 0x0) r3 = syz_genetlink_get_family_id$gtp(&(0x7f0000000280), r1) sendmsg$GTP_CMD_DELPDP(r2, &(0x7f0000000480)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x20, r3, 0x10, 0x4, 0x25dfdbff, {}, [@GTPA_TID={0xc, 0x3, 0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x4000) [ 167.961599][T14269] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 167.967550][T14269] RIP: 0033:0x4665e9 [ 167.971472][T14269] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 167.991209][T14269] RSP: 002b:00007f4d4aad9188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 167.999655][T14269] RAX: ffffffffffffffda RBX: 000000000056c0f0 RCX: 00000000004665e9 [ 168.007636][T14269] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 168.015608][T14269] RBP: 00007f4d4aad91d0 R08: 0000000000000000 R09: 0000000000000000 [ 168.023608][T14269] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002 [ 168.032175][T14269] R13: 00007ffec27dc74f R14: 00007f4d4aad9300 R15: 0000000000022000 [ 168.092688][T14289] FAULT_INJECTION: forcing a failure. [ 168.092688][T14289] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 168.105764][T14289] CPU: 1 PID: 14289 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 168.114527][T14289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 168.124563][T14289] Call Trace: [ 168.127825][T14289] dump_stack_lvl+0xb7/0x103 [ 168.132459][T14289] dump_stack+0x11/0x1a [ 168.136598][T14289] should_fail+0x23c/0x250 [ 168.141039][T14289] should_fail_usercopy+0x16/0x20 [ 168.146072][T14289] _copy_from_user+0x1c/0xd0 [ 168.150730][T14289] do_recvmmsg+0x250/0x9f0 [ 168.155182][T14289] ? fsnotify_perm+0x59/0x2e0 [ 168.160314][T14289] ? __fsnotify_parent+0x32f/0x430 [ 168.165431][T14289] ? __fget_light+0x21b/0x260 [ 168.170152][T14289] ? __cond_resched+0x11/0x40 [ 168.174829][T14289] __x64_sys_recvmmsg+0xcf/0x150 [ 168.179882][T14289] ? exit_to_user_mode_prepare+0x65/0x190 [ 168.185970][T14289] do_syscall_64+0x3d/0x90 [ 168.190405][T14289] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 168.196631][T14289] RIP: 0033:0x4665e9 [ 168.200543][T14289] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 168.220305][T14289] RSP: 002b:00007f1a49a72188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 168.228792][T14289] RAX: ffffffffffffffda RBX: 000000000056c1a8 RCX: 00000000004665e9 [ 168.236744][T14289] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 168.244701][T14289] RBP: 00007f1a49a721d0 R08: 0000000000000000 R09: 0000000000000000 [ 168.252661][T14289] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001 [ 168.260615][T14289] R13: 00007ffc07a1dbbf R14: 00007f1a49a72300 R15: 0000000000022000 23:06:39 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:39 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x80) mmap(&(0x7f0000224000/0x4000)=nil, 0x4000, 0x1000006, 0x9cc13, r0, 0x90ac2000) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:39 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) ioctl$sock_SIOCGIFCONF(r1, 0x8912, &(0x7f0000000100)=@req={0x28, &(0x7f00000000c0)={'sit0\x00', @ifru_mtu}}) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x0) 23:06:39 executing program 4 (fault-call:7 fault-nth:24): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:39 executing program 3 (fault-call:6 fault-nth:9): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:39 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff000000000a0000", 0x1e5) 23:06:39 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0xfffffffffffffffd, 0x103c80) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(r1, 0x4008941a, &(0x7f0000000040)=0x2) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080), 0x80120, 0x0) write$cgroup_netprio_ifpriomap(r2, &(0x7f0000000100)=ANY=[@ANYBLOB="323000f2ff00006e79e20d6abcd461eddfd8ca9668eb000000"], 0xa) ioctl$EXT4_IOC_PRECACHE_EXTENTS(r1, 0x6612) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:39 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) ioctl$FS_IOC_GETFLAGS(r2, 0x80086601, &(0x7f00000000c0)) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r3 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000140)={0x1, 0x80, 0xa9, 0xef, 0x70, 0x6, 0x0, 0x1, 0x0, 0x3, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, @perf_bp={&(0x7f0000000100), 0x4}, 0x20000, 0x4, 0x6, 0x0, 0x7f, 0x3, 0x7ff, 0x0, 0x4, 0x0, 0x1}, 0x0, 0x5, r3, 0x0) dup3(r3, r0, 0x0) 23:06:39 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff000000c00e0000", 0x1e5) 23:06:39 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x869eca5c1f2f63f5, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:39 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) utimensat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)={{0x0, 0xea60}, {0x77359400}}, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0xfffffffffffffff7, 0x4}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x359}, 0xffffffffffffffff, 0x0, r1, 0x2) r3 = dup3(r2, r0, 0x0) r4 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0xe}, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x4, 0x0, 0x80}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r5 = syz_open_dev$vcsu(&(0x7f0000001440), 0xa07e, 0x400) ioctl$PERF_EVENT_IOC_PERIOD(r5, 0x40082404, &(0x7f0000001480)=0xc3) ioctl$PERF_EVENT_IOC_RESET(r4, 0x2403, 0x81) preadv(r3, &(0x7f0000001400)=[{&(0x7f0000000140)=""/58, 0x3a}, {&(0x7f0000000180)=""/248, 0xf8}, {&(0x7f0000000280)}, {&(0x7f0000001300)=""/244, 0xf4}], 0x4, 0x100, 0x87f0) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r3, 0x50009418, &(0x7f0000000300)={{r4}, 0x0, 0x10, @unused=[0x1ff, 0x401, 0x3, 0x80000000], @name="efdf92b99ecfb8d4588ca89c6fcbb7b284cfd013c3c9e1d16ba8f4dd124d1eac9790d765ef6b8f357875e80ae9bf20b6fd475754d297677cf905e04d0b867caf5bd57a7050f28eba81ee925a88fbd95ebe9fa1e3a8ebaad58e2902c39f9c2dc70cafbce42f45dd015cf4f6eeae131ecc73f7e826b5e410b60a0f67a5d0397790c01db5f346527af401483e0879ae323d353e848979f2f98d741b67fe1bdab154098e021a4d8a47276858fd2e0300e7190ee4ea59374f54d20af722786453ae5f8860c2259cb3b53a4221ded738845b4f00d12c8caa29688fd994171114366f0ad7b111da340925005ad571309d5c0b25652f2259804445633613b209137488c41a1f86a0224e81cf86172a8e3b04637262155a6a2e21faebf2879e3816aeae0f17134a70623fbd41bcb16883ee6b91caec308e4b6579a4f7a95435f9d0e8edee9d176a0f238e44d6503cf5d39aaf5417997ce6282e1e25056eb34e391b0153b0be5f8307b73ccfca9b4bbad8c37986448b556c23137d3b59aeff6b72542cbe385c5b655cbb9a5c55a28924bcd2d9d0a11fbb8a6a44cdd4d70e2f58635b11cf5edf4625b34e46a8cd12005ab34df889ef95a667a2a0a6418447d003d0529c3cca4577c5966188643dd45ef2b148059f85c04dbaa3cfba0d370d4c9cfeba488d153a6832f2556eb45bcbfaac408b906347793a43031485b648e253fbbd908a372b6fef448113befb265f422c531b3579651406115a71cd6a3a39aad6ace67b88778216d4e06f45145973c0a8fa8e9574579265b384059ea27546f526acd4e43186ca8fd403b962512c59d967d6de37d6b4edc0847827875dbdcca00202ace3f043f72b3684f7e6f27e91164fbd04d3b4d77f8f7347d1980e3b738f29cd26e2261ed463bb5c8ea3b3b3cf9609543174e2bc80b4af37f42217555a83d630434e882b76992cdb5cd28755c5a18ae05f35708dfd8129cd9ff91b36f715c3fa4f7bbf969e528a96e77da89e793ebeb2e37168b0c12e9e7b7a713f6e4d3b04c2ebbf9560a3764101f54aae0f804c5416aced86c353bef2ace54efc297633f9c71a3de56cd67c55908e5cac1ea0df81febe77a4450f5a497bd06791051d81bb91a7c99402c5d72cae0e2607ac5b18810f3042cb8848aea37e09d7d5eded8ad2bd31fda04b08a440e88d2b9efd4bb726c309df0996b6ece85547ffc6873f0be27a4b66fcf1d37360a6c7a856e3d5f62e3d0610555359519664a6f1d2e505304f666cb2e2cbebc9ffd5868edacaecdb131739b7ad134f63af21d5339a5c070590da3c1e627fd4eac3d3c539f96791505671df976622a85cc15bfa82d7f50914daa6e2b2e62fed8188e1096fc4b782b2ed8774d6bf4aec0b759e1423d7569de4b012dea2aac40c278b5915d6c7e2f772f8d69cbb60b41c2de186cec921bd3fd8afb0277c4b6509787140f38d1b0f2ad0e646bfa32c7a123d1ef537d0e1f4eea4afd49afa41eabdd5f0aa0434a5656410330396474f554f807afc681c5e15f9f8163b57be5805f17ba1f9edbd32a0e899ca5e4d944519864ca7556d447380504675b64e410a7986fa6dfc13432525ca6c5ffdafc5cb10f8e5ced27431e38f8daca215b98e87d7692d3105aaba4b46a5ae2addfce10975309e4e0573290421bf1288e7fb6a3e77a223676983275ff3356edc6e1213d350405962ea5a23f6c50893520354d0da5d4edee1b942ec00690c58d1de79978a65be61c85a7a17aa3747ab7f13699af594aea7670341c8d6a7eca738e186c15f2a79bb5e807c2c2b2165cda23b2525e7d64e48093d58551fe75ec9b90fe6980a49e73346113a0fc41224edcb36c17e3acbcd9dd40673df6f5b32ac56934603ab03195c506b1c43a3f2a168d21ec32ca8f2cc91827046172cdf614e0ec328dd81abc3e3288647eae6a8d3e161e59b32001c96dcdd36b11a631360d244342df3871ad3cf753e63a44943a785fe06c744c791e72493dcf97cdd3fa70fbbd3588417d0860dac3bdc7fa738d1786b5bdb9c2d12197187db3012264fd9e5d692c70500f4648b79af684aae9eff18e928d40e04a6c4a1ff2a93b107ccbc37d15914a92333afe44288ab14d106995bbf3e915b62752fbe364fe855e196125ac2b9ca16ad44f75dc93c36dc24deac7c8275ffe94134153c8f24b97593bd71bc3f81d28b478f3310a403bf304b29fb386f9cc1ccc7f8cb70144f80fec646c411753f0d81c926d6423ce92a4b350d3fe2bf3535f0c8b82aa5b66541e4259a649a3f6eda24e0c420ad17503a68d56bb711fe353f74438b2435241b1463f91079ba272088c7ad1359b4d11406920e51b80fa7df2f6fdd45efc37a7973080aad53da89944e179917126220fcf95891d737be4b1392b08a094c270699f90f208fd29cd6b9f021b6b45fc1c6f420a39376964e9b24d3d27e87eed2878cf28e6f780b5e1698eda01efd8b9274745b774094785e4d8ae79c818c61e1eaed42f65b77b4c439bb209ad193137dc4aa78ed76a1a99b42be23098e50685fc64d6495d05a4d88eb9489d339828d7827e947b03b9c51c4c09351ade9956d15c9e6efbf995782cd17e9334b31865993ca8f672a350ef14424dfd9021578cd3d467eb101f222b578c345f6951b4173892532926d068b6807d66493c1fb2f0d29ea70a6594f33357120e5cd49be2abe6a475e2ad8761dfe44f0e99fc3937ab12ebb45f475ed40fe0fa2ede3da73f7a13f2e97bd16fbac1626f94dc0f60965a894d267142537f325458174f0135c4eec74ae4d84e0b7f371338171ebf03d4c903cf7770e83b7f349db82c9175aec51566410eb313cd117fe0965dddcb43206221f6f6df039b6e8a43432a50fff6d079a0d1cc76ce92f2cf0202014574dadeb049b59f4bd9f3d4f867f2d09c324fdf2dbe10e2e971234cf7236b0c0a38d79fe238da2bb9b4e7df7d3231dd43d74e1987ab09d74fbc1c632b2410ba84596c1614490e2b2e449c14868b4fdeff687460dd5977a7c5ad5df9e9f37eec32f38c9307d02addea8262b7747a789a9efdb502e3fb12caaa1f2834a6ca50ee2b29541899bd3bac75df11e3b2f7483fd6b69e969bced17e5902a832d23be44d8deab929e9c57a5707be2b160475595d371a1ba2a12c0e50ccfe990ef04247bc0e8349e8083118fc2b17df131ae98540a39990496016251fe0a1dd57002f0bbb239f59fdc15d0dd83f43bea25f2889eb3f576cb4468431b68c58110eea6ef47c4559908b92fa0a716d68c7902c8c6d910350d010caccb8f79985016d39e22a400dc42acecc5636d01bc078b3f2e88cf9e60c28b05909701fd32dbe3f55620ad0571be014279649de06b56397af7ecfc2c42162ad5de083b5ba05aea6be3ab7221f885d7ae6d9be4de122b2f2d278bcc779668ba56a8a5ecf48fe4c27d3c083bda56d871be4408981c6a3a4a0517838e422de41b9b1d656222f293ff107f53545d0081e1b7a6026bc8e7834d38a6e7033b6ef9ec0627c18a38dd816e19681db928946cd0c853fd318c661e1cc561250a490aa75f5debca6fba9a289bf0769e82f4cdcc13b5c5bca74674f85ed47fa5dd9e8cacec401c43679a99f0e8004bebd55ea9ffdb74d93aaa308efd743634276438d8b1e7f52dddee2bf68e80ea354938c50072599249a3439efd50435fae21ebbb5bc8930250d54e9f3d8e1e89499366ab5292c8ad240005f136e9c4872a88c5bd04dec69b50962c09ca9a832a9b17005379f0012f7037fdf8faddaa70ea11b53546f677b38f7bca7bf146fba263d84b70051066dee44b6087430cdb95a059dc784f3771eb6ee27d94de306dfd46232bd3d8ee45602bff18466bb4db68c47d434ae4468fb64e217fc69ec622ec7095ab3273372a6a09d5a0325e09f9b5c1f1c6a904e59b0f7980a7d27ee969886b6f07bcde4b31fa30a692cdabb863ca64f99ced5db636d0a2dca23870f7268192c37ebb491f4a8898c1b4e37d4a502f56e0be46ff6429ee35be4679191eec795aafe84d6c77326b06bd9f9fa9e7c02e838a54725f05095bf49aa24dbcd2c0464f69d325b1fba4a8d32e5943da28b31011e7475b211ed731f04069cb7347d76a77714d1b560d97f53cf8ac0396439c4bf1752736617bfcaefaffb1954910b148928f129177f2e33d17fd7c87827c86292a3276ab329015f776e5489363260232b64d5e4e37517aeb500bc2e8ea18ab64e942506ee902c32368665ab8a1551fbf13369f3ccfbcf4fc52320091f1cef449773c0c429b2e8ed20ff6ca2f17208635bdfccc1d8275a3df18129c120dc8ee810bf9b135a0fae74e5f93c88460abc8e31eb8579c6f3f6eddd30ea58abbbd2fcd6896ffecb53626724a22f99264eb64b94c100953b2d02c7deb664bad9836e44e9e64f9f2f4cbd41e36767739c844d736cd067e213f72bace179ce016461aa73feb2d0860d19e3cc0ec3bc8f333c328fefce645f15afd93b06b9a70f7c8e87d0b92dbaa25cc3e02c5d22a24a291162ed2952a3a28a8bb0d45523d9eaee68c6f606a7e4b6d590bf53312669cba15a106cfbd90dec93efa3d3af87bd67f7c27ae2cba7c0b632cfdedcb817c158c836e42467be996c95eeb31335a665f54964cc60ad0c86ce633477084771daef1d8ec705822c3ad1152020c721d707d0d3cf2b6268f9a751b55f36111c295a67b427bc534a537cc8924e55a124d77da33383b138d6161033ce3fef6bcfe53d44350ddaa9f6214c87324dfa02f47ea55589b5da126aa13b90d394ee0a6fd9339ca9601be4fbda620d83e25c605c4c84323f22b0f3c306af4dcd875435dabbad4510d6d9c390369e9517f1c26d482a01e463e84f27fdebb2d455583ebc86fb2148a16b561d7bb7b28169cffaa098272cacd8a5145b25dea9c9a2db21602e0f48b5a81a6d2beca3da3fc68feb4c9626ca977e2c9b218b604ebffe8162b2d7b614649c65492259d07976171c4f229c32e7fabd01fba33bba31ff8455a992b330bfca86548955999e259e4d916848781f4a4306d5e169a8b996fdfa268f982576603e1333e256d74ede9ac6dcfdeb11d847e9193ede0af77f5a5b68ce708c379a8307c8958fa27c3019dd3f8d8fa48effee5c611452722dc6e5664a1b2b2af25111a6c7921925f2376303b82dc2ef8b899a546938483ca486fdbc0d2257325988d4da3cebb0f2df48706631c4652176c51448f0e3c3a04d003569e88a68e71f67c328332a33d3f8fe80ee0168200d72fba5facc0fa03003cb46d1de2701de07ffaab9212618712b8dc0bdc0ce8812e9ec10ad27528e6beebd29e759aa5bfa1052b60dd3a0bc8aefefcf545fd7bc797c7eb580f32435f2501472c64a0748ac553e8d111c2fef2505df6cbc8b453a0eb69d2bae235d4a8ffd8e44fb3f0cf4a97ed1dafbad2742ed32b6962add9dfa3f2fd2ee58009e26adfe97f5116aa5a9b602e321001ffd5345c980ebf03a1bd1b6329d8fdc6c84f62cbef30e7d11a695c72659df0bdb3829d49e58980a966ad25d01fa31e565f2f4821fa9892852ee3eef08e5f14e8c159b9280115f9ffa62c38c19c72c086dee248708ff8c3ea621203516a4194956db8db9c1998767a7e28d5d55b4cd4cee0d4c9e75348f5482ef628fd6a6885f6ae7f4ac1a75d8dac43a876e1a9c21d9ebe229db87cadb8e45250452de97312173f1162ea28d5241e91c179414224719e612d8aa6"}) pipe2(&(0x7f0000000280)={0xffffffffffffffff}, 0x4800) ioctl$PERF_EVENT_IOC_REFRESH(r6, 0x2402, 0x9) 23:06:39 executing program 0: ioctl$SG_SET_KEEP_ORPHAN(0xffffffffffffffff, 0x2287, &(0x7f0000000040)=0x6) r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) [ 168.750754][T14336] FAULT_INJECTION: forcing a failure. [ 168.750754][T14336] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 168.763842][T14336] CPU: 0 PID: 14336 Comm: syz-executor.4 Not tainted 5.14.0-rc2-syzkaller #0 [ 168.772590][T14336] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 168.782753][T14336] Call Trace: [ 168.786019][T14336] dump_stack_lvl+0xb7/0x103 [ 168.790628][T14336] dump_stack+0x11/0x1a [ 168.794840][T14336] should_fail+0x23c/0x250 [ 168.799452][T14336] should_fail_usercopy+0x16/0x20 [ 168.804642][T14336] _copy_from_user+0x1c/0xd0 [ 168.809268][T14336] do_recvmmsg+0x250/0x9f0 [ 168.813791][T14336] ? fsnotify_perm+0x59/0x2e0 [ 168.818453][T14336] ? __fsnotify_parent+0x32f/0x430 [ 168.823546][T14336] ? __fget_light+0x21b/0x260 [ 168.828224][T14336] ? __cond_resched+0x11/0x40 [ 168.832886][T14336] __x64_sys_recvmmsg+0xcf/0x150 [ 168.837810][T14336] ? exit_to_user_mode_prepare+0x65/0x190 [ 168.843511][T14336] do_syscall_64+0x3d/0x90 [ 168.847909][T14336] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 168.853804][T14336] RIP: 0033:0x4665e9 [ 168.857679][T14336] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 168.877387][T14336] RSP: 002b:00007f4d4aad9188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 168.885843][T14336] RAX: ffffffffffffffda RBX: 000000000056c0f0 RCX: 00000000004665e9 [ 168.893810][T14336] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 168.901858][T14336] RBP: 00007f4d4aad91d0 R08: 0000000000000000 R09: 0000000000000000 [ 168.910354][T14336] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002 [ 168.918398][T14336] R13: 00007ffec27dc74f R14: 00007f4d4aad9300 R15: 0000000000022000 [ 168.930606][T14338] FAULT_INJECTION: forcing a failure. [ 168.930606][T14338] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 168.943660][T14338] CPU: 1 PID: 14338 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 168.952417][T14338] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 168.962498][T14338] Call Trace: [ 168.965796][T14338] dump_stack_lvl+0xb7/0x103 [ 168.970473][T14338] dump_stack+0x11/0x1a [ 168.974704][T14338] should_fail+0x23c/0x250 [ 168.979204][T14338] should_fail_usercopy+0x16/0x20 [ 168.984347][T14338] _copy_from_user+0x1c/0xd0 [ 168.989022][T14338] do_recvmmsg+0x250/0x9f0 [ 168.993461][T14338] ? fsnotify_perm+0x59/0x2e0 [ 168.998457][T14338] ? __fsnotify_parent+0x32f/0x430 [ 169.003727][T14338] ? __fget_light+0x21b/0x260 [ 169.008628][T14338] ? __cond_resched+0x11/0x40 [ 169.013324][T14338] __x64_sys_recvmmsg+0xcf/0x150 [ 169.018411][T14338] ? exit_to_user_mode_prepare+0x65/0x190 [ 169.024191][T14338] do_syscall_64+0x3d/0x90 [ 169.028749][T14338] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 169.034634][T14338] RIP: 0033:0x4665e9 [ 169.038725][T14338] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 169.058456][T14338] RSP: 002b:00007f1a49a72188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 169.067140][T14338] RAX: ffffffffffffffda RBX: 000000000056c1a8 RCX: 00000000004665e9 [ 169.075101][T14338] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 169.083187][T14338] RBP: 00007f1a49a721d0 R08: 0000000000000000 R09: 0000000000000000 [ 169.091257][T14338] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002 [ 169.099319][T14338] R13: 00007ffc07a1dbbf R14: 00007f1a49a72300 R15: 0000000000022000 23:06:40 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x0) r3 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r3, 0x2403, 0x81) ioctl$F2FS_IOC_RELEASE_VOLATILE_WRITE(r3, 0xf504, 0x0) 23:06:40 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:40 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000200000", 0x1e5) 23:06:40 executing program 4 (fault-call:7 fault-nth:25): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:40 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0xfffffffffffffffe, 0x20080) r1 = syz_io_uring_complete(0x0) ioctl$SG_SET_RESERVED_SIZE(r1, 0x2275, &(0x7f0000000040)=0x1) r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x2080, 0x1c5) preadv(r0, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/240, 0xf0}, {&(0x7f0000000300)=""/4096, 0x1000}, {&(0x7f0000000180)=""/195, 0xc3}, {&(0x7f0000001300)=""/101, 0x65}, {&(0x7f0000001380)=""/70, 0x46}, {&(0x7f0000001400)=""/253, 0xfd}, {&(0x7f0000001500)=""/164, 0xa4}], 0x7, 0x9, 0x8) ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r0, 0xc0096616, &(0x7f0000000280)={0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:40 executing program 3 (fault-call:6 fault-nth:10): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:40 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f00000000c0)={0x87, 0x4, 0x20, "351d4886a610d3d3ac70bbf656ada0cb035b918cd10f709d1e9787f60f6f1f91549512165f9c5c8d7ad6aac4da01c2c6b33eb468a4d8b8c63bfc75301eabae762ea2bb7a810df9f56b74e77c96df3b2d56268d51c0ed425be4f2d9eb075a1f7cc47ac2ea2ca7c531262fc321d373cdcfe552cebffe3fd1db79d015f2fdc14dea08c62544809f70"}) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) preadv(r1, &(0x7f0000000280)=[{&(0x7f0000000180)=""/225, 0xe1}, {&(0x7f0000000300)=""/4096, 0x1000}, {&(0x7f0000001300)=""/93, 0x5d}], 0x3, 0x5, 0x5) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x4, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20040, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}, 0x0, 0xfffffffffffffff0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xac4a}, 0xffffffffffffffff, 0x3, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x0) 23:06:40 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) ioctl$SG_IO(r1, 0x2285, &(0x7f0000000340)={0x0, 0xfffffffffffffffe, 0xf9, 0xc0, @buffer={0x0, 0x2, &(0x7f00000000c0)=""/2}, &(0x7f0000000100)="9ef9d184f6c57c5f7e3af1dde94a19cd91a97b08e7a480ebb0732c4c590998440f8c3c8bcc8d23ad1689a47d4c00e2119e898d360c918e8c154159d9c3d16ff64db3e5d1f03bd35ac1c22be4898425ec6caa96c53569c36bc943d22360b7d12bf72bae0a457604099a2637090c698a5112263830f53599131dc65b35873fe2ed96c71149776d03e0e1cbcbb4e3d10fa59cdb2be4b38cbd5cb0a3df524cda0bbb67bb4ee58b73e0fc1dd7db62717dceb4ff00d6306e144ceae7ecf59ad5a1ab58e45c20fcba4af1f4637e4729625254c1a34b507f1680a7b5c6a522473a4be2ddee683ac7e3a10f6c553d86c19c26b2b61a927d9de3c13b2e31", &(0x7f0000000200)=""/187, 0x7fffffff, 0x2, 0x0, &(0x7f0000000300)}) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) openat$incfs(r1, &(0x7f00000003c0)='.log\x00', 0x200200, 0x80) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x0) 23:06:40 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000600)) ioctl$PERF_EVENT_IOC_RESET(r1, 0x2403, 0x81) writev(r1, &(0x7f0000000440)=[{&(0x7f00000000c0)="34fb546da88ebcd6bdd6bce72ba402769034a2429d94c481a99cc589fd4f5786db7ed960d1cd98badf7fa045caaec1f2d3c206768baeb6ef19314b3cac52cdf7434123a5e215224ce890b43873d1f6df26a0d6731dac48be2288abb7ea7e71bbcf5d39486225eac08eb95cc9eac2debc66c58b7f93d9b8a85e80fe4441305b35a46685e87a9d9b457f9df7231b3f82cc1e5d701aa90533ee93f8821f38cb5293fb6e685bccab7f93c040d46af3528ed6d74937050c0a0243fe1d5c238ea3c13a0b656ffd2f837a222a00301d2810212a899b73eeec860f1f61ebc3a420164f25fa90ef9f43533503cee095454b2b66af1b08303384ba86", 0xf7}, {&(0x7f00000001c0)="5ce066ed01b0f151a1837473040803fbb79df9d0b503cb1bc9934bd36bfda70151daa613fd17db98884d4cf7b48a89f47ab8ec271494b757eeaa77ac7d4e8e55bebd832dd022e8e6b43577f30f8082be2a0e1d1332421c74e7ca078b5d3290bcd0cbebbcc2355164337b023b093e8b4eba431ee0baa0a6f58e27c7e0ccda120c6d0f85962f8fc736912b3bf9a2669642206109422b0864b7e42183159a8b233996df3517b31d", 