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", 0x1000}, {&(0x7f0000001340)="b1a50aa6e1ad7afcbc952bda1fb663b86014c844129feaa87b", 0x19, 0x9}, {&(0x7f0000001380)="c979ae55f142cc95726ed30286599cd48cab2c30ce486b82a71ce91365c6a1336b078e3c0bad5df496d08b517fd04373119df38ea0e85f52af233460245cc044489ea613196a71d335b501e89a46c2b3d420048d126aba056b3f6c021854b966292d36ac067f315de83ce9291139ea1a30049d528fa0f688af47861cf83c85b859c5e93c7ee3705e78ac9644a98ae618e076fa6249deca362da2ff68d059496923092e6db2ea37b6aa26e832f071ce312d703d7fea7f5bb7154c4fa78ec8eec77bc23757316a6efd6cd2ac386227c764b2f6b7c18fbb40a855c6c2790fdbdd0a75e72e928ece88abcabdf1d0a4cd2c7a7d", 0xf1, 0x8}, {&(0x7f0000001480)="fdc960fa05c0635efcda62dee1de7b6471c4a7a92b5c97c57d650c775c1a934594bc746bb902ff2dd214a74214df313fcd281841594f29543d5ea962f3c9450a713219134ed58f4ea9", 0x49, 0xffffffffffffff7f}, {&(0x7f0000001500)="6eec9d23c0809737668cabeafe5d94eb58b527a2ad598457926bf1f544cc18648cdf91bb6768e74b976181a0938d25a1b521d10203474db95d9caeab9562c969fe7e2d5b6d43619697ad8f0f743c19e7d7abb9907af71acf5830d694e257e6ea66f42405d3e0430ac41bc96d35b97d19cdbed36f4cd66baecdc544024b97fd03a31f7cdacb1bebf99df254fa33793d6f0ea167cf900d898be8a35ca348e3e7b8bea2d95492ce", 0xa6, 0x5}], 0x4000, &(0x7f0000001680)=ANY=[@ANYBLOB="686173683d613d6a6f75726e616c2c6578706f73655f70726976726f6f742c646174613d6aef75726e616c2c7461696c733d736d616c6c2c0000000000000000000000000000000000"]) fallocate(r1, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) bind$isdn(r1, &(0x7f0000000040)={0x22, 0x0, 0x80000001, 0x10001, 0xf6}, 0x6) 13:50:15 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x6000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:15 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9000000}, &(0x7f0000000200), 0x0) 13:50:15 executing program 5: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000000c0)="0af51f023c123f3188a070") r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x2, 0x0) ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc)) write$binfmt_elf64(r1, &(0x7f00000002c0)=ANY=[@ANYBLOB="df7a4d8816"], 0x5) r2 = syz_open_pts(r1, 0x0) ioctl$TCSETSF(r2, 0x5412, &(0x7f0000000040)) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r5, 0x4040aea0, &(0x7f0000000000)={0x8, 0x1, 0x9, 0x0, 0x10001, 0x8, 0x0, 0x2, 0x6aff, 0x8, 0xa2d, 0x9a5e, 0x0, 0x40, 0x9b0d, 0x4, 0x0, 0xfff, 0x3ff}) mlockall(0x2) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r6 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r3, 0x9) sendmsg$nl_generic(r6, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) [ 462.277297] gfs2: quota_quantum mount option requires a positive numeric argument 13:50:15 executing program 5: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000000c0)="0af51f023c123f3188a070") r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x2, 0x0) ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc)) write$binfmt_elf64(r1, &(0x7f00000002c0)=ANY=[@ANYBLOB="df7a4d8816"], 0x5) r2 = syz_open_pts(r1, 0x0) ioctl$TCSETSF(r2, 0x5412, &(0x7f0000000040)) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r5, 0x4040aea0, &(0x7f0000000000)={0x8, 0x1, 0x9, 0x0, 0x10001, 0x8, 0x0, 0x2, 0x6aff, 0x8, 0xa2d, 0x9a5e, 0x0, 0x40, 0x9b0d, 0x4, 0x0, 0xfff, 0x3ff}) mlockall(0x2) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r6 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r3, 0x9) sendmsg$nl_generic(r6, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) [ 462.412056] gfs2: can't parse mount arguments 13:50:16 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000}, &(0x7f0000000200), 0x0) [ 462.561020] gfs2: quota_quantum mount option requires a positive numeric argument [ 462.568688] gfs2: can't parse mount arguments 13:50:16 executing program 5: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000000c0)="0af51f023c123f3188a070") r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x2, 0x0) ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc)) write$binfmt_elf64(r1, &(0x7f00000002c0)=ANY=[@ANYBLOB="df7a4d8816"], 0x5) r2 = syz_open_pts(r1, 0x0) ioctl$TCSETSF(r2, 0x5412, &(0x7f0000000040)) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r5, 0x4040aea0, &(0x7f0000000000)={0x8, 0x1, 0x9, 0x0, 0x10001, 0x8, 0x0, 0x2, 0x6aff, 0x8, 0xa2d, 0x9a5e, 0x0, 0x40, 0x9b0d, 0x4, 0x0, 0xfff, 0x3ff}) mlockall(0x2) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r6 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r3, 0x9) sendmsg$nl_generic(r6, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) 13:50:16 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x7000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:16 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3b9ac9ff}, &(0x7f0000000200), 0x0) [ 462.907928] gfs2: quota_quantum mount option requires a positive numeric argument [ 462.958958] gfs2: can't parse mount arguments 13:50:16 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r3, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:16 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = request_key(&(0x7f0000000180)='big_key\x00', &(0x7f0000000240)={'syz', 0x0}, &(0x7f0000000280)='vfat\x00', 0xfffffffffffffffb) r1 = request_key(&(0x7f00000002c0)='user\x00', &(0x7f00000018c0)={'syz', 0x3}, &(0x7f0000001900)='vfat\x00', 0xfffffffffffffff8) keyctl$instantiate_iov(0x14, r0, &(0x7f0000001840)=[{&(0x7f0000000340)="029f9c0c38cab28eef627168a92e79f49c26a3e21e14218eed392eed28a959405d6c309771b152fc2f5986b426dad7749c60b62bca5381c4276ff7245744bf75366319762185654413a03bdc5946fb015ab996298d5a3f72a30cea74b0021f6245293e02811e6e6c649afca8e1c3ebdb0021c3e802baad8b2f0117f010434c275572a3a62b07a9ee9f5074bd3e6ebcccb2931d19fce0a43534910528778163b372e00f8218998880af0607ebd4c76e93d1eae24f8817eb43779bfc09569f3bb1a1ccaac05f", 0xc5}, {&(0x7f0000000440)="674defb584b5d6f058059e05a781d0efb065361e3977578d308426ea5099f30efafc7a43d29277ef867f89e5577569ddf07a6ad037a7085f7176f62149d204b8e604c36af360b0b7c3cb009712f82d108acac4504a88aade6561cd4d0e7aabe60b5346a649433c9ed51ae09c5074b17fcf4301c9c8060b1641c578f785197dd50185185918208acae6697c2dc5f614b4ee3737ca6ba467d207675f05152a7efff23b4451015b", 0xa6}, {&(0x7f0000000500)="d91497b8a9c11cc6e9f28e13d2b82fa8188650c8947615f3164dae5291e3dfb57a1458c8fc09ac35ed09d259ec19522f7bfc1b972a3b127996289cd50691d8ef8cc7e72ed2290278cad5601caa5b50eab7d54844ad1dbf24bba6c1241f0c716b1ee6777e339b587cd2fcbd7bc9b8228756084225235c9c0a9c5fd4118d718b066ef3358cb868831b848762e72e35bfd26e37488831c9fcab8c1e1fd4339fae21ffe5b15fbd0be1691c9df9e52ba3680620e4b979392ed00f51d2d139da4c5c", 0xbf}, {&(0x7f00000005c0)="3f79b8c3b0a88d961ddc9174f56542617b2823ef45bb0deddb497badc51b926a7dcfc28358cf498ba26986e68c698375b5f87885041660a0e1f9e59803f9ab497d1936b86b3921286dfa5a9c498af0", 0x4f}, {&(0x7f0000000640)="0aa6f0754d9d1869eb4755905e4450a449599d85eb3ba4f212071a42cef135dd2e401c4d71c9631855ed740bc5a58976d79cdf1e640ad89ff569d6012e8e49069c3f8e9d7472b72307865c72aea0d703f2384dc13bacb605704661e40fc5117e28213aa8f08f3a2b37966ab5a56f0523ca58912d0fc4d6567541e36c16f00cce14391789236f5c2956c206a9b5bec06074744098a89674be10e5417bcbbf45dd6b63722f59d222aebc1bfc6ea5268b3b4928df3646700b4891687de07e02a0d86dc6bdad23d168af5380fb75ef27b8f09201dfc026dd258251da1e3c12b4b350d47a6a5c93b47e031a3ea9576a1b87ae25890fcedbb1ea69a3c4fe64c6f958f8c41cc4be80c772b036f871636b8dc1fbfa8975347616661f7501881b0955c96a211f5a239e4553c57cdced83bffcb62cf2e22e54843b35087f28f4db6bcabbb4f4d68e1b63b50b348b1329b016c546f3c8b806778f03868adc372e74f8ff686c79082c640ee9ff48e84ffbdbf8688e0d88d45727b2c2e926448ac5e6b2c1072f5fdcd22756ac9adde84d316f34fe1edef717b1e25f848b0785a7acbe7efe026e7e3499fc3e69ba94cb82505f61423e7878c4e0452b164deb67dfa35376e74baf97e5337b951b8199b91c6febd3b38f5941f0e2413485b997e5125369ad38b0e9ba8eac6cde45b2582100fc1e22c313705bb6e486fa8c9aaaa78245ca3c2394c1dcf69961a0aceac5b6001b16b4057310bc75c552549da403242c5eb3c5e6b5e5ea3f458221515fe2cc3a1d1a8587258ced7aeea4ae41aedaab084671f974f42fb1f6f98ef566351aa18221a025e9e4f26d6010af43d0b066d0d59d1a219c0e5199b82e5315a86d71d131c78db848a3b2c5168d189fb3dc114f0392cacc2d45bd4ea521c8f116da3f14b9968b8c3c38decb3ffb36312e4b8f46be4f5ffe7d05bb1e86b4265416a7938ee1195b5e5601f4a6cbf5d4a8f46e2bdb2c66602573c1669ab26dd0d566418581d19549c37c0b15082813433f6b72f7da9d8885dce081a392597a05b191af0f59ecbc09276e98245efa2655025304c23e627cc7de67a17fd4cee53e591d3b57c5a3f1eaf1c85edeeabb2de0d1acf47c2d34e09a1955dee0d67922e824bd4df7841fa24edb7ed647e7c9ff6b5f47d4b1bdeb7630cf38d7fa0657d782592d44c8185460b08c81231ab8c1c5d540dfcfd9de9fe7e79a7de2a80e321e9077b580e75f423909a7e39708da0eeda5697cc7e273594cd0e382b3c5d1203a2c5df37858ee3d8651c7835938a07dfaa604261e5a670994025547f02db55a5a5eec3d62d7a26f6f65244570cd7424fe442adaa183cabc56125ac7c27bfdd33004bda73d577ad6085fc8b4814a3bf1da1f93bf8d861046b8470bcaab6af2da4f69efd9495a440b0dbd84fbbf79ba443bda8a3d9834b606aa3b0829dc1658f7f665bebce8d0448ec2de0a1ce01943b4141154a708a23669f767d13d77f6c41e36c2fb5245ae999c1fb44da8ae1fd0b9bb576edd55320ad88950868b6890d69335deb111a0f6b1b90998f4e3a933b0ebded20ef4d7eb4b5e1f9cd42042ff11512265822ba486d9fab69cec0d8e9e1ed484732d1bb9a514bdf5feef5dc9814820910ff7c85e941c9174d157090ea03fc0c5e86d0cce246135ae80c6bbb20a2e9a0cef0c3940bfdd88a9baeb3a395e8dc50a9e2e9ca333ad4089910232960a86a27713ec974c72b5914a0e5bfe7988928aebcfb79ab88c5a0da1d58c0e72cff05dbacb366efea140a6d1458343a977a9ee1181983b698f19946a0b3a89b6ddff6f6a8ff131d02716d0610992091e83e24ecc9f5a2de7c3fdabefe851cc837bccb185e977962d8a74cbb2bae3dc537f1fd761762e6e49204b2122fb94ce4c41784bbf6ce91dedae1fc7e1b0be1fb0c68bfce93832b6d4de592d80e70095627e01952937ef4a4b9d8f3c48106533ff2dba3e31f31277a7d2bab994d0f1caed651841bca9317b123dc4b60cd17cc6a4b04b488cf156cb791c7f93c2430a2f0315f817421e15b2d4e779c1e53a01e9d66bcbf46f4ccfdc131f5fc46f4338cee24890ac568154af830375e64a3074993b71187347e08fb479bfcb01622d900ec34ba8ccb748c330f2a7c9e15e6859e646124dea03bff154c865aad5a8278c74705fd1034cfdbffb120cfe88f98f50ab572a01fdb4946a92b59be36ce3bcd155851c5612528a4697846299050ab79dd216be6da6d019a8041d3dd12d13bd858f47455a6e41504f77c88e2b58dfa6f653470786b32549aa8252a4b5ca03e9da9a3508be8261a7f41a86196d1c0c8b04e1afa63316a77edef8ed810686a41a4ddc29c34bf1002d465725406eda6de279a0eabe1ed3982a8786ae1d154e06925de4577a4481273e02f6c22bd5882cb626b462b301d6e95012ed9d2045985eba5a44e8e7bdee59f2777363ec1a16615c51c66c011d151f849c0d5498c16be5398d3e1b8491aa823ea9ee48955140d3ba369faf030b6db52454915454dc776125240cf175ac59d910f83214a5ee548f9461c6d2fd25dba17b99632ec04d8819fbc2e6b5ddcd7811a12bb6046b2d2e7b3eba4bdd17a642e20a24ff24df703bdb97c50fa2061b27720687a7a65de3a37296012e06f1336bf0da8cb906e22296641930ad304777f043167b7ba9687517d395f3f91d18568b21bbd4dcdd83c55c055d57875c7b57b8ff1e150c82624db94088f7a05c489bac672f9b9078716291d602b0c5e2620add4082487535cde5f6fec4b10dabe3772db959f4d7d41b5956702c4c893263492a0ed89b5d8a2d5d8da9c3ed5a71a325eee16b691e461da5aee653273f2b8542dabe51ffaf4a194ecd3c620032ee67cc1e9bd90a230ac8291384dde939b4a71a4d8bcbd62978ce15c2b2620efa77bc691ca5a8ed0c52736a5e98c762440f62aa7b5cf52a1d66a4a697b98e95fd57ce501458a055a576d06c905b0b4d7d9686e45e8ba53a17a6eec1cea3347d0b21eff11fe6645b4f0c50328bcbff0b728ed7f48068afd59fc5056a1c26b4c587d831442b85aea931168dd558d3a5eb7815742ba9156853593f7789cf13a2306d46c92128d1a8233249538f6176c6173ee6b7b7ddfdb7a6641ea3ca4137cc55f8cc68163026eb049a19ea98e8e0d95fe7166a65d9d5ae747af0413865e1740dfb30657af0a9edd088df90b401a7f7a0161dbd95261c27c38f5eb5f7139060f411fe4a59db0546d7adcd5f675560994757ad33e8f35c9ecfcc4ee05155caaa914bedb57d049e9eb8744abd66747c0da7f7e234aac30e1c1c50f86c8acbbae98dcf462c77c900f9037eb6270f8cd047ccb081e978d353028f9e3bc7103f4a92abfc80a1f39982e0368f6b836623f4c8416e80ce48ca30df976ff5faa4c11f2cc5dd70b3b396fc0212045f128e8418e89b7b65a5aa55ccb165ad9c44bb50978df0c990bcb60db339677739afb26566d8b1d27462f0942f594fc98f2cf702f878f51d2f1a22a7b78970ad46413a2e5b687a863f43595a47a266ad038f026b7ed4d27d006df58795aa8a52feb69e3dc338fb6a76871e790ebef953ea2d49f58a9e97fc5fb96afc55b8b73b00c146cd154125d7740828995d4dbb0c7bb256651a12a7f23a2561a24d5075a4e8a836c1821634c3af36e08cdc39fc42a1a74a10386a67189b08238c2f773b636d9e1a711fe228b9548806361bffa84d9804f44beed07abb184e0713ac5d25996664da941c34cb60a39bef7f645909af5d8145188602c3b82be9ebee731debe9e35f583c898271d53f1a2f108c262078a806a94713ade5f349b6b902f62156db7d08d4175ce40a864f741a41b2ee500e65fa7e569ae4e4d3c26581d7f88aa85c19c2b8c20103ea83f5249b8b568c2935b3b15e60e320f052b7846ede08f0d37d3ad8e7d511694de8f12b160af0e803c9c98785b1dff3a6423398b0ef2232f042a67a8ec0bba1dd7eb4169667b4fc1dd6dfca027e9a6b3af23f8a384e8461e8d4f7139a373f79fabd5da0fe3650c2cb66e6200e18359012642929268a79adc2dbd356a9f207d98185d5302e3fb3f2069a1865b1abd113f32604ad630b7cf2ad75adff5a55e5352827ef004263b17c297379b7b9a53fae80b916219f8d1d1dcd536cc4f5c2252dfaa5edd6adf90b906de4556d2b13251751b702b7e42f0990a5d6a0b7927a8fe05e67dcc2890c0485c091a38e481ea907e18b28420e9d21e97dbc91cb1d721fdb5364a20b30b2b790fa9e56be83d8efc7e05a37a9bb978e69918848413676487e9c55f761da3a8f6d9d6fc1f5287f620133dda4a738ca4458603d797cedec8a91c61ba4242ddf4871fc806f9d7c8639b0bf0c98d6be4df124a964181af95de614f17a3599e57ff1eb0feb63f97f180b11f6fa2a522893e0db14ca1c845dd15131fa89ec47a335487200ac081d4b33909fd6e03e3f2d84f86b2e075b5e33c7edf6ea672f2c47c15937ff2927046574678c28634c50a28fb42720121cb0793cbb747130eff7ae7cc71a606ffbb7d42e2c8c4595ad1062dc7146f3db8270df4af54ed1a64009edff2fb2dd3ddb9403804b099c76b5e3d5366a2a1f27f57e2364537567852718c272f62b99db3dd7e3a375e2947e4e8df9a3cfa279defdaffa0d5a609c207567b948beafe1398ef1894a232e71e50cb164d05ce6491b77950d84646d888252bfe9ebb89566c537f7d387d16e64888026fc266af1cd154227607d892333b531346214da1a5a5d16767bdc7ed766a8ffa478ed6fc46849c44bcf908259f9e825415d197ce4a4de52a2353dc4f7732e229c37c56739b5a72797dd07d56d1d8af7d5a7e18015410ed25edccd3228e82af2677bcc22410cf73cc23ba4ed614a85044a86f3527f8d06322ac8aeccced89b591581272a89f533c5a4a9dc07ad111bc5dc5016ce78e10b40341bb05de975d554a4156af1dc278b3d35e9e9b673308b76f74787b2949e99deaf236312d32e7ea7c7a5df90c37f05a0339909d06f878155fb8704343d86ce4c28c32024ac189ed85997c2d8648581f1206c182a82964da896be69561d77ecaac0b4b68c45f9b1c5605c0bd53651f8915569f26224d30693b1d8b3b6658f24d4c6ff4f446a7e6b5eeccbf07d6ba3a39e4cedc45a1b2d5e0ad9df075b0d332a3fedcb3192b6379e8f5e0ba271dc211e5b3f8ec0ce8b1318524f7c803763b92445a31d16b7947ab660b52299062a795928cbbcc3e223a21ec3d7e76cb7312d70f0bcda47b6e45b75d82dde67ce6649aa8a90fb19e0c658c4e2fd4bc99a2b36fe5011d83a7bdd8e505bf2604981fd7f3d6a74fb09a74750a4019c656ea1f1064f8fa2aa5176ded77ddc1987fbaed2a6ba4957ebdfd784031d7555436dfaf0337abd7561c59516043492b8d7f84b2718093e2b73b86ff55358a7c658c674b6a16116f5a1b721c7f84b317dcc289376446c6acd24082bf4ca20c987d352366e128fcf74f8dfd5f6a222948d55a8562f438dd3cfd35ab0e18af3d21835899f5fa53194289710f2cc01390f6faa3ceda429abc04c722f9f1a38895d794ac437d7a158152fc65f2f3313933f4e76e7720479fb4ba521a63aeb4aabeac2cafdb360878fd0a3a73b9b49cca1c33bc55630207bf2bbc04d5da0b0cc81b636465b4b73459b4cc0cdc01154f47b6119c3b3024fd25d952e18ada79867852503d3e15ec30b519b47422d319071430b7c6888b0ade84211cb4798b2c064dbc8630cda7a3cd9d8e41206b7adaf1f5d33f67d6df6ef24f81f66516973a732ca10e3", 0x1000}, {&(0x7f0000001640)="2d33593d5adbd0a2e4caa8fcbc304aa39c41df9700df572a52536f4379057fbc310f231c8e3037db5a7272e76f676316b574b2c2687ec94e5c78f81e1b9289e6dcfe8fb696f0f707c87f634c69db0ded25e197520040c293881aa9cfcdd901596591d36b7403fe7499cbfeeab98420fa89", 0x71}, {&(0x7f00000016c0)="7f212884023aa74518022c4c01294ec14bf56510b956a898b6b34869570426dcbd670256c8a7d77ba3432064644abbdf86f2df13d74e5ce0c2d8b7376c91a0dadb809c4b246c47cbdd9afa16bc741801b345cf41224fc83b489cd90cd81d341c570b2451d4af351af2e820bade1dd9ffec13fd7c0d363c08a6cada41c4e66369e02be77e0674025a7ec017982dee750af7a0cc4701f88dbc712c50a3f06a9dcd38648318f389cb44622bd13ba9", 0xad}, {&(0x7f0000001780)="4151553601cf2f89cb74b45262ec587b076d07bcdf78e7c72bdc615449303127242e13df53910ab0f613deb1fee63dbb294f5fec5b212729a53050c38f86f88df3b862898bd44b279bf56c779dd1fca0907d2ff33fb99585bd0cbb8e0c189fa8a65ef61e2625ce349ac0585b908ffd1d95a6a5469bad29c1cd3f52a80e88994e73ce", 0x82}], 0x8, r1) r2 = open(&(0x7f0000000200)='./file0\x00', 0x100, 0x0) fchdir(r2) r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r3, 0x1, 0x0, 0x369e5d84) getsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r3, 0x84, 0xc, &(0x7f0000000040), &(0x7f0000000080)=0x4) fallocate(r3, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) 13:50:16 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4, @ANYBLOB="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"], 0x1a8}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:16 executing program 5: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16, @ANYBLOB="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"], 0x1a8}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:16 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffc99a3b}, &(0x7f0000000200), 0x0) [ 463.140824] gfs2: quota_quantum mount option requires a positive numeric argument [ 463.148492] gfs2: can't parse mount arguments 13:50:16 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4, @ANYBLOB="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"], 0x1a8}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:16 executing program 5: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16, @ANYBLOB="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"], 0x1a8}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:16 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x9000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:17 executing program 5: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = dup(r1) ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r3, 0xc0505510, &(0x7f0000000080)={0x1ff, 0x3, 0x101, 0x6, &(0x7f0000000280)=[{}, {}, {}]}) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) setsockopt$inet_sctp6_SCTP_AUTOCLOSE(r3, 0x84, 0x4, &(0x7f0000000000)=0x8, 0x4) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000340)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 463.471114] gfs2: quota_quantum mount option requires a positive numeric argument 13:50:17 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000}, &(0x7f0000000200), 0x0) 13:50:17 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4, @ANYBLOB="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"], 0x1a8}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 463.514329] gfs2: can't parse mount arguments 13:50:17 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0xa000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:17 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r3, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) ioctl$BLKRESETZONE(r3, 0x40101283, &(0x7f0000000000)={0x6, 0x8}) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0xffffff16) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 463.811697] gfs2: quota_quantum mount option requires a positive numeric argument [ 463.840090] gfs2: can't parse mount arguments [ 463.930619] gfs2: quota_quantum mount option requires a positive numeric argument [ 463.997785] gfs2: can't parse mount arguments [ 464.407161] kauditd_printk_skb: 2 callbacks suppressed [ 464.407176] audit: type=1804 audit(1550065817.912:528): pid=23734 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/298/file0/file0" dev="loop0" ino=143 res=1 [ 464.463438] audit: type=1804 audit(1550065817.912:529): pid=23736 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/298/file0/file0" dev="loop0" ino=143 res=1 13:50:18 executing program 5: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = dup(r1) ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r3, 0xc0505510, &(0x7f0000000080)={0x1ff, 0x3, 0x101, 0x6, &(0x7f0000000280)=[{}, {}, {}]}) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) setsockopt$inet_sctp6_SCTP_AUTOCLOSE(r3, 0x84, 0x4, &(0x7f0000000000)=0x8, 0x4) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000340)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:18 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x300000000000000}, &(0x7f0000000200), 0x0) 13:50:18 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4, @ANYBLOB="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"], 0x1a8}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:18 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) ioctl$TUNSETTXFILTER(r0, 0x400454d1, &(0x7f0000000040)={0x1, 0x4, [@local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @remote, @broadcast]}) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) 13:50:18 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x10000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:18 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="66baa100b85a810000ef2e0f083e0fc75d01f2a5f30f1ac066ba2100ecf20f013f66b822018ed8660f6e5b0066ba4200b06bee", 0x33}], 0x1, 0x9, &(0x7f00000000c0)=[@cr0={0x0, 0x8}], 0x1) sendmsg$nl_generic(r3, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x100000800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:18 executing program 5: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r3, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) ioctl$BLKRESETZONE(r3, 0x40101283, &(0x7f0000000000)={0x6, 0x8}) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0xffffff16) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:18 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4, @ANYBLOB="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"], 0x1a8}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 464.747768] gfs2: quota_quantum mount option requires a positive numeric argument [ 464.780201] gfs2: can't parse mount arguments 13:50:18 executing program 5: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r3, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) ioctl$BLKRESETZONE(r3, 0x40101283, &(0x7f0000000000)={0x6, 0x8}) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0xffffff16) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:18 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x900000000000000}, &(0x7f0000000200), 0x0) [ 464.886362] gfs2: quota_quantum mount option requires a positive numeric argument 13:50:18 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4, @ANYBLOB="000229bd7000fcdbdf2507000000b0000500080001007564700008000100696200001c00020008000100170000000800020009000000080004000100000008000100696200003c000200080002000800000008000100170000000800040006000000080004008f0000000800010011000000080004000000000008000200010000003c0002000800020003000000080002000100000008000200f800000008000300050000000800030001000000080004000900000008000300010000003c000100380004001400010002004e20e00000020000000000000000200002000a004e21000000a6fe880000000000000000000000000101feffffff0c000500080001006962000064000700080002005f6a000008000100ff0700000c00040000000800000000000c000300020000000000000008000200060000000c0004001f000000000000000800010009000000080001000400000008000100000200000c0003000800000000000000340002000800020005000000040004000400040004000400080002000100000008000100d213000008000100f50e00000400040004000400"], 0x1a8}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 464.940297] gfs2: can't parse mount arguments 13:50:18 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x1a0f0000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:18 executing program 5: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r3, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) ioctl$BLKRESETZONE(r3, 0x40101283, &(0x7f0000000000)={0x6, 0x8}) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0xffffff16) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 465.125768] gfs2: quota_quantum mount option requires a positive numeric argument [ 465.142403] audit: type=1804 audit(1550065818.652:530): pid=23766 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/299/file0/file0" dev="sda1" ino=17749 res=1 13:50:18 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000000}, &(0x7f0000000200), 0x0) 13:50:18 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4, @ANYBLOB="000229bd7000fcdbdf2507000000b0000500080001007564700008000100696200001c00020008000100170000000800020009000000080004000100000008000100696200003c000200080002000800000008000100170000000800040006000000080004008f0000000800010011000000080004000000000008000200010000003c0002000800020003000000080002000100000008000200f800000008000300050000000800030001000000080004000900000008000300010000003c000100380004001400010002004e20e00000020000000000000000200002000a004e21000000a6fe880000000000000000000000000101feffffff0c000500080001006962000064000700080002005f6a000008000100ff0700000c00040000000800000000000c000300020000000000000008000200060000000c0004001f000000000000000800010009000000080001000400000008000100000200000c0003000800000000000000340002000800020005000000040004000400040004000400080002000100000008000100d213000008000100f50e00000400040004000400"], 0x1a8}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 465.200517] gfs2: can't parse mount arguments 13:50:18 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) ioctl$VIDIOC_SUBDEV_QUERY_DV_TIMINGS(r0, 0x80845663, &(0x7f0000000240)={0x0, @reserved}) creat(&(0x7f0000000100)='./file0\x00', 0x0) 13:50:18 executing program 5: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r3, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 465.251560] audit: type=1804 audit(1550065818.652:531): pid=23772 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/299/file0/file0" dev="sda1" ino=17749 res=1 [ 465.361272] gfs2: quota_quantum mount option requires a positive numeric argument [ 465.368924] gfs2: can't parse mount arguments 13:50:19 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000280)='/dev/autofs\x00', 0x400400, 0x0) ioctl$KDSETMODE(r3, 0x4b3a, 0x9) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x294, 0x0, 0x0, 0x202) sendto$inet6(r3, &(0x7f00000002c0)="e394372cdbb7002584db2432c1bb05", 0xf, 0x20000840, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) getsockname$netrom(r4, &(0x7f0000000080)={{}, [@bcast, @netrom, @bcast, @default, @rose, @netrom, @netrom, @rose]}, &(0x7f0000000000)=0x48) ioctl$DRM_IOCTL_AGP_ALLOC(r4, 0xc0206434, &(0x7f0000000300)={0x5, 0x0, 0x0, 0x9}) ioctl$DRM_IOCTL_AGP_FREE(r3, 0x40206435, &(0x7f0000000340)={0x8819, r5, 0x1, 0x2}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:19 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x1f000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:19 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffc99a3b00000000}, &(0x7f0000000200), 0x0) 13:50:19 executing program 5: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) init_module(&(0x7f0000000280)='/dev/kvm\xe2eV\xc5N\xbb\x05\xa9\x93\x94\xa3!\xb4$\x0f\xe3\xd6TH\xb56\xba\xcc\xe4D\xd7\xf1g\xcd\xc0\xc6\xe5\xc6a\xe8\xa74\xe7', 0x2e, &(0x7f00000000c0)='/dev/audio\x00') syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r3, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) ioctl$KVM_CHECK_EXTENSION_VM(r3, 0xae03, 0x1) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) accept4$inet6(r3, 0x0, &(0x7f0000000000), 0x800) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:19 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4, @ANYBLOB="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"], 0x1a8}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 465.604763] audit: type=1804 audit(1550065819.112:532): pid=23808 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/300/file0/file0" dev="sda1" ino=16802 res=1 [ 465.660340] gfs2: quota_quantum mount option requires a positive numeric argument [ 465.730352] gfs2: can't parse mount arguments 13:50:19 executing program 5: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) init_module(&(0x7f0000000280)='/dev/kvm\xe2eV\xc5N\xbb\x05\xa9\x93\x94\xa3!\xb4$\x0f\xe3\xd6TH\xb56\xba\xcc\xe4D\xd7\xf1g\xcd\xc0\xc6\xe5\xc6a\xe8\xa74\xe7', 0x2e, &(0x7f00000000c0)='/dev/audio\x00') syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r3, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) ioctl$KVM_CHECK_EXTENSION_VM(r3, 0xae03, 0x1) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) accept4$inet6(r3, 0x0, &(0x7f0000000000), 0x800) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:19 executing program 4: r0 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/btrfs-control\x00', 0x0, 0x0) getsockopt$IP_VS_SO_GET_VERSION(r0, 0x0, 0x480, &(0x7f0000000100), &(0x7f00000001c0)=0x40) syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) r1 = syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) r2 = creat(&(0x7f0000000580)='./file0\x00', 0x0) ioctl$SNDRV_TIMER_IOCTL_START(r2, 0x54a0) pipe(&(0x7f0000000180)) ioctl$PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000280)={0x7, &(0x7f0000000240)=[{0x8, 0x4cc, 0x8, 0x6}, {0x9, 0x2, 0x3, 0x2}, {0x0, 0x3ff, 0x3, 0x1}, {0x1, 0x9, 0x0, 0x6}, {0xf0fa, 0x2, 0x81, 0x80000000}, {0x74e8, 0x40, 0x4, 0x20}, {0x3, 0x7, 0x100000000, 0x4}]}) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000300)='TIPCv2\x00') sendmsg$TIPC_NL_NET_GET(r1, &(0x7f00000004c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000480)={&(0x7f0000000380)=ANY=[@ANYBLOB="d4000000", @ANYRES16=r3, @ANYBLOB="000125bd7000fedbdf250e000000280002000800010002000000080002004000000008000100c30400000800020000000000040004001800060008000100030000000400020008000100020000004000070008000100370000000c00030000000100000000000c000400000000000000000008000200000000000c000400ff0300000000000008000200070000001400010008000300b300000008000300010400001800020008000200d10900000400040008000200001400090008000100010000800800020009000000000000"], 0xd4}, 0x1, 0x0, 0x0, 0x4004}, 0x8040) 13:50:19 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = shmget(0x0, 0x4000, 0x0, &(0x7f0000ffb000/0x4000)=nil) shmctl$IPC_INFO(r0, 0x3, &(0x7f0000000040)=""/64) r1 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r1) r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r2, 0x1, 0x0, 0x369e5d84) fallocate(r2, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) [ 465.754010] audit: type=1804 audit(1550065819.112:533): pid=23808 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/300/file0/file0" dev="sda1" ino=16802 res=1 13:50:19 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4, @ANYBLOB="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"], 0x1a8}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:19 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x20000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:19 executing program 5: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) init_module(&(0x7f0000000280)='/dev/kvm\xe2eV\xc5N\xbb\x05\xa9\x93\x94\xa3!