0xa6}, {&(0x7f0000000280)="dfb63ec188d5b8435bdb46f0be59645445af3a5f689423435400c60d7ba6a05b684ec0ea7155b726ebac75609d679febfb02ec2e12b208", 0x37}, {&(0x7f0000000300)="159f7309bf153b18592ec212064d6f382b942d310a0967696dc0d30c3b47338bd2685f18b13d42dcdc623f4eb84f8157e0342324411bc86379fcc70cb310549877bbb225c5f52d85d1c16b755d2afdeb96eddf766ac11d097bf1eb5bc3e895d00d1c199d62f2b2194c3852deb25872ba9f096aa43ddda08f3f6723873a83f9528c0b673e71e19059c4621a094da4fb70ee325269f3a7d110c6bcb2db51d7b7927566951f805660f4609bab59b35137bd46880252cdad1cd9f1e8bb97e17eccb3d73a6f4a875cc737a661821bd771", 0xce}, {&(0x7f0000000400)="f6d9be6af9548bfefce31080702dda4d02bf1c92adb66a9afaee22f0ec2e16de8273403120ef41076849f153", 0x2c}], 0x5) syz_genetlink_get_family_id$ethtool(&(0x7f0000000540), 0xffffffffffffffff) r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) openat2$dir(0xffffffffffffff9c, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000500)={0x4000, 0x84}, 0x18) r3 = perf_event_open(&(0x7f0000000040)={0x4, 0x80, 0x7f, 0x0, 0x23, 0x12, 0x0, 0x2, 0x40008, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x6, 0x1, @perf_config_ext={0xffff, 0x5}, 0x9040, 0x4, 0x6, 0x3, 0xf6, 0x6, 0x6c00, 0x0, 0x200, 0x0, 0x1}, 0xffffffffffffffff, 0x0, r2, 0xe) r4 = pidfd_getfd(r2, r3, 0x0) perf_event_open(&(0x7f0000000580)={0x2, 0x80, 0x1, 0xfe, 0xa, 0x37, 0x0, 0x3ff, 0x0, 0x5, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_config_ext={0x0, 0x6}, 0x10, 0x80000001, 0x8001, 0x9, 0x0, 0x790000, 0x8fcb, 0x0, 0x4, 0x0, 0x2}, 0x0, 0xd, r4, 0x10) mmap(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x1800003, 0x30, r3, 0x3ff83000) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:40 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000001290000", 0x1e5) 23:06:40 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000180), 0x8341, 0x0) ioctl$PERF_EVENT_IOC_RESET(r3, 0x2403, 0x81) ioctl$FS_IOC_GETFLAGS(r2, 0x80086601, &(0x7f00000000c0)) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r4 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r4, r0, 0x0) pipe(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFVLAN_GET_VLAN_VID_CMD(r5, 0x8982, &(0x7f0000000140)) 23:06:40 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) preadv(r1, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/19, 0x13}, {&(0x7f0000000080)=""/77, 0x4d}, {&(0x7f0000000100)=""/172, 0xac}], 0x3, 0x2, 0x6) recvmmsg(r1, &(0x7f0000004a80)=[{{&(0x7f0000000200)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, 0x80, &(0x7f0000000280)=[{&(0x7f0000000300)=""/167, 0xa7}], 0x1, &(0x7f00000003c0)=""/4096, 0x1000}, 0xffffffff}, {{&(0x7f00000013c0)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000001440)}, 0x1}, {{&(0x7f0000001480)=@l2={0x1f, 0x0, @fixed}, 0x80, &(0x7f0000002700)=[{&(0x7f0000001500)=""/195, 0xc3}, {&(0x7f0000001600)=""/4096, 0x1000}, {&(0x7f0000002600)=""/217, 0xd9}], 0x3, &(0x7f0000002740)=""/4, 0x4}, 0xffffffff}, {{&(0x7f0000002780)=@phonet, 0x80, &(0x7f0000003a00)=[{&(0x7f0000002800)=""/189, 0xbd}, {&(0x7f00000028c0)=""/4096, 0x1000}, {&(0x7f00000038c0)=""/87, 0x57}, {&(0x7f0000003940)=""/76, 0x4c}, {&(0x7f00000039c0)=""/4, 0x4}], 0x5, &(0x7f0000003a80)=""/4096, 0x1000}, 0x4}], 0x4, 0x2100, 0x0) 23:06:40 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x0) [ 169.610855][T14388] FAULT_INJECTION: forcing a failure. [ 169.610855][T14388] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 169.624355][T14388] CPU: 0 PID: 14388 Comm: syz-executor.4 Not tainted 5.14.0-rc2-syzkaller #0 [ 169.633141][T14388] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 169.643189][T14388] Call Trace: [ 169.646736][T14388] dump_stack_lvl+0xb7/0x103 [ 169.651325][T14388] dump_stack+0x11/0x1a [ 169.655476][T14388] should_fail+0x23c/0x250 [ 169.660050][T14388] should_fail_usercopy+0x16/0x20 [ 169.661872][T14389] FAULT_INJECTION: forcing a failure. [ 169.661872][T14389] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 169.665084][T14388] _copy_from_user+0x1c/0xd0 [ 169.665106][T14388] do_recvmmsg+0x250/0x9f0 [ 169.687407][T14388] ? fsnotify_perm+0x59/0x2e0 [ 169.692124][T14388] ? __fsnotify_parent+0x32f/0x430 [ 169.699311][T14388] ? __fget_light+0x21b/0x260 [ 169.703990][T14388] ? __cond_resched+0x11/0x40 [ 169.708661][T14388] __x64_sys_recvmmsg+0xcf/0x150 [ 169.713615][T14388] ? exit_to_user_mode_prepare+0x65/0x190 [ 169.719347][T14388] do_syscall_64+0x3d/0x90 [ 169.724023][T14388] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 169.729919][T14388] RIP: 0033:0x4665e9 [ 169.733835][T14388] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 169.753506][T14388] RSP: 002b:00007f4d4aad9188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 169.761904][T14388] RAX: ffffffffffffffda RBX: 000000000056c0f0 RCX: 00000000004665e9 [ 169.770043][T14388] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 169.777999][T14388] RBP: 00007f4d4aad91d0 R08: 0000000000000000 R09: 0000000000000000 [ 169.786047][T14388] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002 [ 169.794070][T14388] R13: 00007ffec27dc74f R14: 00007f4d4aad9300 R15: 0000000000022000 [ 169.802127][T14389] CPU: 1 PID: 14389 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 169.810929][T14389] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 169.821056][T14389] Call Trace: [ 169.824318][T14389] dump_stack_lvl+0xb7/0x103 [ 169.828961][T14389] dump_stack+0x11/0x1a [ 169.833112][T14389] should_fail+0x23c/0x250 [ 169.837790][T14389] should_fail_usercopy+0x16/0x20 [ 169.842805][T14389] _copy_from_user+0x1c/0xd0 [ 169.847387][T14389] do_recvmmsg+0x250/0x9f0 [ 169.851797][T14389] ? fsnotify_perm+0x59/0x2e0 [ 169.856546][T14389] ? __fsnotify_parent+0x32f/0x430 [ 169.861668][T14389] ? __fget_light+0x21b/0x260 [ 169.866329][T14389] ? __cond_resched+0x11/0x40 [ 169.871002][T14389] __x64_sys_recvmmsg+0xcf/0x150 [ 169.876044][T14389] ? exit_to_user_mode_prepare+0x65/0x190 [ 169.881764][T14389] do_syscall_64+0x3d/0x90 [ 169.886163][T14389] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 169.892046][T14389] RIP: 0033:0x4665e9 [ 169.895940][T14389] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 169.915531][T14389] RSP: 002b:00007f1a49a72188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 169.923977][T14389] RAX: ffffffffffffffda RBX: 000000000056c1a8 RCX: 00000000004665e9 [ 169.931956][T14389] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 169.940067][T14389] RBP: 00007f1a49a721d0 R08: 0000000000000000 R09: 0000000000000000 [ 169.948128][T14389] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002 [ 169.956112][T14389] R13: 00007ffc07a1dbbf R14: 00007f1a49a72300 R15: 0000000000022000 23:06:41 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff0000000ec00000", 0x1e5) 23:06:41 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) openat$hwrng(0xffffffffffffff9c, &(0x7f00000000c0), 0x88000, 0x0) dup3(r2, r0, 0x0) 23:06:41 executing program 4 (fault-call:7 fault-nth:26): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:41 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, 0x0, 0x0, 0x2, 0x0) 23:06:41 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SET_DEBUG(r2, 0x227e, &(0x7f0000000340)) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/213, 0xd5}, {&(0x7f00000001c0)=""/242, 0xf2}], 0x2, 0x1, 0x2) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) ioctl$BTRFS_IOC_LOGICAL_INO_V2(0xffffffffffffffff, 0xc038943b, &(0x7f0000000080)={0x5, 0x8, '\x00', 0x0, &(0x7f0000000040)=[0x0]}) 23:06:41 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000001c90000", 0x1e5) 23:06:41 executing program 3 (fault-call:6 fault-nth:11): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:41 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) preadv(r1, &(0x7f0000000240)=[{&(0x7f0000000300)=""/4096, 0x1000}, {&(0x7f00000000c0)=""/138, 0x8a}, {&(0x7f0000000180)=""/66, 0x42}, {&(0x7f0000000200)=""/8, 0x8}, {&(0x7f0000001300)=""/203, 0xcb}, {&(0x7f0000001400)=""/209, 0xd1}, {&(0x7f0000001500)=""/243, 0xf3}], 0x7, 0xf4, 0x9) r2 = io_uring_setup(0x1186, &(0x7f0000001600)={0x0, 0xcca3, 0x8, 0x1, 0x58}) mmap$IORING_OFF_SQ_RING(&(0x7f00001b9000/0x4000)=nil, 0x4000, 0x300000e, 0x40010, r2, 0x0) r3 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r3, r0, 0x0) 23:06:41 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000400300", 0x1e5) 23:06:41 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, 0xffffffffffffffff, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x10000, 0x0) preadv(r1, &(0x7f0000001380)=[{&(0x7f0000000140)=""/4096, 0x1000}, {&(0x7f0000001140)=""/128, 0x80}, {&(0x7f00000011c0)=""/162, 0xa2}, {&(0x7f0000001280)=""/110, 0x6e}, {&(0x7f0000001300)=""/116, 0x74}], 0x5, 0x4, 0x4) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/seq/timer\x00', 0x0, 0x0) r3 = perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x2, @perf_bp={0x0, 0xc}, 0x0, 0x2, 0x0, 0x8}, r2, 0x0, 0xffffffffffffffff, 0x0) dup3(r3, r0, 0x0) 23:06:41 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040), 0x2, 0x612200) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0) writev(0xffffffffffffffff, &(0x7f00000001c0)=[{&(0x7f0000000080)="a7fcbd8b34a5e2d0fd5eb721c24226182179cbfc9b0f337e345458dcfb2461634cb154dd436c916b3f63d6b464358d1a8e03089725779a15c8bcf96b3266a850e444de09b18b72e558553a1c88a24406b6da1cf0ae84ce0fb4dcad9f1dc9e949ce9bef9596f519c8234fc6896452fdcf8ed68fea214bf4c95f6566a2277159fb42fa799a1fdbe6c370884b938f209d4d120652b15d7916f71a8c70d673f0c8dfbf8c2a842d3a829e8d3bf1917a3e356baa9285f1a667ffecbf6159924de01f44db864cfe7b791170794b65101ce3697c211cb397772b34150536c325d77e349f43ef7163eeb786ecd3780f2965724e46a7a1577c", 0xf4}, {&(0x7f0000000180)="f54bf1caf236fa31f48f3bda9d7bc2a8b96d90465027f2b43aa8691285cfb38d1ab3b8ee727b3af9b242127eeb981151a7d14a", 0x33}], 0x2) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:41 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000034000", 0x1e5) 23:06:41 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x40010, r1, 0x6215a000) 23:06:41 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r3 = dup3(r2, r0, 0x0) ioctl$TIOCMIWAIT(r3, 0x545c, 0x0) [ 170.483912][T14447] FAULT_INJECTION: forcing a failure. [ 170.483912][T14447] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 170.497136][T14447] CPU: 0 PID: 14447 Comm: syz-executor.4 Not tainted 5.14.0-rc2-syzkaller #0 [ 170.505893][T14447] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 170.515963][T14447] Call Trace: [ 170.519230][T14447] dump_stack_lvl+0xb7/0x103 [ 170.523914][T14447] dump_stack+0x11/0x1a [ 170.528094][T14447] should_fail+0x23c/0x250 [ 170.532500][T14447] should_fail_usercopy+0x16/0x20 [ 170.537614][T14447] _copy_from_user+0x1c/0xd0 [ 170.542287][T14447] do_recvmmsg+0x250/0x9f0 [ 170.546866][T14447] ? fsnotify_perm+0x59/0x2e0 [ 170.551764][T14447] ? __fsnotify_parent+0x32f/0x430 [ 170.556865][T14447] ? __fget_light+0x21b/0x260 [ 170.561540][T14447] ? __cond_resched+0x11/0x40 [ 170.566211][T14447] __x64_sys_recvmmsg+0xcf/0x150 [ 170.571158][T14447] ? exit_to_user_mode_prepare+0x65/0x190 [ 170.576975][T14447] do_syscall_64+0x3d/0x90 [ 170.581400][T14447] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 170.587353][T14447] RIP: 0033:0x4665e9 [ 170.591340][T14447] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 170.611234][T14447] RSP: 002b:00007f4d4aad9188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 170.619640][T14447] RAX: ffffffffffffffda RBX: 000000000056c0f0 RCX: 00000000004665e9 [ 170.629086][T14447] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 170.637283][T14447] RBP: 00007f4d4aad91d0 R08: 0000000000000000 R09: 0000000000000000 [ 170.645369][T14447] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002 [ 170.653324][T14447] R13: 00007ffec27dc74f R14: 00007f4d4aad9300 R15: 0000000000022000 [ 170.713652][T14450] FAULT_INJECTION: forcing a failure. [ 170.713652][T14450] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 170.726821][T14450] CPU: 0 PID: 14450 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 170.735576][T14450] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 170.745690][T14450] Call Trace: [ 170.748967][T14450] dump_stack_lvl+0xb7/0x103 [ 170.753548][T14450] dump_stack+0x11/0x1a [ 170.757766][T14450] should_fail+0x23c/0x250 [ 170.762166][T14450] should_fail_usercopy+0x16/0x20 [ 170.767250][T14450] _copy_from_user+0x1c/0xd0 [ 170.771822][T14450] do_recvmmsg+0x250/0x9f0 [ 170.778384][T14450] ? fsnotify_perm+0x59/0x2e0 [ 170.783036][T14450] ? __fsnotify_parent+0x32f/0x430 [ 170.788159][T14450] ? __fget_light+0x21b/0x260 [ 170.792821][T14450] ? __cond_resched+0x11/0x40 [ 170.797482][T14450] __x64_sys_recvmmsg+0xcf/0x150 [ 170.802465][T14450] ? exit_to_user_mode_prepare+0x65/0x190 [ 170.808341][T14450] do_syscall_64+0x3d/0x90 [ 170.812799][T14450] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 170.818677][T14450] RIP: 0033:0x4665e9 [ 170.822568][T14450] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 170.842426][T14450] RSP: 002b:00007f1a49a72188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 170.850822][T14450] RAX: ffffffffffffffda RBX: 000000000056c1a8 RCX: 00000000004665e9 [ 170.858789][T14450] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 170.866745][T14450] RBP: 00007f1a49a721d0 R08: 0000000000000000 R09: 0000000000000000 [ 170.874718][T14450] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002 [ 170.882673][T14450] R13: 00007ffc07a1dbbf R14: 00007f1a49a72300 R15: 0000000000022000 23:06:42 executing program 4 (fault-call:7 fault-nth:27): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:42 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x16, 0x4000010, r2, 0xf91c0000) ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f00000000c0)={0x2c, 0xc21, 0x3, "217903ebb80156cd9fdfe39fd6e948ef311d45f621847d090b518e80d4858b2e204eb4664ca67e99100548ad"}) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) setsockopt$sock_int(r1, 0x1, 0x12, &(0x7f00000003c0)=0x80000001, 0x4) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) r3 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r3, 0x2403, 0x81) syz_io_uring_setup(0x52a2, &(0x7f0000000180)={0x0, 0xa5ea, 0x8, 0x2, 0x219, 0x0, r1}, &(0x7f00007cb000/0x3000)=nil, &(0x7f0000398000/0x2000)=nil, &(0x7f0000000200), &(0x7f0000000240)=0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, 0xffffffffffffffff, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000000700)='./file0\x00', 0x410001, 0x41) renameat(0xffffffffffffffff, &(0x7f00000006c0)='./file0\x00', r5, &(0x7f0000000740)='./file0\x00') syz_io_uring_submit(0x0, r4, &(0x7f0000000280)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r1, 0x0, &(0x7f0000000300)="2942c79ca0c40cefb3021b75f0596ea4cd05ac139ea157862b1e2b11888c7e0d5cb7aede8647c0436eba6c86f0cdcae1e1b4e929d7cfcfb406d67b9a1eb65679dd8626dcd9e6167743f604d97a58d176cc7ab3fa50308bc9f0ce5774e108592d23d5f30fe432116be5d60f326e105f4f3dace2c06c40bf3f52670e3ca75315bbb0c6c6a1e6fdb49c7e433e51d4fd0c4de09b06831c", 0x95, 0x0, 0x1}, 0x3) write(r3, &(0x7f0000000100)="ab9aaee6b6bbe9908fb26c5b70a9f0db9e9442a44a47ff55551ea8ac077b09897dc4fc18ed8054d367bc3de6b94071a9beb4caeaf9fc3bcdd57be03c98a640ffdbc0baad3e52f799ba1dba94e77058fa304b8109dd7f18afb1f246d7a9367ba443557b8090816703206cac199952c7a2144dee59ad", 0x75) preadv(r1, &(0x7f0000000680)=[{&(0x7f0000000400)=""/214, 0xd6}, {&(0x7f0000000500)=""/132, 0x84}, {&(0x7f00000005c0)=""/162, 0xa2}], 0x3, 0x3d, 0x7f) 23:06:42 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000001", 0x1e5) 23:06:42 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x3800003, 0xc012, r1, 0x0) ioctl$SCSI_IOCTL_SYNC(r0, 0x4) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) close_range(r1, r1, 0x2) dup3(r2, r0, 0x0) 23:06:42 executing program 3 (fault-call:6 fault-nth:12): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:42 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, 0x0, 0x0, 0x2, 0x0) 23:06:42 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000002", 0x1e5) 23:06:42 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = accept4(r1, &(0x7f0000000040)=@in={0x2, 0x0, @loopback}, &(0x7f00000000c0)=0x80, 0x800) setsockopt$IP_VS_SO_SET_DELDEST(r2, 0x0, 0x488, &(0x7f0000000100)={{0xc, @multicast2, 0x4e22, 0x2, 'nq\x00', 0x5, 0x1, 0x5a}, {@local, 0x4e23, 0x10000, 0x4, 0xc2, 0x8000}}, 0x44) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:42 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000003", 0x1e5) 23:06:42 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x110, r1, 0x50ad8000) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}, 0x0, 0x4}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x1) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) ioctl$F2FS_IOC_GET_COMPRESS_BLOCKS(r2, 0x8008f511, &(0x7f00000000c0)) r3 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r3, 0x2403, 0x81) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x2400, 0x8b) r4 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r4, r0, 0x0) 23:06:42 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$TCSETSF(r1, 0x5404, &(0x7f00000000c0)={0x9, 0x10000, 0x8, 0x7, 0x2, "dba96ac9dc8ed65f2934b9eb6d43f0a8a4b089"}) dup3(r2, r0, 0x0) 23:06:42 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) io_setup(0x8, &(0x7f0000000040)=0x0) r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x10000, 0x0) io_submit(r2, 0x1, &(0x7f0000000140)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x2, 0x7f, r1, &(0x7f0000000080)="3108ad286bb69fc257d68b746c028892148ac767526a49db811a9e848df195156ff62aa7", 0x24, 0x8, 0x0, 0xe8c17db345fe6a9, r3}]) [ 171.370885][T14497] FAULT_INJECTION: forcing a failure. [ 171.370885][T14497] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 171.383963][T14497] CPU: 0 PID: 14497 Comm: syz-executor.4 Not tainted 5.14.0-rc2-syzkaller #0 [ 171.392792][T14497] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 171.402900][T14497] Call Trace: [ 171.406171][T14497] dump_stack_lvl+0xb7/0x103 [ 171.410807][T14497] dump_stack+0x11/0x1a [ 171.414936][T14497] should_fail+0x23c/0x250 [ 171.419360][T14497] should_fail_usercopy+0x16/0x20 [ 171.424388][T14497] _copy_from_user+0x1c/0xd0 [ 171.429047][T14497] do_recvmmsg+0x250/0x9f0 [ 171.433445][T14497] ? fsnotify_perm+0x59/0x2e0 [ 171.436639][T14501] FAULT_INJECTION: forcing a failure. [ 171.436639][T14501] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 171.438464][T14497] ? __fsnotify_parent+0x32f/0x430 [ 171.438488][T14497] ? __fget_light+0x21b/0x260 [ 171.461247][T14497] ? __cond_resched+0x11/0x40 [ 171.465917][T14497] __x64_sys_recvmmsg+0xcf/0x150 [ 171.470846][T14497] ? exit_to_user_mode_prepare+0x65/0x190 [ 171.476668][T14497] do_syscall_64+0x3d/0x90 [ 171.481069][T14497] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 171.487048][T14497] RIP: 0033:0x4665e9 [ 171.490921][T14497] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 171.510615][T14497] RSP: 002b:00007f4d4aad9188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 171.519035][T14497] RAX: ffffffffffffffda RBX: 000000000056c0f0 RCX: 00000000004665e9 [ 171.526986][T14497] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 171.534936][T14497] RBP: 00007f4d4aad91d0 R08: 0000000000000000 R09: 0000000000000000 [ 171.542895][T14497] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002 [ 171.550950][T14497] R13: 00007ffec27dc74f R14: 00007f4d4aad9300 R15: 0000000000022000 [ 171.558999][T14501] CPU: 1 PID: 14501 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 171.567844][T14501] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 171.577885][T14501] Call Trace: [ 171.581144][T14501] dump_stack_lvl+0xb7/0x103 [ 171.585714][T14501] dump_stack+0x11/0x1a [ 171.589848][T14501] should_fail+0x23c/0x250 [ 171.594276][T14501] should_fail_usercopy+0x16/0x20 [ 171.599278][T14501] _copy_from_user+0x1c/0xd0 [ 171.603856][T14501] do_recvmmsg+0x250/0x9f0 [ 171.608257][T14501] ? fsnotify_perm+0x59/0x2e0 [ 171.612912][T14501] ? __fsnotify_parent+0x32f/0x430 [ 171.618027][T14501] ? __fget_light+0x21b/0x260 [ 171.622678][T14501] ? __cond_resched+0x11/0x40 [ 171.629378][T14501] __x64_sys_recvmmsg+0xcf/0x150 [ 171.634326][T14501] ? exit_to_user_mode_prepare+0x65/0x190 [ 171.640030][T14501] do_syscall_64+0x3d/0x90 [ 171.644432][T14501] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 171.650316][T14501] RIP: 0033:0x4665e9 [ 171.654193][T14501] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 171.673793][T14501] RSP: 002b:00007f1a49a72188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 171.682189][T14501] RAX: ffffffffffffffda RBX: 000000000056c1a8 RCX: 00000000004665e9 [ 171.690152][T14501] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 171.698145][T14501] RBP: 00007f1a49a721d0 R08: 0000000000000000 R09: 0000000000000000 [ 171.706106][T14501] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002 [ 171.714129][T14501] R13: 00007ffc07a1dbbf R14: 00007f1a49a72300 R15: 0000000000022000 23:06:43 executing program 4 (fault-call:7 fault-nth:28): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:43 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000004", 0x1e5) 23:06:43 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) mmap(&(0x7f000001a000/0x3000)=nil, 0x3000, 0x1000001, 0x8010, r2, 0xae0e4000) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r3 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r3, r0, 0x0) r4 = syz_io_uring_complete(0x0) fcntl$dupfd(r3, 0x406, r4) 23:06:43 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x80) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:43 executing program 3 (fault-call:6 fault-nth:13): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:43 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, 0x0, 0x0, 0x2, 0x0) 23:06:43 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000009", 0x1e5) 23:06:43 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f00000024c0)={0x0, 0xfffffffffffffffc, 0x1000, 0x28, @scatter={0x7, 0x0, &(0x7f0000001400)=[{&(0x7f00000000c0)=""/176, 0xb0}, {&(0x7f0000000180)=""/17, 0x11}, {&(0x7f00000001c0)=""/4, 0x4}, {&(0x7f0000000300)=""/195, 0xc3}, {&(0x7f0000000200)=""/60, 0x3c}, {&(0x7f0000000240)=""/28, 0x1c}, {&(0x7f0000000400)=""/4096, 0x1000}]}, &(0x7f0000001480)="fdbd86d98ed1012ffe5b11257f0e3d651ba7750d5f3b6f3bea6a3a044866fe2c9826698ff47432dcb403387b60206f9969f64a027ca65d622812685dc948f7ac12423b4f31f040dc573bb4df6266d2c057b533459069f1c33b64cfe8000af72f2d5b8d3653805050c59ca27fc5c60667e1282a6560e06b597390695731fcff6e2d0e55f6080d1bb94c3000f91084a757cb6d1b4ce1585907efff6153adcd339601874caea891a613c87c5abc94925d665dda49d4f9ce9affd1394a001e010adeba8dad09858bc85145f027b8ec7451859da5adbc3fe4bf341dc96377391fe5cb8fbb55786d21799a7e6af6562185f9ba659f45fab498d4894e8efecf79b04de3fe0c8fa8b50982e78a0277ddb4fe27a73d084a0cbd3343c5e9c36e5adc899110f263a6d87b1d419b237e0f7f5d4b952e233c0ebfa900f284d8ddd3ac36efd8786385cf08227b9ea37bffd2388c8e6475c770c9c702a5283811b04f688933d20342ccbbe9a5eabde665447deadbc7a378b9d5c5be1c1f5a94444a9416a313f024d2e3ed88bb038662deae0596277ac0ff4b704cb6196958b230756ac6d8e951fe06456f34f456c4e0e15bb3d3087185629916b2d2d2000ce044effaed30cfd192d2c1a711630f6e5c0ad6bb5df2be03a4311a5b5de6d6f72d6ec5a49b1acc6846b608c1bdda353b54b83bfc98d67c51583e6bcb9e22214ae1c56c5dd7d7daaa5cd0458fb956d64a2845e4bb0735e74871bb9c66514db9023572721884ed6456eb199082c19b4eff8d701d1e96b84fbf7f0c4162b39472fec8ded526d158e43abe4ad1797fc3c332b188882211bd95a9ddcbd84860695ed7eebfeb0f302ad76962324e49579904d5269422d5cf77c798eeaab8da1a251526a751a048c651daf33c9e2364ba324efc0f977cc5f43713ad591a1ce6692e1865ae75460ccedf1e26d34186c07ea75a45afeee455cc2dabaaa9b33a8a009ee6190044b043b3deffa0b2be264d06522251d17de66fbfb43637b3bafd2608f2ce68e1ed732ded59f22d30b38710636a028f445e6ebeb420c12334b3d155a215343c2b54198faa65091353df8a19742fc835135e1f29f269354008371a1a8888f0d61b6190e4d9083fc602fe68a5ebdc160b4825992a05f83feaf491c74dc1a55b831d56d49557b69d1a4e3b61bad0d50e0c7c33d52c4857529e9f5e8fcb2d18974c804087589bc20b79a8e95b80fd69ec4661f037c9c42f517fa76b7d5a068bdcc9beea027db15808d88b515091553867b04a266020a611e6081778ade30dba24d3d4ed6b28fce40f8c10deea2509e4cdbce1ae477e995c4493ee430a4ec223cf92575f3e4ddfffffafec766e232fea5bcc7f44c19b1e7b82775a8884e56925adb7961b12fd12d2a45b0996a886e10b79304690f20a556719f178a1003e2acdc2b4bfbac835979e71c02a7923054af9da141d8707ed971bea6cac69925deb753ca97903580d5ac23ac813c9de2c7d98f64de0f11dedd6980ce4f81c5ac68cc1d3447a0ec93544d16185a0fd528427f7e1b03b58536c6cd408f659ba0700ddf11ff0d2e990ac042202af6fe5ed48220462c09264fc8e8d820a7c344450acceb76c21b9d308bbb729863d9937ed3ef6558b693adc089935011787e4ccb40426c7362f8f204d32788a4ba552e8f22da7d0edd65c5d0f7ce6918dec57e8274a8f68bbbb7ccdbe77a870c6a7c63c8d62e7c7f9f62679350dc4a697ed5aa45089494411031d1f8d87ecf96fbe167eed3e18b822bc4f12e10634257ffd76267d11b4fa7128a68d9cc0ea738eed33ff617ee6841272a3a40f956242481a73640323a43013da58cdcbbacb97bc9d2bd3b698b00ec60d265f7217c191f9ee8210efe61f4b00d83a541f0b47c9c53d987f2dbe318e5117a2e8cc7d5506f595387153f59a5b330c0455e8fdd175e75bd6e4d37b30a627324ef21383153a630ae68aff75d113da7e212249d697cd490d7b9dea3b88e4c3b44653fe0db3f6147bce6184afe351d8a8c00e726050d31c66c3458784d934d4b362644d958acb29eb03e2b420453e1d6d16e3b5aa3ef20a36d6b36824b37bae1dabb39682a7faf06d12439794edc391b8e029f7e766cc7f233eaa35a6c1b0f55c2a7e3f3399d2018637c362fbf83c8bf7a9ba3bddeb44b290dc604c86f682b653d6ed0c351d2e077c303e4e24a2b61769d2e1f1ef9561f23591e288330efffc921f1968ea364e0f1726afb820be5dc65c29385c84ea66ec03842b97d1f2987c47682c5e757261bb3dde98be578bf44310d16b1e641bc7c71f0f5c779dee756f51940b437f19bce293c56942bff06c4fa036a6006d45500276d4c4b67c0dc760ba703f10206ea4b24129d66476fd5c283dc30f8842df157bb47820e6aba6c4021401137ade3458ca7520ca456476f924a69df31051b78c7a99d0f02ad624a8ffb0d21372432d496f3f7b265f37dc209c68f1b46e4dac2d378aa5ff828de9792dcb95e8c32ce87e5463eff2af5b6df8df847c77b1b8bde478546f29f009cce513e854b937226e79310a7803aadbeeb23d32209565b4a6e4d5ceb9bea035ec9bac3ee307eeb5962c4f4cd9e16bd17720031ab1aca054e3a50c259613edd0d8e01a156f0a3f91aa6a64632a023d4ccb64c022d405ed48e8014eee3c4016a4dc9e66e6b4e10081a763e23b8312801bce0150c71e5fc60f16d55a0d677c02f2ceb77975ffa8bdc2ff3f3e8587c3abd5c80ea09b0e904a57e933e14ac0579495044e74cb25908dde49d4abb326cb158106dad10669e9114c541bb4a059f446750a9d2c7398b077268c1a966123d066fceafe2620d21ce90a117656ebdc6562e81b9fd4e2bbefc12243c0a805ec29af65dfc221edda0748130004e418a87777899041ab42e8c90d3b83e7d07b3623493648e9532acc0a63761579af07bde1285e569dd0e9e6b7180caf9751e71250528ef97d548d68daef558215508df60f872d816d7c2d99f1df3927e42c43e9f80ee60d63d7c4d0abe72ad55cfa40c3768833ce81b79710e03a0a77f07e7f2c8b65b95af30738c7a6d195e39999731d0c458e1bca946fe18749fc5d25ed80bc1f9cc0509414a3ae5c2da828eb43c3b01e959e6e455608c86d05bdb8a471c0e27eaf1f8a475f463644f4a8a610f3ba109e6904f6762b6511ac682a0936af79099bb437e15a3d6219981ebd778e916a26da4d74c34ab99760e33c57aec3b880c141db604444dc98f24432a138be752126d2d5552ae1d6230055e67d6cca7a05e2eedbed82b5e84936f91bc5c7fe80a16b61fa6dde4799263d3f4d91bf84b82a2e1c18047ef306c19d5504c43ae722f7e794dd3c072648e9762b07d8d3d7784080a66bf52561f1f8a54aa99d1e9f389b6cd902dacb214c2c7d07ce56a3066673446e5277e60bb4d82c7695e1ee4cbe373dcdc151540732eb40b65b67c232e5725589ddbdae1fe5451c82dc2ca2694b8393aaf074a16aaa84adededd7128c4f6dc6ed6a60022e672b0db5b5edbe0693ae00f9238bbdf02e142837c59b0c884b77cc90ba3705463d4ac4d8bb7f00634317f60b8e83ee5bd03d0ad75a1dfcb614182ed1b0158264e6c827aa3b268b8f0e78d755d6dfafb91002287f237b75e3729bec3b53db2ffce73f0c12a13a99206bd4fa2964e68bae2881f9ad1fa7e05e5fa471d15de46c05686c4227495f08166f958f900534a453d6c1b05f774884e2ec0e2097f9bdfe291423f1bf3f07ddb7ef21b7f72ffc37d1a3d9c2b2862c85ef1b6fbfb60f4bc41f4c1936e17de3cf530e24546ccca915b6f59a8f448345794034d088905bbacea9949ac6300bde7d12bfdc82ddb65f2b2b4d7e36fbbc0411cfad347ba290fdd8792e7a309518c3340dcd12e34f2138e2bac5780c48bf2cde3d86bf3966b27d7fc529f5baf9cda835a5fc6983121ed50299b61ed10ed418a5ede4003692ccde1803fe7e99377f83083f7ac436c3701f5ad96cae352c68f3cafc4ff1f7877561270fff47471c28c98c699d833a563f4a515b61f9ec753dab70499a7570ae604640c9114219176a973671c9857fbe46212f269cc94f7e7ef722c09731d66bf14a7981ebc806e300b007f90312e1f5ed249ed44c1478d73cabd257bdd11093e4b2b1201ad9d2dd774d2a059087d0ba24ee935d458a5884723d68877d3c416d714b9c1b7892ef9408bd2c9b371c6566cc63e117920bc6cd08deb5f6524082eed2dcc01c24f2c9e099daa44a6b190d7e7c5c1e25a6ab82feebbcc99b80118036c608449693f2eea22aad799d74c38cfab80784b1b16aac16618fda1a1851f361d0cdf5e7dfd2a0ae3a7782f07178aa27076e49c287ac6c870f920f58ad40b1a024724dc2047a63eb1a26fa5daa50ea1b1233525523277e0cb83452d8e06a13f48d45918fa526d1a7f53d0fb4609081fe314ea111061c197434674d4a89f85730d4c88515eec3738aa4098730396f86ad4ba00389831348295e75937a95f04e35d11c20861459271a11d6cb3d2bb7fa747a7061daa11387f28557ac89aa02582e9f91f3fbca87b1a1e37b54d81c0dcd46a2159e72dd29f167dd8d9f19a958b35e23ca8cf53a83ca05d5e596a4170a37b2ea0aad64f6e6a54f0c1ecabfb92bd01dc9417b6b3edc8c00e2ba0fd8bfd57d4ddfdcbf3931233671e7a3eead6efd53e8b586b0194c779ab7f4dea29af69b2eaac0fbf9426616ce5cb24c462f24ec1a3b24dfe7773db742854a449fdc6a918fd3d9062d133b10c32318f863801de4b69d9891f87c4bde214bb4edda4e42647d32ca8fdf47ae7634a6c09a2bf3b597234ddd4a52a08fa05399f73da7c70ec0bcc74f2fa1f2c424f0dc7e6f06d62131f6fc0e72af02d0ca3071f3ebde31fdcf468e7f2377827f00cf64c5821f66b29c665bbabb39721cbb2bf189bbc9750f2ac09e4fcfb78fc41a062f99063beb09f278be901b978a3be30cf118e587a32b8a4da083c29ed90ab35b07b0a83d5376279d1c649c2ac73ec9c41d9d36245a468ae5f40c5c9fc0f59761ff3e4b428d140143ef987bf837cb21b73f2e133e25cad3631f4b969e43241245a396aad5f4da7989018681171d3430f667375696b249326b979743058d23bfb62d4114df20edebc756db1e9cc00629b2edd19196d844aade6ea51d43aae6f7f582db8f07f29f36c64d00bf77be1a4e256f1d428a9c6c60be2abb260cd94dfc28632c07955407c061e03a9df1a66c270f0a0279cdb1270c4c082f60c8d32a4fd7e8a645c4bf9b11c3d4d311b31da850a8c4a1d4377ff6339a98a95ccc408e362f5f58d706526d665a9567d4e5a65338a5aa392037745a90a0c35e94a41a9d840d6b67ab5f1d937ac01fbda348b33231cd6cdd7ce6690b719c178cc677cbdbc5bb4a744ac0cf5d9fb88585ff586948a638457a92245e9ae147e50436eed560bd8995cdce2ce87d7d3287ead88cd9c7ef171b892c4eedff112b740b34e50e04da7f028601164fdd194f34d913ae436ab0c099e851ec9ff66b38a6339a57cee33d9b9990bf3f04d5989293f555368f2281afea617d2afe8ecde08649f901ded4e8abd7bb6472ae89869be20aa39e4a918f8172a7cce400e597943be667b12cb6304b270366faea95dea9e59a28dc13b24b9b8cd68093062319448d64b2596193ddf6695ecdc8ec161a8177e2fcfd5ce0e2d0279d009e14132a2eaac409c6a9ca4314231a40f758a6508cae360e9675e5cef5005745dc5dedda083f433525c7b3029592effde2980571cc57d2c539938606b745063ebfd0f91d3e", &(0x7f0000000280)=""/61, 0xffffffff, 0x4, 0x0, &(0x7f0000002480)}) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x0) 23:06:43 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:43 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff0000000000000a", 0x1e5) 23:06:43 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) ioctl$SG_IO(r1, 0x2285, &(0x7f00000004c0)={0x0, 0xfffffffffffffffd, 0xa3, 0x1f, @scatter={0x3, 0x0, &(0x7f0000000240)=[{&(0x7f00000000c0)=""/92, 0x5c}, {&(0x7f0000000140)=""/195, 0xc3}, {&(0x7f0000000300)=""/145, 0x91}]}, &(0x7f00000003c0)="dacbb0fee42ade01a1395ad0212bd223ef9b7cc9adcfe409d739b7de2a94995ba1672545943772047817cf67086117360ecb50e32e5216bbe0f41e33260f30c20a48bdc38787ecd2ebaced6f598327b756691d1cb9993f3e94744d4e02ddd2c30ba7ce761cde73333cea66444ddc7173b0b84d14abe869344cd5453d9eefd64b580846fc2e3354a6d5740a6847b5af33d1da4e179de7f11f65f259bc0ffee1c0c5bdb6", &(0x7f0000000280)=""/27, 0xffffffff, 0x10034, 0x2, &(0x7f0000000480)}) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x0) 23:06:43 executing program 1: syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r0 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$vcsn(&(0x7f00000000c0), 0x0, 0x8960d7428ea59229) ioctl$SCSI_IOCTL_PROBE_HOST(r1, 0x5385, &(0x7f0000000100)={0x2a, ""/42}) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) r3 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r3, 0x2403, 0x81) r4 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r4, 0x2403, 0x81) dup3(r3, r4, 0x0) [ 172.285752][T14551] FAULT_INJECTION: forcing a failure. [ 172.285752][T14551] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 172.298789][T14551] CPU: 0 PID: 14551 Comm: syz-executor.4 Not tainted 5.14.0-rc2-syzkaller #0 [ 172.307635][T14551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 172.317664][T14551] Call Trace: [ 172.320934][T14551] dump_stack_lvl+0xb7/0x103 [ 172.325629][T14551] dump_stack+0x11/0x1a [ 172.325773][T14552] FAULT_INJECTION: forcing a failure. [ 172.325773][T14552] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 172.329777][T14551] should_fail+0x23c/0x250 [ 172.329813][T14551] should_fail_usercopy+0x16/0x20 [ 172.329836][T14551] _copy_from_user+0x1c/0xd0 [ 172.356841][T14551] do_recvmmsg+0x250/0x9f0 [ 172.361450][T14551] ? fsnotify_perm+0x59/0x2e0 [ 172.366118][T14551] ? __fsnotify_parent+0x32f/0x430 [ 172.371217][T14551] ? __fget_light+0x21b/0x260 [ 172.375883][T14551] ? __cond_resched+0x11/0x40 [ 172.380549][T14551] __x64_sys_recvmmsg+0xcf/0x150 [ 172.385537][T14551] ? exit_to_user_mode_prepare+0x65/0x190 [ 172.391279][T14551] do_syscall_64+0x3d/0x90 [ 172.395680][T14551] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 172.401594][T14551] RIP: 0033:0x4665e9 [ 172.405472][T14551] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 172.425127][T14551] RSP: 002b:00007f4d4aad9188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 172.433522][T14551] RAX: ffffffffffffffda RBX: 000000000056c0f0 RCX: 00000000004665e9 [ 172.441491][T14551] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 172.449507][T14551] RBP: 00007f4d4aad91d0 R08: 0000000000000000 R09: 0000000000000000 [ 172.457524][T14551] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002 [ 172.465508][T14551] R13: 00007ffec27dc74f R14: 00007f4d4aad9300 R15: 0000000000022000 [ 172.473462][T14552] CPU: 1 PID: 14552 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 172.482222][T14552] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 172.492363][T14552] Call Trace: [ 172.495632][T14552] dump_stack_lvl+0xb7/0x103 [ 172.500275][T14552] dump_stack+0x11/0x1a [ 172.504421][T14552] should_fail+0x23c/0x250 [ 172.508884][T14552] should_fail_usercopy+0x16/0x20 [ 172.513892][T14552] _copy_from_user+0x1c/0xd0 [ 172.518463][T14552] do_recvmmsg+0x250/0x9f0 [ 172.522861][T14552] ? fsnotify_perm+0x59/0x2e0 [ 172.527521][T14552] ? __fsnotify_parent+0x32f/0x430 [ 172.532660][T14552] ? __fget_light+0x21b/0x260 [ 172.537309][T14552] ? __cond_resched+0x11/0x40 [ 172.541972][T14552] __x64_sys_recvmmsg+0xcf/0x150 [ 172.546938][T14552] ? exit_to_user_mode_prepare+0x65/0x190 [ 172.552637][T14552] do_syscall_64+0x3d/0x90 [ 172.557031][T14552] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 172.562911][T14552] RIP: 0033:0x4665e9 [ 172.566781][T14552] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 172.586453][T14552] RSP: 002b:00007f1a49a72188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 172.594872][T14552] RAX: ffffffffffffffda RBX: 000000000056c1a8 RCX: 00000000004665e9 [ 172.602837][T14552] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 172.610893][T14552] RBP: 00007f1a49a721d0 R08: 0000000000000000 R09: 0000000000000000 [ 172.618842][T14552] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002 [ 172.626794][T14552] R13: 00007ffc07a1dbbf R14: 00007f1a49a72300 R15: 0000000000022000 23:06:44 executing program 4 (fault-call:7 fault-nth:29): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:44 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000010", 0x1e5) 23:06:44 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x18040, 0x0) r1 = syz_mount_image$msdos(&(0x7f0000000040), &(0x7f0000000400)='./file0\x00', 0xfffffffffffffff7, 0x3, &(0x7f0000000380)=[{&(0x7f0000000140)="0d5924f5d530faed56232a66c510b6e6dee89126f9", 0x15, 0xff}, {&(0x7f0000000180)="293457096939e7e812f78980bc9a1a2799aa587008efbd2324e038f228e2b0d33f5045e4f74238f8e5b72199191b8de4f53abe25dc423da2c994ad4df992689f75cf7016c1ac0f00c4591c756c0a987c9f8848f4eb85aa8cdb52755b1cb90da529568fb2081c30f0527ec8a6c2fc73d449861bcd0ee13a76257f56f8c68eec0aee9e81aba55998072a3c335426cc956c85eaa449969d46c3b3c34432f8753d72d7081e3f59ab3c80d4b340ab5ad8345a9431f7e4c048ebf3d52d18a78ac110754b222802cc83216bd6bd5e97a46a98c6935087e15d9abed08c92647afa58a63f77584d5841b7ea792e5f8fa793a2d9", 0xef, 0x1}, {&(0x7f0000000280)="c9bf4ee71e73b8571bdb17e796ba91b0d20c64dc56ec4db077bb48e1d0d18b5231ed78a31e40280cbcae194e9ab01f863ea5bc13eb102c68014027de8d7b2a985db3f3eeab3249bc2fb9eeeb6aa0cf1040cbdc04915422b7cf061c5f3182d1f4b3bbd4bb4bc1b76c786c8503cb2b33d3cc96a081d06c8391cfccace1d852cb1cca113894b8779363275813f2e07b0567a0d9f8cbfc605ef49e78d820989495adfd55274cb6a45a44cc6c5732033cbdcb3acdb16193b96c55489d8bdce4f1a75c3a5d5942cca11dfa38a142d7d58c4829ae473c", 0xd3, 0xfffffffffffffe00}], 0x8, &(0x7f00000004c0)={[{@fat=@errors_remount}, {@fat=@check_normal}, {@fat=@sys_immutable}, {@fat=@fmask}, {@dots}, {@nodots}, {@nodots}, {}, {@fat=@quiet}], [{@obj_type}]}) r2 = openat(r1, &(0x7f00000000c0)='./file0\x00', 0x743102, 0x1a0) r3 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r3, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r3, 0x1, &(0x7f0000000540)={0xae, 0x3, 0x8001, "7f46965b152f3bf6e3eb26d483dfd41823ddd4da66dca0b6c36887f211c8d4b843076504b62e158aa8aa8e0866eaac2283e7bb37f2ad9c316a0a74efea29906ff7cbefdc7073de5dab981e2a7eecf08e54aaef2fb6115335aa7a4bd463644cc0901080642bf1f34711dfe3521230e2f7a8dffc2c83d1cd5f26c6d3f684b47f284ba9ed8a4048823b1b00fb8221ae6c0893eddfd865338224fe6822c492ad1e13546e980d5a13556ad5e341d8f1d8"}) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:44 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) fcntl$F_GET_RW_HINT(r2, 0x40b, &(0x7f00000000c0)) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) r3 = open$dir(&(0x7f0000000100)='./file0\x00', 0x0, 0x10a) r4 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) sendmsg$NFT_BATCH(r2, &(0x7f0000000240)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000200)={&(0x7f0000002d00)=ANY=[@ANYBLOB="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"], 0x350}, 0x1, 0x0, 0x0, 0x8000}, 0x80) ioctl$PERF_EVENT_IOC_RESET(r4, 0x2403, 0x81) splice(r3, &(0x7f0000000140)=0x54f2, r4, &(0x7f0000000180)=0x9, 0x1, 0x6) r5 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r6 = getpid() pidfd_open(r6, 0x0) r7 = openat$cgroup_ro(r1, &(0x7f00000027c0)='rdma.current\x00', 0x0, 0x0) perf_event_open(&(0x7f0000002740)={0x1, 0x80, 0x6, 0xc1, 0x1, 0x8, 0x0, 0x20, 0x10000, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x63, 0x1, @perf_bp={&(0x7f0000002700), 0x3}, 0x200, 0x3c, 0x7, 0x3, 0x2, 0x8, 0x200, 0x0, 0x7fffffff, 0x0, 0x2}, r6, 0xa, r7, 0x9) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, 0xffffffffffffffff, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000002800)=0x3) writev(r3, &(0x7f00000026c0)=[{&(0x7f0000000680)="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", 0x1000}, {&(0x7f0000000280)="f4a26368a0a463cba04f2e4d45009c1e46f011f5f0e018cc9cfb4a5fdcf36945e2d40878fbf7b5e083ce1673ebcb9d077e708bf3f51cde", 0x37}, {&(0x7f0000001680)="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", 0x1000}, {&(0x7f0000002680)="245d03", 0x3}], 0x4) dup3(r5, r0, 0x0) 23:06:44 executing program 3 (fault-call:6 fault-nth:14): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:44 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x0, 0x0) 23:06:44 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) ioctl$F2FS_IOC_START_ATOMIC_WRITE(r0, 0xf501, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:44 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000020", 0x1e5) 23:06:44 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000300)=[{&(0x7f00000003c0)=""/212, 0xd4}, {&(0x7f00000001c0)=""/212, 0xd4}], 0x2, 0xffff4de3, 0x7) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffc}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r3 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r3, 0x2403, 0x81) fcntl$F_GET_FILE_RW_HINT(r3, 0x40d, &(0x7f0000000380)) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) ioctl$BTRFS_IOC_SCRUB_CANCEL(r2, 0x941c, 0x0) r4 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r4, r0, 0x0) ioctl$TCSETSW(r1, 0x5403, &(0x7f0000000340)={0x8000, 0xd3, 0xe1b1, 0x7, 0xa, "547fb627ca7d687cc80fe607c81ad26b155ba7"}) 23:06:44 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000080)={0x8c, 0x5, 0x8, "7a0895bf4bbc67bf14e1a90da378f9b5fe086787576db19445be014659ba25f9a779d0867b0b56b56cf06ea5d50f234ca297fc7859173e51fff1519e6e1a8753bec708687407477041fa9b3f9f8e5458e74bf16e12025e77f66cf29f7b4d4c599aa24430407b1efd9af1fefa582c7683a813cac0f8c5e0c08acdc65d04a766524ce128f857a884db0c67a5c1"}) r2 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x2080, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x0, 0xd9f, 0x2) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:44 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000129", 0x1e5) 23:06:44 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0xfffffffffffffffc, 0x23, 0x9, @scatter={0x1, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/228, 0xe4}]}, &(0x7f0000000200)="1e4841cfcbbb3be790ae2ad8ad7ff93a4a2a91b8be9a35469dcbb7286153cc3f0ff10d", &(0x7f0000000300)=""/161, 0x4, 0x24, 0x2, &(0x7f0000000240)}) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x0) [ 173.141351][ C1] sd 0:0:1:0: [sg0] tag#7333 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 173.142333][T14603] FAULT_INJECTION: forcing a failure. [ 173.142333][T14603] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 173.151734][ C1] sd 0:0:1:0: [sg0] tag#7333 CDB: Prevent/Allow Medium Removal [ 173.164843][T14603] CPU: 0 PID: 14603 Comm: syz-executor.4 Not tainted 5.14.0-rc2-syzkaller #0 [ 173.172374][ C1] sd 0:0:1:0: [sg0] tag#7333 CDB[00]: 1e 48 41 cf cb bb 3b e7 90 ae 2a d8 ad 7f f9 3a [ 173.181078][T14603] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 173.181089][T14603] Call Trace: [ 173.181097][T14603] dump_stack_lvl+0xb7/0x103 [ 173.190894][ C1] sd 0:0:1:0: [sg0] tag#7333 CDB[10]: 4a 2a 91 b8 be 9a 35 46 9d cb b7 28 61 53 cc 3f [ 173.201162][T14603] dump_stack+0x11/0x1a [ 173.201180][T14603] should_fail+0x23c/0x250 [ 173.204442][ C1] sd 0:0:1:0: [sg0] tag#7333 CDB[20]: 0f f1 0d [ 173.208987][T14603] should_fail_usercopy+0x16/0x20 [ 173.238207][T14603] _copy_from_user+0x1c/0xd0 [ 173.242786][T14603] do_recvmmsg+0x250/0x9f0 [ 173.247190][T14603] ? fsnotify_perm+0x59/0x2e0 [ 173.252005][T14603] ? __fsnotify_parent+0x32f/0x430 [ 173.257109][T14603] ? __fget_light+0x21b/0x260 [ 173.261764][T14603] ? __cond_resched+0x11/0x40 [ 173.266457][T14603] __x64_sys_recvmmsg+0xcf/0x150 [ 173.271515][T14603] ? exit_to_user_mode_prepare+0x65/0x190 [ 173.277225][T14603] do_syscall_64+0x3d/0x90 [ 173.281621][T14603] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 173.287497][T14603] RIP: 0033:0x4665e9 [ 173.291370][T14603] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 173.310962][T14603] RSP: 002b:00007f4d4aad9188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 173.319352][T14603] RAX: ffffffffffffffda RBX: 000000000056c0f0 RCX: 00000000004665e9 [ 173.327317][T14603] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 173.335280][T14603] RBP: 00007f4d4aad91d0 R08: 0000000000000000 R09: 0000000000000000 [ 173.343253][T14603] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002 [ 173.351201][T14603] R13: 00007ffec27dc74f R14: 00007f4d4aad9300 R15: 0000000000022000 [ 173.360439][T14606] FAULT_INJECTION: forcing a failure. [ 173.360439][T14606] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 173.368502][ C0] sd 0:0:1:0: [sg0] tag#7334 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 173.373519][T14606] CPU: 1 PID: 14606 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 173.383837][ C0] sd 0:0:1:0: [sg0] tag#7334 CDB: Prevent/Allow Medium Removal [ 173.392537][T14606] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 173.392549][T14606] Call Trace: [ 173.392555][T14606] dump_stack_lvl+0xb7/0x103 [ 173.392576][T14606] dump_stack+0x11/0x1a [ 173.400112][ C0] sd 0:0:1:0: [sg0] tag#7334 CDB[00]: 1e 48 41 cf cb bb 3b e7 90 ae 2a d8 ad 7f f9 3a [ 173.410120][T14606] should_fail+0x23c/0x250 [ 173.413404][ C0] sd 0:0:1:0: [sg0] tag#7334 CDB[10]: 4a 2a 91 b8 be 9a 35 46 9d cb b7 28 61 53 cc 3f [ 173.417953][T14606] should_fail_usercopy+0x16/0x20 [ 173.422110][ C0] sd 0:0:1:0: [sg0] tag#7334 CDB[20]: 0f f1 0d [ 173.431590][T14606] _copy_from_user+0x1c/0xd0 [ 173.431611][T14606] do_recvmmsg+0x250/0x9f0 [ 173.431632][T14606] ? fsnotify_perm+0x59/0x2e0 [ 173.470513][T14606] ? __fsnotify_parent+0x32f/0x430 [ 173.475616][T14606] ? __fget_light+0x21b/0x260 [ 173.480309][T14606] ? __cond_resched+0x11/0x40 [ 173.484975][T14606] __x64_sys_recvmmsg+0xcf/0x150 [ 173.489894][T14606] ? exit_to_user_mode_prepare+0x65/0x190 [ 173.495601][T14606] do_syscall_64+0x3d/0x90 [ 173.500010][T14606] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 173.505882][T14606] RIP: 0033:0x4665e9 [ 173.509760][T14606] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 173.529357][T14606] RSP: 002b:00007f1a49a72188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 173.537743][T14606] RAX: ffffffffffffffda RBX: 000000000056c1a8 RCX: 00000000004665e9 [ 173.545752][T14606] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 173.553780][T14606] RBP: 00007f1a49a721d0 R08: 0000000000000000 R09: 0000000000000000 [ 173.561837][T14606] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002 [ 173.569792][T14606] R13: 00007ffc07a1dbbf R14: 00007f1a49a72300 R15: 0000000000022000 23:06:45 executing program 4 (fault-call:7 fault-nth:30): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:45 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) writev(r0, &(0x7f0000000100)=[{&(0x7f0000000040)="3e76c321a79f29874fab31389bdc1535f39d", 0x12}, {&(0x7f0000000080)="8567720aa72faeee058dc274aec94f5449d6401d1a70cec025c39a87b480a05ba60dc93c7c7044d0a473ed035e2679632014792795858e067ece1974a49f61f0bfd243207b032fa38f6a3e47319c73679ffd71d1646a98", 0x57}], 0x2) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:45 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff000000ffffff81", 0x1e5) 23:06:45 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$EVIOCSMASK(r1, 0x40104593, &(0x7f0000000180)={0x17, 0xb2, &(0x7f00000000c0)="bcdd66dcdcbbba55661a9eac17aa37aa63d5ff46d4ae4560800e702c8ba65ab972382bf3582e207076fc5f0c9cf0f02b8a827c57ac9ba18d547326e98d428641a668d74cab996747765797e190b8036d2cfd64cee8956d6efb79175f99fc2c484c2248310bbc6ea68f890a6702413deffa4baba581681690512700e8f76a1033f5daa3035d9a3c5adfdcfb0ccb86e2cd62afbc7f7bb5a4a5c1b2084ae29f38d3926b6305d697f8912cbec2c2c1231ecea09f"}) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x0) 23:06:45 executing program 3 (fault-call:6 fault-nth:15): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:45 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x0, 0x0) 23:06:45 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x2, 0x26) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f00000014c0)={0x53, 0xffffffffffffffff, 0x61, 0x9, @scatter={0x5, 0x0, &(0x7f0000001280)=[{&(0x7f0000000080)=""/192, 0xc0}, {&(0x7f0000000140)=""/89, 0x59}, {&(0x7f00000001c0)=""/8, 0x8}, {&(0x7f0000000200)=""/106, 0x6a}, {&(0x7f0000000280)=""/4096, 0x1000}]}, &(0x7f0000001300)="67a27c842ba5f80d117c26e008ab6509aaaedcd79a9412bf69042c86d42b46601420f742cbb85f488fb92feb6ea386457d5023f4606db28ff078924f6661e567e74790b205ae161bae1f5c5d575853f2b9e90cbedaa95814ec9f50d65be517b8a9", &(0x7f0000001380)=""/226, 0x1, 0x0, 0x3, &(0x7f0000001480)}) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:45 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff000000ffffff9e", 0x1e5) 23:06:45 executing program 1: r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000600), 0x22e7725e305c9c85, 0x0) r1 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}, 0x10840, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r1, 0x2403, 0x81) ioctl$BTRFS_IOC_SNAP_CREATE(r0, 0x50009401, &(0x7f0000000640)={{r1}, "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"}) r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x3c480, 0x27) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r3, 0x0) r4 = mq_open(&(0x7f00000000c0)='\\\x00', 0x2, 0x13, &(0x7f0000000100)={0x0, 0x26, 0x6, 0xfffffffffffff800}) readv(r4, &(0x7f0000000580)=[{&(0x7f0000000140)=""/237, 0xed}, {&(0x7f0000000240)=""/67, 0x43}, {&(0x7f0000000300)=""/10, 0xa}, {&(0x7f0000000340)=""/189, 0xbd}, {&(0x7f0000000400)=""/123, 0x7b}, {&(0x7f0000000480)=""/227, 0xe3}], 0x6) r5 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r5, 0x0) preadv(r5, &(0x7f0000000280), 0x18, 0xd9f, 0x0) write$rfkill(r5, &(0x7f0000001640)={0x2, 0x3, 0x1, 0x1, 0x1}, 0x8) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(r5, 0xc0505350, &(0x7f0000001680)={{0x5, 0x3}, {0x0, 0x3}, 0x7, 0x7, 0xf9}) dup3(0xffffffffffffffff, r2, 0x0) 23:06:45 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000ec0", 0x1e5) [ 173.964113][ C1] sd 0:0:1:0: [sg0] tag#7335 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 173.974529][ C1] sd 0:0:1:0: [sg0] tag#7335 CDB: opcode=0x67 (reserved) [ 173.981571][ C1] sd 0:0:1:0: [sg0] tag#7335 CDB[00]: 67 a2 7c 84 2b a5 f8 0d 11 7c 26 e0 08 ab 65 09 [ 173.991558][ C1] sd 0:0:1:0: [sg0] tag#7335 CDB[10]: aa ae dc d7 9a 94 12 bf 69 04 2c 86 d4 2b 46 60 [ 174.001233][ C1] sd 0:0:1:0: [sg0] tag#7335 CDB[20]: 14 20 f7 42 cb b8 5f 48 8f b9 2f eb 6e a3 86 45 23:06:45 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r3 = dup3(r2, r0, 0x0) signalfd(r3, &(0x7f00000000c0)={[0x3]}, 0x8) r4 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) chown(&(0x7f0000000280)='.\x00', 0xee01, 0xee00) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r4, 0x0) preadv(r4, &(0x7f0000000280), 0x18, 0xd9f, 0x0) syz_io_uring_setup(0x60fe, &(0x7f0000000100)={0x0, 0xedcb, 0x0, 0x0, 0x65, 0x0, r4}, &(0x7f0000225000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000180), &(0x7f00000001c0)=0x0) syz_io_uring_setup(0xccd, &(0x7f0000000080), &(0x7f000014c000/0x4000)=nil, &(0x7f00006d4000/0x4000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000040)=0x0) syz_io_uring_submit(r6, r7, &(0x7f0000000200)=@IORING_OP_FILES_UPDATE={0x14, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) syz_io_uring_submit(r6, r7, &(0x7f0000000240)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xffffbfff) syz_io_uring_submit(r6, r5, &(0x7f0000000200)=@IORING_OP_READ_FIXED={0x4, 0x2, 0x0, @fd=r3, 0xb04, 0xff, 0x3, 0x1d, 0x0, {0x1}}, 0x200) 23:06:45 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0xfffffffffffffffc, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) [ 174.010787][ C1] sd 0:0:1:0: [sg0] tag#7335 CDB[30]: 7d 50 23 f4 60 6d b2 8f f0 78 92 4f 66 61 e5 67 [ 174.020347][ C1] sd 0:0:1:0: [sg0] tag#7335 CDB[40]: e7 47 90 b2 05 ae 16 1b ae 1f 5c 5d 57 58 53 f2 [ 174.029899][ C1] sd 0:0:1:0: [sg0] tag#7335 CDB[50]: b9 e9 0c be da a9 58 14 ec 9f 50 d6 5b e5 17 b8 [ 174.039447][ C1] sd 0:0:1:0: [sg0] tag#7335 CDB[60]: a9 [ 174.059444][T14645] FAULT_INJECTION: forcing a failure. [ 174.059444][T14645] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 174.072597][T14645] CPU: 1 PID: 14645 Comm: syz-executor.4 Not tainted 5.14.0-rc2-syzkaller #0 [ 174.081461][T14645] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 174.091515][T14645] Call Trace: [ 174.094797][T14645] dump_stack_lvl+0xb7/0x103 [ 174.099459][T14645] dump_stack+0x11/0x1a [ 174.103604][T14645] should_fail+0x23c/0x250 [ 174.108153][T14645] should_fail_usercopy+0x16/0x20 [ 174.113206][T14645] _copy_from_user+0x1c/0xd0 [ 174.117791][T14645] do_recvmmsg+0x250/0x9f0 [ 174.122207][T14645] ? fsnotify_perm+0x59/0x2e0 [ 174.126890][T14645] ? __fsnotify_parent+0x32f/0x430 [ 174.132030][T14645] ? __fget_light+0x21b/0x260 [ 174.136698][T14645] ? __cond_resched+0x11/0x40 [ 174.141490][T14645] __x64_sys_recvmmsg+0xcf/0x150 [ 174.146490][T14645] ? exit_to_user_mode_prepare+0x65/0x190 [ 174.152272][T14645] do_syscall_64+0x3d/0x90 [ 174.156724][T14645] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 174.162618][T14645] RIP: 0033:0x4665e9 [ 174.166501][T14645] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 174.186106][T14645] RSP: 002b:00007f4d4aad9188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 174.194589][T14645] RAX: ffffffffffffffda RBX: 000000000056c0f0 RCX: 00000000004665e9 [ 174.202577][T14645] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 174.210542][T14645] RBP: 00007f4d4aad91d0 R08: 0000000000000000 R09: 0000000000000000 [ 174.218516][T14645] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002 [ 174.226534][T14645] R13: 00007ffec27dc74f R14: 00007f4d4aad9300 R15: 0000000000022000 [ 174.254823][ C1] sd 0:0:1:0: [sg0] tag#7336 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 174.265181][ C1] sd 0:0:1:0: [sg0] tag#7336 CDB: opcode=0x67 (reserved) [ 174.272224][ C1] sd 0:0:1:0: [sg0] tag#7336 CDB[00]: 67 a2 7c 84 2b a5 f8 0d 11 7c 26 e0 08 ab 65 09 [ 174.281783][ C1] sd 0:0:1:0: [sg0] tag#7336 CDB[10]: aa ae dc d7 9a 94 12 bf 69 04 2c 86 d4 2b 46 60 [ 174.291342][ C1] sd 0:0:1:0: [sg0] tag#7336 CDB[20]: 14 20 f7 42 cb b8 5f 48 8f b9 2f eb 6e a3 86 45 [ 174.300903][ C1] sd 0:0:1:0: [sg0] tag#7336 CDB[30]: 7d 50 23 f4 60 6d b2 8f f0 78 92 4f 66 61 e5 67 [ 174.310577][ C1] sd 0:0:1:0: [sg0] tag#7336 CDB[40]: e7 47 90 b2 05 ae 16 1b ae 1f 5c 5d 57 58 53 f2 [ 174.320143][ C1] sd 0:0:1:0: [sg0] tag#7336 CDB[50]: b9 e9 0c be da a9 58 14 ec 9f 50 d6 5b e5 17 b8 [ 174.329794][ C1] sd 0:0:1:0: [sg0] tag#7336 CDB[60]: a9 [ 174.337234][T14661] FAULT_INJECTION: forcing a failure. [ 174.337234][T14661] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 174.350329][T14661] CPU: 1 PID: 14661 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 174.359254][T14661] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 174.369389][T14661] Call Trace: [ 174.372692][T14661] dump_stack_lvl+0xb7/0x103 [ 174.377353][T14661] dump_stack+0x11/0x1a [ 174.381506][T14661] should_fail+0x23c/0x250 [ 174.386010][T14661] should_fail_usercopy+0x16/0x20 [ 174.391036][T14661] _copy_from_user+0x1c/0xd0 [ 174.395623][T14661] do_recvmmsg+0x250/0x9f0 [ 174.400045][T14661] ? fsnotify_perm+0x59/0x2e0 [ 174.404721][T14661] ? __fsnotify_parent+0x32f/0x430 [ 174.409831][T14661] ? __fget_light+0x21b/0x260 [ 174.414507][T14661] ? __cond_resched+0x11/0x40 [ 174.419181][T14661] __x64_sys_recvmmsg+0xcf/0x150 [ 174.424150][T14661] ? exit_to_user_mode_prepare+0x65/0x190 [ 174.429932][T14661] do_syscall_64+0x3d/0x90 [ 174.434342][T14661] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 174.440339][T14661] RIP: 0033:0x4665e9 [ 174.444208][T14661] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 174.463839][T14661] RSP: 002b:00007f1a49a72188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 174.472293][T14661] RAX: ffffffffffffffda RBX: 000000000056c1a8 RCX: 00000000004665e9 [ 174.480256][T14661] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 174.488213][T14661] RBP: 00007f1a49a721d0 R08: 0000000000000000 R09: 0000000000000000 [ 174.496296][T14661] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002 [ 174.504245][T14661] R13: 00007ffc07a1dbbf R14: 00007f1a49a72300 R15: 0000000000022000 23:06:45 executing program 4 (fault-call:7 fault-nth:31): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:45 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) preadv(r2, &(0x7f00000000c0)=[{&(0x7f0000000300)=""/4096, 0x1000}], 0x1, 0x8808, 0x1) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r3, 0x0) preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$LOOP_SET_FD(r3, 0x4c00, r1) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r4 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r4, r0, 0x0) 23:06:45 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff000000000001c9", 0x1e5) 23:06:45 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000376000/0x1000)=nil, 0x1000, 0x1800003, 0x111, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:46 executing program 3 (fault-call:6 fault-nth:16): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:46 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x0, 0x0) 23:06:46 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = fsmount(r1, 0x0, 0x2) ioctl$SG_IO(r2, 0x2285, &(0x7f0000000240)={0x0, 0xfffffffffffffffc, 0x3a, 0x8, @scatter={0x2, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000040)=""/82, 0x52}, {&(0x7f0000000300)=""/4096, 0x1000}]}, &(0x7f0000000100)="5c99fc0ce12fc3311c6695a4e375bfa57228f971c6c04c4d55d3b08c51b79f8edb3828f790825b65fd8022fcef2cf807a1a62635eed9e512b1ba", &(0x7f0000000140)=""/160, 0x9, 0x37, 0xffffffffffffffff, &(0x7f0000000200)}) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:46 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000400)={0x48, 0x994, 0x6, "88407573798565f3eba0aadc3821d78eefb08e8916f3eff3e3784de51c87995618aa96a7342a0e882bd43ad9d8bad0c0e59b77fb2f244b558dce7e1d9fb20ac1928a245479f33b66"}) r2 = open_tree(r1, &(0x7f00000000c0)='./file0\x00', 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r2, 0x1, &(0x7f0000000100)={0x84, 0x80000000, 0xfffffffd, "ae324a3c897f60d258bd9c6121fc2208f5e65b3a5011fdd094b8dfd214afa724270b9b1717d5461f87b3d2667bf00fe1e902fb702165b9d24d861d309e78acb12bd24a2b8b9a66521c01533767ed10121f24c5c941bd1bf46ad610d1aa2a9f1e9d604f9b7e5e08ec9525b3309886a5e3d9f18ca9749aaab88806f1484a47880d199f0dee"}) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) execve(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000240)=[&(0x7f0000000200)='/dev/sg#\x00'], &(0x7f00000003c0)=[&(0x7f0000000280)='\b&$&\'+\xe6{\xc6/\'#,\\@{\x00', &(0x7f0000000300)='/dev/sg#\x00', &(0x7f0000000340)='/dev/sg#\x00', &(0x7f0000000380)='\xeb-#\x00']) r3 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}, 0x10400}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r3, r0, 0x0) 23:06:46 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff000000ffffffea", 0x1e5) 23:06:46 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff000000ffffffef", 0x1e5) 23:06:46 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) renameat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', r1, &(0x7f0000000080)='./file0\x00') preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:46 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff000000fffffff0", 0x1e5) [ 174.876868][T14703] FAULT_INJECTION: forcing a failure. [ 174.876868][T14703] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 174.890041][T14703] CPU: 1 PID: 14703 Comm: syz-executor.4 Not tainted 5.14.0-rc2-syzkaller #0 [ 174.898832][T14703] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 174.908902][T14703] Call Trace: [ 174.912172][T14703] dump_stack_lvl+0xb7/0x103 [ 174.916770][T14703] dump_stack+0x11/0x1a [ 174.920919][T14703] should_fail+0x23c/0x250 [ 174.925351][T14703] should_fail_usercopy+0x16/0x20 [ 174.930436][T14703] _copy_from_user+0x1c/0xd0 [ 174.935025][T14703] do_recvmmsg+0x250/0x9f0 [ 174.939487][T14703] ? fsnotify_perm+0x59/0x2e0 [ 174.944218][T14703] ? __fsnotify_parent+0x32f/0x430 [ 174.949306][T14703] ? __fget_light+0x21b/0x260 [ 174.953959][T14703] ? __cond_resched+0x11/0x40 [ 174.958727][T14703] __x64_sys_recvmmsg+0xcf/0x150 [ 174.963646][T14703] ? exit_to_user_mode_prepare+0x65/0x190 [ 174.966809][T14714] FAULT_INJECTION: forcing a failure. [ 174.966809][T14714] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 174.969366][T14703] do_syscall_64+0x3d/0x90 [ 174.969391][T14703] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 174.992684][T14703] RIP: 0033:0x4665e9 [ 174.996654][T14703] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 175.016295][T14703] RSP: 002b:00007f4d4aad9188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 175.024688][T14703] RAX: ffffffffffffffda RBX: 000000000056c0f0 RCX: 00000000004665e9 [ 175.032638][T14703] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 175.040664][T14703] RBP: 00007f4d4aad91d0 R08: 0000000000000000 R09: 0000000000000000 [ 175.048611][T14703] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002 [ 175.056560][T14703] R13: 00007ffec27dc74f R14: 00007f4d4aad9300 R15: 0000000000022000 [ 175.064514][T14714] CPU: 0 PID: 14714 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 175.073272][T14714] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 175.083327][T14714] Call Trace: [ 175.086595][T14714] dump_stack_lvl+0xb7/0x103 [ 175.091317][T14714] dump_stack+0x11/0x1a [ 175.095455][T14714] should_fail+0x23c/0x250 [ 175.099966][T14714] should_fail_usercopy+0x16/0x20 [ 175.104976][T14714] _copy_from_user+0x1c/0xd0 [ 175.109545][T14714] do_recvmmsg+0x250/0x9f0 [ 175.113954][T14714] ? fsnotify_perm+0x59/0x2e0 [ 175.118610][T14714] ? __fsnotify_parent+0x32f/0x430 [ 175.123852][T14714] ? __fget_light+0x21b/0x260 [ 175.128592][T14714] ? __cond_resched+0x11/0x40 [ 175.133250][T14714] __x64_sys_recvmmsg+0xcf/0x150 [ 175.138177][T14714] ? exit_to_user_mode_prepare+0x65/0x190 [ 175.144053][T14714] do_syscall_64+0x3d/0x90 [ 175.148463][T14714] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 175.154336][T14714] RIP: 0033:0x4665e9 [ 175.158206][T14714] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 175.177898][T14714] RSP: 002b:00007f1a49a72188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 175.186352][T14714] RAX: ffffffffffffffda RBX: 000000000056c1a8 RCX: 00000000004665e9 [ 175.194317][T14714] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 175.202265][T14714] RBP: 00007f1a49a721d0 R08: 0000000000000000 R09: 0000000000000000 [ 175.210218][T14714] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002 [ 175.218256][T14714] R13: 00007ffc07a1dbbf R14: 00007f1a49a72300 R15: 0000000000022000 23:06:46 executing program 4 (fault-call:7 fault-nth:32): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:46 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) ioctl$SG_GET_COMMAND_Q(r0, 0x2270, &(0x7f0000000280)) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x292402, 0x18a) ioctl$SG_IO(r0, 0x2285, &(0x7f0000001840)={0x53, 0x4, 0x1000, 0x5, @scatter={0x5, 0x0, &(0x7f0000000740)=[{&(0x7f00000003c0)=""/232, 0xe8}, {&(0x7f00000004c0)=""/228, 0xe4}, {&(0x7f00000005c0)=""/210, 0xd2}, {&(0x7f00000006c0)=""/71, 0x47}, {&(0x7f0000000140)=""/55, 0x37}]}, &(0x7f00000007c0)="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", &(0x7f00000017c0)=""/30, 0x5, 0x4, 0x0, &(0x7f0000001800)}) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x10, r1, 0xdf105000) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}, 0x43ab9, 0x0, 0x0, 0x2, 0x0, 0xd9}, 0xffffffffffffffff, 0x4, 0xffffffffffffffff, 0x0) r3 = dup3(r2, r0, 0x0) getpid() pidfd_open(0x0, 0x0) r4 = getpid() pidfd_open(r4, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r5, 0x0) preadv(r5, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r6 = fcntl$dupfd(r2, 0x0, r3) gettid() r7 = getpid() pidfd_open(r7, 0x0) clone3(&(0x7f0000000300)={0x10000000, &(0x7f00000000c0), &(0x7f0000000100), &(0x7f00000018c0), {0x1e}, &(0x7f0000000240)=""/40, 0x28, &(0x7f00000001c0)=""/76, &(0x7f0000000240), 0x0, {r6}}, 0x58) 23:06:46 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) ioctl$SG_SCSI_RESET(0xffffffffffffffff, 0x2284, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:46 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff000000fffffffe", 0x1e5) 23:06:46 executing program 3 (fault-call:6 fault-nth:17): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:46 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000081ffffff", 0x1e5) 23:06:46 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) ioctl$F2FS_IOC_ABORT_VOLATILE_WRITE(r1, 0xf505, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x0) 23:06:46 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', 0x0, 0x20) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) move_mount(r1, &(0x7f0000000040)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x10) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) r2 = openat$zero(0xffffffffffffff9c, &(0x7f00000000c0), 0x64000, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r2, 0x1, &(0x7f0000000140)={0xd, 0x9, 0x3, "e742e64f816d4a3d860b873101"}) 23:06:46 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x0, 0x0) 23:06:46 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff0000009effffff", 0x1e5) 23:06:46 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r1, 0x2403, 0x81) fsetxattr$security_ima(r1, &(0x7f0000000040), &(0x7f0000000080)=@sha1={0x1, "72ea0ffde298604d8f916de473ba74a87516ef16"}, 0x15, 0x3) r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:46 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}, 0x0, 0xffffffffffffffff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x0) [ 175.759556][T14762] FAULT_INJECTION: forcing a failure. [ 175.759556][T14762] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 175.772629][T14762] CPU: 1 PID: 14762 Comm: syz-executor.4 Not tainted 5.14.0-rc2-syzkaller #0 [ 175.781372][T14762] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 175.791406][T14762] Call Trace: [ 175.794668][T14762] dump_stack_lvl+0xb7/0x103 [ 175.799242][T14762] dump_stack+0x11/0x1a [ 175.803415][T14762] should_fail+0x23c/0x250 [ 175.807902][T14762] should_fail_usercopy+0x16/0x20 [ 175.812910][T14762] _copy_from_user+0x1c/0xd0 [ 175.817489][T14762] do_recvmmsg+0x250/0x9f0 [ 175.820842][T14764] FAULT_INJECTION: forcing a failure. [ 175.820842][T14764] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 175.821953][T14762] ? fsnotify_perm+0x59/0x2e0 [ 175.839609][T14762] ? __fsnotify_parent+0x32f/0x430 [ 175.844707][T14762] ? __fget_light+0x21b/0x260 [ 175.849364][T14762] ? __cond_resched+0x11/0x40 [ 175.854029][T14762] __x64_sys_recvmmsg+0xcf/0x150 [ 175.858959][T14762] ? exit_to_user_mode_prepare+0x65/0x190 [ 175.864667][T14762] do_syscall_64+0x3d/0x90 [ 175.869097][T14762] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 175.874973][T14762] RIP: 0033:0x4665e9 [ 175.878851][T14762] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 175.898450][T14762] RSP: 002b:00007f4d4aad9188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 175.906845][T14762] RAX: ffffffffffffffda RBX: 000000000056c0f0 RCX: 00000000004665e9 [ 175.914969][T14762] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 175.922951][T14762] RBP: 00007f4d4aad91d0 R08: 0000000000000000 R09: 0000000000000000 [ 175.930900][T14762] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002 [ 175.938869][T14762] R13: 00007ffec27dc74f R14: 00007f4d4aad9300 R15: 0000000000022000 [ 175.946828][T14764] CPU: 0 PID: 14764 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 175.955638][T14764] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 175.965678][T14764] Call Trace: [ 175.968934][T14764] dump_stack_lvl+0xb7/0x103 [ 175.973502][T14764] dump_stack+0x11/0x1a [ 175.977631][T14764] should_fail+0x23c/0x250 [ 175.982038][T14764] should_fail_usercopy+0x16/0x20 [ 175.987059][T14764] _copy_from_user+0x1c/0xd0 [ 175.992631][T14764] do_recvmmsg+0x250/0x9f0 [ 175.997057][T14764] ? fsnotify_perm+0x59/0x2e0 [ 176.001787][T14764] ? __fsnotify_parent+0x32f/0x430 [ 176.006887][T14764] ? __fget_light+0x21b/0x260 [ 176.011540][T14764] ? __cond_resched+0x11/0x40 [ 176.016285][T14764] __x64_sys_recvmmsg+0xcf/0x150 [ 176.021224][T14764] ? exit_to_user_mode_prepare+0x65/0x190 [ 176.026939][T14764] do_syscall_64+0x3d/0x90 [ 176.031345][T14764] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 176.037295][T14764] RIP: 0033:0x4665e9 [ 176.041229][T14764] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 176.060812][T14764] RSP: 002b:00007f1a49a72188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 176.069205][T14764] RAX: ffffffffffffffda RBX: 000000000056c1a8 RCX: 00000000004665e9 [ 176.077167][T14764] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 176.085119][T14764] RBP: 00007f1a49a721d0 R08: 0000000000000000 R09: 0000000000000000 [ 176.093167][T14764] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002 [ 176.101132][T14764] R13: 00007ffc07a1dbbf R14: 00007f1a49a72300 R15: 0000000000022000 23:06:47 executing program 4 (fault-call:7 fault-nth:33): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:47 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff000000eaffffff", 0x1e5) 23:06:47 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f00005b8000/0x1000)=nil, 0x1000, 0x800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x0) 23:06:47 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_GET_VERSION_NUM(r1, 0x2282, &(0x7f0000000080)) pipe2(&(0x7f0000000040)={0xffffffffffffffff}, 0x4800) r3 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r3, 0x2403, 0x81) preadv(r3, &(0x7f0000000280)=[{&(0x7f00000000c0)=""/94, 0x5e}, {&(0x7f0000000140)=""/44, 0x2c}, {&(0x7f0000000180)=""/206, 0xce}, {&(0x7f0000000300)=""/199, 0xc7}], 0x4, 0x3, 0x3) r4 = openat(r2, &(0x7f00000002c0)='./file0\x00', 0xce48379167542a0, 0x30) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r4, 0x0) preadv(r4, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)=@getspdinfo={0x14, 0x25, 0x100, 0x70bd2a, 0x25dfdbfd, 0x8000, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x802}, 0x80) 23:06:47 executing program 3 (fault-call:6 fault-nth:18): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:47 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) openat(r1, &(0x7f00000000c0)='./file0\x00', 0x6040, 0x0) dup3(r2, r0, 0x0) 23:06:47 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) ioctl$INCFS_IOC_GET_FILLED_BLOCKS(r2, 0x80286722, &(0x7f0000000100)={&(0x7f0000000040)=""/189, 0xbd, 0x0, 0x2}) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:47 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x0, 0x0) 23:06:47 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff000000efffffff", 0x1e5) 23:06:47 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x0) r3 = epoll_create(0x3) r4 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f00000000c0), 0x2a2000, 0x0) epoll_ctl$EPOLL_CTL_DEL(r3, 0x2, r4) 23:06:47 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r3 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r3, 0x2403, 0x81) r4 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) sendmsg(r4, &(0x7f0000000600)={&(0x7f0000000300)=@ll={0x11, 0x4, 0x0, 0x1, 0x8, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2e}}, 0x80, &(0x7f00000005c0)=[{&(0x7f0000000380)="911ea5169a4c619f058d28956a505360ee592d9768cc18f47039078b3ed34ea0f27ac0a723c20435c6571a70c95f28327b251a2df1a5243c1d464cc81cdd2329c81fdc35340e43761dec521be54676580ac5d3c2e5344742523a0bdde45036bf", 0x60}, {&(0x7f0000000400)="f6e200a4079ab45c771b8977402451f3f8d2a3baab736213b335093294f66bc3bbf10e2dea2d223ce0158f61fe5cb648c6522f3155d578bb8ffe1f5008a6b83aafef0686f5c5e93f07c172913925ae2bba57478ea37706911ca874d259e151c153251803f84088fadebe32c1c5f743e33fe96579d57d4a732b0bccbc46d44558b5fe08c09383672632a57bd068f7cbdf177ad7f51379378ba34fe74ccd522dc3592c3a57cf1e1f0abc039eb7d601b2fc", 0xb0}, {&(0x7f0000000280)="206882f5f1d08b5da461690ae3e2cc9f", 0x10}, {&(0x7f00000004c0)="8dc2b19a977f29384180deb83f57a521b1f87630fc7e541b7ffa805105c589c5653312e4d422b4d9cd17c3ae174570ad5b66dbcbf9c5c43a41fb1e377354e5ab8ef71230642f21c78b7dcbec4427f81544b4519be32b543c0e7e0c2aa54f02cfa0e64691a8b1b442c407112808526665b1a204547f3084fb028578846e70dbb8ae3cfff95df308684408aa4b53d8dc945913c3c0d68b532ca720ceac0a75f1e0de40bf7ac70fa5d21e4733497dc4d2c8bad070dc3e6a04b8f3f6183fd29485d5bf4a483a583026ce1319de", 0xcb}], 0x4}, 0x800) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r4, 0x0) preadv(r4, &(0x7f0000000280), 0x18, 0xd9f, 0x0) sendmsg$NL80211_CMD_GET_KEY(r4, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x38, 0x0, 0x103, 0x70bd2c, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x8, 0x7f}}}}, [@NL80211_ATTR_KEY_TYPE={0x8}, @NL80211_ATTR_KEY_CIPHER={0x8, 0x9, 0xfac05}, @NL80211_ATTR_KEY_TYPE={0x8, 0x37, 0x1}]}, 0x38}, 0x1, 0x0, 0x0, 0x40}, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x1, 0x0, 0x2e, 0x0, 0x8, 0x40000, 0x8, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x6, 0x4, @perf_bp={&(0x7f00000000c0)}, 0x0, 0x8, 0x9, 0x0, 0xff, 0x5, 0x6, 0x0, 0x400, 0x0, 0x7}, 0x0, 0xf, r3, 0xa) dup3(r2, r0, 0x0) 23:06:47 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff000000f0ffffff", 0x1e5) [ 176.651843][T14816] FAULT_INJECTION: forcing a failure. [ 176.651843][T14816] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 176.665024][T14816] CPU: 1 PID: 14816 Comm: syz-executor.4 Not tainted 5.14.0-rc2-syzkaller #0 [ 176.673769][T14816] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 176.683894][T14816] Call Trace: [ 176.687155][T14816] dump_stack_lvl+0xb7/0x103 [ 176.691779][T14816] dump_stack+0x11/0x1a [ 176.695640][T14817] FAULT_INJECTION: forcing a failure. [ 176.695640][T14817] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 176.695913][T14816] should_fail+0x23c/0x250 [ 176.713391][T14816] should_fail_usercopy+0x16/0x20 [ 176.718411][T14816] _copy_from_user+0x1c/0xd0 [ 176.723061][T14816] do_recvmmsg+0x250/0x9f0 [ 176.727469][T14816] ? fsnotify_perm+0x59/0x2e0 [ 176.732180][T14816] ? __fsnotify_parent+0x32f/0x430 [ 176.737274][T14816] ? __fget_light+0x21b/0x260 [ 176.741947][T14816] ? __cond_resched+0x11/0x40 [ 176.746612][T14816] __x64_sys_recvmmsg+0xcf/0x150 [ 176.751545][T14816] ? exit_to_user_mode_prepare+0x65/0x190 [ 176.757257][T14816] do_syscall_64+0x3d/0x90 [ 176.761659][T14816] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 176.767630][T14816] RIP: 0033:0x4665e9 [ 176.771510][T14816] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 176.791187][T14816] RSP: 002b:00007f4d4aad9188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 176.799595][T14816] RAX: ffffffffffffffda RBX: 000000000056c0f0 RCX: 00000000004665e9 [ 176.807571][T14816] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 176.815571][T14816] RBP: 00007f4d4aad91d0 R08: 0000000000000000 R09: 0000000000000000 [ 176.823596][T14816] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002 [ 176.831544][T14816] R13: 00007ffec27dc74f R14: 00007f4d4aad9300 R15: 0000000000022000 [ 176.839497][T14817] CPU: 0 PID: 14817 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 176.848273][T14817] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 176.858416][T14817] Call Trace: [ 176.861674][T14817] dump_stack_lvl+0xb7/0x103 [ 176.866251][T14817] dump_stack+0x11/0x1a [ 176.870449][T14817] should_fail+0x23c/0x250 [ 176.874866][T14817] should_fail_usercopy+0x16/0x20 [ 176.879867][T14817] _copy_from_user+0x1c/0xd0 [ 176.884562][T14817] do_recvmmsg+0x250/0x9f0 [ 176.888959][T14817] ? fsnotify_perm+0x59/0x2e0 [ 176.893611][T14817] ? __fsnotify_parent+0x32f/0x430 [ 176.898721][T14817] ? __fget_light+0x21b/0x260 [ 176.903446][T14817] ? __cond_resched+0x11/0x40 [ 176.908186][T14817] __x64_sys_recvmmsg+0xcf/0x150 [ 176.913309][T14817] ? exit_to_user_mode_prepare+0x65/0x190 [ 176.919101][T14817] do_syscall_64+0x3d/0x90 [ 176.923568][T14817] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 176.929438][T14817] RIP: 0033:0x4665e9 [ 176.933321][T14817] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 176.952905][T14817] RSP: 002b:00007f1a49a72188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 176.961402][T14817] RAX: ffffffffffffffda RBX: 000000000056c1a8 RCX: 00000000004665e9 [ 176.969357][T14817] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 176.977327][T14817] RBP: 00007f1a49a721d0 R08: 0000000000000000 R09: 0000000000000000 [ 176.985272][T14817] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002 [ 176.993399][T14817] R13: 00007ffc07a1dbbf R14: 00007f1a49a72300 R15: 0000000000022000 23:06:48 executing program 4 (fault-call:7 fault-nth:34): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:48 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r3 = openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x460000, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setresuid(0x0, r4, 0xee00) getresgid(&(0x7f0000000100)=0x0, &(0x7f0000000140), &(0x7f0000000180)) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f00000001c0)={0x0, 0x0}, &(0x7f0000000200)=0xc) r7 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r7, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setresuid(0x0, r8, 0xee00) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x1d080b, &(0x7f0000000300)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r3, @ANYBLOB=',access=', @ANYRESDEC=r4, @ANYBLOB=',dfltgid=', @ANYRESHEX=r5, @ANYBLOB=',mmap,cachetag=/dev/sg#\x00,cache=none,access=user,uid>', @ANYRESDEC=r6, @ANYBLOB=',euid=', @ANYRESDEC=r8, @ANYBLOB="2c6d5161737572da4e44"]) 23:06:48 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r1, 0x2284, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000000c0), 0x80, 0x0) r4 = syz_open_dev$rtc(&(0x7f0000000140), 0x9, 0x4c0000) fsconfig$FSCONFIG_SET_FD(r3, 0x5, &(0x7f0000000100)='/dev/sg#\x00', 0x0, r4) r5 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r5, r0, 0x0) 23:06:48 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff000000feffffff", 0x1e5) 23:06:48 executing program 3 (fault-call:6 fault-nth:19): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:48 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) ioctl$SCSI_IOCTL_PROBE_HOST(r0, 0x5385, &(0x7f0000000300)={0x1000, ""/4096}) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x0) 23:06:48 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) 23:06:48 executing program 5 (fault-call:5 fault-nth:0): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:48 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r1, 0x2403, 0x81) ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000040)={0x0, r0, 0xfffffffffffffff7, 0x8, 0x80, 0x8}) r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:48 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r3 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r3, 0x2403, 0x81) r4 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$INCFS_IOC_READ_FILE_SIGNATURE(r2, 0x8010671f, &(0x7f0000000380)={&(0x7f0000000300)=""/69, 0x45}) ioctl$PERF_EVENT_IOC_RESET(r4, 0x2403, 0x81) write$binfmt_elf64(r4, &(0x7f00000000c0)={{0x7f, 0x45, 0x4c, 0x46, 0x8, 0x0, 0x5, 0x7f, 0x9, 0x1, 0x5, 0xffffffff, 0x24b, 0x40, 0x26e, 0x0, 0x40, 0x38, 0x1, 0x9f, 0x8, 0x1}, [{0x70000000, 0x6, 0x7fffffff, 0x2, 0x401, 0x4, 0xffffffffffffff36, 0x5ad}, {0x4, 0x3f, 0x4, 0xcd9, 0x200, 0x4, 0x1, 0x2}], "5b8bf96336e617981a755caa0205c6125d61c0005c", ['\x00']}, 0x1c5) dup3(r0, r3, 0x80000) 23:06:48 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) 23:06:48 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x0, 0xd9f, 0xffffffff) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) r3 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r4 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r5 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TIOCL_PASTESEL(r5, 0x541c, &(0x7f0000001940)) r6 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xb8, 0x2, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xdf8c, 0x6a}, 0x0, 0xfff, 0x8, 0x4, 0x40000000}, 0x0, 0x3, 0xffffffffffffffff, 0x0) r7 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCADDRT(r7, 0x890b, &(0x7f0000000040)={0x0, @l2tp={0x2, 0x0, @remote={0xac, 0x10, 0x3}}, @isdn={0x22, 0x60, 0xff, 0x3f, 0x80}, @nl=@unspec, 0xf0f4, 0x0, 0x0, 0x0, 0x301, &(0x7f0000000340)='syz_tun\x00'}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r7, 0x81f8943c, &(0x7f0000001640)={0x0, ""/256, 0x0, 0x0, 0x0}) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r6, 0x50009418, &(0x7f0000000400)={{}, r8, 0x0, @inherit={0x88, &(0x7f0000001c00)=ANY=[@ANYBLOB="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"]}, @devid}) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r6, 0x50009418, &(0x7f0000000100)={{r6}, r8, 0xc, @inherit={0x60, &(0x7f0000001900)=ANY=[@ANYRESOCT]}, @name="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"}) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r5, 0x50009418, &(0x7f0000000680)={{r4}, r8, 0x4, @unused=[0x101, 0x2, 0x835, 0x8], @name="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"}) ioctl$BTRFS_IOC_SNAP_CREATE_V2(r3, 0x50009417, &(0x7f0000001e40)={{r3}, r8, 0x18, @unused=[0x2, 0x9, 0x100000000, 0x8], @subvolid=0x80000001}) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f0000000300)={{r2}, r8, 0x8, @unused=[0x5, 0x7, 0x498, 0x1000], @name="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"}) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) [ 177.533875][T14869] FAULT_INJECTION: forcing a failure. [ 177.533875][T14869] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 177.533914][T14869] CPU: 1 PID: 14869 Comm: syz-executor.4 Not tainted 5.14.0-rc2-syzkaller #0 [ 177.555846][T14869] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 177.555859][T14869] Call Trace: [ 177.555866][T14869] dump_stack_lvl+0xb7/0x103 [ 177.566497][T14870] FAULT_INJECTION: forcing a failure. [ 177.566497][T14870] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 177.569170][T14869] dump_stack+0x11/0x1a [ 177.590890][T14869] should_fail+0x23c/0x250 [ 177.590916][T14869] should_fail_usercopy+0x16/0x20 [ 177.591013][T14869] _copy_from_user+0x1c/0xd0 [ 177.591063][T14869] do_recvmmsg+0x250/0x9f0 [ 177.591081][T14869] ? fsnotify_perm+0x59/0x2e0 [ 177.591098][T14869] ? __fsnotify_parent+0x32f/0x430 [ 177.591113][T14869] ? __fget_light+0x21b/0x260 [ 177.591125][T14869] ? __cond_resched+0x11/0x40 [ 177.591170][T14869] __x64_sys_recvmmsg+0xcf/0x150 [ 177.591287][T14869] ? exit_to_user_mode_prepare+0x65/0x190 [ 177.591306][T14869] do_syscall_64+0x3d/0x90 [ 177.591322][T14869] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 177.591342][T14869] RIP: 0033:0x4665e9 [ 177.591354][T14869] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 177.591373][T14869] RSP: 002b:00007f4d4aad9188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 177.591389][T14869] RAX: ffffffffffffffda RBX: 000000000056c0f0 RCX: 00000000004665e9 [ 177.591398][T14869] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 177.591468][T14869] RBP: 00007f4d4aad91d0 R08: 0000000000000000 R09: 0000000000000000 [ 177.591478][T14869] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002 [ 177.591487][T14869] R13: 00007ffec27dc74f R14: 00007f4d4aad9300 R15: 0000000000022000 [ 177.591500][T14870] CPU: 0 PID: 14870 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 177.591520][T14870] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 177.591530][T14870] Call Trace: [ 177.591535][T14870] dump_stack_lvl+0xb7/0x103 [ 177.591620][T14870] dump_stack+0x11/0x1a [ 177.591636][T14870] should_fail+0x23c/0x250 [ 177.591803][T14870] should_fail_usercopy+0x16/0x20 [ 177.591831][T14870] _copy_from_user+0x1c/0xd0 [ 177.591852][T14870] do_recvmmsg+0x250/0x9f0 [ 177.591974][T14870] ? fsnotify_perm+0x59/0x2e0 [ 177.591991][T14870] ? __fsnotify_parent+0x32f/0x430 [ 177.592010][T14870] ? __fget_light+0x21b/0x260 [ 177.592024][T14870] ? __cond_resched+0x11/0x40 [ 177.592120][T14870] __x64_sys_recvmmsg+0xcf/0x150 [ 177.592143][T14870] ? exit_to_user_mode_prepare+0x65/0x190 [ 177.592210][T14870] do_syscall_64+0x3d/0x90 [ 177.592230][T14870] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 177.592303][T14870] RIP: 0033:0x4665e9 [ 177.592316][T14870] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 177.592334][T14870] RSP: 002b:00007f1a49a72188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 177.592354][T14870] RAX: ffffffffffffffda RBX: 000000000056c1a8 RCX: 00000000004665e9 [ 177.592364][T14870] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 177.592376][T14870] RBP: 00007f1a49a721d0 R08: 0000000000000000 R09: 0000000000000000 [ 177.592386][T14870] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002 [ 177.592395][T14870] R13: 00007ffc07a1dbbf R14: 00007f1a49a72300 R15: 0000000000022000 [ 177.659968][T14872] FAULT_INJECTION: forcing a failure. [ 177.659968][T14872] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 177.898514][T14872] CPU: 1 PID: 14872 Comm: syz-executor.5 Not tainted 5.14.0-rc2-syzkaller #0 [ 177.898535][T14872] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 177.898545][T14872] Call Trace: [ 177.898551][T14872] dump_stack_lvl+0xb7/0x103 [ 177.925144][T14872] dump_stack+0x11/0x1a [ 177.925164][T14872] should_fail+0x23c/0x250 [ 177.933697][T14872] should_fail_usercopy+0x16/0x20 [ 177.933727][T14872] _copy_from_user+0x1c/0xd0 [ 177.933746][T14872] do_recvmmsg+0x250/0x9f0 [ 177.947860][T14872] ? fsnotify_perm+0x59/0x2e0 [ 177.947883][T14872] ? __fsnotify_parent+0x32f/0x430 [ 177.957631][T14872] ? get_pid_task+0x8b/0xc0 [ 177.957651][T14872] ? vfs_write+0x50c/0x770 [ 177.966536][T14872] ? __fget_light+0x21b/0x260 [ 177.966559][T14872] ? __cond_resched+0x11/0x40 [ 177.975891][T14872] __x64_sys_recvmmsg+0xcf/0x150 [ 177.975918][T14872] ? exit_to_user_mode_prepare+0x65/0x190 [ 177.986529][T14872] do_syscall_64+0x3d/0x90 [ 177.986552][T14872] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 177.996815][T14872] RIP: 0033:0x4665e9 [ 177.996830][T14872] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 177.996847][T14872] RSP: 002b:00007f867b67a188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 178.020475][T14872] RAX: ffffffffffffffda RBX: 000000000056c1a8 RCX: 