\xb4$\x0f\xe3\xd6TH\xb56\xba\xcc\xe4D\xd7\xf1g\xcd\xc0\xc6\xe5\xc6a\xe8\xa74\xe7', 0x2e, &(0x7f00000000c0)='/dev/audio\x00') syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r3, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) ioctl$KVM_CHECK_EXTENSION_VM(r3, 0xae03, 0x1) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) accept4$inet6(r3, 0x0, &(0x7f0000000000), 0x800) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 466.016594] gfs2: quota_quantum mount option requires a positive numeric argument 13:50:19 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) r0 = syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(r0, 0xc058534f, &(0x7f0000000240)={{0xfffffffffffffff8}, 0x1, 0x40, 0x20, {0x9, 0x1}, 0x6bc7, 0x100}) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r1, 0x84, 0x7, &(0x7f0000000040)={0xffffffff94976025}, 0x4) unshare(0x400) pselect6(0xfc273b291d08b1d1, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000000200), 0x0) 13:50:19 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x80}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) pipe(&(0x7f0000000000)={0xffffffffffffffff}) ioctl$sock_inet_SIOCGARP(r3, 0x8954, &(0x7f0000000080)={{0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}, {0x307, @broadcast}, 0x40, {0x2, 0x4e22, @rand_addr=0x7}, 'ip6_vti0\x00'}) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0xfffffffffffffe8e) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:19 executing program 5: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000280)='/dev/autofs\x00', 0x400400, 0x0) ioctl$KDSETMODE(r3, 0x4b3a, 0x9) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x294, 0x0, 0x0, 0x202) sendto$inet6(r3, &(0x7f00000002c0)="e394372cdbb7002584db2432c1bb05", 0xf, 0x20000840, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) getsockname$netrom(r4, &(0x7f0000000080)={{}, [@bcast, @netrom, @bcast, @default, @rose, @netrom, @netrom, @rose]}, &(0x7f0000000000)=0x48) ioctl$DRM_IOCTL_AGP_ALLOC(r4, 0xc0206434, &(0x7f0000000300)={0x5, 0x0, 0x0, 0x9}) ioctl$DRM_IOCTL_AGP_FREE(r3, 0x40206435, &(0x7f0000000340)={0x8819, r5, 0x1, 0x2}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 466.130191] gfs2: can't parse mount arguments [ 466.134903] audit: type=1804 audit(1550065819.642:534): pid=23846 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/301/file0/file0" dev="sda1" ino=16961 res=1 [ 466.236306] gfs2: quota_quantum mount option requires a positive numeric argument 13:50:19 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(0x0) r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(0xffffffffffffffff, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r3, @ANYBLOB="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"], 0x1a8}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:19 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) rename(&(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)='./file0\x00') r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) unshare(0x400) connect$l2tp(r0, &(0x7f0000000040)=@pppol2tpin6={0x18, 0x1, {0x0, r1, 0x3, 0x2, 0x3, 0x0, {0xa, 0x4e23, 0x1, @remote, 0x80}}}, 0x32) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) 13:50:19 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x1, 0x0, 0x369e5d84) fsetxattr$security_smack_transmute(r1, &(0x7f0000000040)='security.SMACK64TRANSMUTE\x00', &(0x7f0000000080)='TRUE', 0x4, 0x2) fallocate(r1, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) [ 466.285458] gfs2: can't parse mount arguments [ 466.291223] audit: type=1804 audit(1550065819.642:535): pid=23846 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/301/file0/file0" dev="sda1" ino=16961 res=1 13:50:19 executing program 5: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r3, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) getpeername$inet(r3, &(0x7f0000000000)={0x2, 0x0, @remote}, &(0x7f0000000080)=0x10) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:19 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x20100000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:20 executing program 5: r0 = syz_open_dev$swradio(&(0x7f00000000c0)='/dev/swradio#\x00', 0x1, 0x2) ioctl$PIO_FONTRESET(r0, 0x4b6d, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000040)="0af51f023c123f3188a070") bind$inet6(r2, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r2, 0x0) sendto$inet6(r1, 0x0, 0x0, 0x20000004, &(0x7f0000000080)={0xa, 0x100000004e22, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000080)='tls\x00', 0x152) setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100), 0x28) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0) setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0x4) mmap(&(0x7f00000be000/0x3000)=nil, 0x3000, 0x2, 0x100132, 0xffffffffffffffff, 0x0) sendto$inet6(r1, &(0x7f00000005c0), 0xe0ffffff, 0x0, 0x0, 0x0) 13:50:20 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000100)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x20300) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) [ 466.546856] gfs2: quota_quantum mount option requires a positive numeric argument [ 466.621022] gfs2: can't parse mount arguments 13:50:20 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(0x0) r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(0xffffffffffffffff, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r3, @ANYBLOB="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"], 0x1a8}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 466.682667] net_ratelimit: 16 callbacks suppressed [ 466.682678] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters. 13:50:20 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x3f000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:20 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) r0 = syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhost-vsock\x00', 0x2, 0x0) r1 = semget$private(0x0, 0x4, 0x40) sendto(r0, &(0x7f00000002c0)="2d5808d857408032315dfe761085d2db9a004060fd399f6f1c6574c1690a88358f55445ba753409eedd67b18ff0cf3fa0b6fbcf66382d8b0b098b0134aacd9a984af4bcf783e4da5b8b6c3c71dcf3b1f8e967827a69f5e082b15291f2d9061a6ed11a650b140a9967cc1deb8386b27775b896a480191", 0x76, 0x40000d0, &(0x7f0000000380)=@pppol2tp={0x18, 0x1, {0x0, r0, {0x2, 0x4e23, @multicast2}, 0x3, 0x3, 0x4, 0x4}}, 0x80) semctl$GETZCNT(r1, 0x4, 0xf, &(0x7f0000000240)=""/71) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x20001) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) [ 466.806150] audit: type=1804 audit(1550065820.312:536): pid=23891 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/302/file0/file0" dev="sda1" ino=17073 res=1 [ 466.885749] gfs2: quota_quantum mount option requires a positive numeric argument [ 466.938154] gfs2: can't parse mount arguments [ 467.004222] gfs2: quota_quantum mount option requires a positive numeric argument [ 467.046120] gfs2: can't parse mount arguments 13:50:20 executing program 3: openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ubi_ctrl\x00', 0x0, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r3, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) getsockopt$TIPC_IMPORTANCE(r3, 0x10f, 0x7f, &(0x7f0000000000), &(0x7f0000000080)=0x4) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:20 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) ioctl$EXT4_IOC_PRECACHE_EXTENTS(r1, 0x6612) fallocate(r1, 0x1, 0x0, 0x369e5d84) openat$null(0xffffffffffffff9c, &(0x7f0000000180)='/dev/null\x00', 0x1, 0x0) fallocate(r1, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) prctl$PR_SET_FPEXC(0xc, 0x3) syz_open_dev$usb(&(0x7f0000000080)='/dev/bus/usb/00#/00#\x00', 0xbf, 0x101080) 13:50:20 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0adc1f023c123f3188a070") setsockopt$sock_void(r0, 0x1, 0xd6cac413205de071, 0x0, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x3, 0x31, 0xffffffffffffffff, 0x0) ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000000)=0x0) ioctl$sock_SIOCSPGRP(r0, 0x8902, &(0x7f0000000040)=r1) r2 = userfaultfd(0x800) ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000000340)) ioctl$UFFDIO_REGISTER(r2, 0xc028aa03, &(0x7f00000a0fe0)={{&(0x7f00005e3000/0x800000)=nil, 0x730000}, 0x200000}) 13:50:20 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x40000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:20 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) r0 = syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) ioctl$VIDIOC_G_STD(r0, 0x80085617, &(0x7f0000000100)) socket$unix(0x1, 0x3, 0x0) write$P9_RLERRORu(r0, &(0x7f00000001c0)={0xd, 0x7, 0x1, {{}, 0x2}}, 0xd) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) syz_open_dev$radio(&(0x7f0000000040)='/dev/radio#\x00', 0x2, 0x2) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) [ 467.369195] gfs2: quota_quantum mount option requires a positive numeric argument 13:50:20 executing program 5: r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000740)='/dev/fuse\x00', 0x2, 0x0) geteuid() perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x400000, 0x0) ioctl$KVM_S390_UCAS_MAP(r1, 0x4018ae50, &(0x7f00000000c0)={0xfffffffffffffff8, 0x80, 0x1}) mkdir(&(0x7f0000000080)='./file0\x00', 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000780)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(0xffffffffffffffff, 0x40a85323, &(0x7f0000000340)={{}, 'port0\x00', 0x0, 0x80008, 0x0, 0x9, 0x1, 0x9, 0xae8d}) read$FUSE(r0, &(0x7f0000001000), 0x1000) umount2(&(0x7f00000004c0)='./file0\x00', 0x0) lsetxattr$security_capability(0x0, 0x0, 0x0, 0x0, 0x0) [ 467.460632] gfs2: can't parse mount arguments [ 467.531117] gfs2: quota_quantum mount option requires a positive numeric argument [ 467.548477] audit: type=1804 audit(1550065821.052:537): pid=23934 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/303/file0/file0" dev="sda1" ino=17073 res=1 [ 467.550680] gfs2: can't parse mount arguments 13:50:21 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) r0 = syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) ioctl$SNDRV_TIMER_IOCTL_GSTATUS(r0, 0xc0505405, &(0x7f0000000240)={{0xffffffffffffffff, 0x0, 0x4, 0x2, 0x9}, 0x2, 0x3, 0x1}) 13:50:21 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(0x0) r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(0xffffffffffffffff, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r3, @ANYBLOB="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"], 0x1a8}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:21 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) ioctl$KVM_SET_TSC_KHZ(r0, 0xaea2, 0x1ff) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) 13:50:21 executing program 5: clone(0x802182001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) dup(0xffffffffffffff9c) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x3, 0x24, &(0x7f0000001000)=ANY=[@ANYBLOB="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"], 0x0}, 0x48) exit(0x0) 13:50:21 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x48000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:21 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) ioctl$DRM_IOCTL_RES_CTX(r0, 0xc0106426, &(0x7f0000000100)={0x1, &(0x7f0000000040)=[{0x0}]}) ioctl$DRM_IOCTL_SWITCH_CTX(r1, 0x40086424, &(0x7f00000001c0)={r2, 0x1}) 13:50:21 executing program 3: perf_event_open(0x0, 0x0, 0xf, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) socket$vsock_dgram(0x28, 0x2, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r3 = syz_open_dev$video(&(0x7f0000000000)='/dev/video#\x00', 0x798, 0x140) ioctl$VIDIOC_CROPCAP(r3, 0xc02c563a, &(0x7f0000000080)={0x1, {0x8001, 0x20, 0x7, 0x8}, {0xf0ee, 0x0, 0x6, 0x7fff}, {0x0, 0x1}}) ioctl$PPPIOCGFLAGS(r1, 0x8004745a, &(0x7f00000000c0)) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:21 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x40000000003fc) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) 13:50:21 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x4c000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:21 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(0x0) sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4, @ANYBLOB="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"], 0x1a8}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 468.403072] gfs2: quota_quantum mount option requires a positive numeric argument 13:50:21 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f0000000000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x4) fallocate(r0, 0x2, 0x200000006, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) [ 468.453587] gfs2: can't parse mount arguments 13:50:22 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) r0 = syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'lo\x00', 0x0}) stat(&(0x7f0000000100)='./file0\x00', &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0}) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000380)={{{@in=@local, @in6=@ipv4={[], [], @multicast2}, 0x4e24, 0x0, 0x4e21, 0xffff, 0x2, 0x20, 0x80, 0x6c, r1, r2}, {0x360, 0x0, 0x4, 0x412, 0x8, 0x1b95dde0, 0x2, 0xffffffffffffff18}, {0xfffffffffffffffa, 0x38000000, 0x5, 0x6}, 0x4, 0x6e6bb4, 0x2, 0x1, 0x3, 0x3}, {{@in6=@local, 0x4d5, 0x32}, 0xa, @in6=@initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x0, 0x3, 0x2, 0x4, 0x1, 0x2, 0x10000}}, 0xe8) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r0, 0x40505330, &(0x7f00000002c0)={{0x6, 0x12c}, {0x2, 0x9}, 0x4, 0x2, 0x10001}) ioctl$SIOCX25SCUDMATCHLEN(r0, 0x89e7, &(0x7f00000001c0)={0x4b}) unshare(0x400) ioctl$KVM_GET_IRQCHIP(r3, 0xc208ae62, &(0x7f0000000480)={0x0, 0x0, @ioapic}) ioctl$SCSI_IOCTL_DOORUNLOCK(r3, 0x5381) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) 13:50:22 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x60000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 468.738424] gfs2: quota_quantum mount option requires a positive numeric argument 13:50:22 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) write$P9_RREAD(r0, &(0x7f0000000240)={0xa3, 0x75, 0x1, {0x98, "6d110e28de790bb3886a39123466ef3e4eaea73eba44ab3fc6e86e16f4f116b400ad7e8bf0b0608b2b5d8cfca56faf4b063983df273b0fa4d3ed61a8ba4cb2b618487fdb848c37e9f2e66ab477c2652c6a5e6331e35f5df034b76ac2bf518731cca4ba9dfeebeab0c755114cd7e53d5d70e6b4d78fa4b196683d212bdf972a9e5c320140ee4c463945d5a2b39fda131acf40757582265bfc"}}, 0xa3) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) [ 468.780145] gfs2: can't parse mount arguments 13:50:22 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:50:22 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x68000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:22 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x5, 0x20000) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) [ 468.999416] gfs2: quota_quantum mount option requires a positive numeric argument 13:50:22 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x1, 0x0, 0x369e5d84) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0xc) syz_mount_image$erofs(&(0x7f0000000040)='erofs\x00', &(0x7f0000000080)='./file0\x00', 0x8d, 0x2, &(0x7f0000000180)=[{&(0x7f0000000340)="6d158adf3bf5f7d88538014d79cde14e756ba135e6ff363a4f00e5a1cf39fda4d4a51b97db6fe36d79098fee289fc3ec9fbdff8233ce52f1bfedb834276c7a8c9dd66852000dfc3a446ae45bd0087115d98db2ffb41a84e8e8e6d8d83b9784f1c9a19d25fc0eb258ce06e63bf5342f91f6bd2fd709b87a9a943f6fcd3b16f5e5c53b8e96f802161d25aaeda87b99355b96124885f7dc4a55a24c1a54518d77c217d9369b42af9169ad7138ee02c8ab7ca4f2cb20bc23f096a2d4e0353030d14b0dda8b7698383465759fa1394a343f73be6d140bb3db52d4a4b1a301fbb55c61", 0xe0, 0x4}, {&(0x7f0000000440)="81aa8429d12f6a66a5e3f0b87b6835c1922d9d1b62cbf36bebaa4f69d774ba384ed71bc21a9f198928d199515b49bdb512906175ad2cbe66b5a0eeaef1ce5e8dd7f5611d878f4dd682b0b9fe3e2f7369d5b1300cadd2818e96d9a42c1d7b9f1934a59ce8d0f954872d2b249756dcd1d555c3a91c8660bd2a9486dd4b8d07da8a313c7f051bc202bb2b2623c2e3ba0a9a60c69505e0cf910f5d0980640a7198eedc7d7d4040515b3d2f7b1b9b0b1603534148ebf4390ed6e4b6f5f61ebcabe9a50a07ac531818eafb89d040b8b0a7f637fca2bfa69ede41175a23e3ad0fccfce9d905b8c9d14be4317fc999", 0xeb}], 0x1040010, &(0x7f0000000540)={[{@user_xattr='user_xattr'}, {@fault_injection={'fault_injection', 0x3d, 0x4}}, {@nouser_xattr='nouser_xattr'}, {@user_xattr='user_xattr'}, {@nouser_xattr='nouser_xattr'}], [{@euid_eq={'euid', 0x3d, r2}}, {@pcr={'pcr', 0x3d, 0x3f}}, {@smackfsdef={'smackfsdef', 0x3d, 'vmnet0:em0cgroup'}}, {@fsuuid={'fsuuid', 0x3d, {[0x65, 0x33, 0x63, 0x63, 0x36, 0x0, 0x66, 0x76], 0x2d, [0x3c, 0x39, 0x62, 0x36], 0x2d, [0x77, 0x74, 0x77, 0x31], 0x2d, [0x39, 0x34, 0x73, 0x77], 0x2d, [0x38, 0x77, 0x31, 0x33, 0x35, 0x66, 0x66]}}}]}) fallocate(r1, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) [ 469.118846] gfs2: can't parse mount arguments 13:50:22 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) arch_prctl$ARCH_GET_GS(0x1004, &(0x7f0000000000)) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r3 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x1453, 0x0) getsockopt$IPT_SO_GET_REVISION_MATCH(r3, 0x0, 0x42, &(0x7f00000000c0)={'ah\x00'}, &(0x7f0000000280)=0x1e) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) accept4$bt_l2cap(r3, &(0x7f00000002c0), &(0x7f0000000300)=0xe, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:22 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000100)='/dev/bus/usb/00#/00#\x00', 0x0, 0x200) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x120) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) 13:50:22 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(0x0) sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4, @ANYBLOB="000229bd7000fcdbdf2507000000b0000500080001007564700008000100696200001c00020008000100170000000800020009000000080004000100000008000100696200003c000200080002000800000008000100170000000800040006000000080004008f0000000800010011000000080004000000000008000200010000003c0002000800020003000000080002000100000008000200f800000008000300050000000800030001000000080004000900000008000300010000003c000100380004001400010002004e20e00000020000000000000000200002000a004e21000000a6fe880000000000000000000000000101feffffff0c000500080001006962000064000700080002005f6a000008000100ff0700000c00040000000800000000000c000300020000000000000008000200060000000c0004001f000000000000000800010009000000080001000400000008000100000200000c0003000800000000000000340002000800020005000000040004000400040004000400080002000100000008000100d213000008000100f50e00000400040004000400"], 0x1a8}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 469.235832] gfs2: quota_quantum mount option requires a positive numeric argument [ 469.272373] gfs2: can't parse mount arguments 13:50:22 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x6c000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:22 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x7, 0x0) socket$unix(0x1, 0x3, 0x0) r0 = creat(&(0x7f0000000300)='./file0/file0\x00', 0x3fffffffffffe) clock_gettime(0x0, &(0x7f00000001c0)={0x0, 0x0}) clock_gettime(0x0, &(0x7f0000000240)={0x0, 0x0}) utimensat(r0, &(0x7f0000000080)='./file0/file0\x00', &(0x7f0000000280)={{r1, r2/1000+10000}, {r3, r4/1000+10000}}, 0x0) getsockopt$inet6_tcp_int(r0, 0x6, 0x6, &(0x7f0000000040), &(0x7f0000000100)=0x4) getsockopt$inet_sctp_SCTP_FRAGMENT_INTERLEAVE(r0, 0x84, 0x12, &(0x7f00000002c0), &(0x7f0000000380)=0x4) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) [ 469.450907] kauditd_printk_skb: 4 callbacks suppressed [ 469.450923] audit: type=1804 audit(1550065822.952:542): pid=24072 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/307/file0/file0" dev="sda1" ino=16625 res=1 13:50:23 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) [ 469.587146] gfs2: quota_quantum mount option requires a positive numeric argument [ 469.616685] gfs2: can't parse mount arguments [ 469.626522] audit: type=1804 audit(1550065823.042:543): pid=24072 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/307/file0/file0" dev="sda1" ino=16625 res=1 13:50:23 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) r0 = syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0) socket$unix(0x1, 0x3, 0x0) ioctl$KDGKBLED(r0, 0x4b64, &(0x7f0000000040)) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)={0xffffffffffffffff}) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) ioctl$VIDIOC_SUBDEV_QUERY_DV_TIMINGS(r1, 0x80845663, &(0x7f0000000240)={0x0, @reserved}) 13:50:23 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(0x0) sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4, @ANYBLOB="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"], 0x1a8}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:23 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) [ 469.795727] gfs2: quota_quantum mount option requires a positive numeric argument [ 469.835175] gfs2: can't parse mount arguments 13:50:23 executing program 4: r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/rfkill\x00', 0x4100, 0x0) r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000280)='TIPC\x00') sendmsg$TIPC_CMD_SHOW_LINK_STATS(r0, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="020025bd7000fcdbdf2501000000000000000b000000000c927bd2001473797a3100"], 0x28}, 0x1, 0x0, 0x0, 0x20000000}, 0x2400c010) syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) r2 = creat(&(0x7f0000000080)='./file0\x00', 0x0) getsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000040), &(0x7f0000000100)=0x4) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) 13:50:23 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x74000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 469.982029] audit: type=1804 audit(1550065823.492:544): pid=24093 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/308/file0/file0" dev="sda1" ino=16849 res=1 [ 470.111087] audit: type=1804 audit(1550065823.512:545): pid=24093 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/308/file0/file0" dev="sda1" ino=16849 res=1 13:50:23 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) syz_open_dev$amidi(&(0x7f0000000040)='/dev/amidi#\x00', 0x100, 0xa000) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x1, 0x0, 0x369e5d84) setxattr$security_ima(&(0x7f0000000080)='./file1\x00', &(0x7f0000000180)='security.ima\x00', &(0x7f0000000240)=@md5={0x1, "0289fb9cd20ed20e1853bbb7c746967e"}, 0x11, 0x0) fallocate(r1, 0x0, 0x0, 0xea5f) r2 = creat(&(0x7f0000000100)='./file0\x00', 0x0) ioctl$VIDIOC_G_INPUT(r2, 0x80045626, &(0x7f0000000280)) [ 470.243729] gfs2: quota_quantum mount option requires a positive numeric argument [ 470.304520] gfs2: can't parse mount arguments 13:50:23 executing program 3: r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x9, 0xc00) ioctl$UI_BEGIN_FF_ERASE(r4, 0xc00c55ca, &(0x7f0000000080)={0x6, 0x8b, 0x80000000}) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r1, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) fdatasync(r0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 13:50:23 executing program 4: syz_open_dev$evdev(&(0x7f0000000040)='/dev/input/event#\x00', 0xffffffff, 0x3ff) shmctl$SHM_INFO(0x0, 0xe, &(0x7f0000000240)=""/161) r0 = syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000000002, 0x0) socket$unix(0x1, 0x3, 0x0) getsockopt$inet_sctp6_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000000100), &(0x7f00000001c0)=0x8) creat(&(0x7f0000000080)='./file0\x00', 0x0) ioctl$SIOCGIFHWADDR(r0, 0x8927, &(0x7f0000000000)) pipe(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) unshare(0x400) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r0, 0x84, 0x6c, &(0x7f0000000380)={0x0, 0x79, "bf0c7b7718db87bc9db26ef2b07645613399b7ea8e69167f4bf539c76224466ffd0f1b63c83b2bffd24ffefec93f4226612d9c1406aa543a36ee7ccd01f4aa7125760a4e36ee197311054b0de4a82911c57cd122c2d6ff99f7811a33af55bb161fec0723fc585672ef83d2c40019d63abb226a43cea5881ea4"}, &(0x7f0000000300)=0x81) getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f0000000440)={r2, 0x7}, &(0x7f0000000480)=0x8) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) 13:50:23 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x7a000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:24 executing program 4: r0 = syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) r1 = accept4$unix(0xffffffffffffff9c, &(0x7f0000000240), &(0x7f0000000040)=0x6e, 0x800) r2 = fcntl$getown(r0, 0x9) stat(&(0x7f00000001c0)='./file0/file0\x00', &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0}) getgroups(0x4, &(0x7f0000000500)=[0xee00, 0xffffffffffffffff, 0xffffffffffffffff, 0x0]) r5 = gettid() fstat(r0, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0}) lstat(&(0x7f00000005c0)='./file0\x00', &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r8 = syz_open_dev$usb(&(0x7f0000000b80)='/dev/bus/usb/00#/00#\x00', 0xffffffffffffca94, 0x40000) fcntl$getownex(r0, 0x10, &(0x7f0000000680)={0x0, 0x0}) getsockopt$sock_cred(r8, 0x1, 0x11, &(0x7f00000006c0)={0x0, 0x0}, &(0x7f0000000700)=0xc) getgroups(0x2, &(0x7f0000000740)=[0xee00, 0xee01]) getsockopt$sock_cred(0xffffffffffffff9c, 0x1, 0x11, &(0x7f0000000780)={0x0}, &(0x7f00000007c0)=0xc) stat(&(0x7f0000000800)='./file0\x00', &(0x7f0000000840)={0x0, 0x0, 0x0, 0x0, 0x0}) getresgid(&(0x7f00000008c0), &(0x7f0000000900), &(0x7f0000000940)=0x0) fcntl$getownex(r0, 0x10, &(0x7f0000000980)={0x0, 0x0}) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffff9c, 0x29, 0x22, &(0x7f00000009c0)={{{@in=@initdev, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@initdev}, 0x0, @in=@loopback}}, &(0x7f0000000ac0)=0xe8) r17 = getegid() sendmsg$unix(r1, &(0x7f0000000c00)={&(0x7f00000002c0)=@abs={0x1, 0x0, 0x4e23}, 0x6e, &(0x7f0000000100)=[{&(0x7f0000000380)="f5011ae70c9cab68a8ff8adf84174934fab6e77a745442b329ebf406265a2b7a5e7df3c0811047e1cf15d8458d9fc94c48dd0dabd91d2716d4b1e1359bc18696dea6abab3a13", 0x46}, {&(0x7f0000000400)="c9d2558a75453c422ac0e128ec80b2119d80103fbc830ca721179bf330d082c2534914f986106d10ed87fdf16e5df9d5775921393e66501472e3fae6436098e56f3dd21e85f1a7f6e4256e9ac377c631f2cb9885af5cabb8f4215e", 0x5b}], 0x2, &(0x7f0000000c80)=ANY=[@ANYBLOB="20000000000000000100000002000000", @ANYRES32=r2, @ANYRES32=r3, @ANYRES32=r4, @ANYBLOB="0000000028000000000000000100000001000000", @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0, @ANYBLOB="20000000000000000100000002000000", @ANYRES32=r5, @ANYRES32=r6, @ANYRES32=r7, @ANYBLOB="0000000018000000000000000100000001000000348df4036e1ee7008b8116ad2510edf0c50a55d8a72c78ef5fbaee330221913f2025ccf571260d54312b79a2c0be264e87dd9194ca889ed8cecb8a92d480a9b6e65d2915ca51257b7c5d4f47bdbdfc6de06b69d75acf92232f5bc4bb0c7ff365a7d9a528c901424d9263146096", @ANYRES32=r0, @ANYRES32=r0, @ANYBLOB="20000000000000000100000002000000", @ANYRES32=r9, @ANYRES32=r10, @ANYRES32=r11, @ANYBLOB="0000000020000000000000000100000002000000", @ANYRES32=r12, @ANYRES32=r13, @ANYRES32=r14, @ANYBLOB="0000000020000000000000000100000002000000", @ANYRES32=r15, @ANYRES32=r16, @ANYRES32=r17, @ANYBLOB='\x00\x00\x00\x00'], 0xe0, 0x40}, 0x80) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) r18 = creat(&(0x7f0000000080)='./file0\x00', 0x0) getsockopt$inet_pktinfo(r18, 0x0, 0x8, &(0x7f0000000b00)={0x0, @empty, @multicast2}, &(0x7f0000000b40)=0xc) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) [ 470.634303] gfs2: quota_quantum mount option requires a positive numeric argument 13:50:24 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) [ 470.687499] gfs2: can't parse mount arguments 13:50:24 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)) r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(0xffffffffffffffff, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r3, @ANYBLOB="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"], 0x1a8}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:24 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x8cffffff, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:24 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) ioctl$DRM_IOCTL_ADD_MAP(r0, 0xc0286415, &(0x7f0000000040)={0x0, 0x8, 0x7, 0x40, &(0x7f0000ffd000/0x1000)=nil, 0x6}) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) [ 470.878093] gfs2: quota_quantum mount option requires a positive numeric argument [ 470.941353] gfs2: can't parse mount arguments 13:50:24 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000100)='./file0/file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) 13:50:24 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x97ffffff, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:24 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) r0 = syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000040)={0x0, 0x4}, &(0x7f0000000100)=0x8) getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f00000001c0)={r2, 0xd3}, &(0x7f0000000240)=0x8) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) [ 471.200795] gfs2: quota_quantum mount option requires a positive numeric argument [ 471.296404] gfs2: can't parse mount arguments [ 471.402961] gfs2: quota_quantum mount option requires a positive numeric argument [ 471.436868] gfs2: can't parse mount arguments [ 471.772390] audit: type=1804 audit(1550065825.282:546): pid=24154 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/309/file0/file0" dev="loop0" ino=144 res=1 [ 471.802768] audit: type=1804 audit(1550065825.282:547): pid=24183 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/309/file0/file0" dev="loop0" ino=144 res=1 13:50:25 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) r0 = accept4(0xffffffffffffffff, &(0x7f0000000240)=@in6={0xa, 0x0, 0x0, @mcast1}, &(0x7f0000000040)=0x80, 0x800) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='highspeed\x00', 0xa) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) 13:50:25 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000000c0)='cpuacct.usage_percpu_user\x00', 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0xfffffffffffffffe) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) getsockopt$bt_BT_DEFER_SETUP(r4, 0x112, 0x7, &(0x7f0000000000), &(0x7f0000000080)=0x4) ioctl$KVM_RUN(r4, 0xae80, 0x0) 13:50:25 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x30280, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) 13:50:25 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:50:25 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0xc0ed0000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:25 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)) r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(0xffffffffffffffff, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r3, @ANYBLOB="000229bd7000fcdbdf2507000000b0000500080001007564700008000100696200001c00020008000100170000000800020009000000080004000100000008000100696200003c000200080002000800000008000100170000000800040006000000080004008f0000000800010011000000080004000000000008000200010000003c0002000800020003000000080002000100000008000200f800000008000300050000000800030001000000080004000900000008000300010000003c000100380004001400010002004e20e00000020000000000000000200002000a004e21000000a6fe880000000000000000000000000101feffffff0c000500080001006962000064000700080002005f6a000008000100ff0700000c00040000000800000000000c000300020000000000000008000200060000000c0004001f000000000000000800010009000000080001000400000008000100000200000c0003000800000000000000340002000800020005000000040004000400040004000400080002000100000008000100d213000008000100f50e00000400040004000400"], 0x1a8}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:25 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040)='/dev/usbmon#\x00', 0x6, 0x600102) getsockopt$inet_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x23, &(0x7f0000000100)={&(0x7f0000ffe000/0x2000)=nil, 0x2000}, &(0x7f00000001c0)=0x10) r1 = syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) ioctl$VIDIOC_SUBDEV_S_FMT(r1, 0xc0585605, &(0x7f0000000240)={0x1, 0x0, {0x0, 0xffffffff00000001, 0x701d, 0xb, 0xd, 0x1}}) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) [ 472.077061] gfs2: quota_quantum mount option requires a positive numeric argument [ 472.101664] gfs2: can't parse mount arguments 13:50:25 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0xf6ffffff, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 472.278372] audit: type=1804 audit(1550065825.782:548): pid=24227 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/310/file0/file0" dev="sda1" ino=17377 res=1 [ 472.385177] gfs2: quota_quantum mount option requires a positive numeric argument 13:50:26 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$EXT4_IOC_MIGRATE(r0, 0x6609) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r3, &(0x7f00000007c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x840003}, 0x24a, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 472.432768] audit: type=1804 audit(1550065825.822:549): pid=24227 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/310/file0/file0" dev="sda1" ino=17377 res=1 [ 472.433184] gfs2: can't parse mount arguments 13:50:26 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) fdatasync(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000040)={0x0, 0x3, 0x1000, 0x23}) r2 = creat(&(0x7f0000000100)='./file0\x00', 0x0) ioctl$PPPIOCSFLAGS1(r2, 0x40047459, &(0x7f0000000080)=0x200000) 13:50:26 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) ioctl$sock_inet_tcp_SIOCINQ(r0, 0x541b, &(0x7f0000000040)) 13:50:26 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0xfcfdffff, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:26 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:50:26 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)={0xffffffffffffffff}) ioctl$VHOST_RESET_OWNER(r0, 0xaf02, 0x0) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) [ 472.884677] gfs2: quota_quantum mount option requires a positive numeric argument 13:50:26 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)) r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(0xffffffffffffffff, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r3, @ANYBLOB="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"], 0x1a8}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 472.960922] audit: type=1804 audit(1550065826.472:550): pid=24254 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/311/file0/file0" dev="sda1" ino=16721 res=1 [ 473.028149] gfs2: can't parse mount arguments 13:50:26 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) umount2(&(0x7f0000000040)='./file0\x00', 0x0) [ 473.076902] audit: type=1804 audit(1550065826.492:551): pid=24257 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/311/file0/file0" dev="sda1" ino=16721 res=1 13:50:26 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) unshare(0x400) write$P9_RUNLINKAT(r0, &(0x7f0000000040)={0x7, 0x4d, 0x2}, 0x7) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r1, 0xc08c5336, &(0x7f0000000240)={0x1, 0x0, 0x8, 'queue0\x00', 0x80000000}) syz_genetlink_get_family_id$nbd(&(0x7f0000000100)='nbd\x00') 13:50:26 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0xfdfdffff, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:26 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) r0 = syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x4, 0x0) socket$unix(0x1, 0x9, 0x0) r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) r2 = shmget$private(0x0, 0x4000, 0x1001, &(0x7f0000ffc000/0x4000)=nil) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000100)={0x0, 0x0}, &(0x7f00000001c0)=0xc) lstat(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) lstat(&(0x7f0000000300)='./file0\x00', &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0}) getresgid(&(0x7f0000000480), &(0x7f00000004c0)=0x0, &(0x7f0000000500)) ioctl$TIOCGSID(r0, 0x5429, &(0x7f0000000540)=0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000580)={0x0}, &(0x7f00000005c0)=0xc) shmctl$IPC_SET(r2, 0x1, &(0x7f0000000600)={{0x3, r3, r4, r5, r6, 0xc, 0x7}, 0xffffffffffffffff, 0x1f7, 0x7a1cfe83, 0x0, r7, r8, 0xffffffff}) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f0000000240)={0x0, {0x2, 0x4e21, @remote}, {0x2, 0x4e22, @local}, {0x2, 0x4e24, @remote}, 0x80, 0x0, 0x0, 0x0, 0x5, &(0x7f0000000040)='team_slave_1\x00', 0x8, 0x8000, 0x1ff}) [ 473.388957] gfs2: quota_quantum mount option requires a positive numeric argument 13:50:26 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = creat(&(0x7f0000000080)='./file0\x00', 0xfffffffffffffffe) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) r2 = creat(&(0x7f0000000100)='./file0\x00', 0x0) ioctl$VIDIOC_ENUMAUDIO(r2, 0xc0345641, &(0x7f0000000040)={0x6, "b6db4348853e5b068e93104d9001e73abc03732355baf7ad8eae19e19119150a", 0x2, 0x1}) [ 473.453706] gfs2: can't parse mount arguments 13:50:27 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r3, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) accept4$tipc(r3, &(0x7f0000000000), &(0x7f0000000080)=0x10, 0x80000) 13:50:27 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0xfdffffff, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:27 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$evdev(&(0x7f0000000040)='/dev/input/event#\x00', 0x8000, 0x0) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) 13:50:27 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) [ 473.764508] gfs2: quota_quantum mount option requires a positive numeric argument [ 473.790918] gfs2: can't parse mount arguments 13:50:27 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0xfffffdfc, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:27 executing program 4: r0 = syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000100)='./file0\x00', 0x4000000000000000) pipe(&(0x7f0000000180)) unshare(0x400) ioctl$EVIOCGRAB(r0, 0x40044590, &(0x7f0000000040)=0x3) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) [ 473.970031] gfs2: quota_quantum mount option requires a positive numeric argument [ 473.982544] gfs2: can't parse mount arguments 13:50:27 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, 0x0, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:27 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0xfffffdfd, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 474.172942] gfs2: quota_quantum mount option requires a positive numeric argument [ 474.225367] gfs2: can't parse mount arguments 13:50:27 executing program 4: r0 = syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='pids.current\x00', 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000100)={0x10000001}) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) [ 474.314181] gfs2: quota_quantum mount option requires a positive numeric argument [ 474.337297] gfs2: can't parse mount arguments 13:50:27 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0xffffff7f, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:28 executing program 4: r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rfkill\x00', 0x2000, 0x0) ioctl$PPPIOCGFLAGS1(r0, 0x8004745a, &(0x7f0000000100)) syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) r1 = syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) r2 = socket$unix(0x1, 0x3, 0x0) r3 = getpid() ioctl$sock_SIOCGPGRP(r2, 0x8904, &(0x7f0000000080)=0x0) ioctl$TIOCGLCKTRMIOS(r0, 0x5456, &(0x7f0000000240)={0x0, 0x7, 0x1ff, 0x44e536d, 0x13, 0x5, 0x7, 0x8, 0x5, 0x8c2, 0xffffffffffffffff, 0x3291}) kcmp(r3, r4, 0x5, r2, r1) creat(&(0x7f00000001c0)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) [ 474.558515] gfs2: quota_quantum mount option requires a positive numeric argument [ 474.604616] gfs2: can't parse mount arguments [ 474.725402] gfs2: quota_quantum mount option requires a positive numeric argument [ 474.741260] gfs2: can't parse mount arguments [ 474.890077] kauditd_printk_skb: 1 callbacks suppressed [ 474.890092] audit: type=1804 audit(1550065828.392:553): pid=24325 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/313/file0/file0" dev="loop0" ino=145 res=1 [ 474.896329] audit: type=1804 audit(1550065828.402:554): pid=24353 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/313/file0/file0" dev="loop0" ino=145 res=1 13:50:28 executing program 0: r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x44003, 0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000180)=0x20008) syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r1 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r1) r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0) getsockname$inet6(r0, &(0x7f0000000240)={0xa, 0x0, 0x0, @remote}, &(0x7f0000000280)=0x1c) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r2, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x10840, 0x0) 13:50:28 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, 0x0, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:28 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) r3 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rfkill\x00', 0x0, 0x0) ioctl$VIDIOC_S_FBUF(r3, 0x4030560b, &(0x7f0000000280)={0x82, 0x1c, &(0x7f0000000080)="19c2f419d4268ebaa4bf95a10beb5cb935ba2be3242f0fc83b26e860e7fa4a90f34f0da5db8d438031d2860399f344c1d502ff72f15f17ccb3582665d7cb8b60439aa6b337762524e9cc5f06798f8e1351f5e7568fcacbde1d7418a3452a0b91a2d5b54554475251b44fbe672ea5c4ac88d671b3b18d96e51af7", {0x9, 0x0, 0x0, 0x5, 0x8, 0xe534, 0xa, 0x3f}}) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x25, &(0x7f00000002c0)=0x400, 0x4) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:28 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) r0 = syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r0, 0x4010ae68, &(0x7f0000000040)={0x100001, 0x1000}) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) 13:50:28 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:50:28 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0xffffff8c, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 475.209281] FAT-fs (loop0): error, fat_free_clusters: deleting FAT entry beyond EOF [ 475.237722] FAT-fs (loop0): Filesystem has been set read-only [ 475.238991] gfs2: quota_quantum mount option requires a positive numeric argument [ 475.310253] gfs2: can't parse mount arguments 13:50:28 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) r0 = syz_open_dev$vcsa(&(0x7f0000000040)='/dev/vcsa#\x00', 0x0, 0x70000) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000180)) syz_open_dev$usb(&(0x7f0000000100)='/dev/bus/usb/00#/00#\x00', 0x0, 0x40) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f00000001c0)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) 13:50:28 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0xffffff97, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 475.614394] audit: type=1804 audit(1550065829.122:555): pid=24398 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/314/file0" dev="sda1" ino=17377 res=1 13:50:29 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x60040000) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) [ 475.722132] gfs2: quota_quantum mount option requires a positive numeric argument 13:50:29 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$int_out(r0, 0x5462, &(0x7f0000000040)) r1 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/autofs\x00', 0xa300, 0x0) fchdir(r1) r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r3, 0x1, 0x0, 0x369e5d84) fallocate(r3, 0x0, 0x0, 0xea5f) setsockopt$bt_hci_HCI_DATA_DIR(r2, 0x0, 0x1, &(0x7f0000000180)=0x2, 0x4) creat(&(0x7f0000000100)='./file0\x00', 0x0) [ 475.787046] audit: type=1804 audit(1550065829.162:556): pid=24398 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/314/file0" dev="sda1" ino=17377 res=1 [ 475.857657] gfs2: can't parse mount arguments [ 475.907430] IPVS: ftp: loaded support on port[0] = 21 [ 475.946481] audit: type=1804 audit(1550065829.172:557): pid=24398 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/314/file0" dev="sda1" ino=17377 res=1 13:50:29 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) [ 476.002697] gfs2: quota_quantum mount option requires a positive numeric argument [ 476.062821] gfs2: can't parse mount arguments 13:50:29 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, 0x0, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:29 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0xfffffff6, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:29 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cgroup.stat\x00', 0x0, 0x0) setsockopt$netlink_NETLINK_CAP_ACK(r3, 0x10e, 0xa, &(0x7f0000000340)=0xdc4, 0x4) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r4, 0x84, 0x71, &(0x7f0000000000)={0x0}, &(0x7f0000000080)=0x8) setsockopt$inet_sctp6_SCTP_SET_PEER_PRIMARY_ADDR(r1, 0x84, 0x5, &(0x7f0000000280)={r5, @in6={{0xa, 0x4e21, 0x6, @dev={0xfe, 0x80, [], 0x10}, 0x10001}}}, 0x84) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 476.246597] audit: type=1804 audit(1550065829.752:558): pid=24431 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/315/file0" dev="sda1" ino=17843 res=1 [ 476.310519] IPVS: ftp: loaded support on port[0] = 21 [ 476.385462] audit: type=1804 audit(1550065829.792:559): pid=24435 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/315/file0" dev="sda1" ino=17843 res=1 [ 476.468863] gfs2: quota_quantum mount option requires a positive numeric argument [ 476.522784] audit: type=1804 audit(1550065829.872:560): pid=24451 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/315/file0" dev="sda1" ino=17843 res=1 13:50:30 executing program 0: socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)) syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe001, 0x0, &(0x7f0000000140), 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) fcntl$F_GET_FILE_RW_HINT(r1, 0x40d, &(0x7f0000000040)) getsockopt$inet_int(r1, 0x0, 0x3f, &(0x7f0000000140), &(0x7f0000000280)=0x4) creat(&(0x7f0000000100)='./file0\x00', 0x0) r2 = semget$private(0x0, 0x3, 0x4) semctl$SETVAL(r2, 0x4, 0x10, &(0x7f00000000c0)=0x2) getsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r0, 0x84, 0x12, &(0x7f0000000180), &(0x7f0000000240)=0x4) [ 476.617363] gfs2: can't parse mount arguments [ 476.739059] FAT-fs (loop0): bogus number of reserved sectors [ 476.752357] gfs2: quota_quantum mount option requires a positive numeric argument [ 476.780545] gfs2: can't parse mount arguments [ 476.788561] FAT-fs (loop0): Can't find a valid FAT filesystem 13:50:30 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:50:30 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0xfffffffd, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 476.926301] audit: type=1804 audit(1550065830.432:561): pid=24467 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/316/file0/file0" dev="sda1" ino=17848 res=1 [ 477.033080] FAT-fs (loop0): bogus number of reserved sectors [ 477.071496] audit: type=1804 audit(1550065830.472:562): pid=24468 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/316/file0/file0" dev="sda1" ino=17848 res=1 [ 477.088972] FAT-fs (loop0): Can't find a valid FAT filesystem [ 477.104492] gfs2: quota_quantum mount option requires a positive numeric argument 13:50:30 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r3, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x8, 0x80000) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:30 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4, @ANYBLOB="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"], 0x3}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 477.154162] gfs2: can't parse mount arguments 13:50:30 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = getpid() ptrace$peek(0x1, r0, &(0x7f0000000080)) r1 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r1) accept$inet6(r1, 0x0, &(0x7f0000000040)) r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r2, 0x1, 0x0, 0x369e5d84) fallocate(r2, 0x0, 0x0, 0xea5f) getsockname$inet(r1, &(0x7f0000000240)={0x2, 0x0, @multicast1}, &(0x7f0000000280)=0x10) creat(&(0x7f0000000100)='./file0\x00', 0x0) connect$bt_rfcomm(r1, &(0x7f0000000180)={0x1f, {0x3ff, 0x7fffffff, 0xf9a, 0x65, 0x3, 0x4}, 0x2}, 0xa) [ 477.293433] gfs2: quota_quantum mount option requires a positive numeric argument [ 477.320236] gfs2: can't parse mount arguments 13:50:32 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0) write$UHID_CREATE2(r0, &(0x7f0000000380)={0xb, 'syz1\x00', 'syz0\x00', 'syz1\x00', 0x32, 0x7ff, 0x6, 0x1, 0x200, 0x9, "2e937d21774f1267895c28d7122039804810897c4cd33bec0d308d538f38c2b65033236133d3fdffa6bdd57ec226bb66f93f"}, 0x14a) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) 13:50:32 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x1000000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:32 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4, @ANYBLOB="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"], 0x3}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:32 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x400100) r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) prctl$PR_SET_MM_AUXV(0x23, 0xc, &(0x7f0000000280)="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", 0xfb) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r3, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:32 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:50:32 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) prctl$PR_SET_TSC(0x1a, 0x1) ioctl$IMGETVERSION(r0, 0x80044942, &(0x7f0000000040)) [ 479.370098] gfs2: quota_quantum mount option requires a positive numeric argument [ 479.435562] gfs2: can't parse mount arguments [ 479.516685] gfs2: quota_quantum mount option requires a positive numeric argument [ 479.563264] gfs2: can't parse mount arguments 13:50:33 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0xedc000000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:33 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0) setsockopt$inet_sctp6_SCTP_NODELAY(r0, 0x84, 0x3, &(0x7f0000000040)=0x5, 0x4) pipe(&(0x7f0000000180)={0xffffffffffffffff}) unshare(0x400) ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000000100)=0x0) capset(&(0x7f00000001c0)={0x19980330, r2}, &(0x7f0000000240)={0x5, 0x5, 0xa60, 0x37, 0x711}) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) 13:50:33 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) ioctl$VHOST_SET_FEATURES(r1, 0x4008af00, &(0x7f0000000040)=0x8000) creat(&(0x7f0000000100)='./file0\x00', 0x0) 13:50:33 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x7, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) [ 479.920969] gfs2: quota_quantum mount option requires a positive numeric argument [ 479.961104] gfs2: can't parse mount arguments 13:50:33 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x4000000000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:33 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:50:33 executing program 4: syz_open_dev$evdev(&(0x7f0000000040)='/dev/input/event#\x00', 0x100000000000001, 0xffffffffffffffff) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000009, 0x0) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) mmap$xdp(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x2, 0x40010, r0, 0x180000000) unshare(0x400) pselect6(0x2fd, &(0x7f00000000c0), 0x0, &(0x7f0000000000)={0x1b9, 0x0, 0x0, 0x0, 0x0, 0x1}, &(0x7f0000000200), 0x0) 13:50:33 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4, @ANYBLOB="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"], 0x3}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 480.199778] kauditd_printk_skb: 6 callbacks suppressed [ 480.199792] audit: type=1804 audit(1550065833.702:569): pid=24556 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/319/file0/file0" dev="sda1" ino=17868 res=1 [ 480.276068] gfs2: quota_quantum mount option requires a positive numeric argument 13:50:33 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) ioctl$VIDIOC_S_MODULATOR(r0, 0x40445637, &(0x7f0000000040)={0x9, "95b23bc4f5699679ac834b7ac65a8133bd64c6ea9ca60a006c33e0d12b3bb7cd", 0x42, 0x8, 0x0, 0x3, 0x3}) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) [ 480.349183] audit: type=1804 audit(1550065833.742:570): pid=24559 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/319/file0/file0" dev="sda1" ino=17868 res=1 [ 480.383458] gfs2: can't parse mount arguments 13:50:34 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x55, 0xffffffffffffffff, 0x0, 0x0, 0x100000, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe355, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x200801, 0x0) getsockopt$inet6_udp_int(r3, 0x11, 0x1, &(0x7f0000000080), &(0x7f00000000c0)=0x4) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:34 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x40000000000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:34 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x2) r0 = syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) ioctl$VIDIOC_SUBDEV_G_SELECTION(r0, 0xc040563d, &(0x7f00000001c0)={0x0, 0x0, 0x102, 0x5, {0x6, 0x100, 0x1, 0x7}}) ioctl$KVM_GET_XSAVE(r0, 0x9000aea4, &(0x7f0000000380)) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) io_setup(0x1, &(0x7f0000000100)) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x17, &(0x7f00000000c0)={0x0, 0x4000000, 0x0, 0x0, 0xfb5}, 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000040), 0x0) [ 480.625201] gfs2: quota_quantum mount option requires a positive numeric argument [ 480.650099] gfs2: can't parse mount arguments 13:50:34 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x100000000000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 480.761809] audit: type=1804 audit(1550065834.262:571): pid=24588 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/320/file0/file0" dev="sda1" ino=17876 res=1 13:50:34 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600), 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4, @ANYBLOB="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"], 0x1a8}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:34 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) ioctl$SIOCGSTAMPNS(r1, 0x8907, &(0x7f0000000040)) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) r2 = creat(&(0x7f0000000100)='./file0\x00', 0x0) accept$inet(r1, &(0x7f0000000080)={0x2, 0x0, @multicast1}, &(0x7f0000000180)=0x10) bind$llc(r2, &(0x7f0000000240)={0x1a, 0x33e, 0x2, 0x7, 0x8, 0x8, @remote}, 0x10) [ 480.848904] audit: type=1804 audit(1550065834.262:572): pid=24588 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/320/file0/file0" dev="sda1" ino=17876 res=1 [ 480.856698] gfs2: quota_quantum mount option requires a positive numeric argument [ 480.938615] gfs2: can't parse mount arguments 13:50:34 executing program 4: syz_open_dev$evdev(&(0x7f0000000040)='/dev/input/event#\x00', 0x0, 0x3) syz_mount_image$nfs4(&(0x7f0000000000)='nfs4\x00', &(0x7f0000000100)='./file0\x00', 0x683, 0x1, &(0x7f00000001c0)=[{&(0x7f0000000240)="b36241fff5368defc6f9ca965143bdee64faf9fb9d2ec11ab36d8ee3605b0948c03e9927ec4d8c71fb44a2bf71ab5e7571c8835e5072553bbf8c12a62ffdd6003cda20c23b250f36ccd5d305bacabe10ad18ad3b85230ed0fc8165e9cca3057820ed116c3d8fbb8fec299728017730c3cd38ea6eb13fc6f0258e15a0b1caafef9b203f5ab5d5d1f9d6420df124eb1d58f22e5546cdfdd7ddc7fbd8703e01215842b45f6ab07e0da0d59123067fe1e595fe6a70cef46db686d8898bcb465c66cfa50703bd8273a14fecc31bc1d9dfed1477963dee87697c484988e8c76d2568fa155f06", 0xe3, 0x7c}], 0x40, &(0x7f0000000380)='vboxnet1+ppp0\x00') syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) unshare(0x400) accept4$inet6(r0, &(0x7f00000003c0)={0xa, 0x0, 0x0, @loopback}, &(0x7f0000000400)=0x1c, 0x80000) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) [ 481.019160] gfs2: quota_quantum mount option requires a positive numeric argument 13:50:34 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) [ 481.059567] gfs2: can't parse mount arguments 13:50:34 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000500)='/dev/kvm\x00', 0xfffffffffffffffe, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000300)='/dev/audio\x00', 0x103000, 0x0) r4 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000380)='IPVS\x00') sendmsg$IPVS_CMD_SET_DEST(r3, &(0x7f0000000480)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000440)={&(0x7f00000003c0)={0x78, r4, 0x20, 0x70bd27, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_DAEMON={0x4}, @IPVS_CMD_ATTR_SERVICE={0xc, 0x1, [@IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x16}]}, @IPVS_CMD_ATTR_SERVICE={0xc, 0x1, [@IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e24}]}, @IPVS_CMD_ATTR_SERVICE={0x1c, 0x1, [@IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x76f3dc2300280a4c}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x4}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0xfffffffffffffffc}]}, @IPVS_CMD_ATTR_DEST={0x4}, @IPVS_CMD_ATTR_SERVICE={0x18, 0x1, [@IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@empty}]}, @IPVS_CMD_ATTR_SERVICE={0x10, 0x1, [@IPVS_SVC_ATTR_SCHED_NAME={0xc, 0x6, 'none\x00'}]}]}, 0x78}, 0x1, 0x0, 0x0, 0x20004040}, 0x24008010) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@textreal={0x8, &(0x7f00000000c0)="363e360f22e164660f70408ea60f20a7b8ff0f8ee80fc769a9660fde6c00f0810a0a00670f300fbbbb640066b84a00b47c0f23d00f21f866353000000a0f23f8", 0x40}], 0x1, 0x5, 0x0, 0x0) prctl$PR_SET_DUMPABLE(0x4, 0x2) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$DRM_IOCTL_INFO_BUFS(r2, 0xc0106418, &(0x7f0000000000)={0x9, 0xef, 0x1000, 0xfffffffffffffe01, 0x3, 0x8}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r5 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000180)='/dev/hwrng\x00', 0xa61d078089a4fd4d, 0x0) setsockopt$inet_tcp_TCP_REPAIR(r5, 0x6, 0x13, &(0x7f00000002c0), 0x4) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_GET_REGS(r1, 0x8090ae81, &(0x7f0000000200)) r6 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) perf_event_open$cgroup(&(0x7f0000000540)={0x5, 0x70, 0xffffffffffffffc1, 0x2955, 0x6, 0x1, 0x0, 0x100000000, 0x0, 0xa, 0x20, 0xf4f6, 0x7, 0x5, 0x7, 0x53d, 0x81, 0x1, 0x6, 0x8, 0x3, 0x3, 0xa1a, 0x7, 0x5, 0x6, 0x1da, 0x800, 0x3, 0x1f, 0x7, 0x100000001, 0x4, 0x1, 0x9, 0x7, 0x8, 0x4, 0x0, 0x7ff, 0x2, @perf_bp={&(0x7f00000004c0)}, 0x4010, 0x1bd8dd6f, 0x3f, 0x8, 0x9, 0x400, 0x200}, r5, 0xc, 0xffffffffffffffff, 0xc) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r6, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) ioctl$KVM_KVMCLOCK_CTRL(r6, 0xaead) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r1, 0x40286608, &(0x7f0000000040)={0x200, 0x4, 0x5, 0x3, 0x7, 0x39ba}) ioctl$SCSI_IOCTL_BENCHMARK_COMMAND(r3, 0x3) 13:50:34 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x200000000000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 481.176181] NFS: bad mount option value specified: vboxnet1+ppp0 [ 481.376881] gfs2: quota_quantum mount option requires a positive numeric argument [ 481.419110] gfs2: can't parse mount arguments 13:50:34 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r3, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:35 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) r0 = syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) getsockopt$inet_sctp_SCTP_STATUS(r0, 0x84, 0xe, &(0x7f0000000240)={0x0, 0xfff, 0x1000, 0x1, 0x3, 0xfffffffffffffffa, 0x81, 0x8000, {0x0, @in={{0x2, 0x4e22, @local}}, 0xfff, 0x7, 0x6, 0x0, 0x1}}, &(0x7f0000000100)=0xb0) getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(r0, 0x84, 0x70, &(0x7f0000000380)={r1, @in6={{0xa, 0x4e20, 0x8001, @mcast1, 0xfffffffffffffe00}}, [0x1, 0x3, 0x4, 0x3, 0x9, 0x200, 0x9, 0x80000001, 0x4, 0x7, 0x832d, 0x1, 0x6, 0xb10, 0x5]}, &(0x7f00000001c0)=0x100) ioctl$SG_GET_SG_TABLESIZE(r0, 0x227f, &(0x7f0000000080)) creat(&(0x7f0000000040)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) [ 481.531880] gfs2: quota_quantum mount option requires a positive numeric argument [ 481.570616] gfs2: can't parse mount arguments 13:50:35 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x300000000000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:35 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600), 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4, @ANYBLOB="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"], 0x1a8}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:35 executing program 4: r0 = syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) vmsplice(r0, &(0x7f00000002c0)=[{&(0x7f0000000240)="bfcc7709b8b4cd9aa003e5a69de8bc5809a40c87f774cf603dadc849f8616a997945dd5581afa31cd931765cae33363f07164f9a8df833df6e804b97f8f3e769b98924c03b6448088f673ec93fe47008a7", 0x51}, {&(0x7f0000000380)="62eef64351ee4e47b9b40eb0ea3ffb26c74ccf5f402375956fcb5075a0ef7d96c7e8d1aeba4d475d08d995c45dddd21d37469c5da1c86ee6689054fe59353b72fc1fab85aaea2d741b3d451a9aecb3b9d2dc49f857fd1df36a6bd26a938ab8d41a286ed75dfa9918a05fe0f31396771f480e12926ead7f4091aa3afefe1bab4cacc96f51d3101db7d9466d9676", 0x8d}, {&(0x7f0000000440)="ce9ad42b8c59228649d1f584c3263755ba9f0203baa2defcfd07113bfaa654b54d74940a0e584c2f52bff0cbd7985602d4fe113369460ae9641f5c5da8f6672848d054bd75b543063780cae7e1c2cec61ceed50b16ef907dee90619441c5ad982884ba338b4d2d7315fd5b72658076c8fa414b511a05d5421c0bb7a22d9165d643acb4b38c82de085ac54bc5e5949c99ed6779e96be95246a6285fc8e19609642f0c77b430db0ec497ff638aca3534156870f0a8aa6752cf50ce9caf57f7007994a18de671b0a5ec4c3f39be1cf61dae45732e0872f2714b151df20e799b6f4049bf9afbe020db8661d84bc2", 0xec}, {&(0x7f0000000100)="4b10473a6839d0b7bf2339c8b0ad", 0xe}, {&(0x7f0000000540)="f95b731ea427691fd7e4aa8d755bcdc26b07e12531d2880834a59583bb3157941f8c84dcafc1d6004d358bbb8982c66150af1e7451647b452a8acde6e70ea46ea877e28630e1c59b812a9c87bc87d2dd125704bab0a6b847fde5662a235e0c2ec7fe503534b482e80f1cea3357d30ca24b4cfd14154ad1f8f6294e1b3fdc8a2e7dc7dcec54ffac722bd864c1463a185d4a120df16055ccd669c5", 0x9a}, {&(0x7f00000001c0)="c3ea1e499084521be246", 0xa}, {&(0x7f0000000600)="6866df3130965c62ece6347c7306b77e691d13eef56f79b178800fe93191b3c1d74395668563688be5ded4bff75fa15bef24fd181ce4fa14d26e2ce887e117669293fef73136281b6d5449287de35ff79da99f54ac4692ada5db31a8b71f50783822e6e8d16db9a5e01e09d29b855d1dfe447928149f9fb4ff38234fc6f2740610290d740672bc8d63e1d749da765f2d299f5100a10f6f62418c21d1a40cf06588cb02925a503817c8b5964e989fe2efc012895d74a177e7839014d32c0219f26a2a505bb3c7ceca020bd812b080ef2158e4d9ab885a16df560b6d62", 0xdc}, {&(0x7f0000000700)="e6f426b396df5f2d8efa46335ee8109287360cb7ad63612d9ed082a6a45b035734ac4087d98a060c1e9b9b41ab5f3491db71a92b8cca591a1796773362ef880412f1ce9e8ab7f0b1c5029386e42c4e9d6b6304d4fb3cc80f1c3e7260b3c85225ed20d5b89ab1094c73fe3e587e2e2e09762e742a075c6043a0cf9e3057ec14e3c38167ded46915b783554f43837708eeec288f19e662660e478b52cfaebfe8c496db1a3a97d65a13cdbd722a949bdb1067158ac47cb44f", 0xb7}], 0x8, 0x9) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) setsockopt$inet6_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000040)='yeah\x00', 0x5) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) [ 481.850336] gfs2: quota_quantum mount option requires a positive numeric argument [ 481.894824] gfs2: can't parse mount arguments [ 481.989735] gfs2: quota_quantum mount option requires a positive numeric argument 13:50:35 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) [ 482.035128] gfs2: can't parse mount arguments 13:50:35 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)={0xffffffffffffffff}) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r0, 0x660c) unshare(0x400) pselect6(0xffffffffffffff65, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x2}, 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) ioctl$sock_inet6_tcp_SIOCOUTQNSD(r1, 0x894b, &(0x7f0000000040)) [ 482.613974] audit: type=1804 audit(1550065836.122:573): pid=24643 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/321/file0/file0" dev="loop0" ino=146 res=1 [ 482.647989] audit: type=1800 audit(1550065836.132:574): pid=24643 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed comm="syz-executor.0" name="file0" dev="loop0" ino=146 res=0 [ 482.673735] audit: type=1804 audit(1550065836.142:575): pid=24666 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/321/file0/file0" dev="loop0" ino=146 res=1 13:50:36 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) r0 = socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) fsetxattr$security_ima(r0, &(0x7f00000000c0)='security.ima\x00', &(0x7f0000000240)=ANY=[@ANYBLOB="1513f8c35fe489cf9e610052055d40d04fc4a46f36b9a442c581f006a6172bacc2055ae5b2532d30ab28b935b78db1579232575727012caa3eed5887db1c0e9fc72c8a321883b22b98a3b8fb99d1c619209e7fa80b71dc0da65b9eb9c32f8604dd59fb409850082b035c3cc16d5354621aa35ea4934ce19556d444e3c62f04653975152ac9c52fbdf59e49caf1f3256012c70d6143b4bad933567bd16ee53ce95ab275b241a2fa1481f6b3dd6b9eabd26c7f972f37eb548fffdaa7de60fb85fc231413e2407edafb1efce1e7f98ccb3f407884cb8d82d0f65e"], 0x5, 0x3) pselect6(0x40, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x6df4c352}, 0x0, &(0x7f0000000040)={0x1b9}, &(0x7f00000001c0), 0x0) 13:50:36 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x400000000000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:36 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600), 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4, @ANYBLOB="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"], 0x1a8}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:36 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x2, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) getsockopt$SO_COOKIE(r3, 0x1, 0x39, &(0x7f0000000040), &(0x7f0000000080)=0x8) sendmsg$nl_generic(r3, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:36 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) ioctl$RTC_VL_READ(r0, 0x80047013, &(0x7f0000000040)) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) 13:50:36 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) write(0xffffffffffffffff, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, 0xffffffffffffffff, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) [ 482.958043] gfs2: quota_quantum mount option requires a positive numeric argument 13:50:36 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) r0 = syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x7, 0x0) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) ioctl$BLKTRACESTART(r0, 0x1274, 0x0) pipe(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000100)={r1, 0x28, &(0x7f0000000040)}, 0x10) [ 483.025564] gfs2: can't parse mount arguments [ 483.157691] gfs2: quota_quantum mount option requires a positive numeric argument [ 483.221601] gfs2: can't parse mount arguments 13:50:36 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x500000000000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:36 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) r0 = socket(0x5, 0xe, 0x6) setsockopt$bt_l2cap_L2CAP_OPTIONS(r0, 0x6, 0x1, &(0x7f0000000040)={0xfffffffffffffbff, 0x0, 0x5, 0x4, 0x4, 0x80000000, 0x1ff}, 0xc) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) 13:50:36 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x0, &(0x7f0000000140), 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x1, 0x0, 0x369e5d84) getsockopt$inet_sctp_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000000240), &(0x7f0000000280)=0x8) sendto(r1, &(0x7f0000000040)="065305f9395db4c2e03c9bc2b48e53db50cd74e3d8dfed7b4c914569c28c9c61325fb3996e76e5f88604e5cd0c104b2ae90aae9d50577d959d5c011463ca6169c1056ca369637ac7bbf6e7a8c4b92b3361566c5690cc01831f8426cd05adaadff6c1a1947b93b377a7ef6ad1af466d616b369f151d237ebb2280d54bcddc403fb2d5eff873a9ca4b", 0x88, 0x8040, &(0x7f0000000140)=@in6={0xa, 0x4e20, 0x0, @rand_addr="1b26ba57a6215c292112d0630de4114f", 0x5}, 0x80) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000500)={0x0, r1, 0x0, 0x5, &(0x7f00000004c0)='vfat\x00', 0xffffffffffffffff}, 0x30) perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0x7, 0xfffffffffffff6d1, 0x7ff, 0xb7fd, 0x0, 0x200, 0x801, 0x0, 0x8, 0x4, 0x3, 0xb, 0xd19b, 0x8, 0x28a3, 0x0, 0x6, 0x19b, 0x9d, 0x0, 0x6, 0x4, 0x765a, 0x6, 0x4, 0x3, 0x8, 0x100000000, 0x9, 0x20, 0x7, 0x30, 0x6, 0x0, 0x0, 0x40, 0x0, 0x4, 0x0, @perf_bp={&(0x7f0000000400), 0x8}, 0x8000, 0x80000001, 0x16, 0x9, 0xfffffffffffffffa, 0x5, 0x80}, r2, 0x5, 0xffffffffffffffff, 0x8) fallocate(r1, 0x0, 0x0, 0xea5f) getsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r1, 0x84, 0xc, &(0x7f0000000340), &(0x7f0000000380)=0x4) r3 = getpgid(0xffffffffffffffff) fcntl$lock(r1, 0x7, &(0x7f00000003c0)={0x0, 0x1, 0xff2, 0x4, r3}) setsockopt$netlink_NETLINK_CAP_ACK(r1, 0x10e, 0xa, &(0x7f00000002c0)=0x81, 0x4) creat(&(0x7f0000000100)='./file0\x00', 0x0) [ 483.528493] gfs2: quota_quantum mount option requires a positive numeric argument [ 483.580665] gfs2: can't parse mount arguments 13:50:37 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)={0xffffffffffffffff}) unshare(0x800) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) symlinkat(&(0x7f0000000040)='./file0\x00', r0, &(0x7f0000000100)='./file0\x00') 13:50:37 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x600000000000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 483.683987] FAT-fs (loop0): bogus number of reserved sectors [ 483.715018] FAT-fs (loop0): Can't find a valid FAT filesystem 13:50:37 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) write(0xffffffffffffffff, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, 0xffffffffffffffff, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:50:37 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:37 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x1, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r3, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:37 executing program 4: syz_open_dev$evdev(&(0x7f0000000180)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x2, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff}) unshare(0x2000200) getsockopt$inet_sctp6_SCTP_GET_ASSOC_NUMBER(r1, 0x84, 0x1c, &(0x7f0000000040), &(0x7f0000000100)=0x4) write$UHID_CREATE2(r0, &(0x7f0000000380)={0xb, 'syz1\x00', 'syz1\x00', 'syz1\x00', 0xae, 0xfffffffffffffffd, 0x6759, 0x6, 0x9, 0x1000, "ef71e8d35c68f1240a2fb50bb3c27944571a24af29c2bb35dbf5fefafe6c8ac88980df9d7b48a59281b7e2d9979a83ae39cc125df6d8defbddb0e67e17ed50a26de31708b7802cc715307c199fc59462ce0c74af226d05bccc59f0238d93459840ca865ad0fc066abfc1f0deb6e4b5c6a8d9427d835a2055bca1bceab3c2d708f111ba4275f5cf2db39d0d32b6018e22162de0fa990b864533e731ebf0047ebd80ba961a26043f577f89fd27c6d4"}, 0x1c6) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) [ 483.922941] FAT-fs (loop0): bogus number of reserved sectors [ 483.923820] gfs2: quota_quantum mount option requires a positive numeric argument [ 483.929709] FAT-fs (loop0): Can't find a valid FAT filesystem [ 483.990004] audit: type=1804 audit(1550065837.492:576): pid=24750 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/323/file0/file0" dev="sda1" ino=17863 res=1 [ 483.990128] gfs2: can't parse mount arguments 13:50:37 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) ioctl$BLKPG(r1, 0x1269, &(0x7f0000000040)={0x9, 0x309, 0xa0, &(0x7f0000000240)="80fee27d7aea0cba15b01ad362e66d067630f8ab517696ee6491267469b9f7947da1756c08aeb7f9ea00dd5d046e6478a9fe548672f0ceb7b10503b7332c466e914623bd6144bde1d75e7b0e5c23ccc5248955f60b9e4000b39a37af5f7664edfae20c3110205272f4d2a453156524bdad0e1f9fb2f64ad631f50f6a940d447ffa0128efa73914095abb207d40e67c23ff62d82653d188cddbe5035a680b2457"}) [ 484.163976] gfs2: quota_quantum mount option requires a positive numeric argument [ 484.210322] gfs2: can't parse mount arguments 13:50:37 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) r0 = syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ubi_ctrl\x00', 0x0, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(r0, 0x4010ae74, &(0x7f0000000040)={0x8, 0x5, 0x31f}) unshare(0x400) pselect6(0x40, &(0x7f00000001c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) 13:50:37 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x700000000000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:38 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:38 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) r0 = syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) ioctl$sock_SIOCOUTQ(r0, 0x5411, &(0x7f0000000040)) creat(&(0x7f0000000080)='./file0\x00', 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='hugetlbfs\x00', 0x0, &(0x7f0000000000)) pipe(&(0x7f0000000180)) syz_open_dev$evdev(&(0x7f0000000100)='/dev/input/event#\x00', 0xfffffffffffffffe, 0x0) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) [ 484.525317] gfs2: quota_quantum mount option requires a positive numeric argument [ 484.565335] gfs2: can't parse mount arguments [ 484.591284] audit: type=1804 audit(1550065838.102:577): pid=24789 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/324/file0/file0" dev="sda1" ino=17893 res=1 13:50:38 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) write(0xffffffffffffffff, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, 0xffffffffffffffff, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:50:38 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x900000000000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 484.769153] hugetlbfs: Bad mount option: "/dev/vga_arbiter" 13:50:38 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) ioctl$FS_IOC_FIEMAP(r0, 0xc020660b, &(0x7f0000000340)={0x8000, 0x40, 0x2, 0x800, 0x6, [{0x4, 0x5, 0x21, 0x0, 0x0, 0x908}, {0x5, 0x7, 0x3, 0x0, 0x0, 0x3103}, {0x8, 0x1000, 0x0, 0x0, 0x0, 0xc00}, {0x9, 0x0, 0x0, 0x0, 0x0, 0x80}, {0x7, 0x0, 0xd64a, 0x0, 0x0, 0x8}, {0xdc3, 0x447cdf13, 0x2, 0x0, 0x0, 0x2800}]}) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) [ 484.826732] hugetlbfs: Bad mount option: "/dev/vga_arbiter" [ 484.946937] gfs2: quota_quantum mount option requires a positive numeric argument 13:50:38 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x10000100) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) [ 485.008244] gfs2: can't parse mount arguments 13:50:38 executing program 3: r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r2 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x2, 