00000000004665e9 [ 178.020487][T14872] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 178.020499][T14872] RBP: 00007f867b67a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 178.052844][T14872] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001 [ 178.052858][T14872] R13: 00007ffe5f2f6c0f R14: 00007f867b67a300 R15: 0000000000022000 [ 178.074656][T14866] ================================================================== [ 178.074682][T14866] BUG: KCSAN: data-race in n_tty_receive_char / n_tty_receive_char [ 178.090590][T14866] [ 178.090597][T14866] write to 0xffffc9000140b000 of 8 bytes by task 12654 on cpu 1: [ 178.090612][T14866] n_tty_receive_char+0x622/0x6c0 [ 178.105625][T14866] n_tty_receive_buf_common+0xf2e/0x4e70 [ 178.105649][T14866] n_tty_receive_buf+0x2b/0x40 [ 178.115993][T14866] tty_ioctl+0x968/0x1120 [ 178.116010][T14866] __se_sys_ioctl+0xcb/0x140 [ 178.116026][T14866] __x64_sys_ioctl+0x3f/0x50 [ 178.129455][T14866] do_syscall_64+0x3d/0x90 [ 178.129476][T14866] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 178.139746][T14866] [ 178.139752][T14866] read to 0xffffc9000140b000 of 8 bytes by task 14866 on cpu 0: [ 178.139767][T14866] n_tty_receive_char+0x28d/0x6c0 [ 178.154667][T14866] n_tty_receive_buf_common+0xf2e/0x4e70 [ 178.154688][T14866] n_tty_receive_buf2+0x2e/0x40 [ 178.154705][T14866] tty_ldisc_receive_buf+0x5b/0xf0 [ 178.170755][T14866] paste_selection+0x215/0x300 [ 178.170785][T14866] tioclinux+0xe5/0x450 [ 178.179697][T14866] vt_ioctl+0x26e/0x2060 [ 178.179720][T14866] tty_ioctl+0xa24/0x1120 [ 178.179754][T14866] __se_sys_ioctl+0xcb/0x140 [ 178.179771][T14866] __x64_sys_ioctl+0x3f/0x50 [ 178.179784][T14866] do_syscall_64+0x3d/0x90 [ 178.201824][T14866] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 178.201850][T14866] [ 178.201853][T14866] value changed: 0x00000000000006fb -> 0x00000000000006fc [ 178.201863][T14866] [ 178.201866][T14866] Reported by Kernel Concurrency Sanitizer on: [ 178.201872][T14866] CPU: 0 PID: 14866 Comm: syz-executor.0 Not tainted 5.14.0-rc2-syzkaller #0 23:06:49 executing program 4 (fault-call:7 fault-nth:35): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:49 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000541000/0x4000)=nil, 0x4000, 0x6, 0x810, r2, 0x43805000) mmap(&(0x7f00005b0000/0x4000)=nil, 0x4000, 0x100000a, 0x30, r2, 0xae2b7000) r3 = ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0) mmap(&(0x7f0000091000/0x4000)=nil, 0x4000, 0x2000004, 0x10010, r0, 0xa44e6000) lseek(r3, 0x0, 0x3) dup3(r2, r0, 0x0) 23:06:49 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) 23:06:49 executing program 3 (fault-call:6 fault-nth:20): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) [ 178.234364][T14866] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 178.234377][T14866] ================================================================== 23:06:49 executing program 5 (fault-call:5 fault-nth:1): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:49 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x410040, 0x0) ioctl$SG_IO(r1, 0x2285, &(0x7f0000002540)={0x0, 0xfffffffffffffffd, 0x1000, 0xc, @scatter={0x5, 0x0, &(0x7f00000013c0)=[{&(0x7f0000000080)=""/223, 0xdf}, {&(0x7f0000000180)=""/19, 0x13}, {&(0x7f00000001c0)=""/159, 0x9f}, {&(0x7f0000000300)=""/4096, 0x1000}, {&(0x7f0000001300)=""/166, 0xa6}]}, &(0x7f0000001440)="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", &(0x7f0000002440)=""/193, 0x80000000, 0x10034, 0x0, &(0x7f0000000280)}) r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) r3 = openat2$dir(0xffffffffffffff9c, &(0x7f0000002ac0)='./file0\x00', &(0x7f0000002b00)={0x81, 0x109, 0xd}, 0x18) fchdir(r3) 23:06:49 executing program 1: prlimit64(0x0, 0x7, &(0x7f0000000040), 0x0) socketpair(0x0, 0x0, 0x0, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x30, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x0) 23:06:49 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) 23:06:49 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000240)={0x53, 0xfffffffffffffffb, 0xa4, 0x0, @buffer={0x0, 0x1000, &(0x7f0000000300)=""/4096}, &(0x7f0000000040)="a1f35e73e3341ef95905dc02ad4b453238388850ddbc2a4fb34058ba6dc14c128c31d9029bd819e72f99ca2f5073aff28ad2eb9011be17e2307d3c4b197d9c29a38d6aa7ec38335e3141ad8fbef1757e692c8c2cf8b11f14e1877cc26bd0a8815a7c1f72399f134e3d9ee99e94379003a96ab99ba3c995784d3d72913fbdf183a4dd5b4b54ae874854c557a29ec17621c8868e4751a50c487bad9c2bb5fe72da659d6063", &(0x7f0000000100)=""/228, 0x7, 0x10022, 0x0, &(0x7f0000000200)}) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) clock_gettime(0x0, &(0x7f0000006d40)={0x0, 0x0}) recvmmsg(r1, &(0x7f0000006b80)=[{{&(0x7f0000001300)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @local}}, 0x80, &(0x7f0000001580)=[{&(0x7f0000001380)=""/122, 0x7a}, {&(0x7f0000001400)=""/114, 0x72}, {&(0x7f0000001480)=""/252, 0xfc}], 0x3, &(0x7f00000015c0)=""/223, 0xdf}, 0x5}, {{&(0x7f00000016c0)=@un=@abs, 0x80, &(0x7f0000003800)=[{&(0x7f0000001740)=""/4096, 0x1000}, {&(0x7f0000002740)=""/69, 0x45}, {&(0x7f00000027c0)}, {&(0x7f0000002800)=""/4096, 0x1000}], 0x4, &(0x7f0000003840)=""/167, 0xa7}}, {{&(0x7f0000003900)=@nl=@unspec, 0x80, &(0x7f0000004cc0)=[{&(0x7f0000003980)=""/19, 0x13}, {&(0x7f00000039c0)=""/4096, 0x1000}, {&(0x7f00000049c0)=""/98, 0x62}, {&(0x7f0000004a40)}, {&(0x7f0000006e80)=""/260, 0x104}, {&(0x7f0000004b80)=""/158, 0x9e}, {&(0x7f0000004c40)=""/80, 0x50}], 0x7, &(0x7f0000004d40)=""/84, 0x54}, 0x401}, {{0x0, 0x0, &(0x7f0000004ec0)=[{&(0x7f0000004dc0)=""/53, 0x35}, {&(0x7f0000004e00)=""/134, 0x86}], 0x2}, 0xe6}, {{&(0x7f0000004f00)=@alg, 0x80, &(0x7f0000006100)=[{&(0x7f0000004f80)=""/198, 0xc6}, {&(0x7f0000005080)=""/119, 0x77}, {&(0x7f0000005100)=""/4096, 0x1000}], 0x3, &(0x7f0000006140)=""/137, 0x89}, 0xef8}, {{&(0x7f0000006200)=@qipcrtr, 0x80, &(0x7f0000006780)=[{&(0x7f0000006280)=""/243, 0xf3}, {&(0x7f0000006380)=""/211, 0xd3}, {&(0x7f0000006480)=""/66, 0x42}, {&(0x7f0000006500)=""/186, 0xba}, {&(0x7f0000006dc0)=""/182, 0xb6}, {&(0x7f0000006680)=""/95, 0x5f}, {&(0x7f0000006700)=""/75, 0x4b}], 0x7, &(0x7f0000006800)=""/154, 0x9a}, 0xfba1}, {{0x0, 0x0, &(0x7f0000006b00)=[{&(0x7f00000068c0)=""/212, 0xd4}, {&(0x7f00000069c0)}, {&(0x7f0000006a00)=""/238, 0xee}], 0x3, &(0x7f0000006b40)=""/29, 0x1d}}], 0x7, 0x1, &(0x7f0000006d80)={r2, r3+10000000}) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:49 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) r2 = openat2(r1, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)={0x101c00, 0x0, 0x9}, 0x18) accept$unix(r2, &(0x7f0000000140), &(0x7f00000001c0)=0x6e) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r3 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r3, r0, 0x0) 23:06:49 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = syz_mount_image$nfs(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x7ff, 0x4, &(0x7f0000000200)=[{&(0x7f0000000180)="dcbf2eceac34ba1e834608388adc8cdc3f00e361ee8e6e13d6a1c542b3522a126b592ee175fc932e8eec00", 0x2b, 0x40}, {&(0x7f0000000300)="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", 0x1000, 0x480}, {&(0x7f00000001c0)="79c314ef3a685c2a3514edd39c83e2af817a3c000d45ae9b8d0846d2fa1b14eddec1c4dc6cac80", 0x27, 0xffffffff}, {&(0x7f0000001300)="7bf58355737ef9403ac65347d03f9a34ce76241e5cdce9e56e166bc581338b105e29a749c43f235e73b0f21b99c1c4dfe81e785fea9f26dceb27ca2bb7d36e5f99d1069087537c5ddfb3b9dcb0caac941c6874979a64c732116648d9bcd089916d5c654a53f9b3fe74ba10556229aed7751491e743e15ba9a2c537e13c283ec32b2cd4d5886a6af66bfa0a437c64a45336bd2e7a91f1e61bc7ed2e3cf31ac3dbbb69f4648a826f8063888445daad286283431bbbb915b5a61ae1e070ce080761b4e17ec94268637e", 0xc8, 0x800}], 0x0, &(0x7f0000001400)={[{'/dev/zero\x00'}, {':s'}, {'/dev/zero\x00'}, {'^//'}, {'+\xea,\\{'}, {}], [{@fscontext={'fscontext', 0x3d, 'staff_u'}}, {@fowner_gt={'fowner>', 0xee00}}, {@fsname={'fsname', 0x3d, '#!\xeb\\:&^%'}}, {@smackfshat={'smackfshat', 0x3d, '/dev/sg#\x00'}}, {@uid_eq}, {@subj_user={'subj_user', 0x3d, '/dev/sg#\x00'}}]}) r2 = openat(r1, &(0x7f00000002c0)='./file0\x00', 0x490000, 0x0) write(r2, &(0x7f0000000040)="74a9925de0d1077388b7", 0xa) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4001, 0x0) ioctl$SCSI_IOCTL_PROBE_HOST(r3, 0x5385, &(0x7f00000000c0)={0x25, ""/37}) 23:06:49 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) [ 178.423256][T14915] FAULT_INJECTION: forcing a failure. [ 178.423256][T14915] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 178.436415][T14915] CPU: 0 PID: 14915 Comm: syz-executor.4 Not tainted 5.14.0-rc2-syzkaller #0 [ 178.445205][T14915] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 178.450571][T14921] FAULT_INJECTION: forcing a failure. [ 178.450571][T14921] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 178.455242][T14915] Call Trace: [ 178.455252][T14915] dump_stack_lvl+0xb7/0x103 [ 178.476391][T14915] dump_stack+0x11/0x1a [ 178.480542][T14915] should_fail+0x23c/0x250 [ 178.485049][T14915] should_fail_usercopy+0x16/0x20 [ 178.490130][T14915] _copy_from_user+0x1c/0xd0 [ 178.494767][T14915] do_recvmmsg+0x250/0x9f0 [ 178.499243][T14915] ? fsnotify_perm+0x59/0x2e0 [ 178.503986][T14915] ? __fsnotify_parent+0x32f/0x430 [ 178.509081][T14915] ? __fget_light+0x21b/0x260 [ 178.513736][T14915] ? __cond_resched+0x11/0x40 [ 178.518410][T14915] __x64_sys_recvmmsg+0xcf/0x150 [ 178.523329][T14915] ? exit_to_user_mode_prepare+0x65/0x190 [ 178.529081][T14915] do_syscall_64+0x3d/0x90 [ 178.533491][T14915] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 178.539383][T14915] RIP: 0033:0x4665e9 [ 178.543268][T14915] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 178.562966][T14915] RSP: 002b:00007f4d4aad9188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 178.571520][T14915] RAX: ffffffffffffffda RBX: 000000000056c0f0 RCX: 00000000004665e9 [ 178.579473][T14915] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 178.587423][T14915] RBP: 00007f4d4aad91d0 R08: 0000000000000000 R09: 0000000000000000 [ 178.595485][T14915] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002 [ 178.603584][T14915] R13: 00007ffec27dc74f R14: 00007f4d4aad9300 R15: 0000000000022000 [ 178.611700][T14921] CPU: 1 PID: 14921 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 178.616950][T14922] FAULT_INJECTION: forcing a failure. [ 178.616950][T14922] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 178.620548][T14921] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 178.620578][T14921] Call Trace: [ 178.620584][T14921] dump_stack_lvl+0xb7/0x103 [ 178.651716][T14921] dump_stack+0x11/0x1a [ 178.655890][T14921] should_fail+0x23c/0x250 [ 178.660304][T14921] should_fail_usercopy+0x16/0x20 [ 178.665314][T14921] _copy_from_user+0x1c/0xd0 [ 178.669890][T14921] do_recvmmsg+0x250/0x9f0 [ 178.674292][T14921] ? fsnotify_perm+0x59/0x2e0 [ 178.678952][T14921] ? __fsnotify_parent+0x32f/0x430 [ 178.684094][T14921] ? __fget_light+0x21b/0x260 [ 178.688837][T14921] ? __cond_resched+0x11/0x40 [ 178.693500][T14921] __x64_sys_recvmmsg+0xcf/0x150 [ 178.698575][T14921] ? exit_to_user_mode_prepare+0x65/0x190 [ 178.704289][T14921] do_syscall_64+0x3d/0x90 [ 178.708690][T14921] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 178.714596][T14921] RIP: 0033:0x4665e9 [ 178.718496][T14921] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 178.738081][T14921] RSP: 002b:00007f1a49a72188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 178.746582][T14921] RAX: ffffffffffffffda RBX: 000000000056c1a8 RCX: 00000000004665e9 [ 178.754549][T14921] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 178.762503][T14921] RBP: 00007f1a49a721d0 R08: 0000000000000000 R09: 0000000000000000 [ 178.770455][T14921] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002 [ 178.778592][T14921] R13: 00007ffc07a1dbbf R14: 00007f1a49a72300 R15: 0000000000022000 [ 178.786553][T14922] CPU: 0 PID: 14922 Comm: syz-executor.5 Not tainted 5.14.0-rc2-syzkaller #0 [ 178.795659][T14922] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 178.806234][T14922] Call Trace: [ 178.809508][T14922] dump_stack_lvl+0xb7/0x103 [ 178.814083][T14922] dump_stack+0x11/0x1a [ 178.818224][T14922] should_fail+0x23c/0x250 [ 178.822695][T14922] should_fail_usercopy+0x16/0x20 [ 178.827697][T14922] _copy_from_user+0x1c/0xd0 [ 178.832293][T14922] do_recvmmsg+0x250/0x9f0 [ 178.836702][T14922] ? fsnotify_perm+0x59/0x2e0 [ 178.841432][T14922] ? __fsnotify_parent+0x32f/0x430 [ 178.846519][T14922] ? __fget_light+0x21b/0x260 [ 178.851181][T14922] ? __cond_resched+0x11/0x40 [ 178.855959][T14922] __x64_sys_recvmmsg+0xcf/0x150 [ 178.860878][T14922] ? exit_to_user_mode_prepare+0x65/0x190 [ 178.866577][T14922] do_syscall_64+0x3d/0x90 [ 178.871102][T14922] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 178.876995][T14922] RIP: 0033:0x4665e9 [ 178.880868][T14922] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 178.900480][T14922] RSP: 002b:00007f867b67a188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 178.908871][T14922] RAX: ffffffffffffffda RBX: 000000000056c1a8 RCX: 00000000004665e9 [ 178.916880][T14922] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 178.924838][T14922] RBP: 00007f867b67a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 178.932787][T14922] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001 [ 178.940740][T14922] R13: 00007ffe5f2f6c0f R14: 00007f867b67a300 R15: 0000000000022000 23:06:50 executing program 4 (fault-call:7 fault-nth:36): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:50 executing program 1: mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x3000001, 0x13, 0xffffffffffffffff, 0x27b2f000) r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0xc}, 0x0, 0x0, 0x0, 0x5}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xa) r3 = dup3(r2, r0, 0x0) r4 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0), 0x18000, 0x0) r5 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000100), 0x900, 0x0) r6 = openat$zero(0xffffffffffffff9c, &(0x7f0000001a40), 0x14881, 0x0) openat$cgroup_subtree(r6, &(0x7f0000001a80), 0x2, 0x0) r7 = syz_mount_image$tmpfs(&(0x7f0000000140), &(0x7f0000000180)='./file0\x00', 0x8, 0x8, &(0x7f0000001800)=[{&(0x7f0000000300)="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", 0x1000, 0x2}, {&(0x7f00000001c0)="374ca83a412d7f3176086c0e58638315da78666836cc4d4a29a65b39acd6f476f562422a38edf9880d46eb5fc113bacb98649e6e3da944be5263d6e530d3e8bf76c9583bb7649e704cdccf3f3a9d115bdb9f9c725c30ab23d726151e8f043990d1aa98166f54f93ccd996530e9001504b297bd6b9fad33554d4e0d5249704cb65c16cc827bacd3a09063af7ab4738ba8b353a98552a0683fa593561a26d6d5276ffd925819a7d08a6ea0bb8055c3bdda5ed9fac17e485a83d2ca400f82785b58154f253681db83005679626fab6bff3ab310a4155b5dbb1d4b7d", 0xda, 0x80}, {&(0x7f0000001300)="8a249637c6beb49841232f4ace76936eed622174fa616316a1c237794279271aa53885ebaa80f5b4f91462f2eb2e5f291e00ecae40c30c80a945b7411950a05e142726546c8f050a60526a9d1b880ec1dfa1cb1cfbb91d2b22ee846108e0db2c98ada536d8f1fdd18c2366d7df49bb8552ab349460b8d2630fa642ac4944da6c696af63c3c3016bf780d1d2792d23ccf3dcf006a1f48e19153321bbe67261835eb2bffab9a243daeb5dea9d582fe5db1547abfa3c16c5d84cdbbacb649ee1fc53cd61f17b50db751dbb2cb571c568f53705a83baf2f77d6afb0dfe21f0b9796d17a6bf2a28", 0xe5, 0x1}, {&(0x7f0000001400)="492437b4dd4e182268a9e80a6ff888f086951ce26fc733a6f94685a762a2019135a1efba57e9bf8902254ba0d9af452ba1b77f795fea61cd9f15f57ae9204b50b0e720d0b07f680bdec69d053a", 0x4d, 0x5}, {&(0x7f0000001480)="a18c3c79813724f2ea8d75f1cc0d3dc7b7f73aa460e88060d997159bcb262c7e8fe3c5aa8f223f81c6742ad0c54fae2dd5133259e8f20c58826630410e2bf1f6c6802b660b6925e1bc722a5887c1aa43a335b74065e28c506c4f02931df41466082bc889776533415267ede656ccc587739570befefdfa23de89c6694b4c569969b8182ff09d3c9dbf6bcd0892e88a92216c8142eedc23d6e1dfec5b29c6eea5c3c554bf878c5cae53fc2302d48776e40cc4da157777e86a3b53ed9aa960f0ba2f8922b8b2cb5862bee38331a3d93ea2", 0xd0, 0x5}, {&(0x7f0000001580)="a0ce39772901333348d4ffba4af8a3e0cbf59c6d208a7ab141f8a845e49f695604fc617ba366ff0c57518b03696257290cb1a6bee4b8476ba12cfe4759c5fe6597acfa73fdb701f3c7eb4d2f00631480c28309e1e3115e9419e1b057bf0cf338e144fded6d4aed6954655bffdddadea6066de5591c6f6e5410f6b32f6c2917eace2674b344a82820bf6bca8924d06bededa2d7ec1d1c2cb6f408d347c4", 0x9d, 0x7}, {&(0x7f0000001640)="f5c732f95d3518cb48affbcf86464560a5b207d1a9449e4d79e8c2014b430217164c6d54f4fc18a9bd73059c9ce4ff077e2e65952c74c32f7308691db0e06eba8b29ecbd620f0c707439b5259e48e4286f9907124434ee2de3251050261e6a9acd20c39e7b785527e58103df7853999193809086a4a257b9ad41760ddcd9f3be5dda03e7c8e7b8d26ebeb75b39a4e0afc5c79eb3eaa669ae6b134b6199053997457ad529da6960a540a04aa5c839ae8ca89fa6bc4ab1aad73226aeb45a71c935829a91d8f304427d", 0xc8, 0x5c}, {&(0x7f0000001740)="546bbd19d3ce67dda477e4e1c517ea8fe2fb3ff69d322cb0a34d0ad45b9b658051e5efd7b7a56ee90c50ccc784b772b74449ab45d7cd7ed7e7821557ca5aa78e447560ce706772b43bbc5452ed76866fd1a4fd982a6f0458e30da3bebd6e5a9fd8f7b0f829b4580fa0005508ebe692257343cc9e583d4da6d83caa7017ce541057ee7430f87fca6f7134d804270f4d74bbf0a07cfd4d1e1d8161ad1091ec", 0x9e, 0x3ff}], 0x820000, &(0x7f00000018c0)={[{@mode={'mode', 0x3d, 0x3f}}], [{@permit_directio}, {@fowner_lt}, {@measure}, {@context={'context', 0x3d, 'root'}}, {@pcr={'pcr', 0x3d, 0x19}}, {@subj_role}, {@permit_directio}]}) ioctl$FIDEDUPERANGE(r1, 0xc0189436, &(0x7f0000001980)={0x4, 0x9, 0x5, 0x0, 0x0, [{{r4}, 0x401}, {{r5}, 0x1}, {{r7}, 0xfffffffffffffffa}, {{}, 0x7}, {{r3}, 0xffffffffffffd1b8}]}) 23:06:50 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$F2FS_IOC_MOVE_RANGE(r1, 0xc020f509, &(0x7f0000000100)={r1, 0x7, 0x32a, 0x5}) mq_open(&(0x7f0000000140)='@[^,\'@\xed\x00', 0x2, 0x1, &(0x7f0000000180)={0x0, 0x6, 0x7fff, 0x2}) mmap(&(0x7f000051f000/0x1000)=nil, 0x1000, 0x1000000, 0x13, r2, 0x52c19000) write(r0, &(0x7f0000000040)="d2aa28ba4b07e765e17f80dea1ba0f660f3d2ca7b8e6cd16bdb555733a9c71a55e7c71f0ed694ae398b6cd9b412faa9dba9c2e0729b90a8e00135fbf437c913103cb097a5f8dad7d3682dcea0aabf305349b4310a4347b25743f6fea9a6ed7ed15cee49600a26d93e915ba2687f4da2fd48a60cc1e7064aaca33b873ee561b06938c65286781fc09e23662d36d90d8175191466ad64113987c944bfacedd7aa991ec585f4e5ce0d231685b032588b74bc846", 0xb2) 23:06:50 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) 23:06:50 executing program 5 (fault-call:5 fault-nth:2): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:50 executing program 3 (fault-call:6 fault-nth:21): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:50 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r2 = epoll_create1(0x0) dup3(r2, r0, 0x0) 23:06:50 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r3 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r3, 0x2403, 0x81) r4 = syz_open_procfs$userns(0x0, &(0x7f0000000080)) sendfile(r3, r4, &(0x7f00000000c0)=0x4, 0x0) connect$inet(r2, &(0x7f0000000040)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1d}}, 0x10) 23:06:50 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) 23:06:50 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) 23:06:50 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) dup3(r1, r2, 0x80000) r3 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r3, 0x2403, 0x81) mmap(&(0x7f0000020000/0x2000)=nil, 0x2000, 0x300000f, 0x80010, r3, 0x3ecb7000) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) mmap(&(0x7f0000634000/0x1000)=nil, 0x1000, 0x1000000, 0x12, r0, 0x696ea000) r4 = syz_open_dev$vcsa(&(0x7f00000000c0), 0x9, 0x2000) mkdirat(r4, &(0x7f0000000100)='./file0\x00', 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x2400, 0x5) 23:06:50 executing program 0: r0 = ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x3000007, 0x13, r1, 0x10000000) clock_gettime(0x0, &(0x7f0000008300)={0x0, 0x0}) recvmmsg(r1, &(0x7f0000008200)=[{{&(0x7f0000000080)=@hci, 0x80, &(0x7f0000001500)=[{&(0x7f0000000100)=""/134, 0x86}, {&(0x7f0000000300)=""/4096, 0x1000}, {0xfffffffffffffffe}, {&(0x7f00000001c0)=""/40, 0x28}, {&(0x7f0000001300)=""/216, 0xd8}, {&(0x7f0000000200)=""/50, 0x32}, {&(0x7f0000000240)=""/21, 0x15}, {&(0x7f0000001400)=""/248, 0xf8}], 0x8, &(0x7f0000001580)=""/76, 0x4c}, 0x800}, {{&(0x7f0000001600)=@xdp, 0x80, &(0x7f0000003940)=[{&(0x7f0000001680)=""/4096, 0x1000}, {&(0x7f0000002680)=""/146, 0x92}, {&(0x7f0000002740)=""/69, 0x45}, {&(0x7f00000027c0)=""/4096, 0x1000}, {&(0x7f00000037c0)=""/111, 0x6f}, {&(0x7f0000000280)=""/17, 0x11}, {&(0x7f0000003840)=""/18, 0x12}, {&(0x7f0000003880)=""/51, 0x33}, {&(0x7f00000038c0)=""/123, 0x7b}], 0x9, &(0x7f0000003a00)=""/4096, 0x1000}, 0x1}, {{&(0x7f0000004a00)=@l2tp6={0xa, 0x0, 0x0, @remote}, 0x80, &(0x7f0000006e40)=[{&(0x7f0000004a80)=""/4096, 0x1000}, {&(0x7f0000005a80)=""/27, 0x1b}, {&(0x7f0000005ac0)=""/198, 0xc6}, {&(0x7f0000005bc0)=""/86, 0x56}, {&(0x7f0000005c40)=""/190, 0xbe}, {&(0x7f0000005d00)=""/171, 0xab}, {&(0x7f0000005dc0)=""/4096, 0x1000}, {&(0x7f0000006dc0)=""/78, 0x4e}], 0x8, &(0x7f0000006ec0)=""/4096, 0x1000}, 0xffffffff}, {{&(0x7f0000007ec0)=@caif, 0x80, &(0x7f0000008140)=[{&(0x7f0000007f40)=""/83, 0x53}, {&(0x7f0000007fc0)=""/235, 0xeb}, {&(0x7f00000080c0)=""/90, 0x5a}], 0x3, &(0x7f0000008180)=""/115, 0x73}, 0x7}], 0x4, 0x40000000, &(0x7f0000008340)={r2, r3+10000000}) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_TEE={0x21, 0x5, 0x0, @fd=r0, 0x0, 0x0, 0xfff, 0x0, 0x1}, 0x3) r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r5, 0x0) preadv(r5, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r4, 0x5386, 0x20000000) [ 