0x0) getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000080)={0x0, 0xffff}, &(0x7f00000000c0)=0x8) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r2, 0x84, 0x66, &(0x7f0000000280)={r3, 0x4}, &(0x7f00000002c0)=0x8) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r2, 0x10e, 0x1, &(0x7f0000000300)=0x1c, 0x4) r4 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r6 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r1, 0x9) sendmsg$nl_generic(r6, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) [ 485.163130] gfs2: quota_quantum mount option requires a positive numeric argument [ 485.216281] audit: type=1804 audit(1550065838.722:578): pid=24829 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/325/file0/file0" dev="sda1" ino=17893 res=1 [ 485.241679] gfs2: can't parse mount arguments 13:50:38 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0xa00000000000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 485.331284] audit: type=1804 audit(1550065838.762:579): pid=24834 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/325/file0/file0" dev="sda1" ino=17893 res=1 13:50:38 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) r0 = syz_open_dev$sndpcmp(&(0x7f0000000040)='/dev/snd/pcmC#D#p\x00', 0xff, 0x80) getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(0xffffffffffffff9c, 0x84, 0xf, &(0x7f0000000240)={0x0, @in6={{0xa, 0x4e20, 0x3f, @dev={0xfe, 0x80, [], 0x20}, 0x4}}, 0x1, 0x8, 0x8000, 0xfff, 0x8000}, &(0x7f0000000100)=0x98) getsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000001c0)=@assoc_id=r1, &(0x7f0000000300)=0x4) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) 13:50:38 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) fsetxattr$trusted_overlay_nlink(r0, &(0x7f0000000080)='trusted.overlay.nlink\x00', &(0x7f0000000180)={'L+', 0x7}, 0x28, 0x3) r1 = creat(&(0x7f0000000280)='./file0\x00', 0x100) openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x2, 0x0) ioctl$VIDIOC_DQBUF(r0, 0xc0585611, &(0x7f0000000340)={0x14000000000000, 0xb, 0x4, 0x1, {0x0, 0x2710}, {0x5, 0xd, 0xffffffffffffffa5, 0x7, 0xfffffffffffffff9, 0x8, "0687c808"}, 0xfffffffffffffffa, 0x4, @offset=0xffff, 0x4}) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) ioctl$EXT4_IOC_GROUP_ADD(r1, 0x40286608, &(0x7f0000000040)={0x1, 0x6, 0x20, 0x9, 0x80, 0xd6}) r2 = creat(&(0x7f0000000100)='./file0\x00', 0x0) fcntl$setflags(r2, 0x2, 0x1) 13:50:39 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:50:39 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 485.562547] gfs2: quota_quantum mount option requires a positive numeric argument [ 485.610156] gfs2: can't parse mount arguments 13:50:39 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x1000000000000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:39 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) r0 = syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) ioctl$TCSETS(r0, 0x5402, &(0x7f0000000040)={0x4, 0x9, 0x7, 0x80000000, 0x2, 0x9, 0xdf, 0x4, 0xdf, 0x8, 0xfff, 0x1000}) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) [ 485.786701] EXT4-fs warning (device sda1): verify_group_input:104: Cannot add at group 1 (only 16 groups) [ 485.890086] gfs2: quota_quantum mount option requires a positive numeric argument [ 485.913994] audit: type=1804 audit(1550065839.422:580): pid=24859 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/326/file0/file0" dev="sda1" ino=17912 res=1 [ 485.961008] gfs2: can't parse mount arguments 13:50:39 executing program 3: openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ubi_ctrl\x00', 0x48280, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x1, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) r4 = fcntl$getown(r0, 0x9) sendmsg$nl_generic(r3, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f0000000000)={0x0}, 0x1, 0x0, 0x0, 0x4000100000000}, 0x7fe) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) perf_event_open(&(0x7f0000000080)={0x5, 0x70, 0x8, 0x8, 0x2, 0x1000, 0x0, 0x1, 0x8, 0x8, 0x1, 0x10001, 0xe6, 0xfff, 0x4, 0x3, 0x4, 0x6, 0x2, 0x1, 0x7, 0x8, 0x8, 0x8, 0x1, 0x5, 0x0, 0x1, 0x0, 0x9, 0x7, 0xa56, 0x7, 0xaf23, 0x7, 0x2, 0x100, 0x8, 0x0, 0x5, 0x0, @perf_config_ext={0x80000001, 0x5}, 0x2, 0x80, 0x4, 0x6, 0xad, 0x8, 0x10001}, r4, 0x3, r2, 0x1) [ 486.006564] EXT4-fs warning (device sda1): verify_group_input:104: Cannot add at group 1 (only 16 groups) 13:50:39 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x1a0f000000000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:39 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) ioctl$TCSBRKP(r0, 0x5425, 0x6) creat(&(0x7f0000000100)='./file0\x00', 0x0) 13:50:39 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680), 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 486.044023] audit: type=1804 audit(1550065839.452:581): pid=24871 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/326/file0/file0" dev="sda1" ino=17912 res=1 [ 486.075955] audit: type=1804 audit(1550065839.542:582): pid=24877 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/326/file0/file0" dev="sda1" ino=17912 res=1 13:50:39 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0xfffffffffffffffe) socket$unix(0x1, 0x1, 0x0) r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$inet_sctp6_SCTP_ASSOCINFO(r2, 0x84, 0x1, &(0x7f0000000040)={0x0, 0x100000000, 0xff, 0x9cd9, 0x8, 0x3}, &(0x7f0000000100)=0x14) setsockopt$inet_sctp_SCTP_RTOINFO(r1, 0x84, 0x0, &(0x7f0000000180)={r3, 0x2, 0xcfc3, 0x1}, 0x10) unshare(0x400) ioctl$SNDRV_CTL_IOCTL_ELEM_REMOVE(r0, 0xc0405519, &(0x7f00000001c0)={0x1, 0x4, 0xfffffffffffffff7, 0x90aa, '\x00', 0x7}) pselect6(0xfffffffffffffe96, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x3}, &(0x7f0000000200), 0x0) [ 486.202664] gfs2: quota_quantum mount option requires a positive numeric argument [ 486.250055] gfs2: can't parse mount arguments [ 486.333652] gfs2: quota_quantum mount option requires a positive numeric argument [ 486.380489] gfs2: can't parse mount arguments 13:50:39 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:50:39 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0) ioctl$LOOP_SET_BLOCK_SIZE(r0, 0x4c09, 0x6) pipe(&(0x7f0000000180)) unshare(0x400) ioctl$KVM_SET_SIGNAL_MASK(r0, 0x4004ae8b, &(0x7f0000000240)={0x79, "ea2ccab8f98e76a6782cca4a3a7cd4d4f9f2ed845da6a942d0249b91521a9f6ccd280addd314fd16ac9c54785df5a92f32e23b385b4411e930742dec9130ee4673d1f9723d9f5e4169942a9e7645e6e5f487c4893f37985bc9821d2d8d1b76d454c1fb1be05415897362660d9115f7f7fb0f3a0eadf9348ec8"}) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x8000, 0x0) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) ioctl$HDIO_GETGEO(r0, 0x301, &(0x7f0000000040)) openat$vcs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/vcs\x00', 0x180, 0x0) 13:50:39 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x1f00000000000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:40 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x1, 0x0, 0x2) fallocate(r1, 0x0, 0x0, 0xea5f) r2 = creat(&(0x7f0000000100)='./file0\x00', 0x0) epoll_ctl$EPOLL_CTL_DEL(r1, 0x2, r0) faccessat(r1, &(0x7f0000000240)='./file0\x00', 0x20, 0x1000) ppoll(&(0x7f0000000040)=[{r1, 0x4e47ff34f78c96e8}, {r0, 0xc}, {r2, 0x4011}, {r0, 0x2414}, {r0}], 0x5, &(0x7f0000000080)={0x0, 0x1c9c380}, &(0x7f0000000180)={0x2}, 0x8) 13:50:40 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680), 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 486.684534] gfs2: quota_quantum mount option requires a positive numeric argument [ 486.740178] gfs2: can't parse mount arguments 13:50:40 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) r0 = syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) ioctl$SNDRV_TIMER_IOCTL_GSTATUS(r0, 0xc0505405, &(0x7f0000000240)={{0x3, 0x3, 0x1}, 0xaf4, 0x4, 0x2}) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) [ 486.862369] gfs2: quota_quantum mount option requires a positive numeric argument 13:50:40 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) ioctl$SIOCAX25NOUID(r1, 0x89e3, &(0x7f0000000040)=0x1) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) [ 486.905004] gfs2: can't parse mount arguments 13:50:40 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) ioctl$SIOCRSGL2CALL(r0, 0x89e5, &(0x7f0000000000)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) io_setup(0x1f, &(0x7f00000000c0)=0x0) io_pgetevents(r3, 0x0, 0xa, &(0x7f0000000280)=[{}, {}, {}, {}, {}, {}, {}, {}, {}, {}], &(0x7f00000003c0), &(0x7f0000000440)={&(0x7f0000000400)={0x8}, 0x8}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mixer\x00', 0x43, 0x0) ioctl$NBD_SET_BLKSIZE(r4, 0xab01, 0x3ff) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:40 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200)={0x0, 0x1c9c380}, 0x0) 13:50:40 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x2000000000000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 487.297139] audit: type=1804 audit(1550065840.802:583): pid=24947 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/329/file0/file0" dev="sda1" ino=17911 res=1 13:50:40 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:50:40 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) ioctl$sock_inet6_udp_SIOCINQ(r0, 0x541b, &(0x7f0000000080)) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) ioctl$KVM_SET_TSC_KHZ(r0, 0xaea2, 0x1c7) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) connect$nfc_llcp(r0, &(0x7f0000000240)={0x27, 0x1, 0x1, 0x0, 0x5, 0x8001, "5ee246f57ee605d81096e33ccfc337c89f635ed82fdf1e90ef1c25a462d0da27238c54e4aa13fb44aeb908ecb8edadf23fc4bb7dbbaef3aaacbb2ae5de1f95", 0xc}, 0x60) [ 487.424010] gfs2: quota_quantum mount option requires a positive numeric argument [ 487.462478] gfs2: can't parse mount arguments 13:50:41 executing program 4: r0 = syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) pipe2(&(0x7f00000001c0), 0x80800) r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) getsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r1, 0x84, 0x1e, &(0x7f0000000040), &(0x7f0000000100)=0x4) write$binfmt_elf32(r0, &(0x7f0000000380)={{0x7f, 0x45, 0x4c, 0x46, 0x6000000000, 0x3, 0x7ff, 0x8, 0x22, 0x3, 0x6, 0x2, 0x1d5, 0x38, 0x2a1, 0x742, 0x3, 0x20, 0x1, 0x1, 0x5, 0xaba}, [{0x7, 0x8, 0x0, 0x7fff, 0x101, 0x5, 0x7, 0x1000}, {0x1, 0x3, 0x80000001, 0x6, 0x800, 0x10001}], "6617b15e275bb9badf88cbabfc2f2c34ccce1fd72ce77ed83146eb94ad94713586303cf7c7a8d7ebf720314c31d4c10b305159d832f91b2102f2d5eca6333efe0b809211bd0dc77984e619745964a35ac134ccaf7bf1edaab50bb771d857df1010bca76a0756279e71544b7a393fa1f6e187e91a44a4a572e7664c0c834907852baee44fbc1f6012ea6863fabf6a185891cf00a4506fe9e0cfa687b29c4d144d3f3b7620a0cfa12a8ced8ff165acd94352b6175210ea41a0e0fb6e47402831bfc62037db0d05bfc12bdda9b7e16550ac8bab5d9643a0392cf739e54aee9da15340f0df3ae093b4036d85f353d97ab701d6f34be5b6c3c951f732c6feed3f21e153ab11b70bda59ee497702ed9c77e001fb2813cd3f7b71422d42efd93c1227242fdb092e84251c0ca180e1e3cd272bdddc347bce2c49f3008bf83cb03db40ab682f6ba9cf9252a025afa82b455e1424dd16a5d8b3dc00e41f2135c9122eba7d816844df3e404c119ba89747fe4efa4846ffde595d2dfe6130edce06a12be2644aa6dd62da621431d1055a42dc1dfbc26704129f7cb1454a785b0bb21b01f0e63a74d59025400fc9f21b2e705e3c8ab3b4b035e378bd5e8b61d749c9d57b30f2b16149183f4b3230f6ee30ff9dcbc91ce4766241773fe1a3a527284c999613d74e17ad1744f2b689802f6d8863ec5a972bdb82de1812b9796844755b893a3e2414e710aa6b0b02b98f5f439725bd80c4f2ba95c70cd8a3612fb6f064d9edb346354b4989f0955c50ed4fed297d1601f35c7316057d19e622cd208c82cac888a4d2e4ead9e393cd7919ceb7036ea3a122e04b0c25c5d8ca51fe61a09de1e8289a96582c985e7f67aeecabdbe59c14e2073a7365b79db62ddf260a61e211456252ab5abf5ac3da9cbdd333f29123ed3ca579603460827c2424510e5414a6000dec7a60353e605928dd88e9e2415865479cf9773fdd4f342abb1aad923c05cc2d8bbf7f26e668eb274590a68efd6dcf8a9f1b2ff2ed5279a260a76baf09343e342bd7d2bb6e037d31104a3b56c4433b2bace43e21e22e4390c373e89a974d35212e9ae34d9ceb0225523841338bb646de734f766c31b90f1500c94633c799a8d97d270628469758d4c61f0a427e7b2ee88c00fb14adc3f4381bd47ba48c13473b35f25a66b40eb86a2cfb2c65ca1a6648a614079336461028dcec463ea5d750c1c65da1567ce37b67aee97e907a655ff8384d2794f08005839a730b996fb6be8734f4fb065e09ff76f7f734189eb483f33015e307a22f630aa56d670f067c6498a4c4e509f3f2d51c49d40929a962ca24daf32048f90a614d47fecea2f46002e2c9053e566e1d9b45b653b1e5808af004647b9dd87404575c58236ead30194033d535e882dd5f66bb736601ae8b272ff0ab3fea62281f58b7b96b45fd71d634215611b9de47222e0d82de9268e8c3c7f8d5eec0c6c64a399d9739820b1906e7498fd4988e9b8cfb301bff0a45c18362c5cde39947af8688fc89ed3746ec049ef63693ae1259a08a7db83b31f408787dee671185387ec6b821c2617087eef4489a5d9d24a20e4148d9b82c3fdd54635815b480f378535586dc8765e9e36a6818a62d8396a18585dc6660ea60351685b8b1d3a81af08367e022442883b6d3674d38c624f0ccfb35ecdc2464146a6dba1d9788ffd11adfdccd271abb74a71b918b54cb331fb89768721029e3daa43f19521a2d4c7ae5f4144b7a7bc0b59406c5ed42bfcf3af8ac5e91052f9c25ffc11d55f5bd357a490549739b0c71ca16448b250c7b0b7518d281482640935d9755d71dd11add41971d8b4cd9183060de6eb4e153b85505a73fb1717f3e3dc87f68e8817654bfd775e1152f5be777ae037a0fc79eada0aef75b2cb79946c5340b9a27303bea74b59030ad314df1a0d5c9414d999c794a5f121380fc1a6a03a4fc3e35d2cbe9c3f9665b1d6659a30e5ff7670d3cd54cbab94a0fbc2a4cfb81a8586e8940a4b72898447579bde84adc8eec486dc0feb43e1edf0f3bc20d2d608e4dd149afe34ccdb837031b6eb9b86a92ca41ce7be3f53a464dfe5b346c10994bff0c7b89c3a1e2c80048acec1c83258d4a5afd90870f1852c8efe39b3361bfd954589ab91d58a2c6dd180f69367286ab2c6c25b60abaa24f7e4bea65cd6f15ab63890ea00fffab446e2343ce90250f4641f768c9e6d64923bfa4b8d1033cca25e1596ec955cf562d79ab970dc9a29cdaf898b91c66bc3d32a4d547c0a2c1f916293aaa0062de8812d716a3d471049cb2b5d1ce48864d94430cc26eaac41c8409be9d19366f8b3a11256c5d1e8353ec1ebdf3257f5290725294e3465d7248ad44218ad9d30ac8d5f258c098a8b42a32d8846cfd8f8738553af1e4fff776237cd09754b64c380039669da5c76d947e9de87d4229d3fd70617fc6885bf516d5f847f72d99e42064e8a2a9a37527bbd1fa7ca6672511a74738944d9615135cf6f36a93d013af742f2a18d630d005df6bf566bcbb95c38f32597fc202f4db8daa96f108d689cd3efa8bbd2f4b09117078e3ccb70514637b331f63ebd6a553e8740fb3856b4972e723513f27d3f0334cc3e26e3cb746a18914fa4ed9d84cac3d65c89cac15eeaed9ac367647fe48e2dd249c0f6aa45fa67b7e43a0e5585eda25145224189cef9f53639f2b50981f37b3048d6278737e6cfec480e150d6dddc5cc11c6b87a6849bd41277f833ba12a244f9e6b0ce21426870ab67cd4d757831ff796e3e62bb9d2979fbfde56b9f264de916f94621d4fe52b5726f5b8a1e91e1c7a8238a26b324e5bdc179c7dad3eea5982525efaef46a7f20eb1e22b265cdc2134d7a52db3fa7c9d8dfef7d09c7440d5e3985dfb2f1910253a24df9181202ed334ffa4337f65b89104cfa9072dd61be83f84d5132d7426db26940d9bb7a7f752219c4e2d9228ed8055e0b1fac88c2b1d71e014a1e72fbc081ff761a2f0b7f33a4fcad36b6c770640a2bebd766d931831ec400f508d1cbe9698beba4c232640651f2d00f9879546fa626c2b1d42916ff0f345aa41b7156c675ac875ed0196912648d3a7ecbd73cd43c44f20a8ce7d4a77ef99c04f430b2eb5801552ccd8b7ab5743e100feb6821b53708be3ed3f159f9468c3c241030f423770e3f0ab7ca49ea6a7d20a7d33b1b6dddff9384b7d73d2535a3b6e18d4c32878630140ebb212150ee3579577a88d7653806ed76f34b1e71fc56260ecfd8cf2f022e0ad16209beca20db0a1d34793dc9129d08db9edf7fa76bc138779561da48f971ccc118cec288847c30347edcbb72c29b0bea7d30923b472c866b4a0e44361f3de248a5c19c1fb8ca78952a22226fffac185c5b0f114e9f9a6359e25c9affa663abadea6ba4cf2da5b519db929efad3e5391affcb43d48f45bf8704acdccfa2b58aae88797d0f630ee7d00f64e43df9c6ebaf32d04ca5e656eb67261288b5e92683cbd2d984120d4786381ad2ef9c978e879d2b066e57ea004d7aa44b1ead238ab9a39732cb8f0d98a044b0ffd0579716398f92c701fcfee7df992b51980a226ed0e45b85b389e6420f3e8811e80699fe2857b8ddc3764ad4f63778bce14810afd43afc6b8d0dfb5a9488ba5d02392b00137670984797d11a112bf232dbf34b71e882fa30b1474f8f4b5f2aba47881a73499794f7746abdba6bef28d94bec6de0cdce504af2b588b17f61aaf1d81d05febafc1ff9cefa493eaa3b96bb3476123d95206e6dec449e99ddab504dd5ab4c90f41e8b4c1a38c76af6e7f12df0416414cef4857f3075fe443888b98374e21dadd527375b3b542d7458f6530b35663d6fe10abaa213e1a2839da23e967692e1d50dfa95145ca2d61e4c9f09d6cc4918833359df8f1cc04aba0fd5f408bac4c3e63c8ddcae31dab3584ccbb607c645f41e7519a8fbd9668a2966ab706825d44f24696ddc302d32738257037f4afd3017ef2ae5e3338347a45ad4e1afaa721850deeeb82c4664c38a277ea4c9be8089475a0acb30ba72b204f1c1f4670d90b9f2ef06a06a2765e6eb0660d89b6d31cdc83e7204b8c65852a02701d667f04e83e34b57b1096eccef1baec03f3a6a20da4b00d02cf5ceb3efc5535beea4d48447131b19340fee054815c701630d2a96df2d09521ced5dd49eb4f79f75c4bca0c2dc700f3c2517aa879274af82870db994100ff67ae8d36ae42ea6097328757b351245bc4c09dbf0a38c15ed800ec9861cf68d82e85649e37a488b281831a8d1903e519e231513639c060a410482d0c85d7a4e94c50759bda4e99b384c209a45b01cdfcda7f9f5a1cfcd75808cbdf91e1efad2e04c3760423a7a09ca61d66ed794ceaf8c45fc518b6d47e1d5892cbe5795a30a8275faf7c5626c3a6c2fa49a06179f80e99d8242b771a9e49aed460f17c318c3d362261db15c38fa44f8ea7373cbcbe0863ad28c3ca327966e8a9359485f33b776442c966cb849a0378a9c4ca34bda5e7750b54d5694f9d68f4e2170c7dfb90bae0364b12554d761163c1d44b2a14276a0f71451b8925920e6c85f10990eb3aa3e5f8717dd334911e65a745f1abf92dafc0674a7cdb422d8d1903e5cfb8d72b7662aa9f6208f3d59b13dcde474d2bdfaac1e346072aae54f73193621ea45b4fd461392559951e03e82fa97f7b2e60b5f75cc1032addb1932918b47660073200dea885a0dd754535b27bf23249c0fe408dd855084032848c6a8d44892a7f017f1f95bc51911d62757c7d981e7831b8bdf985f242cc288baa8f622376ae00a3614aa82996bb9419b00800b456bd366e77221bf92535034de8ffdc433e7b39bbae6d6697e65c3d10e0c780e350561993e127fa29a8159f6efc844f1392cc5eaa5e529b80b37ff6b96cbdaf65bb22abacebfac183adaa8105b4839b1995f127adfc47b69bd7cb458b95af75ec89da48c4a0b5b47be4406e8d2095120b4a53965c062f7f1d5289783178ec77664c2940ea88beb6618af4e36564eccce5854b3a1dc1017996c090f37a284c537d5e6f4c6b5b4396b3b4cdd2bc69fb119f8419bd2e5f1ca6eaf8b26dc7112b5ba00c29b12b8dc49f4644ab1636a30db3688b941829d76e123cf340e5ba370eeda7d2a32e651a6151e7f38b517d0685c4aaa4a34fd6a10a4afa8d1c1ac23f2f526cc7d2b0cea03cc94783b2b76b72b9d3e04638ade49d7be691fe48dda4e98f1d4231b7c723b473cd2bb09d31bc2e385a4cc8cab04a3b0886a9a6fe3c6214bf7e99b3f44656b8f72bbfac2a9994021a910f57385338e9211c235ec26e11a903124250d1ade5b660f5df5fa1febff27e59aa810fcd843c04f77de1b0c40890983fd6d57f113c447b3bd3f2bbd9169a6dce8e73ca25d0a568f50274df415a77c7ada031b0606188d172bfb24ab5858895d14486ee5a860e413c0830870264dbcea357913012eade2083f167d4f59b552b2f406fc400dca2f06f3ea94d9febd2b6e991b0d8bff8d4985159441def3ab269a250c576fe7e397b9a764088a95566352f4425d30405cefecc4d256bcdaeeb58e4c8cccf04b0ac49c16a25f9f7ec1eeeab06290736ed7175d1eed231cc690e77d3a66cb1b8464349301ebdcdffa639abd178c4fa836e44c0fac876ce8ae6f177e2f547b498a7a16021c17b40444a9d03cfe8cc8da7cb5b051b4258610f5610854650bd898d5c531df7db3b9db1de867361aa019ba2aeab362e9f93801ec08de0acd2a234296f8edffcee53e97445d449d38ab11f7611ca66eca2adf6e5f5dd12e04292585e5ca93e", [[]]}, 0x1178) 13:50:41 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x2010000000000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 487.576836] cgroup: fork rejected by pids controller in /syz5 13:50:41 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:50:41 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680), 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 487.847576] gfs2: quota_quantum mount option requires a positive numeric argument [ 487.879186] gfs2: can't parse mount arguments 13:50:41 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x3f00000000000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:41 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f00000001c0)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) ioctl$VIDIOC_G_AUDOUT(r0, 0x80345631, &(0x7f0000000040)) 13:50:41 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) [ 488.153658] gfs2: quota_quantum mount option requires a positive numeric argument [ 488.204482] gfs2: can't parse mount arguments [ 488.355840] gfs2: quota_quantum mount option requires a positive numeric argument [ 488.420619] gfs2: can't parse mount arguments 13:50:42 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) r0 = syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) ioctl$VIDIOC_EXPBUF(r0, 0xc0405610, &(0x7f0000000100)={0xa, 0x0, 0x9, 0x80800}) pipe(&(0x7f0000000180)={0xffffffffffffffff}) openat$audio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x800, 0x0) setsockopt$netrom_NETROM_T2(r1, 0x103, 0x2, &(0x7f0000000300)=0x100, 0x4) unshare(0x400) statfs(&(0x7f0000000040)='./file0\x00', &(0x7f0000000240)=""/129) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) setsockopt$inet_buf(r1, 0x0, 0x2b, &(0x7f0000000380)="441345135077d5b35ee302642174e9c4009333dfda46f8f0f17efb92754c9006153b2f9bfad157379a42300e5c83b1c42fb8eb0477fc1ea5499b16d3a7943123aa0e4a052cfd55751c14d125798e", 0x4e) 13:50:42 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:50:42 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) fsetxattr(r3, &(0x7f0000000000)=@random={'user.', '\x00'}, &(0x7f0000000080)='md5sum\x00', 0x7, 0x3) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:42 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x4000000000000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 488.706525] gfs2: quota_quantum mount option requires a positive numeric argument [ 488.740319] gfs2: can't parse mount arguments [ 489.100051] audit: type=1804 audit(1550065842.602:584): pid=25088 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/330/file0/file0" dev="loop0" ino=147 res=1 [ 489.146152] audit: type=1804 audit(1550065842.602:585): pid=25118 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/330/file0/file0" dev="loop0" ino=147 res=1 13:50:43 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4], 0x2}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:43 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) rt_tgsigqueueinfo(0x0, 0x0, 0x16, &(0x7f00000000c0)) ptrace(0x10, 0x0) r1 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r1, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r1, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, 0x0, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:50:43 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x4800000000000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:43 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/tcp\x00') r1 = socket(0x2, 0x1, 0x0) listen(r1, 0x0) pread64(r0, &(0x7f0000000040)=""/163, 0xa3, 0x0) syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r2 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r2) r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x8000000000000000, 0x20, 0xe1, 0x4, 0x0, 0x1000, 0x80000, 0x4, 0x32, 0x1f, 0x0, 0xff, 0xffffffffe8ded4db, 0x4, 0x7, 0x2, 0x3, 0x9, 0xfffffffffffffffa, 0x0, 0x7fffffff, 0x9, 0x8, 0x6, 0x10000, 0x3, 0x8, 0x20, 0x7, 0x9, 0x1000, 0xffff, 0x3, 0x2, 0x6, 0x200, 0x0, 0x7fff, 0x1, @perf_bp={&(0x7f0000000040), 0x4}, 0x200, 0x0, 0xffffffff8a6c44e2, 0x7, 0xffffffffffffffc0, 0x6, 0xd018}, 0xffffffffffffffff, 0x7, r2, 0x8) fallocate(r3, 0x1, 0x0, 0x369e5d84) bpf$OBJ_GET_MAP(0x7, &(0x7f0000000340)={&(0x7f00000002c0)='./file0\x00', 0x0, 0x18}, 0x10) fallocate(r3, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) 13:50:43 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0) ioctl$SG_GET_SCSI_ID(r0, 0x2276, &(0x7f0000000040)) pipe(&(0x7f0000000180)) unshare(0xa000800) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) 13:50:43 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r3, 0x84, 0x13, &(0x7f0000000080)={0x0, 0x6}, &(0x7f00000000c0)=0x8) getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r3, 0x84, 0x76, &(0x7f0000000280)={r4, 0x7fd}, &(0x7f0000000340)=0x8) fcntl$getown(r0, 0x9) setsockopt$inet6_MRT6_ADD_MIF(r3, 0x29, 0xca, &(0x7f0000000300)={0x8, 0x8000000000000001, 0x0, 0x9, 0x2}, 0xc) sendmsg$nl_generic(r3, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) syz_open_pts(r3, 0x10000) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:43 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) rt_tgsigqueueinfo(0x0, 0x0, 0x16, &(0x7f00000000c0)) ptrace(0x10, 0x0) r1 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r1, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r1, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, 0x0, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) [ 489.635065] gfs2: quota_quantum mount option requires a positive numeric argument [ 489.660178] gfs2: can't parse mount arguments [ 489.728992] gfs2: quota_quantum mount option requires a positive numeric argument 13:50:43 executing program 4: syz_open_dev$evdev(&(0x7f0000000100)='/dev/input/event#\x00', 0x3, 0x0) r0 = syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) ioctl$EVIOCSABS2F(r0, 0x401845ef, &(0x7f0000000000)={0x5, 0x6, 0x1, 0xfff, 0x6}) r1 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ubi_ctrl\x00', 0x602480, 0x0) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) ioctl$KVM_GET_PIT(r0, 0xc048ae65, &(0x7f0000000240)) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) recvmsg$kcm(r0, &(0x7f0000001100)={&(0x7f0000000b40)=@hci={0x1f, 0x0}, 0x80, &(0x7f0000001000)=[{&(0x7f0000000bc0)=""/165, 0xa5}, {&(0x7f0000000c80)=""/158, 0x9e}, {&(0x7f0000000d40)=""/201, 0xc9}, {&(0x7f0000000e40)=""/119, 0x77}, {&(0x7f0000000ec0)=""/87, 0x57}, {&(0x7f0000000f40)=""/185, 0xb9}], 0x6, &(0x7f0000001080)=""/75, 0x4b}, 0x2) recvfrom$packet(r1, &(0x7f0000000380)=""/207, 0xcf, 0x2, &(0x7f0000001140)={0x11, 0x1e, r2, 0x1, 0x9f, 0x6, @broadcast}, 0x14) [ 489.819009] gfs2: can't parse mount arguments 13:50:43 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) rt_tgsigqueueinfo(0x0, 0x0, 0x16, &(0x7f00000000c0)) ptrace(0x10, 0x0) r1 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r1, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r1, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, 0x0, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:50:43 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x4c00000000000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 490.036716] audit: type=1804 audit(1550065843.542:586): pid=25158 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/331/file0/file0" dev="sda1" ino=17951 res=1 [ 490.173931] audit: type=1804 audit(1550065843.572:587): pid=25158 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/331/file0/file0" dev="sda1" ino=17951 res=1 13:50:43 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm-control\x00', 0x200000, 0x0) ioctl$KDDELIO(r0, 0x4b35, 0x0) r1 = syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r1, 0xc08c5336, &(0x7f00000000c0)={0x8, 0x7f, 0x8, 'queue0\x00', 0x3fc}) 13:50:43 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) [ 490.297465] gfs2: quota_quantum mount option requires a positive numeric argument [ 490.336707] gfs2: can't parse mount arguments 13:50:43 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4], 0x2}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:43 executing program 0: pipe2(&(0x7f0000000240)={0xffffffffffffffff}, 0x4000) getsockopt$inet6_dccp_buf(r0, 0x21, 0xcf, &(0x7f0000000280)=""/87, &(0x7f0000000340)=0x57) syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r1 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r1) ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f0000000040)=0x0) migrate_pages(r2, 0xfffffffffffffffc, &(0x7f0000000080)=0x1, &(0x7f0000000180)=0x3) r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r3, 0x4, 0x0, 0x369e5d84) fallocate(r3, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) 13:50:43 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x6000000000000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:44 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:50:44 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) r0 = syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) r1 = socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) unshare(0x4010200) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000100)={0x0, r0, 0x0, 0x15, &(0x7f0000000040)='/dev/bus/usb/00#/00#\x00', 0xffffffffffffffff}, 0x30) setsockopt$TIPC_GROUP_LEAVE(r2, 0x10f, 0x88) fcntl$getown(r1, 0x9) ioctl$sock_SIOCGPGRP(r3, 0x8904, &(0x7f00000001c0)) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000240)={0x0}, &(0x7f0000000280)=0xc) r5 = getpgrp(r4) prctl$PR_SET_PTRACER(0x59616d61, r5) ioctl$RTC_PIE_ON(r3, 0x7005) r6 = gettid() socket$inet_udplite(0x2, 0x2, 0x88) kcmp(r5, r6, 0x6, r0, r1) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) [ 490.669983] audit: type=1804 audit(1550065844.172:588): pid=25197 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/332/file0/file0" dev="sda1" ino=17925 res=1 [ 490.697249] gfs2: quota_quantum mount option requires a positive numeric argument [ 490.765039] gfs2: can't parse mount arguments [ 490.799592] audit: type=1804 audit(1550065844.182:589): pid=25197 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/332/file0/file0" dev="sda1" ino=17925 res=1 13:50:44 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x18) fchdir(r0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000040)={0x0}, &(0x7f0000000080)=0xc) migrate_pages(r1, 0x7, &(0x7f0000000180)=0x4, &(0x7f0000000240)=0x8000) r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r2, 0x1, 0x0, 0x369e5d84) fallocate(r2, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x2) socket$can_bcm(0x1d, 0x2, 0x2) 13:50:44 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:50:44 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r3 = openat$audio(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio\x00', 0x8000, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r3, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 490.855883] audit: type=1804 audit(1550065844.182:590): pid=25201 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/332/file0/file0" dev="sda1" ino=17925 res=1 [ 490.981326] gfs2: quota_quantum mount option requires a positive numeric argument 13:50:44 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) [ 491.026334] gfs2: can't parse mount arguments 13:50:44 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:50:44 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x6800000000000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 491.298054] audit: type=1804 audit(1550065844.802:591): pid=25228 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/333/file0/file0" dev="sda1" ino=17927 res=1 [ 491.358273] gfs2: quota_quantum mount option requires a positive numeric argument [ 491.409133] gfs2: can't parse mount arguments 13:50:44 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:50:45 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4], 0x2}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:45 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000080)=[{&(0x7f0000000440)="17f582dcec2d611e387e46fcd1603788b4bffbd8dd824188c10673374b88740d7ed4ba807ece94090bd778b3c9dd7205294b558c01cfe5143f0f9e5c0397eeaa7fbefc5699ce43f87f4617651d8098574f6b85355c6d4d78ddc40404c95facaf033c42fafd09a103336f9a7fe03b3692cbd379dfc56fff9ae845a80ef3d0a8872a91d0ee9e7bb8253254329322d5b43d8bc1a7b9dbb24b87d949f3649ff9df7c36474d5c3a1fb1a2542b155aac2a67f61e3b7b934a61a68c4d68ad28f2aaf851498fcf44a9cde06504670ed1cd9adfd8", 0x50, 0x5}], 0x1004000, 0x0) r0 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/capi/capi20ncci\x00', 0x101000, 0x0) getsockopt$bt_BT_POWER(r0, 0x112, 0x9, &(0x7f0000000140)=0x9e, &(0x7f0000000180)=0x1) r1 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r1) r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r2, 0x1, 0x0, 0x369e5d84) fallocate(r2, 0x0, 0x0, 0xea5f) connect$netlink(r2, &(0x7f0000000040)=@proc={0x10, 0x0, 0x25dfdbfd, 0x2000000}, 0xc) creat(&(0x7f0000000100)='./file0\x00', 0x1) 13:50:45 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000040)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) 13:50:45 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x6c00000000000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:45 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) [ 491.711100] gfs2: quota_quantum mount option requires a positive numeric argument [ 491.716492] FAT-fs (loop0): invalid media value (0xb4) [ 491.779198] gfs2: can't parse mount arguments [ 491.887523] FAT-fs (loop0): Can't find a valid FAT filesystem 13:50:45 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r3, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:45 executing program 4: syz_open_dev$evdev(&(0x7f00000002c0)='/dev/input/event#\x00', 0x81, 0x7ffe) r0 = syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000010009, 0x0) modify_ldt$write(0x1, &(0x7f0000000100)={0x8, 0x0, 0xffffffffffffffff, 0x42b4, 0x5, 0x0, 0x1, 0x0, 0xaac, 0x3}, 0x10) socket$unix(0x1, 0x1003, 0x0) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000000)={0x8, 0x10000, 0x7, 0x400, 0x7fff}) r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f00000001c0)={0x2f, 0x5ad6, 0xff, 0x1, 0x100000001}) pipe(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) unshare(0x400) ioctl$CAPI_GET_PROFILE(r2, 0xc0404309, &(0x7f0000000040)=0x4) connect$unix(r3, &(0x7f0000000240)=@file={0x0, './file0\x00'}, 0x6e) connect$rose(r2, &(0x7f0000000300)=@short={0xb, @dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, 0x1, @default}, 0x1c) accept$packet(r1, &(0x7f0000002780)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f00000027c0)=0x14) setsockopt$packet_drop_memb(r0, 0x107, 0x2, &(0x7f0000002800)={r4, 0x1, 0x6}, 0x10) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) 13:50:45 executing program 5: ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = getpid() rt_tgsigqueueinfo(r0, r0, 0x16, &(0x7f00000000c0)) ptrace(0x10, r0) r1 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r1, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r1, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(0xffffffffffffffff, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r0, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:50:45 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x7400000000000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 492.042961] FAT-fs (loop0): invalid media value (0xb4) [ 492.048326] FAT-fs (loop0): Can't find a valid FAT filesystem [ 492.120819] audit: type=1804 audit(1550065845.632:592): pid=25287 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/334/file0/file0" dev="sda1" ino=17885 res=1 13:50:45 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) r0 = syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000100)='IPVS\x00') sendmsg$IPVS_CMD_NEW_SERVICE(r0, &(0x7f0000000300)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000240)={0x90, r1, 0x520, 0x70bd2c, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x7}, @IPVS_CMD_ATTR_SERVICE={0x30, 0x1, [@IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x2}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@empty}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e21}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}]}, @IPVS_CMD_ATTR_SERVICE={0x28, 0x1, [@IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x89}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@local}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x32}]}, @IPVS_CMD_ATTR_SERVICE={0x1c, 0x1, [@IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x1ff}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x3b}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x8}]}]}, 0x90}, 0x1, 0x0, 0x0, 0x4000000}, 0x80) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)={0xffffffffffffffff}) ioctl$LOOP_GET_STATUS64(r2, 0x4c05, &(0x7f0000000380)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) [ 492.175852] audit: type=1804 audit(1550065845.672:593): pid=25287 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/334/file0/file0" dev="sda1" ino=17885 res=1 [ 492.200845] gfs2: quota_quantum mount option requires a positive numeric argument [ 492.215407] gfs2: can't parse mount arguments 13:50:45 executing program 5: ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = getpid() rt_tgsigqueueinfo(r0, r0, 0x16, &(0x7f00000000c0)) ptrace(0x10, r0) r1 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r1, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r1, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(0xffffffffffffffff, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r0, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:50:45 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x1, 0x0, 0x369e5d84) ioctl$FS_IOC_GETVERSION(r1, 0x80087601, &(0x7f0000000240)) fallocate(r1, 0x0, 0x0, 0xea5f) getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f0000000040)=@assoc_value={0x0, 0x1}, &(0x7f0000000080)=0x8) setsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000000180)={0x9, 0x5, 0x8, 0x0, 0x8001, 0x3, 0x3, 0x6, r2}, 0x20) creat(&(0x7f0000000100)='./file0\x00', 0x0) 13:50:46 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4, @ANYBLOB], 0x3}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:46 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x7a00000000000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:46 executing program 5: ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = getpid() rt_tgsigqueueinfo(r0, r0, 0x16, &(0x7f00000000c0)) ptrace(0x10, r0) r1 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r1, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r1, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(0xffffffffffffffff, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r0, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:50:46 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) r0 = syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)={0xffffffffffffffff}) r2 = add_key(&(0x7f0000000040)='keyring\x00', &(0x7f0000000100)={'syz', 0x2}, &(0x7f0000000240)="c49a6586f8b3d015bdaf2ccb73d30c8388ed66ccd56f703ae11f9ed6df2a93da9590e719e6e9c7ef1a6fc41766e5400944d98b26ef5cbd0f7972ca5532a84919b8b6cee23f596dee07babbf924808e103d857bef23", 0x55, 0xfffffffffffffffe) keyctl$invalidate(0x15, r2) unshare(0x400) r3 = syz_genetlink_get_family_id$tipc(&(0x7f00000002c0)='TIPC\x00') sendmsg$TIPC_CMD_SET_LINK_WINDOW(r0, &(0x7f0000000400)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x24004}, 0xc, &(0x7f0000000300)={&(0x7f0000000380)=ANY=[@ANYBLOB="ca8b0000", @ANYRES16=r3, @ANYBLOB="12002bbd7000fcdbdf25010000000000000009410000004c0018000000086962000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"], 0x68}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000000) bind$tipc(r1, &(0x7f0000000440)=@name={0x1e, 0x2, 0x3, {{0x41, 0x1}, 0x3}}, 0x10) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) [ 492.696062] gfs2: quota_quantum mount option requires a positive numeric argument [ 492.729529] gfs2: can't parse mount arguments 13:50:46 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:50:46 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff2a) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r3, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 492.793916] gfs2: quota_quantum mount option requires a positive numeric argument [ 492.823718] gfs2: can't parse mount arguments 13:50:46 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x8cffffff00000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:46 executing program 4: r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000100)='/dev/null\x00', 0x40000, 0x0) ioctl$VHOST_SET_VRING_NUM(r0, 0x4008af10, &(0x7f0000000240)={0x3, 0xfeaa}) setsockopt$RXRPC_SECURITY_KEY(r0, 0x110, 0x1, &(0x7f00000001c0)='/dev/bus/usb/00#/00#\x00', 0x15) syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) r1 = syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x1, 0x0) fcntl$getflags(r1, 0x3) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) creat(&(0x7f0000000040)='./file0\x00', 0x1) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) 13:50:46 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) [ 493.209022] gfs2: quota_quantum mount option requires a positive numeric argument [ 493.290078] gfs2: can't parse mount arguments 13:50:46 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x97ffffff00000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:46 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) socket$bt_cmtp(0x1f, 0x3, 0x5) [ 493.574479] gfs2: quota_quantum mount option requires a positive numeric argument [ 493.618923] gfs2: can't parse mount arguments [ 493.818364] audit: type=1804 audit(1550065847.322:594): pid=25354 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/335/file0/file0" dev="loop0" ino=148 res=1 [ 493.884048] audit: type=1804 audit(1550065847.362:595): pid=25357 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/335/file0/file0" dev="loop0" ino=148 res=1 13:50:47 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) ioctl$PPPOEIOCSFWD(r0, 0x4008b100, &(0x7f0000000040)={0x18, 0x0, {0x2, @empty, 'veth1_to_bond\x00'}}) 13:50:47 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:50:47 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0xf6ffffff00000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:47 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x8, 0x100010, 0xffffffffffffffff, 0x0) r0 = socket$unix(0x1, 0x3, 0x0) r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) ioctl$VIDIOC_UNSUBSCRIBE_EVENT(r1, 0x4020565b, &(0x7f0000000100)={0x8001005, 0x80000000, 0x1}) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000440)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000340)={0xffffffffffffffff}, 0x13f, 0xb}}, 0x20) write$RDMA_USER_CM_CMD_NOTIFY(r0, &(0x7f0000000480)={0xf, 0x8, 0xfa00, {r2, 0xf}}, 0x10) execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', &(0x7f0000000100), &(0x7f00000003c0)=[&(0x7f00000001c0)='/dev/input/event#\x00', &(0x7f0000000240)='-\x00', &(0x7f0000000280)='vmnet0ppp1^#/-](([#\x00', &(0x7f00000002c0)=',mime_type-.-nodevselflo\x00', &(0x7f0000000300)='/dev/input/event#\x00', &(0x7f0000000380)='{self$\xdc\x00'], 0x1800) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) 13:50:47 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_extract_tcp_res$synack(&(0x7f0000000000), 0x1, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r3, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:47 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4, @ANYBLOB], 0x3}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:47 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x0, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) [ 494.130416] FAT-fs (loop0): error, invalid access to FAT (entry 0x0000881a) [ 494.149314] gfs2: quota_quantum mount option requires a positive numeric argument [ 494.162648] gfs2: can't parse mount arguments [ 494.167239] FAT-fs (loop0): Filesystem has been set read-only 13:50:47 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000040)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) [ 494.336802] gfs2: quota_quantum mount option requires a positive numeric argument 13:50:47 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x0, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) [ 494.390484] gfs2: can't parse mount arguments 13:50:47 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0xfcfdffff00000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:48 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x0, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:50:48 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0) getsockopt$IP6T_SO_GET_REVISION_MATCH(r0, 0x29, 0x44, &(0x7f0000000040)={'ah\x00'}, &(0x7f0000000100)=0x1e) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x20f, &(0x7f00000000c0)={0x0, 0x62, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0xdb7}, 0x0, &(0x7f0000000140)={0x1b8, 0x0, 0x0, 0x0, 0x800000, 0x0, 0x10000, 0x9}, &(0x7f0000000200), 0x0) 13:50:48 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) openat$cgroup_type(r1, &(0x7f0000000040)='cgroup.type\x00', 0x2, 0x0) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) [ 494.696448] gfs2: quota_quantum mount option requires a positive numeric argument [ 494.754322] gfs2: can't parse mount arguments 13:50:48 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4, @ANYBLOB], 0x3}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:48 executing program 3: r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x4000, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r4 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r5 = accept4$unix(0xffffffffffffff9c, &(0x7f0000001e80)=@abs, &(0x7f0000001f00)=0x6e, 0x80000) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000780)={0x0}, &(0x7f0000001940)=0xc) fstat(r0, &(0x7f0000001980)={0x0, 0x0, 0x0, 0x0, 0x0}) fstat(r3, &(0x7f0000001a00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r9 = socket(0x1, 0x6, 0x100000000) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000001a80)=0x0) fstat(r3, &(0x7f0000001ac0)={0x0, 0x0, 0x0, 0x0, 0x0}) stat(&(0x7f0000001b40)='./file0\x00', &(0x7f0000001b80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000001c40)={0xffffffffffffffff, r0, 0x0, 0x9, &(0x7f0000001c00)='/dev/kvm\x00', 0xffffffffffffffff}, 0x30) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000001c80)={{{@in6=@dev, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6}, 0x0, @in6=@local}}, &(0x7f0000001d80)=0xe8) getresgid(&(0x7f0000001dc0), &(0x7f0000001e00)=0x0, &(0x7f0000001e40)) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000002380)={0x0, r0, 0x0, 0x1, &(0x7f0000002340)='\x00'}, 0x30) r17 = geteuid() r18 = getegid() ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000002700)=0x0) r20 = geteuid() lstat(&(0x7f0000002740)='./file0\x00', &(0x7f0000002780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r22 = gettid() getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000002800)={{{@in6, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@empty}, 0x0, @in=@empty}}, &(0x7f0000002900)=0xe8) r24 = getgid() ioctl$sock_FIOGETOWN(0xffffffffffffff9c, 0x8903, &(0x7f0000002940)=0x0) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000002980)={{{@in6=@loopback, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@broadcast}, 0x0, @in=@empty}}, &(0x7f0000002a80)=0xe8) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000002ac0)={0x0, 0x0, 0x0}, &(0x7f0000002b00)=0xc) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000002e80)={0x0, r4, 0x0, 0xb, &(0x7f0000002e40)='/dev/audio\x00'}, 0x30) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000002ec0)={0x0, 0x0}, &(0x7f0000002f00)=0xc) r30 = getgid() ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000002f40)=0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000002f80)={{{@in6=@dev, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@remote}, 0x0, @in6=@dev}}, &(0x7f0000003080)=0xe8) r33 = getegid() ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f00000030c0)=0x0) r35 = geteuid() getgroups(0x8, &(0x7f0000003100)=[0x0, 0xffffffffffffffff, 0xee01, 0xee01, 0xffffffffffffffff, 0xee01, 0xee00, 0xee00]) fcntl$getownex(r2, 0x10, &(0x7f0000003700)={0x0, 0x0}) lstat(&(0x7f0000003740)='./file0\x00', &(0x7f0000003780)={0x0, 0x0, 0x0, 0x0, 0x0}) lstat(&(0x7f0000003800)='./file0\x00', &(0x7f0000003840)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f00000038c0)=0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffff9c, 0x29, 0x22, &(0x7f0000003900)={{{@in, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@dev}, 0x0, @in6=@mcast1}}, &(0x7f0000003a00)=0xe8) getresgid(&(0x7f0000003a40), &(0x7f0000003a80), &(0x7f0000003ac0)=0x0) ioctl$sock_FIOGETOWN(0xffffffffffffff9c, 0x8903, &(0x7f0000003b00)=0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffff9c, 0x0, 0x10, &(0x7f0000003b40)={{{@in6=@empty, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@remote}, 0x0, @in6=@dev}}, &(0x7f0000003c40)=0xe8) stat(&(0x7f0000003c80)='./file0\x00', &(0x7f0000003cc0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r46 = gettid() getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffff9c, 0x0, 0x11, &(0x7f0000004500)={{{@in6=@ipv4={[], [], @multicast2}, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{}, 0x0, @in=@dev}}, &(0x7f0000004600)=0xe8) stat(&(0x7f0000004640)='./file0\x00', &(0x7f0000004680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000004d00)={0xffffffffffffffff, r4, 0x0, 0x9, &(0x7f0000004cc0)='/dev/kvm\x00', 0xffffffffffffffff}, 0x30) stat(&(0x7f0000004d40)='./file0\x00', &(0x7f0000004d80)={0x0, 0x0, 0x0, 0x0, 0x0}) getgroups(0x5, &(0x7f0000004e00)=[0xee01, 0xee01, 0xee01, 0xffffffffffffffff, 0xee00]) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000004e40)={0x0}, &(0x7f0000004e80)=0xc) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffff9c, 0x0, 0x11, &(0x7f0000004ec0)={{{@in6=@loopback, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6}, 0x0, @in6=@initdev}}, &(0x7f0000004fc0)=0xe8) getsockopt$sock_cred(0xffffffffffffff9c, 0x1, 0x11, &(0x7f0000005000)={0x0, 0x0, 0x0}, &(0x7f0000005040)=0xc) ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f0000005480)=0x0) getsockopt$sock_cred(0xffffffffffffff9c, 0x1, 0x11, &(0x7f00000050c0)={0x0, 0x0}, &(0x7f0000005100)=0xc) lstat(&(0x7f0000005140)='./file0\x00', &(0x7f0000005180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000005200)=0x0) lstat(&(0x7f0000005240)='./file0\x00', &(0x7f0000005280)={0x0, 0x0, 0x0, 0x0, 0x0}) lstat(&(0x7f0000005300)='./file0\x00', &(0x7f0000005340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r61 = openat$smack_task_current(0xffffffffffffff9c, &(0x7f00000053c0)='/proc/self/attr/current\x00', 0x2, 0x0) r62 = getuid() fstat(r2, &(0x7f0000005400)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) sendmmsg$unix(r5, &(0x7f00000057c0)=[{&(0x7f0000000280)=@abs={0x1, 0x0, 0x4e23}, 0x6e, &(0x7f00000018c0)=[{&(0x7f0000000300)="ad84aa8718aa5a8b31aea31073f82ea98d9e966eb50b0dd5bd7df8f72d675a488289eee56ce68d52b63e6008a4bdf1d8e19e3ed2d019a4645b0b46cbba7859b6aa59a2669d22840911a3f68459b9919115f98a9f35e4fbf8212cd9eb7fc3f3881feff546f07a60f4a8a3699ad527", 0x6e}, {&(0x7f0000000380)="d3769aac2b269c3617f37a35e270fd364bda9ecebbb2fde0c5209e01b60f6ed4481b3affd760654eafcf3741ee9656252ad872a4f205bdea505fc0fc3a80ccac47f7db784595b35ba036306806710b9a8a4338b6086030f8c1dd521a9c3783c26706205b6898eb159fbf5867afba66560b1e3c60c1052702c20c8f4b9a05475a4c581af56fe53246aacf069b292ac1de3cf6c519ae7997f1bd95762b7da6697f6682aa30e6c7b626e2befc88503a793bc5b0f5f9d69a8edec6ce2c8e074128e9e1a8d38193f3fb7ca9fefd9f9f857b88e236a26c9f01b5e5a133afe2c4fc41fd8db6e972f2d9579bcfa8b02622f2015e7332", 0xf2}, {&(0x7f0000000480)="fa09c16c7846c4dff72b25715bba9e93880397583198beb958e279415b89db08bce01b6cdc3d3a449f9b77c13a06b28676d6a3ca3a24ea0acf98e3acb55d6fbee98595848a09f8f3c3ffd273e911721bb4355bd3664208fdf8188f8bac3b8a21ec1a3cb17464d989744e7a219f0db5236729bcacf28a22eb2a54c91ddbac4c8a687b4179d040c4d0ebb3b2159167fbb3ee86f722779498544aa018b655342f4660bf11d893fbe2a375cadc6086eb1f18d4dc0021ccd7206ac76264", 0xbb}, {&(0x7f0000000540)="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", 0xfe}, {&(0x7f0000000640)="7f48cc9edd73e67358ee89ca6aaeee67d85a72cbc09d35135ddbc85d6584c26da6a15c70ad01493909c603d5c6b51152e3a74e2bce9793a7ca25858000a7380f3bbb51b8895097fda279b211485146b55c83a3edc43a686ce3ce074550eadbbea87d6f7f55e7f2aeef46105b5ce8d85c942762e840f50175db2b1a1cb75a80caa53652b81f11195bb2d6f7d7ab0499ca028e2b57224a75b5d07cfa57c4712da73c7478782ab434e8c417a1544a82586d14d5a7b50b5e2cf5c22e952c479001602391d98e0e6c65eee6e5fe6cd45b72f33f3ec412290036ff0fca3dac5242c7996e32843bb51aaa04f359fa83c79cfa510e36cc", 0xf3}, {&(0x7f0000000800)="ec72c832b082944a1cef67de356cd4ace18577a22930f42d4e605aa90479916796d29eadb8a6a617fa78cf539cec9b006206fe118edeeecd80755b2d997fe8419a9d83aadeb92bfbe457b3a2b826beca79371d9402e507ebc650e417bc7385607102c405de40a34791b5118884e8bb29deddde35154fa6fc8b5518561ee17df5eb705778b4ab7740e54c641525f3e0be95651c1f35fc3b191c", 0x99}, {&(0x7f00000008c0)="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", 0x1000}, {&(0x7f0000000740)="ed9573f562f6ca6008b25017e1b68bc9fe3d8ad3bf85fea05de12bfc32c89d36", 0x20}], 0x8, &(0x7f0000005b40)=ANY=[@ANYBLOB="20000000000000000100000002000000", @ANYRES32=r6, @ANYRES32=r7, @ANYRES32=r8, @ANYBLOB="0000000038000000000000000100000001000000", @ANYRES32=r2, @ANYRES32=r0, @ANYRES32=r4, @ANYRES32=r2, @ANYRES32=r4, @ANYRES32=r0, @ANYRES32=r2, @ANYRES32=r3, @ANYRES32=r3, @ANYRES32=r4, @ANYBLOB="28000000000000000100000001000000", @ANYRES32=r4, @ANYRES32=r2, @ANYRES32=r1, @ANYRES32=r2, @ANYRES32=r2, @ANYBLOB="0000000028000000000000000100000001000000", @ANYRES32=r1, @ANYRES32=r2, @ANYRES32=r9, @ANYRES32=r0, @ANYRES32=r2, @ANYBLOB="0000000020000000000000000100000002000000", @ANYRES32=r10, @ANYRES32=r11, @ANYRES32=r12, @ANYBLOB="0000000020000000000000000100000002000000", @ANYRES32=r13, @ANYRES32=r14, @ANYRES32=r15, @ANYBLOB="0000000038000000000000000100000001000000", @ANYRES32=r3, @ANYRES32=r4, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r3, @ANYRES32=r2, @ANYRES32=r2, @ANYRES32=r1, @ANYRES32=r3, @ANYBLOB="40000000195b68af41ea0f1fe6d2b2002b1866d8f3b1561192b166cf"], 0x120, 0x40}, {&(0x7f0000001fc0)=@abs={0x0, 0x0, 0x4e21}, 0x6e, &(0x7f0000002300)=[{&(0x7f0000002040)="95b6064165df6f5a6a1f4fab12f64a0ac3d1f842dfd60dab39f0b6914631be800e03763d11864d2f7946cf2caa7a76e69bc223436e873364ee7bce00958de0b1efb7d3b3905293185626ecdde86b95c35e969d9b9f823c5c35c3b76f4241f3b7ac7882d73cf361b811cf96384edad2397ee1f1b4d01fccf80fe3", 0x7a}, {&(0x7f00000020c0)="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", 0xff}, {&(0x7f00000021c0)="424f0853fa0fb1d106206fb464e0cbcce89d68acf7e291d557ef8aa7f71de4469196106c447a06d8c72cfcfc12a8273c348dd5577190a9d1aa80f9ac7e17c2103e846d6d9ab18a1732da7b33d7e26734791582978e7617e1a4bbc8762a1c561e1db3020f5f86d2135a8fdda6c97d131e58052eaa0627aee51919376c5b79edfc24430b604581860d6529e1664501050b27fe8d02098a61aab73097eca33fcff2892b53e926d5036773242564d343a67387b36f37e53afcc282e05f6e3cf1beba412e3d", 0xc3}, {&(0x7f00000022c0)="c478881eddc001ee13e2472cea6c7fc7768f6bd3e545de71bc702b490948fd68aeb4baf0f2d5f96827938c49e79da73b", 0x30}], 0x4, &(0x7f00000023c0)=[@cred={0x20, 0x1, 0x2, r16, r17, r18}], 0x20, 0xc001}, {&(0x7f0000002400)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f00000026c0)=[{&(0x7f0000002480)="e8ad0fad9464f261e37a1632fa58e9fb8e1f75213db97d8227154ed9336820fb39926397ffd1db76627b997baf56d024dcf67e424b6d2a2df09bed83a5c9a83bffd503a94645c48643c6c4a2705fad1a63a0ca06c0f153205f303726ebb437f9094f1bcc7a671a4ce867822d07df510fea4778571b9f878240189baaeab14551fd945515d02ab595b16b5a2b0503d3753032f2fcc1d0269f17898d0f68b234cee011a888e9b7cf7691a10b74ca4e4cf0d76c0f1ccfb14d7fbf37250c394e58e84e8018f25341ec73c6fddb51d4a2e1fdea06b135aa33b0a0348737a64370", 0xde}, {&(0x7f0000002580)="219115fe50f60beda35fb33b41885380c238fa5b969a464b56644d44182c2a96fff1", 0x22}, {&(0x7f00000025c0)="aa42d201f539eb56cd84e48a36eb7fef4f6980bfc0dcb23c1c2b4b97726f31ef8a84a397cab2bafe350899a23e5a7a90a73366ec239198949c62bbec62c3bc5146f15aec98ff2bcc05dcc8d52c7539ef176f063d7242b93370ec9ed00e64b74a0986fadb640f0853e9b10f8ce6aa439148be08b1deac495efe6fc3ec56d8ddedb2e1111ebf6428fdd09d572b3f5c3d7e10cfafe9d7b6a4f200f8b93b93377d47de8bc9f8f0d3106ebd5ccc6e13b1124a6286a6288daeb49940d51c2b5635f1d219c0a3e49bf84fe0c1df9bbdb7fe2d4f046f53266c1842925c232b27f746656eac", 0xe1}], 0x3, &(0x7f0000002b40)=[@cred={0x20, 0x1, 0x2, r19, r20, r21}, @cred={0x20, 0x1, 0x2, r22, r23, r24}, @cred={0x20, 0x1, 0x2, r25, r26, r27}], 0x60, 0x800}, {&(0x7f0000002bc0)=@abs={0x1, 0x0, 0x4e20}, 0x6e, &(0x7f0000002e00)=[{&(0x7f0000002c40)="39a12c8d031a82da65422fa246081ba37dffa1642ed039cf725bd485a102045396738b4815520d649883425429d1673ebc011fdb874868c7abe83b8d192c974aed2955958e06a92a1d958271d579545ad93f8f86aa9531bf74f1d38728e3e5b6daae51711b16088c551d24b8178b0dc4c24c20b0ebca2433e7ce9577c8abec7103ea47b38d71e8891faca6dbe8b089098c5c4a65ac0e53fa398b70f0dbc19f2ac69a4a5948a127d95c21", 0xaa}, {&(0x7f0000002d00)="fe40ae3b", 0x4}, {&(0x7f0000002d40)="21aca3879ec2d3e284e880", 0xb}, {&(0x7f0000002d80)="4543562dcffcb4e10419123e368629168f98cc2175d3407c887d5033b686557278442d204c8f78bfc302b02a94d2baa9fa21aab8cf7a967e83243aa9b970c867fb6f96ad32e7c582cd9e7723536e975d32c522a07d3dc6c805ebf38cf9758f15fecd3133ad01", 0x66}], 0x4, &(0x7f0000003140)=ANY=[@ANYBLOB="38000000000000000100800001000000", @ANYRES32=r2, @ANYRES32=r3, @ANYRES32=r4, @ANYRES32=r0, @ANYRES32=r3, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0, @ANYBLOB="000000001a2765ec200000000020000001000000", @ANYRES32=r28, @ANYRES32=r29, @ANYRES32=r30, @ANYBLOB="0000000018000000000000000100000001000000", @ANYRES32=r2, @ANYRES32=r0, @ANYBLOB="20000000000000000100000002000000", @ANYRES32=r31, @ANYRES32=r32, @ANYRES32=r33, @ANYBLOB="0000000020000000000000000100000002000000", @ANYRES32=r34, @ANYRES32=r35, @ANYRES32=r36, @ANYBLOB="0000000028000000000000000100000001000000", @ANYRES32=r3, @ANYRES32=r2, @ANYRES32=r0, @ANYRES32=r3, @ANYRES32=r3, @ANYRES32=r1], 0xd8, 0x20000001}, {&(0x7f0000003240)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000003680)=[{&(0x7f00000032c0)="b1f604b0eb1027115ee1082c5f368e5ea7e176b4e8ec5195dc2136d92760ab39c7b35b28007651e8aa844abf27f2062e6c64f4aaceb788517d943cea77780f9e260c2441295adaba7667dbae4616b368792cd9651afdd289bc4aa5e4bf39ef120a8c49072bfa7a487180a7450a3d7f726834d3d8db8ea7798670d1dadc8799d5597520bcef272802f6f8649a37e7", 0x8e}, {&(0x7f0000003380)='[J', 0x2}, {&(0x7f00000033c0)="ff2f772c62df8a78b28124960aa1a2a3cea3f4321a70250c7e868f75f94ce133827586a86a982ba49c5c43d54e490d8a31dc249101182c9b0118ac671fc90ebc205457721474c1cdf01d48ddc20fc93361db95f5d2dd85f4950fe3d91918558e7cc46f96d3c30c5c375d1932e0254813d2ceba0e52bcf69c11afc437201b3f83dd4886322284b4dd86c2152e36e82d2d1972e26c9af69d2a11d6ce996e0422222109b8241ac9434b2db0e8dd2d", 0xad}, {&(0x7f0000003480)="4d35846459bfb716ef32f194a48274ef7c7a37b32ea3b432094062efbcee64e72e0636beef44b5cdaea884151d52bd707500871db54e2d04dcb2caca4df4", 0x3e}, {&(0x7f00000034c0)="1873fec4636d5ba6fbc0f971ec928f1bb5786310d8089845416d69d4e31136317a620017162d9b7eeb35b836bc069807eab2b5fa04c6c60d749e6632ac6c12512b9b78496518d366c68ed66fe0e209d7ff24294676fbc4490389d956471fa9018d42462905fe5f0dcf4e3b2ef4c1561f07a0e8f6264580764646e2999cafffeff147382b0097bdb39ca878f8b7cab34edbaf269412d55ebf6e4332fb768f858755236f83009911863abe89ad1101669c35e89e5c7b86aecc3cb489daf0", 0xbd}, {&(0x7f0000003580)="303eb85d947cb8e46da3a7e0fdd7462960d35f56dcbd29a4a128f6448f939b00db5c3fe08dda4290b121d8a3a4dbb67d0b276c9817a56107765cdf3d1ec90f592085d1dcdd4034334916be741cac71553bacb0e93cdc7cf9cc08e43a9b466c49911c531256efbb00bf6d46cfefe1e4bfeec508e4d74f1cae88787ec061b781e1786b5afa0542453975a8723f0e3b138cd89c6d5226edb2a8c03cae925f070b0bcef789c37d5db3d64b5ed446d4f51ed979baa426b47eb0e1316659dcd0988ffa1339bb591c33c40705bc3f2f7acf31747699b2d156a43319f672f7c20541fc90726cb03fc0add6776bd663fc0a33", 0xee}], 0x6, &(0x7f0000003d40)=ANY=[@ANYBLOB=' \x00\x00\x00\x00\x00\x00\x00\x00\x00\x00 \x00\x00\x00\x00', @ANYRES32=r37, @ANYRES32=r38, @ANYRES32=r39, @ANYBLOB="0000000020000000000000000100000001000000", @ANYRES32=r0, @ANYRES32=r2, @ANYRES32=r3, @ANYRES32=r0, @ANYBLOB="38000000000000000100000001000000", @ANYRES32=r1, @ANYRES32=r2, @ANYRES32=r3, @ANYRES32=r4, @ANYRES32=r2, @ANYRES32=r0, @ANYRES32=r2, @ANYRES32=r2, @ANYRES32=r4, @ANYRES32=r2, @ANYBLOB="20000000000000000100000002000000", @ANYRES32=r40, @ANYRES32=r41, @ANYRES32=r42, @ANYBLOB="0000000020000000000000000100000002000000", @ANYRES32=r43, @ANYRES32=r44, @ANYRES32=r45, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r3, @ANYRES32=r4, @ANYRES32=r0, @ANYRES32=r3, @ANYRES32=r1], 0xe8}, {&(0x7f0000003e40)=@abs={0x0, 0x0, 0x4e24}, 0x6e, &(0x7f0000004480)=[{&(0x7f0000003ec0)="9c15e369a07aadc934bf20e34039a56ceeeb9b8d215d10efe317e92a0bfaa7cde1d7a50e19fbb49cb3273b85f6d900452cab1bb3343d1c26f13ee1a4db597d0946765ace646be21b22e2c261e6620492af6a512f6fcd4696f1121327a350be76993b97dc5f85c40a0338f1ab393d1c9cd4bfa10a9bc507f6907f5ca6f19cc4308d69c3376f2b11fed33de9e40ef2eb5fe9bb449a2e1b57caa23417d80edb88c30641f161835a7a39f6e32dcaf76dd7e2a53cfa498a9e43c025d8d20919aa1d3c52ce10ea531b126244ccf2fbac742112dab49b8d2b4d063a72fee95d3d680ec2b41212996834d9afc09c", 0xea}, {&(0x7f0000003fc0)="60b54df349e29238b4dcd7435e51871663628a84229a3cca155e445da90a70fe841495abfdcd644a18e507c43902651cb6e117abfc27ae19faf97d4209049cd3cb36565f41dfb01ae7f33d5f3085ee5b4238d58b00a0398cadf8c14ca5bc92850dbfd6e6170eeac878a49d753e158669eb1e43c1293983a4e567f8", 0x7b}, {&(0x7f0000004040)="47409ac2b6399e7d936cd2f2754ac3e6c822a5148098def351e47b8c3fdad54de6d5c0b445c804ad277aa156cd7ab4ae04a2be08b901193a20988be16a460d24caef0c7c0c902e529b7566c9a056435cfca4614520f42a4f6a2d11abc284bb44340ebf8a75fd23a00513b293d4c47a0ea9328284ebf63af585a63c92a6d593275742598e52dbcf6d0c3f42d3df1f62ee79eb67c162b4a2d3a579b9fa27ce09e74a8379128bbfb8f9aa26c0c21491f74f08353122aa6629", 0xb7}, {&(0x7f0000004100)="b3ae06afed43215d20f6d87ed30f20da19d1594e028b98493c84e4f1853002709e19fb9f2b4629e39ff76b8ee30bc8d3c827cb7ca0f6b92f9cf75becc980ae647641d85d952156bf0e580d2f5cb75be0b4d44a105172c242e868a48edead968f216ea69d8548dca123ea402bb392278f00a17e7dbc79293f53cafbbc23d212925cbd79af3d169467a751b7245348a9eedf22d27d5a35c81bae831547280ab2213a71ccd947ee953ac1fd19e09534eb2f34083c41e16135d0d2ef18dec15b103025b16612ad5e1d9c1de26ea63ad524a1fd0735dbec6c3532ca1d9494cd30f066ba7bcac24d", 0xe5}, {&(0x7f0000004200)="c249679eaeeb5d43bd7a2000a11201f5a0b56559cfa34dc6382206e083f2fb7d5743fc5e01b6fa48eced2104984a81896ce2abeb916c7754b4c992f5fc3e07f8ff89782ed41869b74c765c5af1b35d8d46297c8e291fd6dd320c84758710f43d4331a259b92dcbc74a7d06115ffb3e0ca1260309570bd055da32165415ed458d793ec7e56d8ec87e835fced62374a41fdaf97541cced1fd588c1ed24394fff36fe2ab013ca0d9b8a36fa32b7c4c37f8086eb12e15ed7ed8f55d7891a34a27563dd64bcb3c4bc778514b0bb90bf10103a4e4195f8d3e71866bc73e2118fc737f58418b81c8ce8", 0xe6}, {&(0x7f0000004300)="f32b1bc0b201dba5d7e487e15a6eb082684d43ffb75b41aed6adc3e769a6572f5ad10d1f49d0472ce23d91ee19196fef7ffedb44d521c17f15b389fad5b7005a0de781ef2d247e0142393754875d37da93c3b42bef8ddb17bfbe7a589dacb92894e8f4e4752a6fba613e1b01799223b1744466413b36d69fd1e83587d345979f469d7cc4904625", 0x87}, {&(0x7f00000043c0)="cc28b3137e76502df35580585e027aa5d61877e6ea27338119dfad3781125e304d166ffe67977efffa1d4c5743174687594d94c0e7fc533e8d1af27e9b2e5a167a93797111cc0f57c7d91a838ed8931a6f99b9b8a1639fe7da8df6e45ecb81f29a615b4b99f4ba4e40d99bb234258f6d498afb7619083af09f8ab8068ac080d4dcef9e7b326f00a26832541aa82c5cfb37d08a484dd255e5", 0x98}], 0x7, &(0x7f0000004700)=ANY=[@ANYBLOB="18000000000000000100000001000000", @ANYRES32=r0, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32=r4, @ANYRES32=r2, @ANYRES32=r2, @ANYRES32=r0, @ANYRES32=r1, @ANYRES32=r2, @ANYRES32=r0, @ANYRES32=r2, @ANYBLOB="20000000000000000100000002000000", @ANYRES32=r46, @ANYRES32=r47, @ANYRES32=r48, @ANYBLOB="00719500"], 0x68, 0x4000000}, {&(0x7f0000004780)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000004c40)=[{&(0x7f0000004800)="bd4f9dd174e6794330d78c052bb8d8d49a7eb9a626216ec00d9d695c4d9a8223fb006c9855c63ed709c540ad65364390cb9ab3ba297d58e7a6360b8b8c04657f264bddf4d9f0ad7ad99e6c94d4b0782472f2f481c9c59e0f30c2cdd0b3d0a8", 0x5f}, {&(0x7f0000004880)="8fd221b7c2172725b5dc9c717a690f92d47af3fcc8d2845d9c93665f282ad9cff9c29171b47dbb8c2d9ad03a36aad0ffdaf55e2aee89ef05b571939fe98a29b22ca1b8672cb2d4a0933f3e590fbd199e245b6f194aee2cb06d8177e292451f9f91838cf22a0cefd2d3d93f95bade4005c15a3d51a6746f2a0c6ab47f5dbbbd8cd0dcdddf48e1e76e1a45f7cace7a28aac38b546e687ca2d12ea66e3bf4519f34c107ff767ff21189cef6b2ee0620ceaccf9bacb8bb9a04b0ed408e26", 0xbc}, {&(0x7f0000004940)="f58ba127164f933e0fe0a394a121df5ad6932f4d81b6cbb22084ff27bdd4ef49f42e9caf0ef2825660984aa68d7ef7a2d8bf215a1b2be451796f55c95c84bebb123892fd8d55e43490b0659cdc84bcddb80cbdc676371b76299f5ab3b5e9605436c65593d3a9ff5397bbcde17dcf2791714ef8bdaebd0cc1d3d2b5f41ecff791cd521883791d6c251d5fcbeb27195b9cf5c184689181b040ad33aeaed713c75f7d3d0c36fc102e4cf831601bd93ddedf135adfc3658edc4014624123c99031f74940b2f9c80aadff2faae046a31ed9ee2c8c7245", 0xd4}, {&(0x7f0000004a40)="8914cb167dc85517c7faffa834cc373a8567954c7c3cd57f326731f421fb2a038456cf90c978c84f6e46d8917be932608eb548e0b57331936c86b6aa37072218d69f7fc917a1194a3a98e701e06ee2d922aaccd98ad205d9557ee785d2d0d94f6e0f", 0x62}, {&(0x7f0000004ac0)="adec3b4740a93408d35e5cbcde7e9b0da1311f3c75b85fb36c4d62829eedfeff1fff7fbc49506283044d41e0b7d70590f645b5fb07f1f0", 0x37}, {&(0x7f0000004b00)="50355f2248d246fcf6726e6627e96b2997aa2d67a7656c4241ea864f1bde21884e2ff2ed139b94865a172bc8e23b2ba9a9d5f589d0202841225933f83108fecf958ce88c98c0440317add8d6eb5078e34a686daf337b59746130d23e9edde852f9b2b4a03d7f2f2e478b1bcd45d972c108031c530a708c866eb6ec556fc27eba63eaf3e80d2e0f82f51ec3ebbde74b0719d657300e26835709552fa116e2225da28b9a1ffd60132fee1f3d62938a7fe80a87f1e57794e61c42f5fd", 0xbb}, {&(0x7f0000004bc0)="48ea84aa51513b147e23a50d1686e6fb51c2ebd83d0534863ecdbbe816dc56edc36e630da91e0dc19b310614c816e07602008c726241819f21ff59564f799de339cf006165b6ffc265e68fa92aa4a0ffc46e12b0cda9c9d5503e9fce3290c14215507a101a833004ea2afd5323184d", 0x6f}], 0x7, &(0x7f00000059c0)=ANY=[@ANYBLOB="20000000000000000100000002000000", @ANYRES32=r49, @ANYRES32=r50, @ANYRES32=r51, @ANYBLOB="0000000020000000000000000100000002000000", @ANYRES32=r52, @ANYRES32=r53, @ANYRES32=r54, @ANYBLOB="0000000018000000000000000100000001000000", @ANYRES32=r1, @ANYBLOB="0000000020000000000000000100000002000000", @ANYRES32=r55, @ANYRES32=r56, @ANYRES32=r57, @ANYBLOB="0000000020000000000000000100000002000000", @ANYRES32=r58, @ANYRES32=r59, @ANYRES32=r60, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32=r3, @ANYRES32=r1, @ANYRES32=r2, @ANYRES32=r0, @ANYRES32=r1, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r1, @ANYBLOB="18000000000000000100000001000000", @ANYRES32=r1, @ANYRES32=r0, @ANYBLOB="30000000000000000100000001000000", @ANYRES32=r0, @ANYRES32=r1, @ANYRES32=r4, @ANYRES32=r1, @ANYRES32=r4, @ANYRES32=r0, @ANYRES32=r61, @ANYBLOB="0000000020000000000000000100000002000000", @ANYRES32, @ANYRES32=r62, @ANYRES32=r63, @ANYBLOB="f701000082107373fa95cfc67838e8f1891b64c6e58e725d78efc658b4d0926568d6c20b"], 0x130}, {&(0x7f00000055c0)=@abs={0x1, 0x0, 0x4e20}, 0x6e, &(0x7f0000005640), 0x0, &(0x7f0000005680)=[@rights={0x30, 0x1, 0x1, [r2, r3, r1, r2, r1, r1, r2, r1]}], 0x30, 0x80}, {&(0x7f00000056c0)=@abs={0x1, 0x0, 0x4e24}, 0x6e, &(0x7f0000005780)=[{&(0x7f0000005740)="8a", 0x1}], 0x1, 0x0, 0x0, 0x14}], 0x9, 0x20000000) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r64 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r1, 0x9) sendmsg$nl_generic(r64, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 13:50:48 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000040)='/dev/null\x00', 0x2000, 0x0) bind$bt_rfcomm(r0, &(0x7f0000000100)={0x1f, {0x200, 0xa19, 0x2, 0x7, 0x0, 0x80}, 0xbf3}, 0xa) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) 13:50:48 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0xfdfdffff00000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:49 executing program 4: time(&(0x7f0000000040)) syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) r0 = getpid() perf_event_open(&(0x7f0000000240)={0x4, 0x70, 0xa911, 0x6, 0x200, 0xf9, 0x0, 0x1, 0x1, 0x7, 0x5, 0x3, 0xb5d, 0x8, 0x5, 0x0, 0x101, 0x40, 0x4, 0x1f, 0x7, 0x7174784b, 0x3f, 0x100000000, 0x8000, 0x1, 0x1, 0x51, 0x90ba, 0x20, 0x4, 0x0, 0x7f, 0x5, 0x5, 0x9, 0x7, 0x7, 0x0, 0x0, 0x1, @perf_config_ext={0xaf}, 0x200, 0x8d0, 0x7, 0x7, 0x10001, 0x3, 0x2}, r0, 0x9, 0xffffffffffffffff, 0x3) [ 495.476569] gfs2: quota_quantum mount option requires a positive numeric argument 13:50:49 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) ioctl$sock_inet_tcp_SIOCINQ(r0, 0x541b, &(0x7f0000000080)) fchdir(r0) write$UHID_CREATE(r0, &(0x7f0000000340)={0x0, 'syz0\x00', 'syz0\x00', 'syz0\x00', &(0x7f0000000040)=""/11, 0xb, 0x0, 0x9c2, 0x4, 0x6, 0x7}, 0x120) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000580)='nbd\x00') sendmsg$NBD_CMD_STATUS(r0, &(0x7f00000004c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000480)={&(0x7f0000000280)={0x64, r2, 0x408, 0x70bd27, 0x25dfdbfb, {}, [@NBD_ATTR_SOCKETS={0x44, 0x7, [{0x8, 0x1, r1}, {0x8, 0x1, r1}, {0x8, 0x1, r0}, {0x8, 0x1, r0}, {0x8, 0x1, r0}, {0x8, 0x1, r0}, {0x8, 0x1, r0}, {0x8, 0x1, r1}]}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x1}]}, 0x64}, 0x1, 0x0, 0x0, 0x20000000}, 0x850) fallocate(r1, 0x1, 0x1, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) ioctl$sock_inet_SIOCGIFNETMASK(r1, 0x891b, &(0x7f0000000500)={'bcsh0\x00', {0x2, 0x4e20, @rand_addr=0xfffffffffffffff9}}) creat(&(0x7f0000000240)='./file0\x00', 0x0) [ 495.530872] gfs2: can't parse mount arguments [ 495.640728] gfs2: quota_quantum mount option requires a positive numeric argument [ 495.664025] gfs2: can't parse mount arguments 13:50:49 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$DRM_IOCTL_AGP_INFO(r0, 0x80386433, &(0x7f0000000240)=""/108) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) 13:50:49 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) r3 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r3, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="020700020b000000d7120000000000000100080000000000030006000000000002000000e0000001000000000000000002000100004000000000fb00000000000300050000f6ff0002000000e00000000000000000000000"], 0x58}}, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) ioctl$VIDIOC_G_INPUT(r4, 0x80045626, &(0x7f0000000080)) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:49 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0xfdffffff00000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 495.922831] gfs2: quota_quantum mount option requires a positive numeric argument [ 495.961992] gfs2: can't parse mount arguments [ 496.011874] audit: type=1804 audit(1550065849.522:596): pid=25462 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/338/file0/file0" dev="sda1" ino=16641 res=1 [ 496.148765] audit: type=1804 audit(1550065849.542:597): pid=25465 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/338/file0/file0" dev="sda1" ino=16641 res=1 [ 498.300945] device bridge_slave_1 left promiscuous mode [ 498.306420] bridge0: port 2(bridge_slave_1) entered disabled state [ 498.401115] device bridge_slave_0 left promiscuous mode [ 498.406656] bridge0: port 1(bridge_slave_0) entered disabled state [ 501.605476] bond2 (unregistering): Released all slaves [ 501.702914] bond1 (unregistering): Released all slaves [ 501.763230] device hsr_slave_1 left promiscuous mode [ 501.833190] device hsr_slave_0 left promiscuous mode [ 501.893997] team0 (unregistering): Port device team_slave_1 removed [ 501.906734] team0 (unregistering): Port device team_slave_0 removed [ 501.917175] bond0 (unregistering): Releasing backup interface bond_slave_1 [ 501.984114] bond0 (unregistering): Releasing backup interface bond_slave_0 [ 502.073735] bond0 (unregistering): Released all slaves [ 502.216157] IPVS: ftp: loaded support on port[0] = 21 [ 502.282638] chnl_net:caif_netlink_parms(): no params data found [ 502.317667] bridge0: port 1(bridge_slave_0) entered blocking state [ 502.324256] bridge0: port 1(bridge_slave_0) entered disabled state [ 502.331826] device bridge_slave_0 entered promiscuous mode [ 502.338681] bridge0: port 2(bridge_slave_1) entered blocking state [ 502.345162] bridge0: port 2(bridge_slave_1) entered disabled state [ 502.352486] device bridge_slave_1 entered promiscuous mode [ 502.373130] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 502.382496] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 502.402153] team0: Port device team_slave_0 added [ 502.408092] team0: Port device team_slave_1 added [ 502.473319] device hsr_slave_0 entered promiscuous mode [ 502.510355] device hsr_slave_1 entered promiscuous mode [ 502.563253] bridge0: port 2(bridge_slave_1) entered blocking state [ 502.569622] bridge0: port 2(bridge_slave_1) entered forwarding state [ 502.576328] bridge0: port 1(bridge_slave_0) entered blocking state [ 502.582740] bridge0: port 1(bridge_slave_0) entered forwarding state [ 502.652035] 8021q: adding VLAN 0 to HW filter on device bond0 [ 502.665477] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 502.673717] bridge0: port 1(bridge_slave_0) entered disabled state [ 502.682022] bridge0: port 2(bridge_slave_1) entered disabled state [ 502.703407] 8021q: adding VLAN 0 to HW filter on device team0 [ 502.713542] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 502.721798] bridge0: port 1(bridge_slave_0) entered blocking state [ 502.728154] bridge0: port 1(bridge_slave_0) entered forwarding state [ 502.756857] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 502.766466] bridge0: port 2(bridge_slave_1) entered blocking state [ 502.772864] bridge0: port 2(bridge_slave_1) entered forwarding state [ 502.810629] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 502.818627] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 502.833508] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 502.844290] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 502.855416] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 502.867633] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 502.906507] 8021q: adding VLAN 0 to HW filter on device batadv0 13:50:57 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, 0x0) clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:50:57 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) r0 = syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) write$selinux_attr(r0, &(0x7f0000000040)='system_u:object_r:hald_dccm_exec_t:s0\x00', 0x26) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) accept$alg(r0, 0x0, 0x0) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000100), 0x0) 13:50:57 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0xffffff7f00000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:57 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000000040)) creat(&(0x7f0000000100)='./file0\x00', 0x0) 13:50:57 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4, @ANYBLOB="000229bd7000fcdbdf2507000000b0000500080001007564700008000100696200001c00020008000100170000000800020009000000080004000100000008000100696200003c000200080002000800000008000100170000000800040006000000080004008f0000000800010011000000080004000000000008000200010000003c0002000800020003000000080002000100000008000200f800000008000300050000000800030001000000080004000900000008000300010000003c000100380004001400010002004e20e00000"], 0x3}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:57 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_S390_UCAS_UNMAP(r3, 0x4018ae51, &(0x7f0000000080)={0x100, 0x1, 0xe7}) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$TIOCGPGRP(r4, 0x540f, &(0x7f0000000000)) [ 503.841682] gfs2: quota_quantum mount option requires a positive numeric argument [ 503.900277] gfs2: can't parse mount arguments 13:50:57 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0xffffffff00000000, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:57 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) r0 = syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) read$alg(r0, &(0x7f0000000240)=""/187, 0xbb) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) [ 504.082740] audit: type=1804 audit(1550065857.592:598): pid=25503 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/339/file0/file0" dev="sda1" ino=17089 res=1 13:50:57 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) fchdir(0xffffffffffffffff) r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) syz_open_dev$swradio(&(0x7f0000000040)='/dev/swradio#\x00', 0x0, 0x2) fallocate(r0, 0x1, 0x0, 0x369e5d84) fallocate(r0, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) [ 504.193402] gfs2: quota_quantum mount option requires a positive numeric argument [ 504.228233] gfs2: can't parse mount arguments 13:50:57 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) rt_sigreturn() syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) 13:50:57 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4, @ANYBLOB="000229bd7000fcdbdf2507000000b0000500080001007564700008000100696200001c00020008000100170000000800020009000000080004000100000008000100696200003c000200080002000800000008000100170000000800040006000000080004008f0000000800010011000000080004000000000008000200010000003c0002000800020003000000080002000100000008000200f800000008000300050000000800030001000000080004000900000008000300010000003c000100380004001400010002004e20e00000"], 0x3}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:57 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 504.553552] gfs2: quota_quantum mount option requires a positive numeric argument [ 504.629799] gfs2: can't parse mount arguments 13:50:58 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, 0x0) clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:50:58 executing program 4: r0 = syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) r1 = fcntl$getown(r0, 0x9) prctl$PR_SET_PTRACER(0x59616d61, r1) syz_open_dev$usb(&(0x7f0000000040)='/dev/bus/usb/00#/00#\x00', 0xd4e4, 0x0) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x13fe) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) 13:50:58 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x44, 0x0, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) [ 504.741470] gfs2: quota_quantum mount option requires a positive numeric argument [ 504.749157] gfs2: can't parse mount arguments 13:50:58 executing program 4: r0 = creat(&(0x7f0000000100)='./file0\x00', 0x100) sendmsg(r0, &(0x7f00000001c0)={&(0x7f0000000240)=@alg={0x26, 'aead\x00', 0x0, 0x0, 'ccm-aes-ce\x00'}, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000380)="6fec40cde542e42de8d1c6da279b22478fb5bd6d7151cc20a4f1af900efd8ddd8d47e6a033b27f9b8fc2920a636571cb8e315f110d67056d3ac868e81fbb11fe2a45db05a20b7b101ad5888faed8edf09beaf8de26b48a02ac95abda5a0e7acf0840c630b5ae55ebe7fb6580a04b6a74bf03048d32e15e7cfeb4eb3d389f46a970", 0x81}, {&(0x7f0000000440)="1a95c9dfcb8573361f6873ac51b4d0e459ba3f96b09695598187ded3d1c520369b6f206a73c4765fef9d7ad57364d3dda6fe379db4d3a4cbf810d172b5167171d3f7bfd717d2595ca0f1dd189f19bc9e1eddbe7a54aa59138be85be7f7f4e88a7b409726e64d4125e416a79b6ee8f35d96e470c6bf998245deab4e0df37f971f1a813256f587840143aef9e0d17c976373bd9cd4c058c93c412c3024f266838335b4d215ff958a1fc107fc5fc19500a1ee6ff9af696d2dc0c135a33538f73d96d72c3739b22d6e701ebde3b8d44e7960b9931500484f", 0xd6}, {&(0x7f0000000540)="ab99b17f0336cbdd885cd4a111f6abb54f1bfa28d77105ff2d6da16436dcdfaa718a21fb14816baa82018ab4e3e243726a4a706d83d67a831dbaecab0686ef0a10f9f7a3858702e0f89ddfa0dbfcf8f7b56c433fa1d2d6fbbd050af3ff9ac2b1357f14abd76e43ec9624f9cc155e17cab8a8b211aa9c159aa7a90e40f3368a2fcb", 0x81}, {&(0x7f0000000600)="fc295b9398579be968c5186053519bdb60c989314e07b60c654ba18ba3b2c95a14058f3ff5d0a0561eab0e925c048c85c097ac6b94d9097ad7ddc20b2cd98be05a6a233830dbde8708dbaf3d199bfc4c68dfb9cc09993900196b81caa148a30df7fe69f64a9994d54811677c328bec501fda2ec49c9b0f92d34a2314413f53a5151c5fa39ec0fdd10f29fa26a3f329673c71a71da9a801c651a104a9422ca8410e77a5b77ec8fc63f6413f451b3d19525b268fd2b0f03c521ccc01ff836874b548887986ff2ed4c1339534c7f70095e29c64ae", 0xd3}, {&(0x7f0000000700)="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", 0xfa}], 0x5}, 0x1) syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) r1 = syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x1, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000800)={0x0, 0x2, 0x18, 0x3}) pipe(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) mq_unlink(&(0x7f00000000c0)='\x00') syz_open_dev$cec(&(0x7f00000009c0)='/dev/cec#\x00', 0x3, 0x2) ioctl$EVIOCGMASK(r2, 0x80104592, &(0x7f0000000980)={0x0, 0xcf, &(0x7f0000000880)="9be8fd04d4654f327a19a33566ec991b1ef6a6c17ab2b2cfe32e77b9fc0c8266c433d39323fe5cad7a15467670bf1a24fd9d70de43b3705f9ad312b45cc716e0643f0ccc114d39ace4125d634afca31875cdf78c22599294984efa7cbae834dcf3babf24aa011a3ce6d2e3cbf34b3c98cb919194891e076777d966204c1757c63f0394aa8a89006d6875dae0baab98026a3b60b1c1f71efa8931498884c353144e6fa38cb0f529bec101d23c055448b0e63caba6b0ae45037a7bf7333500d6a294ecbeb69a571a7c76b4e4a12cfe36"}) setsockopt$XDP_UMEM_COMPLETION_RING(r0, 0x11b, 0x6, &(0x7f0000000840)=0x10000, 0x4) unshare(0x400) pselect6(0x40, &(0x7f0000000040)={0x100000001}, 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) 13:50:58 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x2, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:58 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = accept$netrom(0xffffffffffffffff, &(0x7f0000000080)={{0x3, @default}, [@null, @bcast, @rose, @default, @remote, @bcast, @default, @null]}, &(0x7f0000000000)=0x48) getsockopt$IP_VS_SO_GET_SERVICE(r3, 0x0, 0x483, &(0x7f0000000280), &(0x7f0000000300)=0x68) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCDELDLCI(r3, 0x8981, &(0x7f0000000340)={'tunl0\x00', 0x9}) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:58 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) clock_gettime(0x0, &(0x7f0000000080)={0x0, 0x0}) ioctl$VIDIOC_QUERYBUF(r0, 0xc0585609, &(0x7f0000000340)={0x1ff, 0xc, 0x4, 0x1000008, {r1, r2/1000+10000}, {0x5, 0xc, 0xbf27, 0xc8d9, 0x5, 0x8, "9553b005"}, 0x0, 0x7, @userptr=0x7ff, 0x4}) r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r3, 0x1, 0x0, 0x369e5d84) fallocate(r3, 0x0, 0x0, 0xea5f) setsockopt$IP_VS_SO_SET_DELDEST(r0, 0x0, 0x488, &(0x7f0000000240)={{0x6c, @loopback, 0x4e24, 0x2, 'fo\x00', 0x0, 0x101, 0x74}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x4e23, 0x2, 0xffffffff, 0x3396, 0x800}}, 0x44) creat(&(0x7f0000000100)='./file0\x00', 0x4000000) chdir(&(0x7f0000000040)='./file0\x00') [ 504.972619] audit: type=1804 audit(1550065858.482:599): pid=25569 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/341/file0/file0" dev="sda1" ino=17345 res=1 13:50:58 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x3, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 505.059637] audit: type=1804 audit(1550065858.482:600): pid=25573 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/341/file0/file0" dev="sda1" ino=17345 res=1 13:50:58 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) r0 = syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) ioctl$SG_GET_TIMEOUT(r0, 0x2202, 0x0) socket$unix(0x1, 0x3, 0x0) syz_mount_image$reiserfs(&(0x7f0000000040)='reiserfs\x00', &(0x7f0000000100)='./file0\x00', 0x240, 0x8, &(0x7f0000000840)=[{&(0x7f0000000240)="b28f017a29edbf146228e3d391f9496975371724628303023a11660f4e6a2c67817cb883a45d2d75fd271a99867e2a8181066d96ba57e4cbea6206fb5154911afe32d3613e942a56d61d16ee6ac9c6bedf2963e4f5b82f98c1cd600f685005c29411bb57500d5f5261c4145a959abbe10b94d98a1fb876637c95bfab0d22d26c716ac5bd3e1f0b1ca37b63617c85841bd1fabd716d39d5f67adc409cf48fcafe243d9f63c462a86c27a7dca598e0218556434942cb9df0df75b00001516baf430cd4b13bd1f90dc107735b096b0afe757f428ad3e16ead8de8b2944b42b6ae4e0e061ecc70ab8b524eef", 0xea, 0x1}, {&(0x7f0000000380)="1afc7db01c75a986ab5860607b4551c309ee6b2bb0747eb059e7b9659669975fc31ff379e5f7a9b6cce970be51dc85a73866c0656e1f03795ea525262ecbd6e7199520c4db716e12589311052da0962ecefb7967704ad8d80c444026feeccec053cbee7063baff1dddae11b46bca478d7b1160e8c91e7fcb3ce60344cf3c9fdeb3086218cabf112144f38b1392a73e48d0c7ac1d42b6d310f6ab06217de1ed906f08359c81d37b7b3e4f7515d84c9bfb3539c93e7f870fa25fef", 0xba, 0x2}, {&(0x7f0000000440)="0a97f0e7bb3b01bff5d62253c9566249fd0866759e0a1c5b82e3cc44b6ebdbd76642d05b1715297e4cc22ab821553bbf461f7d6cf8aefa50286e2cfc61475179417e7e31a3aa4dd821b6593d7a8f96088a9f0a60119e6848ad2b9c65d08d01a9469911dc5eba812bd5dfec9b973f3af4afdeaa133d11262d81ce11eb4f1367fa19f50c453bb9d5ffac340ae10256e8a42355a6b0ba8675005502", 0x9a, 0xd6}, {&(0x7f00000001c0)="b7ee392fdb7066c06de89e5ec2cef5db30781c2800b1400bfdd53f7fa49f73e4eccb5990324c346d7137be1b9636adbf463fbd393cde790a3e132944b6", 0x3d, 0x1dd}, {&(0x7f0000000500)="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", 0xfc, 0x8}, {&(0x7f0000000600)="42f7402fcef34edae6ae7a5718fa47815933eb5241aa84c6f48847a3e124082324a7d6bf01f8a1ece385c206b3272ba4ded38835092564615b61f3a12d1d181c7da5b2e8f25f78b1e9114ae2280de78c41975ed631253557f3fae002f5a2944ad0288ac26f33df6205d37ad9ec5a8964121f8f88ccee9c62a08a47009f0e60d1261ad0e8b2cbdc045ce3d24c16444c3783b3c9f4b573aa34c7e57aa05efa0c404bd6c8e345fe45069a76ec29a4bfe6068cd75c0445bb4342e662cbf82aa265d5fac5fa842b3483bbc289e0f9fd1b4e84066ebacc66", 0xd5, 0x9}, {&(0x7f0000000700)="807193683e3c125c5f5b17e5005c6ae0825be1fbeb7791db704a1dbec544646a6154668f30c3fb065eab42b82a526bcfff97a916192c8ad76c85e1870ac21ee01785e2e5df1b01e02d7222a1eef53987afdefa48a3c8464aa4eec4fa7d16d1f774255fe9c0750935f55065219a973f6cac6b314160340b35ecf46e19e70003473cdba5c8aba568a5a0f8fddff085279941d138c00f2f42b844dd4c283e0842d2c8f15aa9e4e510ea2d1c27b862b5a4d3727d4335bc62efeda98fa4f7a438ea6153b5f5748e24496d5691ec66c554c543e70dceff9143077d3b9960b991d56308279bbb6b8b7db463e56c5a0e9310df868fa66636a7da11", 0xf7, 0x7}, {&(0x7f0000000800)="d2df8f49c42ae7b953d25f86380c9a95fea9e16b81aaea0304a4a9b7fb3da9bbd42e6542953f16713e1b7c", 0x2b, 0x7}], 0x3010000, &(0x7f0000000900)={[{@usrquota='usrquota'}], [{@obj_role={'obj_role', 0x3d, '/dev/input/event#\x00'}}, {@permit_directio='permit_directio'}]}) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) 13:50:58 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x4, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 505.340504] REISERFS warning (device loop4): super-6502 reiserfs_getopt: unknown mount option "obj_role=/dev/input/event#" 13:50:58 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4, @ANYBLOB="000229bd7000fcdbdf2507000000b0000500080001007564700008000100696200001c00020008000100170000000800020009000000080004000100000008000100696200003c000200080002000800000008000100170000000800040006000000080004008f0000000800010011000000080004000000000008000200010000003c0002000800020003000000080002000100000008000200f800000008000300050000000800030001000000080004000900000008000300010000003c000100380004001400010002004e20e00000"], 0x3}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:59 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x5, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:59 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, 0x0) clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) [ 505.502565] REISERFS warning (device loop4): super-6502 reiserfs_getopt: unknown mount option "obj_role=/dev/input/event#" [ 505.645757] audit: type=1804 audit(1550065859.152:601): pid=25593 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/342/file0/file0" dev="sda1" ino=16929 res=1 13:50:59 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x6, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:59 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) ioctl$UI_SET_SNDBIT(r0, 0x4004556a, 0x0) fallocate(r1, 0x1, 0x0, 0x40000369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) getresgid(&(0x7f00000002c0)=0x0, &(0x7f0000000740), &(0x7f0000000780)) getsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000007c0)={{{@in, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6}, 0x0, @in=@empty}}, &(0x7f00000008c0)=0xe8) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000900)={0x0, 0x0}, &(0x7f0000000940)=0xc) r5 = geteuid() syz_mount_image$jfs(&(0x7f0000000040)='jfs\x00', &(0x7f0000000080)='./file0\x00', 0x8000, 0x6, &(0x7f0000000680)=[{&(0x7f0000000340)="c28a9cfe538bf5e098b6ce23cc9567117f71a811f5099f7c0e74300efbdbdc8eddf57ee461a72b41da5ddf29e0b2df6ca48b5763135023f34703e777fe55f4e0486eac1a5512f20f862c1d0520e3d5aea79d41fe0f63161e9cf87588feaabd0bcf672635c99626d835b8c0084e3152417a8e4e3bc3f0dfe073c4af82000d33e734293a241260e12b5f3ef84e7328cd56d3fb47560eb4a586795b0b1f82393678c232fd8f4060cda0ea35326e4fb20ece4026e0985a49c82f6c6d83b2182704fc10bf6775ec654b76e02411569d593fda85202081c6e074fbf58f0fad6bcb5a431a24bc1b27fa90e27dd225baa99dc6a70c", 0xf1, 0x400}, {&(0x7f0000000240)="356d4fd4a22d6a1063e4c6205e8e0ff00f247b477545f81fdf8e7b4919dc6530f95f410b8541b47511fc2b621bbc56d3f73ebb3e79756ddd8b7bb58df8e4f83489b3de42bf3ddcc1da8f2f91cb14da3b9c50724dd0176afdf8472fe8887d96095161ebc8d3dc98238b65bee995eeb5451aa0729014aef2d1", 0x78, 0xe139}, {&(0x7f0000000440)="69f20ca60ef584a357f9095bc8520c95de641c6b70385e00a9e1bebf0034bab2406054ecc5f957079cd0c727a5c81bd1bb4647525fa5937d35c4da8b6602724a23187bfe787349e717b86a0610eba949f4fde5175d04a6273328ceeec6c90c3e626eabacaa81f33a3ef93571429facd1a4da5f54c963888465938ba6fdebec146cd8f351ea4850c43a033da5289138ddb77165489355fe8b405125f3d90372a927fb61a81b19d1a8f710d4cb82ad175b00c3d4de8e521d8b9ca965e9fb6327b71e71ac734dbb8336280628e0d29973c308f4de5c4fd7911464ee490ce8e6b8a4ee3e93a107fb4cd325c92133", 0xec, 0xffff}, {&(0x7f0000000540)="34806e5d65a363e553167b4f1ff2a370b62eb7566408aa44b00346cbd59697fe7109d4c74b410d423f506189bfac8a188a8e70f3b967eadc06559e88ee07f22dc4", 0x41}, {&(0x7f00000005c0)="2ec7c58ec716af79946e29a40ef9934b6e50a39d6592094db3373ac7f72b2eb692ebb77ddc310e51821707095f880ce6153d350cb942a6f3018fa7e0c573907d6221e6071c9c915259a3e852057dc0d96c3a9f233a18193183a39a8c6a6faa28daa95fe2b38124b0094263d6b732490430a1cbe9018181c89de0b11cf20663da2f18e2b544ddf99baa7a171b7f26380eb60cc47ec67e3612366033c2", 0x9c, 0xff}, {&(0x7f0000000180)="5fefc0339db172f2fd391b0d62ff1a3336b281957795ec012f522dc46f287c948dc85f3e60e38a1abc765b230f54f5c48ccf2eec6b", 0x35}], 0x51000, &(0x7f0000000980)={[{@noquota='noquota'}, {@gid={'gid', 0x3d, r2}}, {@grpquota='grpquota'}, {@nointegrity='nointegrity'}, {@noquota='noquota'}, {@discard_size={'discard', 0x3d, 0x3}}, {@errors_remount='errors=remount-ro'}, {@resize='resize'}, {@resize_size={'resize', 0x3d, 0x2}}, {@uid={'uid', 0x3d, r3}}], [{@subj_type={'subj_type', 0x3d, 'vfat\x00'}}, {@smackfstransmute={'smackfstransmute'}}, {@hash='hash'}, {@obj_role={'obj_role', 0x3d, 'vfat\x00'}}, {@func={'func', 0x3d, 'POLICY_CHECK'}}, {@obj_user={'obj_user', 0x3d, 'vfat\x00'}}, {@mask={'mask', 0x3d, 'MAY_EXEC'}}, {@uid_lt={'uid<', r4}}, {@euid_gt={'euid>', r5}}]}) 13:50:59 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x5, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) [ 505.749108] audit: type=1804 audit(1550065859.152:602): pid=25618 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/342/file0/file0" dev="sda1" ino=16929 res=1 13:50:59 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) r0 = syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x18000200) ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_CLIENT(r0, 0xc0bc5351, &(0x7f0000000240)={0x8, 0x1, 'client0\x00', 0x0, "231357417338a063", "cf55c761571b41835dfefb97f7aa5025bef267382908be4af55c68e5ef44b1e6", 0x3ff, 0xfffffffeffffffff}) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, &(0x7f0000000200), 0x0) [ 506.017317] audit: type=1804 audit(1550065859.522:603): pid=25638 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/343/file0/file0" dev="sda1" ino=17313 res=1 13:50:59 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r3, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$EVIOCSABS20(r2, 0x401845e0, &(0x7f0000000000)={0x9, 0x0, 0x455c, 0x5, 0x4, 0x5}) 13:50:59 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x7, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:50:59 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611) fchdir(r0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000240), &(0x7f0000000280)=0xc) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x1, 0x0, 0x369e5d84) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r1, 0x4008240b, &(0x7f0000000340)={0x6, 0x70, 0x2, 0x6bb4, 0x3, 0xf2b, 0x0, 0x9, 0x14a00, 0x8, 0x2, 0xa000000, 0x8, 0x3, 0x1, 0x3503070d, 0x4, 0x1ff, 0x3, 0xd400000000000, 0x1, 0x1, 0xe5, 0x3, 0x80000000, 0x6, 0x4, 0x6, 0x7, 0x7fffffff, 0xffffffff, 0x2, 0xff, 0x8, 0x3, 0x2, 0xfffffffffffffffd, 0x7fffffff, 0x0, 0x6, 0x2, @perf_config_ext={0x9, 0x4}, 0x10, 0x10000, 0x8, 0x7, 0xffff, 0x7, 0x7fff}) ioctl$VIDIOC_G_AUDIO(r0, 0x80345621, &(0x7f00000002c0)) fallocate(r1, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000480)={r0, 0x0, 0x0, 0x5e, &(0x7f00000003c0), &(0x7f0000000400)=""/94, 0x1}, 0x28) r2 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82) lseek(r1, 0x0, 0x6) setxattr$trusted_overlay_nlink(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='trusted.overlay.nlink\x00', &(0x7f0000000180)={'L+', 0x2}, 0x28, 0x3) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r2) [ 506.134746] audit: type=1804 audit(1550065859.552:604): pid=25646 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/343/file0/file0" dev="sda1" ino=17313 res=1 13:50:59 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x9, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 506.323964] audit: type=1804 audit(1550065859.552:605): pid=25638 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/343/file0/file0" dev="sda1" ino=17313 res=1 13:50:59 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4, @ANYBLOB="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"], 0x3}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:50:59 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)) clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:50:59 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x101, 0x4, &(0x7f00000005c0)=[{&(0x7f0000000340)="ea07dd59a08a7dfca4efac035a62ad25a7e11827d5b3ca490ec69694e57cb328136ee64759f444d94a10ebe5e55d1d7a316fbfef21cc98d32635ceb614f88722041bc56252d41377c3c61c651fe1706cd17a0d82b1d8848e1206c0e28bfb1469cc7a1546aeb5039d0f160966f051539dceb0bfff2b2f4285b497b4a447fafff18729e6705652b371a8c0e64c1ae7c9c1ee3a80b4b2b5f3c8d2664f9a5534599742c6e7783aff5e2a7b725137686c5b2677bcadcd84fdd0eba9599c54ea030472a6e93a4ca43bc32f1dcde4014601f49df32ed7cddcdc6284dcec37bedb60d1363c", 0xe1, 0x4}, {&(0x7f0000000240)="ded1d8dab8af760b2a4b47bd528eec4718c557dd4f7f76264068817b0ac71f1a1a852efdaf3a3c2ef3fb76e1943538aafe60c8ccaeacc6f6272fe2d4e4ea4c72a632f5763f8ca2d74c0f395fe4cb0cae59ad0b861ce5", 0x56, 0x3}, {&(0x7f0000000440)="ec4a8b18e5f4adb9acdd5f5f92d24e5ecdaf654316048b0ce0ae226c169a7c6f024ca1a98fd0bd6f7c00cc434e56420c50eddd28c1399e28c96c8273756b56390f9544b5b83aba2e30e30e54ea61874c1b95e41678f3c68d348b7f5f4870c4ab7768bc28d16830f249a4b09d347ed8ef07df89c826b3672dc808135731e1d45db13fdafeb200ba2e5ee19aa6780debd66c60245bf2ee5a7b97b4ef2c8a6e273a7a31365185f25fa6c0", 0xa9}, {&(0x7f0000000500)="de5832e784e153c15f70535d3e3a9b819d37738cdd7b898ecda59d38c2f122f6999d3b7b5ae368d3c4ecc93d4342f29d1072d9d890c480b0cc8fa9a24c9cecae3e913873a73e775c67f4a267abaa28129a56569a7cab928cc39061fe892d8cb4e5dd79889f088a43ee8dc8673cec73d9dbca5455f0195eeeb9055603843e7030394c5b674023b53922a4133a2996b037512a38ed13a61efc46439df133658c22d2e2bb79846e4f", 0xa7, 0x4}], 0x200000, &(0x7f0000000640)={[{@mtpt='mtpt'}], [{@fsmagic={'fsmagic', 0x3d, 0x100}}, {@fsmagic={'fsmagic', 0x3d, 0xa6}}, {@fsname={'fsname', 0x3d, 'vfat\x00'}}, {@defcontext={'defcontext', 0x3d, 'sysadm_u'}}, {@smackfsroot={'smackfsroot', 0x3d, 'vfat\x00'}}, {@subj_user={'subj_user', 0x3d, 'keyring)++vboxnet1eth1%ppp0[md5sum*-userkeyring'}}, {@func={'func', 0x3d, 'MODULE_CHECK'}}, {@dont_measure='dont_measure'}]}) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) 13:50:59 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) openat$vimc1(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video1\x00', 0x2, 0x0) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0) setsockopt$sock_timeval(r0, 0x1, 0x14, &(0x7f0000000040), 0x10) pipe(&(0x7f0000000180)) unshare(0x400) gettid() r1 = getpid() tgkill(r1, r1, 0x36) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) 13:51:00 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0xa, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:00 executing program 4: r0 = syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0x800c6613, &(0x7f0000000100)={0x0, @speck128, 0x0, "406cbb7db2e9fa98"}) r1 = syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) r2 = creat(&(0x7f0000000080)='./file0\x00', 0x0) ioctl$RTC_IRQP_READ(r2, 0x8008700b, &(0x7f0000000040)) ioctl$UI_GET_VERSION(r1, 0x8004552d, &(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) 13:51:00 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x10, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 506.830467] audit: type=1804 audit(1550065860.342:606): pid=25685 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/345/file0/file0" dev="sda1" ino=17473 res=1 13:51:00 executing program 4: r0 = syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x80040) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000040)={0x0}, &(0x7f0000000100)=0xc) r4 = fcntl$getown(r0, 0x9) kcmp(r3, r4, 0x6, r1, r2) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) 13:51:00 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x1) r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r3, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) r4 = semget(0x2, 0x0, 0x541) ioctl$VIDIOC_G_FMT(r2, 0xc0d05604, &(0x7f00000002c0)={0x0, @pix_mp={0x200, 0x3, 0x76777d7d, 0x7, 0xd, [{0xfffffffffffffc00, 0x4f}, {0x8001, 0x9}, {0x8, 0x4}, {0x98, 0x40}, {0x7, 0x3}, {0x8, 0x20}, {0x7fff, 0x32e1}, {0x8, 0xfffffffffffff000}], 0x80000000, 0x3, 0x3, 0x3, 0x6}}) semop(r4, &(0x7f0000000280)=[{0x3, 0x6, 0x1800}, {0x0, 0x19, 0x1000}, {0x3, 0xff, 0x1800}], 0x3) ioctl$TIOCGSOFTCAR(r3, 0x5419, &(0x7f00000003c0)) getsockopt$inet_sctp6_SCTP_ASSOCINFO(r3, 0x84, 0x1, &(0x7f0000000000)={0x0, 0x9d3, 0x6, 0xfffffffffffffff7, 0x100000001, 0x81}, &(0x7f0000000080)=0x14) setsockopt$inet_sctp6_SCTP_DELAYED_SACK(r3, 0x84, 0x10, &(0x7f00000000c0)=@assoc_value={r5, 0x4}, 0x8) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:00 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x1, 0x0, 0x369e5d84) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000400)={{{@in, @in6=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@loopback}, 0x0, @in6=@dev}}, &(0x7f0000000100)=0xe8) sendto$packet(r0, &(0x7f0000000340)="09605c296ac762e0f714111fcf00954ec6104f9fe08202cb24824f3745f8956f0a4b81f726d2721eeeae68fdb6ffe16f1bf259fa1102e9d1c980043853d300f7feb69db8c57f1c81c3de1d80a91185c8b41dbcc80ab4af2d85e659235a7dabf28d5cb76241dcf9f02374887b7b44ff83e5f89ac304c7e7f01d7d930f796d5efba16e3128fb9016b27afc69aa810bc6d66faebfeaf356200e7495e83b24ead1af0993a623702bd3f5bf81f5867d7ad1ccb0d971b46d2502d94c2f6d", 0xbb, 0x0, &(0x7f0000000280)={0x11, 0x1e, r2, 0x1, 0x3, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}, 0x14) ioctl$DRM_IOCTL_ADD_CTX(r0, 0xc0086420, &(0x7f0000000040)={0x0}) ioctl$DRM_IOCTL_SET_SAREA_CTX(r0, 0x4010641c, &(0x7f0000000180)={r3, &(0x7f0000000080)=""/11}) fallocate(r1, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000240)='./file0\x00', 0x0) 13:51:00 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x48, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 506.947487] audit: type=1804 audit(1550065860.362:607): pid=25689 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/345/file0/file0" dev="sda1" ino=17473 res=1 13:51:00 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x4c, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:00 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4, @ANYBLOB="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"], 0x3}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:00 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) r0 = syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) ioctl$CAPI_GET_ERRCODE(r0, 0x80024321, &(0x7f0000000040)) openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000400)='/dev/dlm-control\x00', 0x400800, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x20000001) bpf$OBJ_GET_MAP(0x7, &(0x7f00000003c0)={&(0x7f0000000380)='./file0\x00', 0x0, 0x18}, 0x10) pselect6(0x40, &(0x7f0000000100)={0x100000000, 0xffffffffffffff00, 0xffff, 0x4000000, 0x2, 0x10001, 0x4, 0x8}, &(0x7f00000001c0)={0x3, 0xf2, 0x6, 0x1f, 0x5, 0x3ff, 0x80, 0x8}, &(0x7f0000000240)={0x7, 0x8001, 0xff, 0xe9, 0x100000000, 0x6000000000000000, 0x0, 0x4}, &(0x7f0000000280)={0x77359400}, &(0x7f0000000300)={&(0x7f00000002c0)={0x49616c21}, 0x8}) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) fcntl$dupfd(r0, 0x406, r0) 13:51:00 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)) clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:00 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x60, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:00 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000240)='/proc/capi/capi20ncci\x00', 0x200003, 0x0) ioctl$SCSI_IOCTL_START_UNIT(r0, 0x5) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000040)={0x10000, {0x2, 0x3, 0x400000000000000, 0x8, 0x614, 0x3}}) r1 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x42000, 0x0) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x15) fchdir(r1) timer_create(0x7, &(0x7f0000000440)={0x0, 0x2f, 0x1, @thr={&(0x7f0000000280)="527a21d20861ecb61e99ccd413ca367e619bce9c9b15d29a9aff918b26869528e5794a0947f456e6e79aa9f9751689587def667042864b601cc6890dada4f9ac2392b2051974704538ef2d48e045143f0e1e56312cd8a8b2bee057f86d", &(0x7f0000000340)="f40cb1bc8f3dff545e701afb203dcc8066bf9fd97096112e18285feaafc9de2abf23b8bc0e1a9dc0ad5489f9fc1943a8dba7b8cccab9c0712fa487fc596a799ff4f44bfee209a7cca03aeb16998e15d9f173adf79d6fdfc6c266edfffc1c19c2e13ca9871979dc04d387f30102f6b7b3fee5ff13c7fd1e72d0b5af366060dc7f35d968e8e23c23ce40977dfd097b08032595a35000b59aac18dcae0a8a37df92406ed7259fbc2769b16fa9187eef976582d4c9591700f65bc06a1bc3fae63c556d0f04"}}, &(0x7f0000000480)=0x0) timer_gettime(r2, &(0x7f00000004c0)) ioctl$sock_inet6_udp_SIOCINQ(r0, 0x541b, &(0x7f0000000500)) r3 = creat(&(0x7f0000000000)='./file1\x00', 0x0) fallocate(r3, 0x1, 0x0, 0x369e5d84) fallocate(r3, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) ioctl$PPPIOCGFLAGS1(r3, 0x8004745a, &(0x7f0000000180)) 13:51:01 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x68, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:01 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000100)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) 13:51:01 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x6c, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:01 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r3, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840000}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:01 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) openat$apparmor_task_exec(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/attr/exec\x00', 0x2, 0x0) ioctl$KVM_SET_SREGS(r0, 0x4138ae84, &(0x7f0000000340)={{0xd000, 0x4, 0xf, 0x42fb, 0x1, 0x7fff, 0x100, 0x9, 0xc0000000000000, 0x6106, 0x0, 0x9}, {0x0, 0xf000, 0xe, 0x80000000, 0x100000000, 0x5, 0x5, 0x401, 0x4, 0x2000000000, 0x7, 0xff}, {0x7000, 0x11f002, 0x4, 0x2, 0x3, 0x1, 0x7fffffff, 0x7fff, 0xffffffffffffffff, 0x2, 0x9, 0x1000}, {0x0, 0x1000, 0xb, 0x1, 0x6, 0x1a673893, 0x553, 0xc985, 0x6, 0x1, 0x6a8, 0xfffffffffffffff9}, {0x10000, 0x5000, 0xf, 0x7, 0x915, 0xa94, 0x401, 0x0, 0x6e432c10, 0x7, 0x8, 0x601}, {0x100000, 0xf000, 0x0, 0x5, 0x7fff, 0x4, 0xffffffff, 0x800, 0x6, 0x5, 0x2, 0x3}, {0x0, 0x5000, 0xd, 0x80000000, 0x4, 0xffffffff80000001, 0xffffffffffffffff, 0x2, 0x1000, 0xfff, 0x9, 0xffffffff}, {0x1000, 0x5002, 0xf, 0x7ff, 0x200, 0x8, 0x7, 0x80, 0xee3c, 0xf462665, 0x4, 0x80000000}, {0x13000, 0x3}, {0xd000, 0x5000}, 0x20, 0x0, 0x4000, 0x80, 0xc, 0x401, 0xd000, [0x0, 0x3, 0x6, 0x7]}) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) 13:51:01 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x74, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:01 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) rt_sigsuspend(&(0x7f0000000040)={0xfffffffffffffffa}, 0x8) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) socket$unix(0x1, 0x5, 0x0) 13:51:01 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4, @ANYBLOB="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"], 0x3}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:01 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x7a, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:01 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)) clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:01 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x300, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:02 executing program 3: r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fcntl$getflags(r0, 0x40a) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(0xffffffffffffffff, 0x84, 0xf, &(0x7f0000000280)={0x0, @in6={{0xa, 0x4e20, 0xffffffff, @mcast2, 0x400}}, 0x9, 0x100, 0x5a, 0x80000000, 0x8}, &(0x7f0000000000)=0x98) ioctl$KVM_S390_VCPU_FAULT(r3, 0x4008ae52, &(0x7f00000000c0)=0x6) setsockopt$inet_sctp_SCTP_CONTEXT(r1, 0x84, 0x11, &(0x7f0000000080)={r4, 0xffffffff}, 0x8) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r1, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 13:51:02 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) ioctl$void(r1, 0xc0045878) 13:51:02 