179.300365][T14971] FAULT_INJECTION: forcing a failure. [ 179.300365][T14971] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 179.313445][T14971] CPU: 1 PID: 14971 Comm: syz-executor.4 Not tainted 5.14.0-rc2-syzkaller #0 [ 179.322209][T14971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 179.332264][T14971] Call Trace: [ 179.335545][T14971] dump_stack_lvl+0xb7/0x103 [ 179.340136][T14971] dump_stack+0x11/0x1a [ 179.344378][T14971] should_fail+0x23c/0x250 [ 179.348804][T14971] should_fail_usercopy+0x16/0x20 [ 179.350061][T14973] FAULT_INJECTION: forcing a failure. [ 179.350061][T14973] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 179.353834][T14971] _copy_from_user+0x1c/0xd0 [ 179.371496][T14971] do_recvmmsg+0x250/0x9f0 [ 179.376218][T14971] ? fsnotify_perm+0x59/0x2e0 [ 179.380883][T14971] ? __fsnotify_parent+0x32f/0x430 [ 179.386002][T14971] ? __fget_light+0x21b/0x260 [ 179.390701][T14971] ? __cond_resched+0x11/0x40 [ 179.395362][T14971] __x64_sys_recvmmsg+0xcf/0x150 [ 179.400283][T14971] ? exit_to_user_mode_prepare+0x65/0x190 [ 179.405993][T14971] do_syscall_64+0x3d/0x90 [ 179.410403][T14971] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 179.416343][T14971] RIP: 0033:0x4665e9 [ 179.420230][T14971] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 179.439818][T14971] RSP: 002b:00007f4d4aad9188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 179.448207][T14971] RAX: ffffffffffffffda RBX: 000000000056c0f0 RCX: 00000000004665e9 [ 179.456168][T14971] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 179.464162][T14971] RBP: 00007f4d4aad91d0 R08: 0000000000000000 R09: 0000000000000000 [ 179.472144][T14971] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002 [ 179.480093][T14971] R13: 00007ffec27dc74f R14: 00007f4d4aad9300 R15: 0000000000022000 [ 179.488127][T14973] CPU: 0 PID: 14973 Comm: syz-executor.5 Not tainted 5.14.0-rc2-syzkaller #0 [ 179.496897][T14973] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 179.506949][T14973] Call Trace: [ 179.510222][T14973] dump_stack_lvl+0xb7/0x103 [ 179.514833][T14973] dump_stack+0x11/0x1a [ 179.519045][T14973] should_fail+0x23c/0x250 [ 179.523508][T14973] should_fail_usercopy+0x16/0x20 [ 179.528537][T14973] _copy_from_user+0x1c/0xd0 [ 179.533171][T14973] do_recvmmsg+0x250/0x9f0 [ 179.537593][T14973] ? fsnotify_perm+0x59/0x2e0 [ 179.542285][T14973] ? __fsnotify_parent+0x32f/0x430 [ 179.547398][T14973] ? __fget_light+0x21b/0x260 [ 179.552642][T14973] ? __cond_resched+0x11/0x40 [ 179.557330][T14973] __x64_sys_recvmmsg+0xcf/0x150 [ 179.562277][T14973] ? exit_to_user_mode_prepare+0x65/0x190 [ 179.568107][T14973] do_syscall_64+0x3d/0x90 [ 179.572703][T14973] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 179.578607][T14973] RIP: 0033:0x4665e9 [ 179.582502][T14973] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 179.602120][T14973] RSP: 002b:00007f867b67a188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 179.610606][T14973] RAX: ffffffffffffffda RBX: 000000000056c1a8 RCX: 00000000004665e9 [ 179.618578][T14973] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 179.626552][T14973] RBP: 00007f867b67a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 179.634522][T14973] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001 [ 179.642722][T14973] R13: 00007ffe5f2f6c0f R14: 00007f867b67a300 R15: 0000000000022000 [ 179.660136][T14975] FAULT_INJECTION: forcing a failure. [ 179.660136][T14975] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 179.673190][T14975] CPU: 0 PID: 14975 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 179.681999][T14975] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 179.692048][T14975] Call Trace: [ 179.695329][T14975] dump_stack_lvl+0xb7/0x103 [ 179.699975][T14975] dump_stack+0x11/0x1a [ 179.704126][T14975] should_fail+0x23c/0x250 [ 179.708552][T14975] should_fail_usercopy+0x16/0x20 [ 179.713668][T14975] _copy_from_user+0x1c/0xd0 [ 179.718341][T14975] do_recvmmsg+0x250/0x9f0 [ 179.722757][T14975] ? fsnotify_perm+0x59/0x2e0 [ 179.727427][T14975] ? __fsnotify_parent+0x32f/0x430 [ 179.732547][T14975] ? __fget_light+0x21b/0x260 [ 179.737220][T14975] ? __cond_resched+0x11/0x40 [ 179.741906][T14975] __x64_sys_recvmmsg+0xcf/0x150 [ 179.746849][T14975] ? exit_to_user_mode_prepare+0x65/0x190 [ 179.752570][T14975] do_syscall_64+0x3d/0x90 [ 179.757090][T14975] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 179.763101][T14975] RIP: 0033:0x4665e9 [ 179.767002][T14975] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 179.786696][T14975] RSP: 002b:00007f1a49a72188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 179.795142][T14975] RAX: ffffffffffffffda RBX: 000000000056c1a8 RCX: 00000000004665e9 [ 179.803118][T14975] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 179.811092][T14975] RBP: 00007f1a49a721d0 R08: 0000000000000000 R09: 0000000000000000 [ 179.819090][T14975] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002 [ 179.827059][T14975] R13: 00007ffc07a1dbbf R14: 00007f1a49a72300 R15: 0000000000022000 23:06:51 executing program 4 (fault-call:7 fault-nth:37): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:51 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) 23:06:51 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0xffffff7f) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x4, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}, 0x0, 0x0, 0x8000000}, 0xffffffffffffffff, 0x8, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) r3 = socket$nl_audit(0x10, 0x3, 0x9) sendmsg$AUDIT_SIGNAL_INFO(r3, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x10, 0x3f2, 0x300, 0x70bd2d, 0x25dfdbfc, "", ["", "", "", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x3dd81b33124d2499}, 0x8000) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_CIPSOV4_C_LIST(r4, &(0x7f0000000240)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0xed03192c19ef202b}, 0xc, &(0x7f0000000200)={&(0x7f0000000300)={0x2d8, 0x0, 0x100, 0x70bd2d, 0x25dfdbfd, {}, [@NLBL_CIPSOV4_A_TAGLST={0x14, 0x4, 0x0, 0x1, [{0x5}, {0x5}]}, @NLBL_CIPSOV4_A_MLSLVLLST={0x50, 0x8, 0x0, 0x1, [{0x4c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x9}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x16}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x3d}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xf2}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x55}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x69740924}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x7a}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xe}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xe5}]}]}, @NLBL_CIPSOV4_A_MLSLVLLST={0x15c, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3bf87237}]}, {0x24, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x76}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x29f770e2}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x85}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x7c}]}, {0x3c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xc8}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xa2}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x1feed062}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x61a3338e}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3a01b1cc}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x23}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xd6}]}, {0x14, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x55877986}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3c239cb1}]}, {0x14, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x62b6f28}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x4f}]}, {0x44, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x56}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0xfdfabc8}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x14}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x1994d7e7}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x48f72143}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x11cc70d9}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x88}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x2e81029d}]}, {0x3c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x793b31b1}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4a4c708a}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xb}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x6e}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5283a201}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x77a3d6a9}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xcc}]}, {0x44, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4e311f14}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xd3}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x6d}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x7051cecd}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x57a49bf6}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x6f42ce46}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x739e6198}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x553f88e0}]}]}, @NLBL_CIPSOV4_A_MLSLVLLST={0x44, 0x8, 0x0, 0x1, [{0x2c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x7e}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xa8}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x61d89263}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x24f9d4e4}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xc8}]}, {0x14, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x298a5745}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5768f2a0}]}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_MLSLVLLST={0x98, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x2a19ebf9}]}, {0x44, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x26ad8a97}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4e7eff49}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x42cff352}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3a868a7c}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x4c}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5014d389}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x57a7ad53}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4b04b243}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x62e27066}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x97}]}, {0x2c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x75}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x34695d3f}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x90}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x42549717}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xb}]}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x2}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x1}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x3}]}, 0x2d8}, 0x1, 0x0, 0x0, 0x40800}, 0x8005) preadv(r2, &(0x7f0000000280), 0x0, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:51 executing program 5 (fault-call:5 fault-nth:3): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:51 executing program 3 (fault-call:6 fault-nth:22): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:51 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r0, &(0x7f0000000380)=[{&(0x7f00000000c0)=""/65, 0x41}, {&(0x7f0000000140)=""/96, 0x60}, {&(0x7f00000001c0)=""/31, 0x1f}, {&(0x7f0000000200)=""/169, 0xa9}, {&(0x7f0000000300)=""/106, 0x6a}], 0x5, 0x3, 0x401) r2 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000440), 0xffffffffffffffff) r3 = getpid() pidfd_open(r3, 0x0) sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f0000000400), 0xc, &(0x7f0000000500)={&(0x7f0000000480)={0x50, r2, 0x401, 0x70bd27, 0x25dfdbfb, {}, [@NL802154_ATTR_NETNS_FD={0x8, 0x1d, r1}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x2}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_NETNS_FD={0x8, 0x1d, r1}, @NL802154_ATTR_PID={0x8, 0x1c, r3}, @NL802154_ATTR_NETNS_FD={0x8}, @NL802154_ATTR_IFINDEX={0x8}]}, 0x50}, 0x1, 0x0, 0x0, 0x4000000}, 0x20000015) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r4 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r4, r0, 0x0) r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000680), r6) sendmsg$NLBL_CIPSOV4_C_ADD(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000340)={0x40, r7, 0x4308f4f9bf9a6a59, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_MLSLVLLST={0x18, 0x8, 0x0, 0x1, [{0x14, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8}]}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_TAGLST={0x4}, @NLBL_CIPSOV4_A_DOI={0x8}]}, 0x40}}, 0x0) r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_802154(r8, 0x8933, &(0x7f0000000380)={'wpan1\x00', 0x0}) sendmsg$IEEE802154_LLSEC_ADD_SECLEVEL(r8, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000140)={&(0x7f00000003c0)={0x38, 0x0, 0x800, 0x70bd29, 0x25dedbff, {}, [@IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r9}, @IEEE802154_ATTR_LLSEC_CMD_FRAME_ID={0x5, 0x34, 0x77}, @IEEE802154_ATTR_LLSEC_CMD_FRAME_ID={0x5, 0x34, 0x1}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}]}, 0x38}, 0x1, 0x0, 0x0, 0x8010}, 0x20000000) sendmsg$IEEE802154_LLSEC_DEL_KEY(r5, &(0x7f0000000680)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000640)={&(0x7f00000005c0)={0x68, 0x0, 0x100, 0x70bd25, 0x25dfdbfb, {}, [@IEEE802154_ATTR_LLSEC_KEY_MODE={0x5, 0x2b, 0x1}, @IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0x1}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}, @IEEE802154_ATTR_PAN_ID={0x6}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r9}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_LLSEC_KEY_MODE={0x5, 0x2b, 0x2}, @IEEE802154_ATTR_LLSEC_KEY_SOURCE_EXTENDED={0xc, 0x2d, {0xaaaaaaaaaaaa0002}}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}]}, 0x68}, 0x1, 0x0, 0x0, 0x20000}, 0x4050) 23:06:51 executing program 0: r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000240), 0x10180, 0x0) fchmod(r0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup2(r0, r2) sendmsg$IPVS_CMD_NEW_DEST(r1, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000001c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="30010000", @ANYRES16=0x0, @ANYBLOB="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"], 0x130}}, 0x20000000) sendmsg$NL80211_CMD_NEW_STATION(r1, &(0x7f0000000600)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000580)={0x28, 0x0, 0x0, 0x70bd2a, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x39c6d242, 0xe}}}}, [@NL80211_ATTR_STA_AID={0x6, 0x10, 0x184}]}, 0x28}, 0x1, 0x0, 0x0, 0x40001}, 0x4040) r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r5 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet_int(r2, 0x0, 0x2, &(0x7f00000004c0)=0x7fff, 0x4) r6 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000280)={'sit0\x00', 0x0}) ioctl$sock_inet6_SIOCADDRT(r5, 0x890b, &(0x7f00000002c0)={@mcast2, @local, @loopback={0xfe80000007000000, 0x2}, 0x0, 0x0, 0x0, 0xf000000, 0x0, 0x20d20002, r7}) setsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f0000000080)={{{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in=@private=0xa010102, 0x4e22, 0x4, 0x4e20, 0xffe1, 0xa, 0x80, 0xa0, 0x32, r7, 0xee00}, {0xb74, 0x5, 0x2, 0x4, 0xa51, 0x1f, 0xfffffffffffffffb}, {0x1000, 0x1f, 0x7fff, 0x8}, 0x1, 0x6e6bb7, 0x0, 0x0, 0x1, 0x2}, {{@in=@initdev={0xac, 0x1e, 0x1, 0x0}, 0x4d2, 0x32}, 0x2, @in6=@remote, 0x3503, 0x0, 0x1, 0x3f, 0x7, 0x1, 0x1}}, 0xe8) r8 = syz_open_dev$vcsu(&(0x7f0000000180), 0x1, 0x40940) ioctl$BLKFRASET(r8, 0x1264, &(0x7f0000000480)=0x40) r9 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r9, 0x0) preadv(r9, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r4, 0x5386, 0x20000000) 23:06:51 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) 23:06:51 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x8400) r1 = socket$inet_udplite(0x2, 0x2, 0x88) preadv(r1, &(0x7f0000000280)=[{&(0x7f0000000040)=""/158, 0x9e}, {&(0x7f0000000100)=""/175, 0xaf}, {&(0x7f00000001c0)=""/150, 0x96}], 0x3, 0x8000, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f0000000300)=0x0) ptrace$getregset(0x4204, r3, 0x201, &(0x7f0000000440)={&(0x7f0000000340)=""/214, 0xd6}) 23:06:51 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) r2 = openat$autofs(0xffffffffffffff9c, &(0x7f00000000c0), 0x381401, 0x0) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000180)='net\x00') ioctl$SG_NEXT_CMD_LEN(r3, 0x2283, &(0x7f0000000100)=0xa5) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) fcntl$F_GET_FILE_RW_HINT(r2, 0x40d, &(0x7f0000000140)) r4 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r4, r0, 0x0) 23:06:51 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) 23:06:51 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x2000) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x80, 0x0) mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x2010, r1, 0x4a36d000) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x2581f000) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) [ 180.204246][T15031] FAULT_INJECTION: forcing a failure. [ 180.204246][T15031] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 180.217393][T15031] CPU: 0 PID: 15031 Comm: syz-executor.4 Not tainted 5.14.0-rc2-syzkaller #0 [ 180.226145][T15031] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 180.236178][T15031] Call Trace: [ 180.239433][T15031] dump_stack_lvl+0xb7/0x103 [ 180.244074][T15031] dump_stack+0x11/0x1a [ 180.248233][T15031] should_fail+0x23c/0x250 [ 180.252625][T15031] should_fail_usercopy+0x16/0x20 [ 180.257627][T15031] _copy_from_user+0x1c/0xd0 [ 180.262193][T15031] do_recvmmsg+0x250/0x9f0 [ 180.266780][T15031] ? fsnotify_perm+0x59/0x2e0 [ 180.271498][T15031] ? __fsnotify_parent+0x32f/0x430 [ 180.276718][T15031] ? __fget_light+0x21b/0x260 [ 180.281377][T15031] ? __cond_resched+0x11/0x40 [ 180.286141][T15031] __x64_sys_recvmmsg+0xcf/0x150 [ 180.291089][T15031] ? exit_to_user_mode_prepare+0x65/0x190 [ 180.296799][T15031] do_syscall_64+0x3d/0x90 [ 180.301197][T15031] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 180.307134][T15031] RIP: 0033:0x4665e9 [ 180.311211][T15031] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 180.330936][T15031] RSP: 002b:00007f4d4aad9188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 180.339342][T15031] RAX: ffffffffffffffda RBX: 000000000056c0f0 RCX: 00000000004665e9 [ 180.347300][T15031] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 180.355343][T15031] RBP: 00007f4d4aad91d0 R08: 0000000000000000 R09: 0000000000000000 [ 180.363379][T15031] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002 [ 180.371374][T15031] R13: 00007ffec27dc74f R14: 00007f4d4aad9300 R15: 0000000000022000 [ 180.383283][T15033] FAULT_INJECTION: forcing a failure. [ 180.383283][T15033] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 180.390051][T15034] FAULT_INJECTION: forcing a failure. [ 180.390051][T15034] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 180.396391][T15033] CPU: 1 PID: 15033 Comm: syz-executor.5 Not tainted 5.14.0-rc2-syzkaller #0 [ 180.418155][T15033] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 180.428202][T15033] Call Trace: [ 180.431465][T15033] dump_stack_lvl+0xb7/0x103 [ 180.436092][T15033] dump_stack+0x11/0x1a [ 180.440361][T15033] should_fail+0x23c/0x250 [ 180.444775][T15033] should_fail_usercopy+0x16/0x20 [ 180.449874][T15033] _copy_from_user+0x1c/0xd0 [ 180.454575][T15033] do_recvmmsg+0x250/0x9f0 [ 180.459086][T15033] ? fsnotify_perm+0x59/0x2e0 [ 180.463771][T15033] ? __fsnotify_parent+0x32f/0x430 [ 180.468867][T15033] ? __fget_light+0x21b/0x260 [ 180.473522][T15033] ? __cond_resched+0x11/0x40 [ 180.478201][T15033] __x64_sys_recvmmsg+0xcf/0x150 [ 180.483202][T15033] ? exit_to_user_mode_prepare+0x65/0x190 [ 180.489020][T15033] do_syscall_64+0x3d/0x90 [ 180.493419][T15033] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 180.499293][T15033] RIP: 0033:0x4665e9 [ 180.503165][T15033] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 180.522755][T15033] RSP: 002b:00007f867b67a188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 180.531144][T15033] RAX: ffffffffffffffda RBX: 000000000056c1a8 RCX: 00000000004665e9 [ 180.539093][T15033] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 180.547059][T15033] RBP: 00007f867b67a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 180.555008][T15033] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001 [ 180.563011][T15033] R13: 00007ffe5f2f6c0f R14: 00007f867b67a300 R15: 0000000000022000 [ 180.570967][T15034] CPU: 0 PID: 15034 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 180.579724][T15034] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 180.589756][T15034] Call Trace: [ 180.593049][T15034] dump_stack_lvl+0xb7/0x103 [ 180.597627][T15034] dump_stack+0x11/0x1a [ 180.601815][T15034] should_fail+0x23c/0x250 [ 180.606220][T15034] should_fail_usercopy+0x16/0x20 [ 180.611232][T15034] _copy_from_user+0x1c/0xd0 [ 180.615804][T15034] do_recvmmsg+0x250/0x9f0 [ 180.620230][T15034] ? fsnotify_perm+0x59/0x2e0 [ 180.624884][T15034] ? __fsnotify_parent+0x32f/0x430 [ 180.629974][T15034] ? __fget_light+0x21b/0x260 [ 180.634738][T15034] ? __cond_resched+0x11/0x40 [ 180.639460][T15034] __x64_sys_recvmmsg+0xcf/0x150 [ 180.644410][T15034] ? exit_to_user_mode_prepare+0x65/0x190 [ 180.650141][T15034] do_syscall_64+0x3d/0x90 [ 180.654534][T15034] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 180.660471][T15034] RIP: 0033:0x4665e9 [ 180.664342][T15034] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 180.684049][T15034] RSP: 002b:00007f1a49a72188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 180.692522][T15034] RAX: ffffffffffffffda RBX: 000000000056c1a8 RCX: 00000000004665e9 [ 180.700504][T15034] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 180.708454][T15034] RBP: 00007f1a49a721d0 R08: 0000000000000000 R09: 0000000000000000 [ 180.716416][T15034] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002 [ 180.724372][T15034] R13: 00007ffc07a1dbbf R14: 00007f1a49a72300 R15: 0000000000022000 23:06:52 executing program 4 (fault-call:7 fault-nth:38): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:52 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000240)={0x0, 0xfffffffffffffffb, 0x16, 0x8, @buffer={0x0, 0x63, &(0x7f00000000c0)=""/99}, &(0x7f0000000140)="513eef6c1b34aaa7395439ba5a281272b27fbcfd65b5", &(0x7f0000000180)=""/79, 0x0, 0x22, 0xffffffffffffffff, &(0x7f0000000200)}) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x1000000, 0x10, r1, 0x2995c000) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x3800003, 0x110, r1, 0xb410e000) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}, 0x0, 0x0, 0x0, 0x2}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x0) 23:06:52 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) 23:06:52 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x48) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:52 executing program 5 (fault-call:5 fault-nth:4): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:52 executing program 3 (fault-call:6 fault-nth:23): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:52 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) preadv(r1, &(0x7f0000000280)=[{&(0x7f00000000c0)=""/221, 0xdd}, {&(0x7f0000000300)=""/4096, 0x1000}, {&(0x7f00000001c0)=""/149, 0x95}], 0x3, 0xfff, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x0) 23:06:52 executing program 0: r0 = socket$inet6(0xa, 0x2000000080803, 0x1) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000200)={{{@in=@remote, @in=@dev, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x62}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast2, 0x0, 0x32}, 0x0, @in=@remote}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c) r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0xb80) r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r1, 0x5386, 0x20000000) 23:06:52 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) 23:06:52 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x0) r3 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r3, 0x2403, 0x81) perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x7, 0x81, 0x0, 0x8, 0x0, 0x3, 0x800, 0xc, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x8000, 0x0, @perf_config_ext={0x2, 0x8}, 0x84, 0xbe, 0x400, 0x2, 0x7, 0xfffffff8, 0x1, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x10, r3, 0x8) 23:06:52 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) 23:06:52 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040), 0x60801, 0x0) r2 = openat(r1, &(0x7f00000002c0)='./file0\x00', 0x10400, 0x51) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) [ 181.074730][T15082] FAULT_INJECTION: forcing a failure. [ 181.074730][T15082] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 181.088066][T15082] CPU: 0 PID: 15082 Comm: syz-executor.4 Not tainted 5.14.0-rc2-syzkaller #0 [ 181.096804][T15082] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 181.106838][T15082] Call Trace: [ 181.110111][T15082] dump_stack_lvl+0xb7/0x103 [ 181.114750][T15082] dump_stack+0x11/0x1a [ 181.118881][T15082] should_fail+0x23c/0x250 [ 181.123296][T15082] should_fail_usercopy+0x16/0x20 [ 181.127815][T15085] FAULT_INJECTION: forcing a failure. [ 181.127815][T15085] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 181.128306][T15082] _copy_from_user+0x1c/0xd0 [ 181.146069][T15082] do_recvmmsg+0x250/0x9f0 [ 181.150524][T15082] ? fsnotify_perm+0x59/0x2e0 [ 181.155194][T15082] ? __fsnotify_parent+0x32f/0x430 [ 181.160370][T15082] ? __fget_light+0x21b/0x260 [ 181.165034][T15082] ? __cond_resched+0x11/0x40 [ 181.169804][T15082] __x64_sys_recvmmsg+0xcf/0x150 [ 181.174844][T15082] ? exit_to_user_mode_prepare+0x65/0x190 [ 181.180580][T15082] do_syscall_64+0x3d/0x90 [ 181.184982][T15082] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 181.190867][T15082] RIP: 0033:0x4665e9 [ 181.194953][T15082] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 181.214540][T15082] RSP: 002b:00007f4d4aad9188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 181.223024][T15082] RAX: ffffffffffffffda RBX: 000000000056c0f0 RCX: 00000000004665e9 [ 181.231018][T15082] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 181.238971][T15082] RBP: 00007f4d4aad91d0 R08: 0000000000000000 R09: 0000000000000000 [ 181.246922][T15082] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002 [ 181.255036][T15082] R13: 00007ffec27dc74f R14: 00007f4d4aad9300 R15: 0000000000022000 [ 181.262998][T15085] CPU: 1 PID: 15085 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 181.268314][T15086] FAULT_INJECTION: forcing a failure. [ 181.268314][T15086] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 181.271755][T15085] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 181.271767][T15085] Call Trace: [ 181.271773][T15085] dump_stack_lvl+0xb7/0x103 [ 181.271793][T15085] dump_stack+0x11/0x1a [ 181.306730][T15085] should_fail+0x23c/0x250 [ 181.311192][T15085] should_fail_usercopy+0x16/0x20 [ 181.316211][T15085] _copy_from_user+0x1c/0xd0 [ 181.320782][T15085] do_recvmmsg+0x250/0x9f0 [ 181.325181][T15085] ? fsnotify_perm+0x59/0x2e0 [ 181.329851][T15085] ? __fsnotify_parent+0x32f/0x430 [ 181.334941][T15085] ? __fget_light+0x21b/0x260 [ 181.339770][T15085] ? __cond_resched+0x11/0x40 [ 181.344473][T15085] __x64_sys_recvmmsg+0xcf/0x150 [ 181.349532][T15085] ? exit_to_user_mode_prepare+0x65/0x190 [ 181.355251][T15085] do_syscall_64+0x3d/0x90 [ 181.359649][T15085] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 181.365530][T15085] RIP: 0033:0x4665e9 [ 181.369535][T15085] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 181.389238][T15085] RSP: 002b:00007f1a49a72188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 181.397629][T15085] RAX: ffffffffffffffda RBX: 000000000056c1a8 RCX: 00000000004665e9 [ 181.405578][T15085] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 181.413544][T15085] RBP: 00007f1a49a721d0 R08: 0000000000000000 R09: 0000000000000000 [ 181.421498][T15085] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002 [ 181.429447][T15085] R13: 00007ffc07a1dbbf R14: 00007f1a49a72300 R15: 0000000000022000 [ 181.437399][T15086] CPU: 0 PID: 15086 Comm: syz-executor.5 Not tainted 5.14.0-rc2-syzkaller #0 [ 181.446180][T15086] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 181.456259][T15086] Call Trace: [ 181.459531][T15086] dump_stack_lvl+0xb7/0x103 [ 181.464162][T15086] dump_stack+0x11/0x1a [ 181.468306][T15086] should_fail+0x23c/0x250 [ 181.472709][T15086] should_fail_usercopy+0x16/0x20 [ 181.477729][T15086] _copy_from_user+0x1c/0xd0 [ 181.482295][T15086] do_recvmmsg+0x250/0x9f0 [ 181.486693][T15086] ? fsnotify_perm+0x59/0x2e0 [ 181.491357][T15086] ? __fsnotify_parent+0x32f/0x430 [ 181.496516][T15086] ? __fget_light+0x21b/0x260 [ 181.501199][T15086] ? __cond_resched+0x11/0x40 [ 181.505857][T15086] __x64_sys_recvmmsg+0xcf/0x150 [ 181.510772][T15086] ? exit_to_user_mode_prepare+0x65/0x190 [ 181.516534][T15086] do_syscall_64+0x3d/0x90 [ 181.520926][T15086] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 181.526801][T15086] RIP: 0033:0x4665e9 [ 181.530712][T15086] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 181.550370][T15086] RSP: 002b:00007f867b67a188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 181.558754][T15086] RAX: ffffffffffffffda RBX: 000000000056c1a8 RCX: 00000000004665e9 [ 181.566708][T15086] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 181.574925][T15086] RBP: 00007f867b67a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 181.582881][T15086] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001 [ 181.590849][T15086] R13: 00007ffe5f2f6c0f R14: 00007f867b67a300 R15: 0000000000022000 23:06:53 executing program 4 (fault-call:7 fault-nth:39): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:53 executing program 1: r0 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r0, 0x2403, 0x81) write$binfmt_elf64(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="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"/2713], 0xa99) r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) r3 = socket$unix(0x1, 0x5, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r3, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SCSI_IOCTL_GET_IDLUN(r1, 0x5382, &(0x7f0000000140)) r4 = perf_event_open$cgroup(&(0x7f00000000c0)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x1}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) set_mempolicy(0x3, &(0x7f0000000040)=0xffffffffffffffff, 0x3) openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) dup3(r4, r1, 0x0) 23:06:53 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f0000002640)={0x0, 0xffffffffffffffff, 0x0, 0xe3, @buffer={0x0, 0x35, &(0x7f0000002480)=""/53}, &(0x7f00000024c0), &(0x7f0000002500)=""/245, 0x5, 0x0, 0x1, &(0x7f0000002600)}) preadv(r0, &(0x7f0000000200)=[{&(0x7f0000000300)=""/4096, 0x1000}, {&(0x7f0000000040)=""/202, 0xca}, {&(0x7f0000000140)=""/103, 0x67}, {&(0x7f00000001c0)=""/36, 0x24}, {&(0x7f0000001300)=""/4096, 0x1000}], 0x5, 0x81, 0x8) preadv(r1, &(0x7f0000000280), 0x0, 0x8ab, 0x401) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) fsetxattr$security_selinux(r1, &(0x7f0000002400), &(0x7f0000002440)='system_u:object_r:audisp_var_run_t:s0\x00', 0x26, 0x3) mmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x1, 0x10, r0, 0x3af6e000) r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000002300), r1) sendmsg$BATADV_CMD_GET_ORIGINATORS(r1, &(0x7f00000023c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000002380)={&(0x7f0000002340)={0x2c, r2, 0x200, 0x70bd2b, 0x25dfdbfc, {}, [@BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x24000005}, 0x40800) 23:06:53 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) 23:06:53 executing program 5 (fault-call:5 fault-nth:5): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:53 executing program 3 (fault-call:6 fault-nth:24): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:53 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) 23:06:53 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x30042, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:53 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_IO(r1, 0x2285, &(0x7f0000000340)={0x0, 0xffffffffffffffff, 0xb7, 0x0, @scatter={0x1, 0x0, &(0x7f0000000140)=[{&(0x7f00000000c0)=""/121, 0x79}]}, &(0x7f0000000180)="e523356fca22e55b45d4df0859871d4e0e50f89f8dc9d8dc7d7400c65db7c925ac4c6b4e36678bb93c9ff22794eefacff7a4ead3c56bfee72c890c156574722fd465a855de9fec2d51e028a92cf4aca4e4eab929b6367c5f7439fb6ae6d5edca3f8063bca897558c5dcd57ea8a05b2d2c1d891712d2a9ac5ce40875be23e802065aaa186a9fad042ae31a3fa36a2bbb3438acf29b957c26f2a9fd219b76fdeb7308bdd215602f836142fcd1a85375aae71ada77ecec851", &(0x7f0000000240)=""/75, 0x3, 0x0, 0x1, &(0x7f0000000300)}) r2 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) r3 = openat$null(0xffffffffffffff9c, &(0x7f0000000400), 0x84202, 0x0) syz_genetlink_get_family_id$smc(&(0x7f00000003c0), r3) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0) preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r4 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r4, r0, 0x0) 23:06:53 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) write$binfmt_misc(r2, &(0x7f0000000040)=ANY=[@ANYBLOB="73797a303c6f9e89b70e381c2ec3a43e8cdc8e5c461d1b32d00bfa70005a836e52d2310d138503731924116b8a685d74c975a2a1c29a5536a643e15ad9a7fd3067b4fe0469ffb6034c00"/86], 0x56) 23:06:53 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) 23:06:53 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) [ 181.952668][T15135] FAULT_INJECTION: forcing a failure. [ 181.952668][T15135] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 181.965732][T15135] CPU: 0 PID: 15135 Comm: syz-executor.4 Not tainted 5.14.0-rc2-syzkaller #0 [ 181.974486][T15135] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 181.984523][T15135] Call Trace: [ 181.987837][T15135] dump_stack_lvl+0xb7/0x103 [ 181.992405][T15135] dump_stack+0x11/0x1a [ 181.996544][T15135] should_fail+0x23c/0x250 [ 182.000954][T15135] should_fail_usercopy+0x16/0x20 [ 182.005997][T15135] _copy_from_user+0x1c/0xd0 [ 182.010562][T15135] do_recvmmsg+0x250/0x9f0 [ 182.014959][T15135] ? fsnotify_perm+0x59/0x2e0 [ 182.019618][T15135] ? __fsnotify_parent+0x32f/0x430 [ 182.024725][T15135] ? __fget_light+0x21b/0x260 [ 182.029390][T15135] ? __cond_resched+0x11/0x40 [ 182.034059][T15135] __x64_sys_recvmmsg+0xcf/0x150 [ 182.039053][T15135] ? exit_to_user_mode_prepare+0x65/0x190 [ 182.044786][T15135] do_syscall_64+0x3d/0x90 [ 182.049179][T15135] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 182.055180][T15135] RIP: 0033:0x4665e9 [ 182.059046][T15135] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 182.078720][T15135] RSP: 002b:00007f4d4aad9188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 182.087108][T15135] RAX: ffffffffffffffda RBX: 000000000056c0f0 RCX: 00000000004665e9 [ 182.095054][T15135] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 182.103000][T15135] RBP: 00007f4d4aad91d0 R08: 0000000000000000 R09: 0000000000000000 [ 182.110965][T15135] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002 [ 182.118911][T15135] R13: 00007ffec27dc74f R14: 00007f4d4aad9300 R15: 0000000000022000 [ 182.180503][T15140] FAULT_INJECTION: forcing a failure. [ 182.180503][T15140] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 182.193704][T15140] CPU: 0 PID: 15140 Comm: syz-executor.5 Not tainted 5.14.0-rc2-syzkaller #0 [ 182.194801][T15141] FAULT_INJECTION: forcing a failure. [ 182.194801][T15141] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 182.202681][T15140] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 182.202693][T15140] Call Trace: [ 182.202700][T15140] dump_stack_lvl+0xb7/0x103 [ 182.233543][T15140] dump_stack+0x11/0x1a [ 182.237678][T15140] should_fail+0x23c/0x250 [ 182.242076][T15140] should_fail_usercopy+0x16/0x20 [ 182.247093][T15140] _copy_from_user+0x1c/0xd0 [ 182.251663][T15140] do_recvmmsg+0x250/0x9f0 [ 182.256081][T15140] ? fsnotify_perm+0x59/0x2e0 [ 182.260737][T15140] ? __fsnotify_parent+0x32f/0x430 [ 182.265828][T15140] ? __fget_light+0x21b/0x260 [ 182.270556][T15140] ? __cond_resched+0x11/0x40 [ 182.275273][T15140] __x64_sys_recvmmsg+0xcf/0x150 [ 182.280209][T15140] ? exit_to_user_mode_prepare+0x65/0x190 [ 182.285912][T15140] do_syscall_64+0x3d/0x90 [ 182.290312][T15140] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 182.296186][T15140] RIP: 0033:0x4665e9 [ 182.300058][T15140] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 182.319643][T15140] RSP: 002b:00007f867b67a188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 182.328048][T15140] RAX: ffffffffffffffda RBX: 000000000056c1a8 RCX: 00000000004665e9 [ 182.335998][T15140] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 182.343950][T15140] RBP: 00007f867b67a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 182.351913][T15140] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001 [ 182.359914][T15140] R13: 00007ffe5f2f6c0f R14: 00007f867b67a300 R15: 0000000000022000 [ 182.367871][T15141] CPU: 1 PID: 15141 Comm: syz-executor.3 Not tainted 5.14.0-rc2-syzkaller #0 [ 182.376645][T15141] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 182.386678][T15141] Call Trace: [ 182.389934][T15141] dump_stack_lvl+0xb7/0x103 [ 182.394508][T15141] dump_stack+0x11/0x1a [ 182.398651][T15141] should_fail+0x23c/0x250 [ 182.403114][T15141] should_fail_usercopy+0x16/0x20 [ 182.408149][T15141] _copy_from_user+0x1c/0xd0 [ 182.412714][T15141] do_recvmmsg+0x250/0x9f0 [ 182.417112][T15141] ? fsnotify_perm+0x59/0x2e0 [ 182.421783][T15141] ? __fsnotify_parent+0x32f/0x430 [ 182.427005][T15141] ? __fget_light+0x21b/0x260 [ 182.431656][T15141] ? __cond_resched+0x11/0x40 [ 182.436347][T15141] __x64_sys_recvmmsg+0xcf/0x150 [ 182.441263][T15141] ? exit_to_user_mode_prepare+0x65/0x190 [ 182.446960][T15141] do_syscall_64+0x3d/0x90 [ 182.451392][T15141] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 182.457265][T15141] RIP: 0033:0x4665e9 [ 182.461142][T15141] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 182.480727][T15141] RSP: 002b:00007f1a49a72188 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 182.489115][T15141] RAX: ffffffffffffffda RBX: 000000000056c1a8 RCX: 00000000004665e9 [ 182.497134][T15141] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 182.505080][T15141] RBP: 00007f1a49a721d0 R08: 0000000000000000 R09: 0000000000000000 [ 182.513027][T15141] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002 [ 182.521015][T15141] R13: 00007ffc07a1dbbf R14: 00007f1a49a72300 R15: 0000000000022000 23:06:53 executing program 4 (fault-call:7 fault-nth:40): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:53 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) ioctl$KDFONTOP_SET_DEF(r1, 0x4b72, &(0x7f00000000c0)={0x2, 0x0, 0x5, 0xf, 0x1d2, &(0x7f0000000300)="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"}) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x0) 23:06:53 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x40200, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x81) r3 = fork() fcntl$lock(r2, 0x33, &(0x7f0000000100)={0x2, 0x1, 0x3f8, 0x5, r3}) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000040)={0xaf, 0xff, 0x4, "7fc7b6098f47b819346d969030bbea086f1b73adc124204a18fcf798f8608acead9a04ac2ae5231fdc35e9d13284b3653bd5241339df5b4e37ff7985a0c8b7b6ab473c9b713d84b1e92943791d1f303b161dc45fa4b29d37372ed7bb552f0322b97c29790d3474eede76ac712c0cbd5f3899b53288829eecc50c96001e9aaacd25740a2df5a138bbca6e374751354fbba9b6996263da625b126c86b467da6bbcbe69e6ec8cd27740128f026b3aca3f"}) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) 23:06:53 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) 23:06:53 executing program 5 (fault-call:5 fault-nth:6): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:53 executing program 3 (fault-call:6 fault-nth:25): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000a40)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000040)=[{r1, 0x100}], 0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x81) recvmmsg(r1, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 23:06:53 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000000000", 0x1e5) 23:06:53 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000020000", 0x1e5) 23:06:53 executing program 1: syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r0 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) shmget$private(0x0, 0x2000, 0x800, &(0x7f000023b000/0x2000)=nil) 23:06:54 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) ioctl$SG_SCSI_RESET(r0, 0x5386, 0x20000000) r2 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_TIOCOUTQ(r2, 0x5411, &(0x7f0000000040)) 23:06:54 executing program 2: clone(0x20002044dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000080)={0x7fe}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff00000000030000", 0x1e5) 23:06:54 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000002c0)='/proc/self/exe\x00', 0x0, 0x0) writev(r0, &(0x7f0000000200)=[{&(0x7f00000000c0)="0a1f1808da31fa471160bbf3fda4c98383e307e4607acc55aff86501b44150b3f4da9edab40e5968cef5951b1892b00004c7ede7bb497d56e38d5f4c71443e6b1a164e2368cf22b9d788d1a9cb3670477f6ae7bfa2ae351b222670baef2586cff3b6a888beec122aaa3416d9e7a3f6a1224dd25f2790d2ecf43804e67c280ce773f497c794bbdae57cfdccab23984b0f7e800110b3b8b296ab81f8dc79dcac81a9931e618621d23073f8b5f73cc18351782650d1511ae4940c7cd9ac0a2fffe9c92496ebcaa8f3273d1ab7d1b9494a3612ea7f9765b23dc429fc", 0xda}, {&(0x7f00000001c0)="531a6920372937ebd1639b97a3daebe2f69acac26168afd66c084bd628cb89a65087", 0x22}], 0x2) r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000240), 0x480000, 0x0) splice(r2, &(0x7f0000000280)=0x8000, r0, &(0x7f0000000300)=0x200, 0x6, 0x1) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0) vmsplice(r0, &(0x7f0000001900)=[{&(0x7f0000000340)="6f752906368ac7ee3ffef1d9e0ee3ab497e8f5c206571de2084d96cc104c43372405807e7cb2654f3f20d270f5b9f58cc7ed67408066d7ecfae493e25acb3c2811a47c1161dac9028c618ca1a9d1941ad7547163b92fd937277e4382548e07b9a53c0d46d5ea39e0a3a40d4afabf643c201a0a2ac073972d86b70681d9f70c8642e1", 0x82}, {&(0x7f0000000400)="6aec80c3b316249bc4bdecad1ea5f08a988487747705226eded3c1cdaf0daddd4d0ec9b60883c29739fe391886d47673492973e886c5a2432a1d6fe052f769dda7c9fe87b41c1a52ecdbbb4ecf95dd0102f5c26e53c96ff0e8412265e9d2f8b062f6c3c187fcf3036952528e50e5e924a13721af0575a057780159f2061b9082dca5ddfd85e6ae4fdebc8c7579646ea1d0e7f7a56143d0b4ea0e52bc711aef0917b7d9d506f15f4f942f4b1b847f4dd32caacb51f3622324e99394667cfcc0a84e5b6c081376", 0xc6}, {&(0x7f0000000500)="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