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x500, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:02 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x600, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:02 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x700, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:02 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) r2 = creat(&(0x7f0000000100)='./file0\x00', 0x0) lstat(&(0x7f00000002c0)='./file0\x00', &(0x7f00000018c0)={0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000001940)={0x0, 0x0}, &(0x7f0000001980)=0xc) syz_mount_image$reiserfs(&(0x7f0000000040)='reiserfs\x00', &(0x7f0000000080)='./file0\x00', 0x9, 0x3, &(0x7f0000001840)=[{&(0x7f0000000840)="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", 0x1000, 0x4}, {&(0x7f0000000180)="9ccd2fd020e092a5ea77d4c8a6959a", 0xf, 0xea0c}, {&(0x7f0000000240)="eeb41bbbaaa048e5aa2136d1f30497f951978f4be3848542a17b9805a7265e13bc28548da58b2587401ddcc4b5f4f4e787af81c979362d73d84d1fa96ab4f65ad787fd38a0d1f1fbbd75cbcdfa0b63", 0x4f, 0x4}], 0x2, &(0x7f00000019c0)={[{@errors_continue='errors=continue'}, {@errors_continue='errors=continue'}, {@barrier_none='barrier=none'}, {@nouser_xattr='nouser_xattr'}, {@jqfmt_vfsv0='jqfmt=vfsv0'}, {@grpquota='grpquota'}, {@hash_tea='hash=tea'}], [{@subj_user={'subj_user', 0x3d, 'syz0\x00'}}, {@fowner_eq={'fowner', 0x3d, r3}}, {@uid_lt={'uid<', r4}}]}) ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r2, 0xc4c85512, &(0x7f0000000340)={{0x9, 0x3, 0x6, 0x7, 'syz0\x00', 0x1f}, 0x1, [0x2, 0x5, 0x2, 0x8eb, 0xffffffffffffff62, 0x0, 0xe92, 0x1, 0x9, 0x108d, 0xaf, 0xfffffffffffffffe, 0x20, 0x7, 0xff, 0x100000000, 0x81, 0x1f, 0x4, 0x81, 0xa997, 0x7, 0x200, 0x96, 0x5, 0xfffffffffffffffb, 0x6, 0x200, 0x7, 0x40, 0x0, 0x1ba1, 0x10001, 0x4, 0x8, 0xffffffff, 0x1f, 0xffff, 0x7, 0x9, 0xffffffff, 0x8, 0x401, 0x80000001, 0x0, 0x0, 0x1, 0xff, 0x7ff, 0x64, 0x7, 0x510b, 0xff, 0x7, 0x8, 0x1, 0x8a06, 0x763, 0xc885, 0x9, 0x8000, 0x4, 0x1, 0xffffffffffffffc0, 0x188783e0, 0x84, 0x4, 0x7, 0xff73, 0x2, 0x0, 0x71, 0x5, 0x5, 0x6, 0x0, 0x8001, 0x7, 0xf2a, 0x400, 0x4, 0x5, 0x7f, 0xfffffffffffffffb, 0x5, 0x5, 0x3b28, 0x5, 0x6, 0x10001, 0x5, 0x3, 0x2, 0x1, 0xfff, 0x7, 0x7, 0x9, 0x80, 0x0, 0x7, 0x4, 0x9, 0x91, 0x7, 0x7, 0x1, 0x4f37, 0x0, 0xffff, 0xfffffffffffffc00, 0x9, 0x8, 0x8, 0x5, 0x7, 0x7, 0x6, 0x1, 0x7, 0x10000, 0x81, 0xe, 0x0, 0x6, 0x7, 0x50c, 0x6], {0x0, 0x1c9c380}}) 13:51:02 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) r0 = syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f0000000040)={0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}, &(0x7f0000000100)=0x18) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) 13:51:02 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x900, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:02 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4, @ANYBLOB="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"], 0x3}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:02 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c12") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:02 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0xa00, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:02 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) r0 = syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) [ 509.450138] kauditd_printk_skb: 11 callbacks suppressed [ 509.450153] audit: type=1804 audit(1550065862.962:619): pid=25826 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/350/file0/file0" dev="sda1" ino=17521 res=1 [ 509.573416] audit: type=1804 audit(1550065862.992:620): pid=25826 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/350/file0/file0" dev="sda1" ino=17521 res=1 13:51:03 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_init_net_socket$rose(0xb, 0x5, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r3, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:03 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0xf1a, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:03 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) r1 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) bind$nfc_llcp(r1, &(0x7f0000000000)={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "0049d13d339c3a83b57716ee817c892fe57dda6e3ac07858a088ca4db18e363c2dea8bdb564a22c9bc8faf6c532aaab9b6ba0630f11c15b164a12d3e48f3fd"}, 0x60) getsockopt$nfc_llcp(r1, 0x118, 0x3, &(0x7f0000000200)=""/177, 0x70c23d) fchdir(r0) r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r2, 0x1, 0x0, 0x369e5d84) fallocate(r2, 0x0, 0x0, 0xea5f) ioctl$PPPIOCGFLAGS(r2, 0x8004745a, &(0x7f0000000040)) creat(&(0x7f0000000100)='./file0\x00', 0x0) 13:51:03 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4, @ANYBLOB="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"], 0x3}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 509.699329] audit: type=1804 audit(1550065863.082:621): pid=25852 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/350/file0/file0" dev="sda1" ino=17521 res=1 13:51:03 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x1020, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:03 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) r0 = syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) ioctl$TIOCGSID(r0, 0x5429, &(0x7f0000000040)=0x0) fcntl$setownex(r0, 0xf, &(0x7f0000000100)={0x2, r1}) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) 13:51:03 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x1a0f, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:03 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x1f00, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:03 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) 13:51:03 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c12") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:03 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x2000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:03 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x2010, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:04 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4, @ANYBLOB="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"], 0x3}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:04 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x800000000003, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) [ 510.840687] audit: type=1804 audit(1550065864.352:622): pid=25910 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/351/file0/file0" dev="loop0" ino=149 res=1 [ 510.896470] audit: type=1804 audit(1550065864.352:623): pid=25914 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/351/file0/file0" dev="loop0" ino=149 res=1 13:51:04 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) ioctl$KVM_SET_IRQCHIP(r0, 0x8208ae63, &(0x7f0000000440)={0x1, 0x0, @ioapic={0x17005, 0x8734, 0x9, 0x1, 0x0, [{0x8, 0xfffffffffffffffd, 0x0, [], 0x9}, {0x4, 0x7, 0x7f, [], 0x1f}, {0x8, 0x6, 0x2}, {0x10000, 0x5, 0x80, [], 0x8}, {0x0, 0x2, 0x4, [], 0xffffffffffffffe0}, {0x8001, 0xff, 0x8, [], 0x200}, {0x7ff, 0xfffffffffffffffe, 0x4, [], 0x8}, {0x1f, 0x100000001, 0x1f, [], 0x2}, {0x27, 0xd6c2, 0x8, [], 0x8000}, {0x100, 0x2, 0x0, [], 0x81}, {0x6, 0x4, 0x0, [], 0x400}, {0x6, 0x0, 0xea}, {0xc67, 0xffffffff80000001, 0x100, [], 0x8}, {0x7ff, 0x1, 0x100, [], 0x3ab4}, {0x4, 0x2, 0xddc, [], 0x6b7}, {0x370000000000000, 0x20, 0x9}, {0xb6fe, 0x8df, 0x6, [], 0x4}, {0x9, 0x3f, 0xffffffff, [], 0x6}, {0x9, 0x8001, 0x7fffffff}, {0x100000000, 0x2, 0xba55, [], 0x1000}, {0x3, 0x7fffffff, 0x1}, {0x81, 0x1, 0x5}, {0x9, 0x5, 0x100000000, [], 0x1}, {0x3, 0x6, 0x6, [], 0x5}]}}) fallocate(r1, 0x1, 0x0, 0x369e5d84) getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000240)={0x0, @in={{0x2, 0x4e20, @loopback}}, 0x7, 0x0, 0x100, 0x3, 0x4}, &(0x7f0000000400)=0x98) setsockopt$inet_sctp6_SCTP_AUTH_KEY(r1, 0x84, 0x17, &(0x7f0000000540)={r2, 0x6, 0x1000, "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"}, 0x1008) fallocate(r1, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) mount$9p_tcp(&(0x7f0000000040)='127.0.0.1\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000180)='9p\x00', 0x8, &(0x7f0000000340)=ANY=[@ANYBLOB="7472616e733d7463702c706f72743d3078303030303030303030303030346532302c6e6f657874656e642c6c6f6f73652c6c6f6f73652c616e616d653d47504c7b73797374656d2c6c6f6f01652c64656275673d3078303030303030203030303030303038312c6163636573733d616e792c686173682c7375626a5f726f6c65371a49433d6370757365742c252c66756e633d4b455845435f4b45524e454c5f434845434b2c00"]) 13:51:04 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) bind$rds(r3, &(0x7f0000000000)={0x2, 0x4e24, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r3, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:04 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) prctl$PR_SET_PDEATHSIG(0x1, 0x2c) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) 13:51:04 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x3f00, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:04 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c12") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:05 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x4000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:05 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4, @ANYBLOB="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"], 0x3}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:05 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)={0xffffffffffffffff}) ioctl$VIDIOC_G_PARM(r0, 0xc0cc5615, &(0x7f0000000240)={0x6, @output={0x1000, 0x1, {0x257, 0x2}, 0x6, 0x1}}) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) 13:51:05 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x4800, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 511.743314] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. 13:51:05 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x4c00, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 511.988388] 9pnet: p9_fd_create_tcp (25955): problem connecting socket to 127.0.0.1 13:51:05 executing program 4: r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000300)='/dev/null\x00', 0x40082, 0x0) getsockopt$inet_sctp_SCTP_RTOINFO(0xffffffffffffff9c, 0x84, 0x0, &(0x7f0000000340)={0x0, 0x80000001, 0x80, 0x77a}, &(0x7f0000000380)=0x10) getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f00000003c0)={r1, 0xfffffffffffffffc}, &(0x7f0000000400)=0x8) r2 = syz_open_dev$evdev(&(0x7f0000000100)='/dev/input/event#\x00', 0x0, 0x0) write(r2, &(0x7f0000000280)="f3b70c531ce8060bb6744890394ed402961ea587ef90a7a5b4ccaa17825d177027195d41663a6014a0358eb7e73893c8d836c8112920d7367f28eacb55c79c44892dfbfbf83a5788de6b75d16777b6741ba1547c51e1fa116573", 0x5a) r3 = syz_open_dev$usb(&(0x7f0000000240)='/dev/bus/usb/00#/00#\x00', 0x1, 0x1) socket$unix(0x1, 0x3, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(r3, 0x40086607, &(0x7f0000000040)=0x9) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)) unshare(0x400) getsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r3, 0x84, 0xc, &(0x7f0000000440), &(0x7f0000000480)=0x4) pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) io_setup(0x7, &(0x7f00000001c0)=0x0) io_destroy(r4) ioctl$CAPI_NCCI_GETUNIT(r2, 0x80044327, &(0x7f0000000000)=0x7) 13:51:05 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x6000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 512.577071] audit: type=1804 audit(1550065866.082:624): pid=25955 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/352/file0/file0" dev="loop0" ino=150 res=1 13:51:06 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000340)={0x139f, 0x6, 0xe56d5916aa6c27f4, {0xc, @sdr={0x32315258, 0x5}}}) creat(&(0x7f0000000100)='./file0\x00', 0x0) 13:51:06 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:06 executing program 4: r0 = syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f0000000100)={0xffffffffffffff9c}) bind$unix(r1, &(0x7f0000000240)=@abs={0x1, 0x0, 0x4e22}, 0x6e) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x10001, 0x4) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) epoll_create(0x7) unshare(0x400) signalfd4(r2, &(0x7f0000000040)={0x8}, 0x8, 0x0) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) 13:51:06 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x6800, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:06 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(r1, 0x80dc5521, &(0x7f0000000080)=""/80) r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r3, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:06 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4, @ANYBLOB="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"], 0x3}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 512.734538] audit: type=1804 audit(1550065866.242:625): pid=25975 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/352/file0/file0" dev="loop0" ino=150 res=1 13:51:06 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x6c00, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:06 executing program 4: syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x0) socket$unix(0x1, 0x3, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) openat$uhid(0xffffffffffffff9c, &(0x7f0000000040)='/dev/uhid\x00', 0x802, 0x0) pipe(&(0x7f0000000180)) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200), 0x0) 13:51:06 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4, @ANYBLOB="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"], 0x3}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:06 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x7400, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 513.147609] audit: type=1804 audit(1550065866.652:626): pid=26000 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/353/file0/file0" dev="sda1" ino=17983 res=1 13:51:06 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) r1 = accept4$inet(r0, &(0x7f0000000040)={0x2, 0x0, @broadcast}, &(0x7f0000000080)=0x10, 0x80800) writev(r0, &(0x7f0000000180), 0x0) fchdir(r1) r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r2, 0x1, 0x0, 0x16) fallocate(r2, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) 13:51:06 executing program 4: socket$inet6_tcp(0xa, 0x1, 0x0) epoll_create1(0x0) syz_open_procfs(0x0, &(0x7f0000000500)='net/raw6\x00') pipe(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) write(r1, &(0x7f0000000340), 0x10000014c) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clock_gettime(0x0, &(0x7f0000000280)) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b7}, 0x0, 0x0) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) 13:51:06 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x7a00, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:07 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:07 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) ioctl$RTC_PIE_ON(r1, 0x7005) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) 13:51:07 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0xedc0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:07 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0xc000, 0x0) bind$inet(r4, &(0x7f0000000080)={0x2, 0x4e21, @empty}, 0x10) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r3, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) r6 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000280)='IPVS\x00') sendmsg$IPVS_CMD_GET_INFO(r5, &(0x7f0000000340)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x104000}, 0xc, &(0x7f0000000300)={&(0x7f0000000400)=ANY=[@ANYBLOB="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", @ANYRES16=r6, @ANYBLOB="200228bd7000fedbdf250f0000000800060001000080"], 0x1c}, 0x1, 0x0, 0x0, 0x8001}, 0x40000) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:07 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x40000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 514.045912] audit: type=1804 audit(1550065867.552:627): pid=26055 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/355/file0/file0" dev="sda1" ino=18000 res=1 [ 514.161493] audit: type=1804 audit(1550065867.552:628): pid=26055 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/355/file0/file0" dev="sda1" ino=18000 res=1 13:51:07 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4, @ANYBLOB="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"], 0x3}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:07 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) sync_file_range(r0, 0x7, 0x1, 0x6) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) 13:51:07 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x400000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:07 executing program 3: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) fcntl$getownex(r0, 0x10, &(0x7f0000000280)) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) r4 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0xfffffffffffffff7, 0x200000) ioctl$sock_bt_cmtp_CMTPGETCONNINFO(r4, 0x800443d3, &(0x7f0000000080)={{0x7c39, 0xfffffffffffffff7, 0x0, 0x4, 0x2, 0x5f}, 0xff, 0x1, 0x8}) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) setsockopt$SO_VM_SOCKETS_CONNECT_TIMEOUT(r4, 0x28, 0x6, &(0x7f00000000c0), 0x10) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r1, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 13:51:08 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:08 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 13:51:08 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x1000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 514.749662] audit: type=1804 audit(1550065868.252:629): pid=26085 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/356/file0/file0" dev="sda1" ino=17986 res=1 13:51:08 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x2000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 514.849547] audit: type=1804 audit(1550065868.272:630): pid=26091 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/356/file0/file0" dev="sda1" ino=17986 res=1 13:51:08 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r0, 0x54a2) creat(&(0x7f0000000100)='./file0\x00', 0x0) 13:51:08 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x3000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:08 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0xfffffffffffffffb, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r3, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:08 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4, @ANYBLOB="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"], 0x3}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:08 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x4000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:08 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r3, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:08 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a0") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:08 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x5000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:09 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 13:51:09 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x6000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:09 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x7000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:09 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x9000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 516.475044] audit: type=1804 audit(1550065869.982:631): pid=26152 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/357/file0/file0" dev="loop0" ino=151 res=1 [ 516.527526] audit: type=1804 audit(1550065870.002:632): pid=26154 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/357/file0/file0" dev="loop0" ino=151 res=1 13:51:10 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0x800c6613, &(0x7f0000000040)={0x0, @speck128, 0x2, "cb4e4738ddeb68e8"}) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) 13:51:10 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4, @ANYBLOB="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"], 0x3}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:10 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0xa000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:10 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a0") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:10 executing program 3: r0 = syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x1, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$int_in(r0, 0x8000008004500f, 0x0) 13:51:10 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 13:51:10 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x10000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:10 executing program 3: r0 = syz_open_dev$sndseq(&(0x7f0000000200)='/dev/snd/seq\x00', 0x0, 0x0) read(r0, &(0x7f0000000040)=""/28, 0xfe91) ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f0000000080)={0x200000000bf}) ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(r0, 0xc08c5334, &(0x7f0000000380)) ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r0, 0xc0a85352, &(0x7f0000000100)={{}, 'port1\x00'}) r1 = gettid() timer_create(0x0, &(0x7f00000002c0)={0x0, 0x12}, &(0x7f00000001c0)) timer_settime(0x0, 0x0, &(0x7f0000000000)={{}, {0x0, 0x1c9c380}}, 0x0) tkill(r1, 0x1000000000013) 13:51:10 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x1a0f0000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:10 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4, @ANYBLOB="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"], 0x3}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:10 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x1f000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:10 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x20000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 517.699358] audit: type=1804 audit(1550065871.202:633): pid=26196 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/358/file0/file0" dev="loop0" ino=152 res=1 [ 517.739064] audit: type=1804 audit(1550065871.242:634): pid=26203 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/358/file0/file0" dev="loop0" ino=152 res=1 13:51:11 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a0") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:11 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x20100000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:11 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 13:51:11 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) syz_open_dev$sndpcmp(&(0x7f0000000040)='/dev/snd/pcmC#D#p\x00', 0x5, 0x40) creat(&(0x7f0000000100)='./file0\x00', 0x0) 13:51:11 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4, @ANYBLOB="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"], 0x3}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:11 executing program 3: bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, &(0x7f00000002c0)='GPL\x00', 0x1, 0xcf, &(0x7f0000000340)=""/207}, 0x48) clone(0x802122001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000040), 0xffffffffffffffff) r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0xe, &(0x7f0000001000)=ANY=[@ANYBLOB="b700000005ed0050bfa30000000000000703000028feffff7a0af0fff8ffffff71a4f0ff00000000b7060000000000012d400500000000005504000001ed00001d040000000000002c460000000000006b0a00fe000000008500000007000000b7000000000000009500000000000000"], 0x0}, 0x48) ioctl$FIGETBSZ(r1, 0x2, &(0x7f0000000280)) setsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(0xffffffffffffffff, 0x84, 0x8, &(0x7f0000000400)=0x8, 0x4) exit(0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000000200)=[{{&(0x7f0000002780)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000002b80)=[{&(0x7f00000028c0)=""/221, 0xdd}, {&(0x7f0000002a80)=""/247, 0xf7}], 0x2, &(0x7f0000002bc0)=""/151, 0x97}, 0xa5}], 0x1, 0x100, &(0x7f00000001c0)={0x0, 0x1c9c380}) ioctl$TUNSETLINK(0xffffffffffffffff, 0x400454cd, 0x303) mount$bpf(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000380)='bpf\x00', 0x80080, &(0x7f0000000540)=ANY=[]) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000003000)={0x2, 0x0, &(0x7f0000000240)=ANY=[@ANYRES16], &(0x7f0000000140)='GPL\x00', 0x0, 0x1000, &(0x7f0000003080)=""/4096, 0x40f00, 0xfffffffffffffffc, [], 0x0, 0xf}, 0x48) recvmmsg(0xffffffffffffffff, &(0x7f0000008e00)=[{{&(0x7f0000008480)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @loopback}}}, 0x80, &(0x7f0000008500), 0x0, &(0x7f0000008540)=""/21, 0x15}}, {{&(0x7f0000008580)=@alg, 0x80, &(0x7f00000087c0)=[{&(0x7f0000008600)=""/15, 0xf}, {&(0x7f00000086c0)=""/18, 0x12}, {&(0x7f0000008780)=""/36, 0x24}], 0x3, 0x0, 0x0, 0x5}, 0x8}, {{&(0x7f0000008840)=@in6={0xa, 0x0, 0x0, @local}, 0x80, &(0x7f0000008d40)=[{&(0x7f00000088c0)=""/82, 0x52}, {&(0x7f0000008940)=""/49, 0x31}, {&(0x7f0000008980)=""/215, 0xd7}, {&(0x7f0000008c00)=""/125, 0x7d}, {&(0x7f0000008d00)=""/42, 0x2a}], 0x5, 0x0, 0x0, 0x6}, 0x20000000000}], 0x3, 0x41, &(0x7f0000008f40)) fcntl$getflags(r3, 0x408) ioctl$PERF_EVENT_IOC_ID(r2, 0x80082407, &(0x7f0000000080)) ioctl$FICLONERANGE(r0, 0x4020940d, &(0x7f0000000180)={r3, 0x0, 0x8, 0x7, 0x800}) [ 518.037346] attempt to access beyond end of device [ 518.042475] loop0: rw=1, want=130, limit=112 [ 518.053798] Buffer I/O error on dev loop0, logical block 129, lost async page write [ 518.073052] attempt to access beyond end of device 13:51:11 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x3f000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 518.083797] loop0: rw=1, want=131, limit=112 [ 518.088386] Buffer I/O error on dev loop0, logical block 130, lost async page write [ 518.098889] attempt to access beyond end of device [ 518.104447] loop0: rw=1, want=132, limit=112 [ 518.109294] Buffer I/O error on dev loop0, logical block 131, lost async page write [ 518.122636] attempt to access beyond end of device 13:51:11 executing program 3: r0 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x4000000004002) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = dup2(r0, r0) ioctl$LOOP_SET_STATUS64(r2, 0x4c04, &(0x7f0000000080)={0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, "c1ddbaa0c5a7b1756b03ff9b0616c5f658b83a0d37108f86367d899c7f6393c6392a16ff88db1d07aa5ed5634c0d962c65e5a205caf22e371875d21b9b496289", "850f4b7485b227f19b525ac58bbe82b228da6894369f3283114ed1f2a568d8bc9f11ed3ef32c3adcfe4acf3336569e860cdcf93e2ada9f4210e51c10dcbf9382", "26406969b634a6f47516025020d75a3ebca83d8cc3021798334e46c2656dcbbb"}) [ 518.135958] loop0: rw=1, want=133, limit=112 [ 518.144155] Buffer I/O error on dev loop0, logical block 132, lost async page write [ 518.169587] attempt to access beyond end of device [ 518.181622] loop0: rw=1, want=142, limit=112 13:51:11 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x40000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 518.190847] Buffer I/O error on dev loop0, logical block 141, lost async page write [ 518.210246] attempt to access beyond end of device [ 518.220878] loop0: rw=1, want=143, limit=112 [ 518.236219] Buffer I/O error on dev loop0, logical block 142, lost async page write [ 518.259249] attempt to access beyond end of device [ 518.273677] loop0: rw=1, want=144, limit=112 13:51:11 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x48000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 518.286989] Buffer I/O error on dev loop0, logical block 143, lost async page write [ 518.351089] attempt to access beyond end of device [ 518.356068] loop0: rw=1, want=145, limit=112 [ 518.377312] Buffer I/O error on dev loop0, logical block 144, lost async page write 13:51:11 executing program 3: r0 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x140) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = dup2(r0, r0) ioctl$LOOP_SET_STATUS64(r2, 0x4c04, 0x0) [ 518.407494] print_req_error: 1 callbacks suppressed [ 518.407505] print_req_error: I/O error, dev loop0, sector 0 flags 80700 [ 518.421498] print_req_error: I/O error, dev loop0, sector 0 flags 0 [ 518.427944] Buffer I/O error on dev loop0, logical block 0, async page read [ 518.435606] attempt to access beyond end of device [ 518.441228] print_req_error: I/O error, dev loop0, sector 0 flags 0 [ 518.447655] Buffer I/O error on dev loop0, logical block 0, async page read 13:51:12 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x4c000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 518.470642] loop0: rw=1, want=247, limit=112 [ 518.510460] print_req_error: I/O error, dev loop0, sector 0 flags 0 [ 518.530052] print_req_error: I/O error, dev loop0, sector 0 flags 0 [ 518.561176] print_req_error: I/O error, dev loop0, sector 0 flags 0 [ 518.562281] FAT-fs (loop0): error, invalid access to FAT (entry 0x0000ff00) [ 518.578081] print_req_error: I/O error, dev loop0, sector 0 flags 0 [ 518.593828] FAT-fs (loop0): Filesystem has been set read-only [ 518.600461] print_req_error: I/O error, dev loop0, sector 0 flags 0 [ 518.613621] print_req_error: I/O error, dev loop0, sector 0 flags 0 [ 518.622326] print_req_error: I/O error, dev loop0, sector 0 flags 0 13:51:12 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:12 executing program 3: r0 = syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x1, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$int_in(r0, 0x80000080044df9, 0x0) 13:51:12 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)) syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") [ 518.841134] audit: type=1804 audit(1550065872.352:635): pid=26262 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/359/file0/file0" dev="sda1" ino=17990 res=1 13:51:12 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4, @ANYBLOB="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"], 0x3}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:12 executing program 0: r0 = syz_open_dev$admmidi(&(0x7f0000000040)='/dev/admmidi#\x00', 0x3, 0x80) getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(0xffffffffffffff9c, 0x84, 0x13, &(0x7f0000000080)={0x0, 0x3}, &(0x7f0000000180)=0x8) getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000240)={r1, 0xacfd}, &(0x7f0000000280)=0x8) syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r2 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r2) r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0) sendmmsg(r0, &(0x7f0000001a80)=[{{&(0x7f0000000340)=@in={0x2, 0x4e20, @remote}, 0x80, &(0x7f0000001640)=[{&(0x7f00000003c0)="d490b7797b80db66fce8f4747e0d4d4a6eba4e3808ead2516ba581766169779f8a42d0f93eafa8b13b1200a793a68269523382f6f1f50a8f826415d828315b5b73ca48240aa4ab57fb427c94949e6c6624367d4607285d0a6814f1630d", 0x5d}, {&(0x7f0000000440)="8dcf71e81debfb9d36fd0dedfda39712205d5cb17a4283ed827890e994755c66739045dccb4d1b3698387dabaa0dd3d9362cd79d7e463ff2dc0b9a6910a18cc5aa784e31f4202bdd4202ba50491479a380883734c851b3cf06bacd639969940fcc", 0x61}, {&(0x7f00000004c0)="abc0bac8afc7f25da2b40c4c7e9c2dd075316c192c0cb094a99c4921e5ec360b2a1128fb1cb380e328e7fea3ad8406e8d89dd9013b9a61def47bd2b95525bad44a31590306bec491123f75e246d62f293968a1c8e67c49be43e94c532177257c76ee654b5c2b86f880efb71fde6478b006993f20a473100e8b4dc38174e2c65af1765adea6634f90de361d5f96c95a4a65bca902e5337e803518ea74a554c99bf6373c0471f643c6ff6dca533ff62f64f96f7a7690892875a0f289124f0c748576b11298d50ae38208b656271fb2472b3cc8ad2e7e5d4557a295ec0bbe6af902f525eaab47a55fa2109a467d43a36d5c02f231fc1788d288daaec6bf225e0ef40c63ed646ef275fc3bee91a928229f46e2f93c36a03b360d777985d0144c8fbd952df87d2f9563180fef5212e609dfc16efa746de6ae4c54fdcd063f6efbcc3ec6c306c159b866c96615ec53bdd7ed57c0104eb589dd07dc3a62a8464c78c4d2035397ca76f461e574bda34171669c83e5749901a4b5537078b867a958946b7d72934bfcd63ffd1513039f3b1d02c041dce7bb476981f0aa524b93f2f04d42d6cb4022a6ebdaa8fd8e8263582ef48cd286c988a8aaf26ca52f770c54950ff06e14a221b5899030bc1c225bdc46d202667b804194fdebe30cb46312caf267d752d0e820a970fbf2daf60efc11423cb1012a522f52bf38096d02e8fbd34db48c8b48fd8f68f92576cf2b71c1e71c7f1089378f516fddfedb09719755053a6dfe6a93fe2fd46f1ee7e01b4a52bcfcecea0e04d520d489c9fe73ba9bb5fc8a353bd3e199d7b770a0ff9668777186c8a630949079920c7c261c0033fa25b9ae29aa99177ad8fd7d7c3baa9047ae26e37a483904706dc4d627880a82bddf882ea771c6940d6fb6b524997c57775b142e5e7c431a4c948797381ef191e6bcf561d7d60b7236eac1062d1303eac72dd9c81f777c3e6d0809233598ebe6dbd684d0537002c0eb14e5d430ebed95e696ebb90ebff60854c3c528999fbc09dfa4cfbe0c2cf3dcd65fe7f74c7cc243d2c2a8944db23c0e79eb05dcef7c27f3e183a2650cd8a7386757a14903ff09dacc3c3bc97c1986fac2741ff1229a16c1b48411f39105863b4928267ac181e3c0c8bf74b882983b33412dad32b576897608561126f6eedf33ee81677ae96b0f0e0018f8a0f8913dc61395ef404228d9442f3693e5d79a3df87dde00fef12257eec4a44ddc4d708c9253b17839b38ab2231517c3737338de67fdee9c593a4098fad5d0c5920d68e0c0097b5565027897495eb7ca10fa9d4206200eed3ffd0184077d3979cd4f2e971bc0ec749f0d094e65930e7a528df27bd0d6377ffd841b0ca98a1c47eb6cd755765aedb89a27a064a5fc90ee7f248b328a5350990526afb2bfa91bc1d27f4d09da981ec869e8f7ce0dd6c4b2f6d6237d7d3120d7df85ed0aa9563ab296f1de5e70c10f0193b6a82e80e721d24bb9eb2d291c78fdaf21deb7391d90cae3f5f780077cdd25125dcd3547d292b2dc8fd5682453ea9ea9248f6c987319984ed8f71932634140a083576ef70ad365ac2d84da3b567b8f14b611544b05165312f560d1cc49ecbbffdafb94ef44cadfbadbb8038bc22820972094a6fc76d114b05d813cb487d1786557aefa34afd25afbcde1497998c1ebf66598e10ebbe47f70418f2dbc992c8a145bfd357e2c36e8a377e84512f4be69f0dab8999514b9f1f49bc7f7ec3d9a0ea6868e9eca88134bee5c326c62e511a3dd33a4f8db0110bf4dfb68a67e1edbe7d1231840997c9f7c98a98bbf3fc55924f57debe1963bb08dd26e5362ea863a440d7770d3e57fdb0a0506f49f4a85a6e3317fa33d1517d2dbe00bb0f382ece1a1974fdde897ddec4fd60fe9d4576664d5718e1f10070a7b26ff8ecce3e21059c78d254b824e1b157ea526802f8089048a439f8d313b33459de2c6b47e9daf766db1aecdd308cf160ae4187b9b1af570667c80bebc5caeb882615317ec45b8705ad60da90aae5288f80a9f3db42a35ef4c61d166bcfa4ca772538d0aa75d0f87012e1f3edc10454ec9560b7e88ab9a9a2b7c37b3ecf9237a133613047b99c36df71c7b8cdcafacd82d642c7a2ff4dadaf348e61e89739a4ea558563cf275de3b76a556cbee5692cb21b9ea3e6ec68c0c1ae4d3a71fbed3f56ccbc740a7802b39f932fecb5174a4b5031bc4e92339220537c82984195e02c6c677dd5b6afa383e410bd2e34939a50651006b3d3a47d286e6c747019d92b29fbfcf2418c36c752ecebd685d2de7ccbc71fd230b491503e7384c7b30f5d988cdab708484f1f1908b9841ecce0d185c059157cdf4dd9a15ad258e906506f0999af9ffdb988318f81a82c44ab6058eef60941237bc3b402f56197f667a427ec7ebd6d101b870186c7690cfb9405ec6ceb254a0d76745fdd99e9bb740738ae2269961bfb7dd4bd19756990577cba230c40234eeef17903ec1e40418b122895381c0888be5692fb6c5523f4bf6e0523845f549723aa0b68b36c932db3d37d9a93b113c624918fa07f3172076e208264cf5bb99e4b40c529b3e952ad3ea9860662e96aa9ee2bcd561d330abbe57c74ea2714db523a949be500bdb1c75afcbbe4a4a64534d6812bc5822b9570adf889b19312f38685ae45888c699244ba94af36897598fdf5185f6cf4f47f5b0bd4f1674b493d3b26424cf769874bc17e42ae325eb38e69c07c176c97cb745746c79fde4dde97109e8b0f0e97ccd8c11e45abe0f0a156023de1b9e4b99f6e43ecae8c85e934691fc513139fa1cf7ba305dea7b920c6b951a545604f573464f4a85147c5af8307d7a3a52f84042fed31ac4332851e946648705db5c48ae1cba12c2bbd0dcdc7acb27c99a9465a612b411b2b2da9fdfb848d67de2fec51237f8511a1a471ef8046848e1d1c395a21e935729ce0249c608f2ace830a6150836b2a560c7480d3f5cfbd71811b0b03bc77992dce03ae9f017a60b609cbe9c8b818072409d2250156c1e3e8bd6d849643d9e2bb1ff466f0f9efbffa8016584c1bfcc2316fbbf981d9a7454c975be18d487101e34d7ad183b7b0ab10dcf1e07b5d9808efa2d63882b3c3852da4108484f637e8c760a0baf849db89522ac1c65184a8bf56e11418acc7b13832f2830a233d142606ebfc2512c3fb715814223c985b538a6fe6a03d8979dc2630e32f11aa299d5dfb08b0415f4f2305913bd6af15bc5c21dd1cac217b27e589b43411c8b9fc89b208c043998c8b34bcde03ab300db36e16d521079a85234591f3ec3e0d764adef39c4a4fc6eb85ac31f252ca35bec3c240b23ccfec64bfbf6e1c4786e67fa0c4f63c7ea1ac9cec8e7e04047c875037b126f722f1980de3989e1ac1627f566be5cbeaa19475d6252ce675786decc6085b48033d74b3c2ba882b00cfb9ca419ec93b7bc7762ee2fc83957109ed69249804568e583791e66f09eb3facc1f29e3d14f305ab877aeed7f8aa064969a2b02a76d5e1512243ddfbc05127a7a35e3ff3c96353f6279d9e45c5b640925f77fe92881ffaf853476e4fff11b3a51b9bb3e42cc1cd0e190ef107e3ac92484fc6dd1e80e4158ad70e2fe65fc190903a7e7bee7d6a6778fdacc2d12a137b6e28cb581840766095562cddf59af9cff1934cff796663f58cea28514e74ead7642b8531eb3f8744d41fef59f35d4fe721e6ce55abf56e83f4b1de80caf83fcbd20c11d83b51e111e98c6f74399f0b17bd4ac6f87b78dc5224dcff939261007c3aadc3a2c5f0f76d8f2383f62ca9aaf381a1c81ebf4dddd4e362012441d556ae0b211a5dacb91f47e0485a14a2a9f5269c04f1259c2122249206c69360dfcfe50b869abaa64448fce7c098d1a0bbd15773de0ff68a1d21e5d5c8133dbdabcae13dffef7a2cc5fad30fffb977459b024d9c73ecc06fa46b6d75c9d6ff2eeb0ffea58586f95bed1c74a346abb2b49d0140b2dcc4cd05075854c645df47fb6fb1ec52669bf324adc45b8b919a6484096d05fe684c087c4e47626cba68e0c966f31df22e3ba852f3d64a95ca63a23d64b5ce0675d5bedf393a8005257f2e8cf8fe7bcdd0fc8aa1ddc27b20163cf66654bc73dd9ac61e51ed5ab1558308eaa8f67d0eb2ed488a56925dfd59cf6212d92464ecaa38240e81c98d41bd560f09926eac0dcdb7608bd0fff01a94dfc6c0d3bfe19e34e1a0bb1292e59df99ce536a320bdf993236528d6c32855162a14aa3bfeea81578add0690722eea915d96cdfe972149c550941851c2106f6a998acdc5e8bc9a9b08417e336831b2593ed2a60adb0c0c3b05a884d4b622c39507b046090a2abcc0a813c40e4ee2b80c2e3573bb5e934aba658cff33dae8a9870a13cb185c97599fa0968fcc97f1ca73292fe03a4a59ff657666ee809c493fb5a428a8efeb2a98299de22fd524c0d46394bb7b85da070e0dcd42f43fc35ec5670345558e4e899ea64c4ceaf81c454b78cce90e1089d01aaca8e2de5ec84df00782610e85a2b66ea1ffecc1e0ca87ead78210a097b3fbc9182f7a0f4e091e51519ca00266d255ddf49c0d1c714f83e4dc735091c9038bc3aa46b9dc0d03b4cf1a59012ed5ae386b446a1be091a3155d2215bda71b4c7b153f1b2da2f787efbe1e2543b377a98ab2fb8d7f43562fa703c17bbdcc932c86b7cba555fe2752b0120aa353854ffff1a8112c2b44b606eab4ca6bab1125c8ef36335b52ca08574bca78a50fd62f8cb60718ba6c170c65c0ce619a37d176d33dd5597f2ac345c76b01ba2c90757b3c97f6735246c682fbf9bf099ca34783ffd9d01db0873e0ce199742b0f577008871ac9dad28a57fb8828150b365b40c5302aebf5323f7188bc67c0dd13317d178d8fde82f8a16f2ca63aaaba70633a7578b0b88ceda83fc5b7152db54b345e154d82023efdde493878991376c0cb3cfb654e13aee116beea43cab40b0969c6f67587595e60551bc967c51a522343aa1542bcfb589cf47282ffa07f1c842886cb8029155d6329af7c84d99d141d3ee62213a7586a6c194043463a4be3983c918c84cacba96c6078911ce0a9beefd9f6b5fdf994cb76550207de5c00deef15e710105a46b11061f34c3741ed281f62fe7d40d67b67bcd2bde91cd53b57ec680dba237dd8dd9afd5e2b8789b4309cd29b408748c2fc1be72b8ca5bf9ec6b9e2ac51beac9a783184958cff99a592507302deabd1c52f57c1ce32e431af1f2f01639d6c99ba8c9bc20c098a86eaea0cf37bb7617cf554e9d731fb75e5e05ee32953159010ea467f0d7d64969b88c270b6ba281c4b9fcf81e21e1c973e0026cc26597b84f3f46ffbdc0ecb2f8f3380f4078a40c6802402414eb3e41767dc9cc321d95cdbb16efb455ee54d1aea88013d34b04ac7594134c76277b88ae62b39b41fa5b877e19be477788a8fd73b06cf4429f5950848650253487d8c45ec0b02b01ebfa4fe694e0ee756f6b52d2b8e169c8621238b359961eec3598b2bf550027bd2daa807f3d208d70028dd802096a715b90b3a40db398e338924a0eb9984579422129b422f69ff27509d22676a89fa61cb086540e4eff5db0b8cecd8ca124a9236a29f94b2ea8f8b6ede33f3b2934956f07836cb31e339a75f17c3648c31178a726ea84f67f057aba06a2de534ef7cf22aad52ef603eaacdad1a5efe0ac68829e0bf4142e6266259d9eda644ac4936720cfb89a660f9269f6d54cb32e05c46c2611f07d0a5031ca3a06b6a1eb2124d0ffda7421d944e5c938524ac52389fc3358b4a0dccc9883f131", 0x1000}, {&(0x7f00000002c0)="1ae5cfc04f", 0x5}, {&(0x7f00000014c0)="69b908cfb3662ce4a9b4600290b106b2c61a6c5677f01e541503e2e466a23f261e9c1db0359e9e655ac48123f2341b15c9082fc8b9e4fee54c9097d3151f4fe5f506e4e1227537f17dc042ed3a7359ff50c8495eeac1a3181854874318ae81084e6fad05429686b8e6849690058eb18bf87960057ce47c42eb5e221bd90a3e376101aa7624947fb092f0a8fa164baaba4a41f8e37058a9f4d28ccddea15c2f5f112540c3ec73d1fdd83fba96f9e8c6bf", 0xb0}, {&(0x7f0000001580)="02f633a09f8a3ad270b2ccf5b1308058e34180cd1d7e3bb6847d59a581360fd94f8ab66ef421dda694a3e188084d5f9fcf3e59be1400f10f56653033762f7dabd6a10e9bb47db0b0079ffb366595c891a21312d322e51c529125e6ca00efafb8c58f9f1825d8e2c3a17b34be6fb4063e8041b53194d2decf1501fb70fb3c0d50739e896f4d0d", 0x86}], 0x6}, 0xf2}, {{&(0x7f00000016c0)=@pptp={0x18, 0x2, {0x3, @multicast2}}, 0x80, &(0x7f0000001880)=[{&(0x7f0000001740)="ffb34d5c6aca72aba2e9b4858d93c4de85a0ed7ee6c28501d9c880892e13fd679c2e5d2374ade95970c7ed5ef317c665e48e984d3b14963c98ec85e048848abe74818f1a78b26d81b9fd61038ac9efb86ee2243175ba66638d17050f00cb105155b118b6ccbf9947a677e6d6467f3cd40ef7fb36bbc4012c41afe4f6dadcc540e0d9790ed125c00847b2d1268b01c659a069aa4e4006edb6b832554dbb8e667e8752da5ad5e0381162f8c032013a5f2a791a2a86a747fe7c60e6324f13940f64c7fcee2e40ed761ee678847261de", 0xce}, {&(0x7f0000001840)="8219ae9bdc52472a9d4fe9b36bb2c9c0", 0x10}], 0x2, &(0x7f00000018c0)=[{0x10, 0xff, 0x8}, {0x100, 0x118, 0x0, "4f93d70a0e300910d3ad282dce85b19e3a879217c17bea7e211087078201c297af1c5f03ec453793468af8f1f7656e04179b05bbade62c6d391c04bade93c11212431df1ebe0930e2d8f6d1457513139f9e3cc2fc09aff98697fc55963b28fb0a3eb42fcea9b77e3c84080b8410ef219d37fb7155a1ebe81d45ec003b65a4d537880cc3c08eb65f80b344e6efd781a3707ec8b64cabe00191326428a4f9ea350d553f8efade77136bb109a994c1aa6eafbbf438511f7a9eaee77a4c816c7cda6de10501c8eba1ac7fa58c9ff1c20ba48e688b63357e51c094640e51fe030af0d0bf55a9dfd01cb0660"}, {0x88, 0x13f, 0x0, "ff285fb40fd2450c560ec54d14ff23ec4dc7eaf87896619dcd438812ad2b3f756976b9cfe29885c11fa3e4a8e762b57e11bf3fcd11a0dbbc88fe22a46779f503fa903772381aa098e979d5d1afe29c68762a542d7d1d3060201ef5465ad7749ed76dc1bb47869ee541e3f9088e0ba666683313b5"}], 0x198}, 0xf3}], 0x2, 0x10) fallocate(r3, 0x1, 0x0, 0x369e5d84) fallocate(r3, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) 13:51:12 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x60000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 518.979064] audit: type=1804 audit(1550065872.352:636): pid=26262 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/359/file0/file0" dev="sda1" ino=17990 res=1 13:51:12 executing program 3: r0 = memfd_create(&(0x7f000000e000)='\x00 ', 0x0) r1 = syz_open_dev$sndseq(&(0x7f0000000180)='/dev/snd/seq\x00', 0x0, 0x101801) r2 = dup2(r1, r0) sendmsg$IPVS_CMD_SET_INFO(0xffffffffffffffff, 0x0, 0x8000) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000380)={0x0, 0x0, 0x0, '\x9e\xdez\x8cZ\xe9^\xc8g,\x934\x0fd:fO\x13\xee\xabe\xc02)\x01\xdck\xd3l\xde,Q\xf0\x1b\x7f\v\x01O\x9f\x91\xee\xb7\xc3|r@\xf4v\xc8\xd7S\xd0\x00\xaa\x8f\xaf\x8f\xb5t\xdb\xcf\xa6\xdcM'}) write$sndseq(r0, &(0x7f0000000080), 0xffffff17) ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r1, 0x4040534e, &(0x7f0000000100)={0xa2, @time}) 13:51:12 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:12 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x68000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:12 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000240)='cpuset\x00') preadv(r0, &(0x7f0000000480), 0x2000000000000113, 0x0) 13:51:12 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x6c000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:12 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:13 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(0x0, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:13 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x74000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:13 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)) syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") 13:51:13 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4, @ANYBLOB="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"], 0x3}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 520.295832] audit: type=1804 audit(1550065873.752:637): pid=26328 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/360/file0/file0" dev="loop0" ino=153 res=1 [ 520.347368] audit: type=1804 audit(1550065873.752:638): pid=26332 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/360/file0/file0" dev="loop0" ino=153 res=1 13:51:14 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) 13:51:14 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(0x0, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:14 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x7a000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:14 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4, @ANYBLOB="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"], 0x3}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:14 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4, @ANYBLOB="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"], 0x3}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:14 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(0x0, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:14 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)) syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") 13:51:14 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x8cffffff, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:14 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, 0x0, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:14 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x97ffffff, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:14 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, 0x0, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:14 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0xc0ed0000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 521.736811] audit: type=1804 audit(1550065875.242:639): pid=26361 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/361/file0/file0" dev="loop0" ino=154 res=1 [ 521.771250] audit: type=1804 audit(1550065875.282:640): pid=26361 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/361/file0/file0" dev="loop0" ino=154 res=1 13:51:15 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) getsockname$inet(r0, &(0x7f0000000040)={0x2, 0x0, @remote}, &(0x7f0000000080)=0x10) fchdir(r0) ioctl$SIOCX25SDTEFACILITIES(r0, 0x89eb, &(0x7f0000000180)={0x7, 0xe27, 0x4, 0x9, 0x0, 0x15, 0x20, "9511c2ba3c4428bc7fe38767ee848836f3d53a57", "c436d7e5bb7528379b2931c1e14a27195f2eb155"}) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) 13:51:15 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, 0x0, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:15 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4, @ANYBLOB="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"], 0x3}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:15 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0xf6ffffff, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:15 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4, @ANYBLOB="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"], 0x3}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:15 executing program 4: syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) 13:51:15 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x0, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:15 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0xfcfdffff, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:15 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x0, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:15 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0xfdfdffff, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:15 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x0, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:15 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0xfdffffff, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 522.960300] audit: type=1804 audit(1550065876.472:641): pid=26405 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/362/file0/file0" dev="loop0" ino=155 res=1 [ 522.986924] audit: type=1804 audit(1550065876.492:642): pid=26413 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/362/file0/file0" dev="loop0" ino=155 res=1 13:51:16 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xffffffffffffffe4, 0x29, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x0, 0x0, 0x369e5d88) fallocate(r1, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) 13:51:16 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0xfffffdfc, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:16 executing program 4: syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) 13:51:16 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4, @ANYBLOB="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"], 0x3}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:16 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4, @ANYBLOB="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"], 0x3}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:16 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, 0x0) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:16 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, 0x0) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:16 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0xfffffdfd, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:16 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, 0x0) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:17 executing program 0: r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000240)='/dev/zero\x00', 0x36d080, 0x0) lookup_dcookie(0x8, &(0x7f0000000680)=""/201, 0xc9) setsockopt$inet_sctp_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000000280)={0x8, 0x5, 0x42, 0xffff}, 0x8) syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r1 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f0000000540)={{{@in6=@remote, @in=@initdev}}, {{@in=@initdev}}}, &(0x7f0000000640)=0xe8) fallocate(r2, 0x1, 0x0, 0x369e5d84) creat(&(0x7f0000000100)='./file0\x00', 0x0) setxattr$trusted_overlay_origin(&(0x7f0000000040)='./file0/file0\x00', &(0x7f0000000080)='trusted.overlay.origin\x00', &(0x7f0000000180)='y\x00', 0x2, 0x1) ioctl$VIDIOC_S_INPUT(r1, 0xc0045627, &(0x7f00000002c0)=0x4a31) getsockopt$inet_mreqn(r0, 0x0, 0x24, &(0x7f0000000340)={@remote, @multicast2, 0x0}, &(0x7f0000000380)=0xc) clock_gettime(0x0, &(0x7f0000000400)={0x0, 0x0}) sendmsg$can_bcm(r2, &(0x7f0000000500)={&(0x7f00000003c0)={0x1d, r3}, 0x10, &(0x7f00000004c0)={&(0x7f0000000440)={0x3, 0x80, 0x3, {0x77359400}, {r4, r5/1000+30000}, {0x2, 0xffffffffffffff45, 0x1ff, 0xdfc}, 0x1, @can={{0x3, 0x3, 0x1, 0x6}, 0x7, 0x2, 0x0, 0x0, "510feca8008c0159"}}, 0x48}, 0x1, 0x0, 0x0, 0x10}, 0x40000) 13:51:17 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0xffffff7f, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:17 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4, @ANYBLOB="000229bd7000fcdbdf2507000000b0000500080001007564700008000100696200001c00020008000100170000000800020009000000080004000100000008000100696200003c000200080002000800000008000100170000000800040006000000080004008f0000000800010011000000080004000000000008000200010000003c0002000800020003000000080002000100000008000200f800000008000300050000000800030001000000080004000900000008000300010000003c000100380004001400010002004e20e00000020000000000000000200002000a004e21000000a6fe880000000000000000000000000101feffffff0c000500080001006962000064000700080002005f6a000008000100ff0700000c00040000000800000000000c000300020000000000000008000200060000000c0004001f000000000000000800010009000000080001000400000008000100000200000c0003000800000000000000340002000800020005000000040004000400040004000400080002000100000008000100d213000008000100f50e000004000400040004"], 0x3}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:17 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0xffffffffffffffff, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:17 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000040)='./file1\x00', 0x0, 0x40000) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) 13:51:17 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0xffffff8c, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:17 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0xffffffffffffffff, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:17 executing program 4: syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) 13:51:17 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4, @ANYBLOB="000229bd7000fcdbdf2507000000b0000500080001007564700008000100696200001c00020008000100170000000800020009000000080004000100000008000100696200003c000200080002000800000008000100170000000800040006000000080004008f0000000800010011000000080004000000000008000200010000003c0002000800020003000000080002000100000008000200f800000008000300050000000800030001000000080004000900000008000300010000003c000100380004001400010002004e20e00000020000000000000000200002000a004e21000000a6fe880000000000000000000000000101feffffff0c000500080001006962000064000700080002005f6a000008000100ff0700000c00040000000800000000000c000300020000000000000008000200060000000c0004001f000000000000000800010009000000080001000400000008000100000200000c0003000800000000000000340002000800020005000000040004000400040004000400080002000100000008000100d213000008000100f50e00000400040004"], 0x3}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:17 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0xffffff97, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:17 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0xffffffffffffffff, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:17 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x1, 0x0, 0x369e5d84) setsockopt$inet6_mtu(r1, 0x29, 0x17, &(0x7f0000000180)=0x5, 0x4) accept4(r1, &(0x7f0000000240)=@generic, &(0x7f0000000080)=0x80, 0x80800) getsockopt$inet_dccp_buf(r1, 0x21, 0xc0, &(0x7f0000000340)=""/219, &(0x7f0000000040)=0xdb) fallocate(r1, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) 13:51:17 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0xfffffff6, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:17 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, 0x0) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:18 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYRES16=r4, @ANYBLOB="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"], 0x3}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r5, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:18 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0xfffffffd, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:18 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, 0x0) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) [ 524.674675] audit: type=1804 audit(1550065878.182:643): pid=26520 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/366/file0/file0" dev="sda1" ino=18053 res=1 13:51:18 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) 13:51:18 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x1000000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 524.794664] audit: type=1804 audit(1550065878.242:644): pid=26524 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/366/file0/file0" dev="sda1" ino=18053 res=1 13:51:18 executing program 4: socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 13:51:18 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, 0x0) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:18 executing program 3: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) 13:51:18 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0xedc000000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:18 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYBLOB="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"], 0x2}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 525.137959] audit: type=1804 audit(1550065878.642:645): pid=26548 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/367/file0/file0" dev="sda1" ino=18058 res=1 13:51:18 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(0x0, 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:18 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x4000000000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 525.240594] audit: type=1804 audit(1550065878.672:646): pid=26554 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/367/file0/file0" dev="sda1" ino=18058 res=1 13:51:18 executing program 0: recvmmsg(0xffffffffffffffff, &(0x7f0000004000)=[{{&(0x7f0000000040)=@nfc_llcp, 0x80, &(0x7f0000000840)=[{&(0x7f0000000240)=""/118, 0x76}, {&(0x7f0000000180)}, {&(0x7f00000002c0)=""/32, 0x20}, {&(0x7f0000000340)=""/221, 0xdd}, {&(0x7f0000000440)=""/182, 0xb6}, {&(0x7f0000000500)=""/112, 0x70}, {&(0x7f0000000580)=""/177, 0xb1}, {&(0x7f0000000640)=""/69, 0x45}, {&(0x7f00000006c0)=""/141, 0x8d}, {&(0x7f0000000780)=""/165, 0xa5}], 0xa, &(0x7f0000000900)=""/225, 0xe1}, 0xb9c}, {{&(0x7f0000000a00)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @loopback}}}, 0x80, &(0x7f0000000ac0)=[{&(0x7f0000000a80)=""/7, 0x7}], 0x1, &(0x7f0000000b00)=""/97, 0x61}, 0x40}, {{&(0x7f0000000b80)=@nfc_llcp, 0x80, &(0x7f0000000c80)=[{&(0x7f0000000c00)=""/1, 0x1}, {&(0x7f0000000c40)=""/58, 0x3a}], 0x2, &(0x7f0000000cc0)=""/179, 0xb3}, 0xcc}, {{&(0x7f0000000d80)=@generic, 0x80, &(0x7f0000003080)=[{&(0x7f0000000e00)=""/4096, 0x1000}, {&(0x7f0000001e00)=""/7, 0x7}, {&(0x7f0000001e40)=""/110, 0x6e}, {&(0x7f0000001ec0)=""/4, 0x4}, {&(0x7f0000001f00)=""/47, 0x2f}, {&(0x7f0000001f40)=""/4096, 0x1000}, {&(0x7f0000002f40)=""/44, 0x2c}, {&(0x7f0000002f80)=""/208, 0xd0}], 0x8, &(0x7f0000003100)=""/3, 0x3}, 0x6}, {{&(0x7f0000003140)=@ax25={{0x3, @default}, [@default, @null, @default, @remote, @remote, @bcast, @null, @default]}, 0x80, &(0x7f0000003600)=[{&(0x7f00000031c0)=""/141, 0x8d}, {&(0x7f0000003280)=""/173, 0xad}, {&(0x7f0000003340)=""/184, 0xb8}, {&(0x7f0000003400)=""/217, 0xd9}, {&(0x7f0000003500)=""/46, 0x2e}, {&(0x7f0000003540)=""/164, 0xa4}], 0x6}, 0x4d38}, {{&(0x7f0000003680)=@tipc=@id, 0x80, &(0x7f0000003880)=[{&(0x7f0000003700)=""/196, 0xc4}, {&(0x7f0000003800)=""/83, 0x53}], 0x2, &(0x7f00000038c0)=""/91, 0x5b}, 0xcf}, {{&(0x7f0000003940)=@caif=@dbg, 0x80, &(0x7f0000003b00)=[{&(0x7f00000039c0)=""/248, 0xf8}, {&(0x7f0000003ac0)=""/51, 0x33}], 0x2, &(0x7f0000003b40)=""/9, 0x9}, 0x401}, {{&(0x7f0000003b80)=@nfc_llcp, 0x80, &(0x7f0000003e00)=[{&(0x7f0000003c00)=""/68, 0x44}, {&(0x7f0000003c80)=""/77, 0x4d}, {&(0x7f0000003d00)=""/234, 0xea}], 0x3}, 0xfffffffffffffffe}, {{&(0x7f0000003e40)=@hci, 0x80, &(0x7f0000003f80)=[{&(0x7f0000003ec0)=""/120, 0x78}, {&(0x7f0000003f40)=""/3, 0x3}], 0x2, &(0x7f0000003fc0)=""/50, 0x32}, 0x6e}], 0x9, 0x2000, &(0x7f0000004240)={0x0, 0x1c9c380}) pwritev(r0, &(0x7f0000005600)=[{&(0x7f0000004280)="0b52ba8d1ad3501ca7b5a87607da6be946fce26dd350b7a1ab415f0313b1b69afbcb014d0779041f4c503addd566c6e56ff91cc56f0b64d42c477eb1cf201eafca34e4a10086f3c40e3d2e5590839348c7c09b6b98055ab0bd87854916bdca5b07b203e86a3312cb56473a7eaec3630e8c965540f73b690721f74f98c55a1abc14c048c1bf3ebce58bab41e0e846505f9fa93c371ccac884220b82794ecc1db2f85ecb9b10fbb031118350d5da143400d880", 0xb2}, {&(0x7f0000004340)="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", 0x1000}, {&(0x7f0000005340)="aaaa57e19f1e4293369f9401302381f263dd508901f8335a25e41071042e25beeacc573058169beec3f1ca0bd3cfbe0dbd9634cbd88756c4c77064a2b2f4c67212209ba8c8e49978a089f043262eeec374e07dda8baeca46152328df4fe797d3ea9e1cca86b209728d2e9f85f1598a6eb9bc1966c44b3f4451553300fc55fec00fb890e81e31339ba9333002738397a843bc4403ae8218707367e09a979aaa3c74e394e26bbc5677248644861ea40536ea7e2935bc87063cd83dec71650c647b9c0ed39e1f5f9928d9fdc4af28d3d80a34ef573c2aa91bd1f96a90ae92a041", 0xdf}, {&(0x7f0000005440)="da6a7b26c510165160c732c7d4471740d1d22fb3448b4431d3818a49697d6216cd03a23f1c488da0e4977fb752978f166cbaae35a8c25b99314fde6c9f1ced142a03c62a53da8449a89567c565d79100198205fec5260f1a606df3368103affc2a345dcb96316b491381652e63651c622dafba9ea8c473f36d3c6b04ea6473dd097f4e4b3b9c4f830e62e4b201217eb7de59106a303f6669c9ea1cf0a421a503d4d106c220b08f462dd979b95156fe39921db5ed2c623026b9139bf6db10b52633486480b64742dc5ee5f1c098217e46c67846", 0xd3}, {&(0x7f0000005540)="61cf81338632b703649993b69cc6173f1e5a814bbf9f5ac3642aa6dd7921aecba14d51d82563a465ad3022a0d8c129fd9549a54e992db80725c237957938ed923cefd1ec9bba166f705e80a00dd2b02ab6fc851711aa9d9c6025847e5d07762d000098f770d0dc5d74efce62a9585a7d74a5c410c27b7d4c387c4128bdb0d34ff54ccbbd770c", 0x86}], 0x5, 0x0) syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) pwritev(r0, &(0x7f0000006940)=[{&(0x7f00000056c0)="99e15a024e66cceb2069e0428aba50f13201bff62fc7cc6b6abbadcc889383c09b104d2a4ff441b50054738d10a171c07e005801db0a6894515b7ea0be5f697bf412c50facbd57ffd150c45bbd0ce822f133d022f0319d6476e43de8436a2debbaa4a351d0b012188075f090a1f101ee99943c27130e8968a26deb2476263aaa34c4a4ddf62f4f2ac4b0c1ca49db114dcb2bf80cc52954e7045357b0043c172012e6bc4e82c0e9a05513fe844c5420aa5d49913dbe25f5fc3ab58df2e86334dde134184bac2bb5b774392ed7144c9d237c2ef10376bf8d789557d30afe09e3626cc72d35ca5c2aaa29f65cd9f6e102ec0759ed3536d2690f919e67d23bdead5de20e2c78ef8ff23134754d0e31a547c5a4499cf8aa12dabf595cd5e42dee2d2dfbb14f0a31cb164f7acd9f5fceaa123a9ef521b85b8e5aaa7eeb7163313246749450061b228c9aafc22bd437f2155ea30e12c8b33b0fed7db8e5ecbb37cec10e55399850d8387379c25cd5fd8165e873b132ea24065711e19ab4fb2348a5569b824f30033f532de4e9ee2d8a7e3a8a6451123dc68bc2d09d7b9dd5256fae88416f6c03b936c3bf9d8d52ec85680b62d957a760f43c15fcd97142afb89bbbc47f2afe5764eee9dbf18252c7389084c459625f9120c2d92cb64f6baafeb472c08df2ded74a5ef333323da51a4f874b4260a39484dd0919517675e76e68e25f6d784e91d386e601399c133a1d4ea302f1ded4ee9d0fa1061f94e05438021d3fb6bb097217992a8976e2b4f7bcc2db7b2ff0950728d1b0924c77448e5ea9d0ba98e922d566cc1250bf8b1f1ba44d6192ea204341a964a20aad8e98a2f91463558bf8846814171908fb0ee79927767588bff3101430c717a4a4de3470295e9105258384ff5c3919480d11360e420cc4b965d49bdb510c0ea8e87f3f678febeae8b67f771621ea83e3c2a2ee40f8923157d079753f8ef4ebd3273681ca3b30ef96f71c7dfbf931a54f2e7d4e61d351a99daa5d1367266a7378517e5f6d763e5fca2ff91e063d88501103f0661135f4dac6bf8cb8eaeb9d74b2db388594551e8b9e6c55475fe3069ef3b9a78a746bbabc030acac2dfcf92abdbfd7352a02d05b2d8e0d312ed3a4a3b56bd93ce0f2b4c4ebb6332e9fb768e58b7010b3a8801bbccbfdd9cb7c23cf22edb3c756da067548bd2a6a042100b9c9f7b5f502987eee02b0ef0cc2e6fba99f4953be203e6b12bb9ab1b30412161bf2af3c7546bbd7d5464a2b6bba55f1f62922ef41eabd4d0f709a340c479a5b7b8c873f38cfda872733e0b2ef924a2f67399a857aaaa139f8100498bc4923fc95cf970617b87dafc3060f26626b30d8f672d5e4cea9357c8bd95d809a84e681fff88b631c8324a851cf6ff382cad446b65bea05c3b6c8cf8f578ea2f800b5cccc94b21af7f8d3c36a5a262072ef8bca421603450688b7219be2aed78c4fda754201c9acc2bea3a2c0776818234c81943be7b87cc80c519d9bd8a77314232a40dfc23670d0dfe790ee0bf0f485511c145d4818ce93fb155d789060f1f80303ba0460c7f52b25ddb0949b4f84bf4311596f19dd817738a46d692e31decc4bbcc7e5b9f142a1c373be8cf6a6f6624a258ba8b48a0d67c4b278058d094934bc2cd31cff4dea539ac097da1b1a28c639adf72c90887ff12a7a2f5d306282b713bce07997e4736ef4da42702d78c41102ca757e364f47f4814af5172b820e6763be4d4a70cd13d805bbcb659c3bb5c8da8aba1384795c867d7745649d55bd4d307fe51790da61f9ba2fc77e3de2e69a6972d464fac0ec39ec086cf67fc73db7d6e87b18ff4886bd133c7a309542109f5bff7d8f96f4a181b8dbd8cd6a420df969cee84b636cc052bed3b573888ba715049702d5d0e2757741e346de8a67f9c013ffc5eb9865dc46fd307746328726466e014423e3ac527dc26c896c64dbec20ed401a742cc9b4b6913b74b886ac3f1ffb2f616bab25ca7f92c6388378acda2501f18e613424aac11044de24d18ad304b0effc05faa305413da145e09735842ce73a57b114468d8289a958221e2f7f55ae0f667fb2fb92939d5fecfe1aef3bc82328e6681d72c49ea069204b5156fdb8bd55a4667d501efe9552bb3bffc047fd53260636aac3a21c51049e794550355f976fe72ea216450caae427e772c6af2fce6608940c00d894b78bdb72f5a62998f8afdefdeee4172fe29fb8438e15eca575ddff661b0a0134a6512d982d6dc4d8cda07544257930772b7e631d022b73a7cac1539797ebea7e5b054da104aaead95bee41dbeeed6c54fe2edc59f50a036620e34345fd906f1121752d00c48cff38b2717bf22c9991b1083ed75d6009c0624a4bff33a21c069a6733a434747d222b31165ed689f2c895e66dcd7e95c372e6187ae45ccdffce2b1efe35d1201bf4d74e40a9718e95cdb636e7027653fcfbcb1275f52060f59d66075bece395115185fdbec19ae22ada9941286ebd44aa8ba9e59062a3b467b3a9cf3d2cd6461896719b4a5296cf2ab4dc968061deebc817591c77d98f03157549e6ed64555036d7a1fa33d44ee3440569efbca2f705040d8d4735fa5fcb02bc2cebadf5448f33deb7302ff173ef67808eabfbb5cafdeaab0548b2b8061e8762eaa6e2fc90fff8c5ed2a9f265e587425c686b7fbcd683262b1b1c6f73124759a8f81685f71ac15a96f559e62ea4a9f2217fd0a329742d27658f7aabcef6efcfc5094cdb26fe9071ec4f94d21d0162783487dbe022e9c6e3d462af6f1f73c5649c5d65db3fff5cc19e0e75caed7f9206d9087a85aaabd1c4cd21758b4c64b435c6ef1bbaf9922930ce6ea73e190562b75202c4fdf65806f3653878c2005cf8cfbfaee2f4d303817af4c89d1a66d46b9b8f15b051dc41bda358dabf30b66ed5cad4e75eea2700e5b2dc55882f79c7aa5b91299d3db7f349c0f0acad0abe1b1b7e2a5c30ff8044df2cccae2eb9c77bfda01517fa6d9e514c73121ed36669c479183e1934a74fb1b334a42653fe16a2c63941ddececa6f579f2894533333326f2118dd52523af16391db5b5190c4e6254ba57d1f49bbed8798cb2f4d45047de45bc3d8791aa26ff517ab44097ceee2589f7417def7dac49b5cbee9865cd4b9bc0095ee5dcb5f16d9774789246cc2e0d4a8bb47f4b2b7a90a09223ac43a929c6868418f15b4b92f27ac450f53934ae16fdcf454adc9091f92e2f54732d9a783ac5cc5dc53c07453d2b29a6769d652a9f89822d258ab9de303bb0db7b77e3e745d14e4d7ff80e64dd000a173ce55648a0cbb02d4258865067cfa26303b5da35892081bc07e76b7708086120cb99c7b9e1c8c4123ce31bd3caed9aca26b558f40df7383d08eac7d200dab38cc7c3fdd35b70c7e1a61f52950c3329c56ba4ebee48fa1ad7afb33242aa63f4112c827722686648af889f5493ff5712f12815bf08ff8e168812b048e3b11665ffb5f4ec8e3e564da7fc42ee5905aa02cf3f6c1830d69cb7a2b0acb98dabd6149d988bcbb2d3dd1c71ca64988b7493c3909502badf7667f284ca0442463bea37887d93714dd2b9a803e89584c0c019e054caa0082a9ee5c3d99225038e216b1a7fe8454a9cdab3fa5338a65ff00c21ff8c56e6bdd9f00326df9300cab83af1d9be50456463794cab57c804a3ba35a2ce2b8dc831bafdd592a049fd511879979e100a41cee0984073838004ddc37dfc6e99988d9923b2b08772f531b71f5545e16368401b2d60a9864ded59c60890a4328e4cf77a6ca82644ae409147527bbe0f7e4d9b1db399a38b4374ed6b258c6a53a1bf3741923de691a5e0881f98732c24c120e2dc3a069fa32d82804f992f252983d21b5eb108569566dba392a00d394e29233d83baf610de958f9d52ae069d5f59d1cbbef1a5e56bf196ed14afc5924978aaa1511c3330bec47866c21bbfc79c2c5dcddb4f928ff62f9592bb84113bce21eb998f2db4962740c90fd14c44ed59b3e4b691e65ce411df2fee97cd88819a91d32315cb237cb7a52abe7b5a59cd158601fa6e2be9fd659cb213979534f9f2c364c27748b8cc1adc7dd98f4b47a9ec113ea5ba09a6649e39c0874a1beea7a3e437feb839ad34deadfdae10e75a06205cda4b2761ffaff60546fcbda4099abc6e73a3401a3759548707c6e1ae211e22123428d1a6d41a60922be064742eed8a1f3a87f0225b01f9ce88fc5ce9860df74a7679d7ea313edcab1849524f73e3b2f047d0eeba21cf373b862d399ed336febacd0f2ccbb410e78d49c1dffd12fbaf8cdc48ed2758ee95f491ea811406d783728e69aa50ab49b8d075c04a743224c651204a5c19a6e036f27183ecc02e140a0d8e04c965ca6b38d7ec829d7d22598bf13fb06965c47956dc44c8790c614b1230948d028b32160082a96d04b64590559219734841e492014e3137d357af154dbd646ced152e7ba6ad028068b0b66228d457894195bda0b8d6e02078573cee33f9cbf4d7a93dd31371aec8674ad834c471a13fafa1adaa06bf0ae9b6f346d7c54937a55d3defc9f99d8559df5b45bf2e2c54020869e6489de09709a3e2709c8723add4aba2d3e374eeff3f1bb22e67705f8b92a73893b88cca04de52e3f3a672fee8c13c96e0667e77cccd80b55de2b54c55ebc2c56f40545c7bb4e76c68659c6fc31dda2b0de993757cb083f4402b98a4546aa4b0ef4e773a51c45a79995ba8996d7ffc64703c4712960423faf97c3d2e4b11bfbf75a800c8743f31a31a81b35cbdfea10e4a2f6aecc959773f9eaac4bcd1e5aa36bbf1da79e96c88c37ee2bcb35ff5c3dad0dbc196e1edbbe5937d373956f39aa1ac55bc6fbdd4ccad9e0f150d8ae96f9e79cf80e8c577ed01d8d780061ce1bffb25f5783e302923c017edbac66c106a999f1247b9d2a27febec399b2a0baeed160a0aa6767714a4270431d16cd10e0cafce85815e68e22592891381bf21650d58d6b291729c102675b84fc44aaab2f3a7e78abed3c7c2835b7daf14e5a128dc74ef35ed853eae7ba1d37ff5e975269297e0cfd3803cdf291559f384d7f6b340362d06b71b72d89a0a0137750f1e2c54d6efccf99084a413cd5d4c4cef6a5c391d33a877cd40d0a3f631f8360b3d77dc73d05d364989543d439fc90d8fa4aa25fafce023fcd74b6d7e16221d52267c35557f74c14f3a33e1bae84534ddfebb0f6abb07ce3319cdade9f99d8bc53d1f59650ce42ca8f15a51ef06290155bdf34e3317d0abc5b03e844f4ceb0714941e6cf112267722ab34e068516d80d33ab4514f2ba06079f0a6fa2f013af6ff97f8c31c92b0b7a8f7e0c55b892d0628f613a4c950865c617ee13a6280bd0d4cb3f90f4a2bea233f3a045affa97dc166895954a152ee49c8bd7eb5c93343f94b8bff66cb3ee9d272df1e09c16002ac4aec7e9078df7db06b89e0c19ab2e11731aca1551419a1f4b75b8d8ac971719600a2c564e88e7b97fe6fd7870773cf4a34b1a6f31a84b21f449ac08600d9e7458bf6003d4bb424b9b1fe70c0a5a93b39d0ac7fd632e38f569fad5b3fada9afc771bdca2c25a4f7ae121494ad7b1690dfa25cfa207fa6021965373cc8a76537ccd7d6fcdfcf0e0dada1e823fd6c70b985be535f02996382bd751e287e23fa11a7d9f93f5428e2ed9f608f34f85e4b0e21dfc9fd8f212aed364166ac8b8dad39744cf3329970714e1f747cc48d636b9e3a911165b11e98d16e21d96ce2123901c4292e73f53440a32854695dc572ed64432e76f4f2f3b399a71c6b3c6aa202ce6d04f9", 0x1000}, {&(0x7f00000066c0)="d5e4604a8783450df2326f7e58f92d5efe60db184eaf724bae33a03897baf92cc6ab1491c78103421936bc41b3966c4c724d4f5fc1f23204b788b5eb5d8d1ae34f71375ef216615980cfd1bbb288971d1b88a4f69127861a982d132f84edb603399aabc878476540e51fbee59e11a01b", 0x70}, {&(0x7f0000006740)="33b628620ac7628049fe961854271ed05a35db33faa09c430a4eb370af2c445736f525679d357e492a697859ff7a867e94c08ca694461763cd552f95d49ca43cd99470efe0a480ec1f9bd8674a28f821500f1495852b39feb26c4d97a6549ef711ceceb3948d6cf3f8856099c8ee43971f5f5dbb2ffe401558489a65075ab7c5d4884ac616e06d37", 0x88}, {&(0x7f0000006800)="441e93141298c2656c6bddf9ce05fdbd95a8208d8d572a4cdfce3af95a6591fdc27ee55ac25af98811f308bb805432a6042416eaeb4e962281adc0da9c469b0837be3abb160cdd77bc6547b0d440ebc45959cc22e4167cfbd7c25c2d19be394201779bcbf42ed652c138fcaf5fbfd1da01cfa52d5106550210d7b27c2060ab02f92f97899df70a3e2fd6da129731eff1b09c0647626b1bbcdb0de1e6273a0a8cff25d3e6f655a7b6ca10d86e4ff6a93fab3c8fd0262bf0ff3950440d882097825539cc4bb7516d", 0xc7}, {&(0x7f0000006900)="7083224819bb", 0x6}], 0x5, 0x0) fchdir(0xffffffffffffffff) r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000180)='/dev/null\x00', 0x10200, 0x0) r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0) r3 = syz_open_dev$usb(&(0x7f0000000200)='/dev/bus/usb/00#/00#\x00', 0xffffffffffff5af6, 0x80) ioctl$EVIOCSABS2F(r3, 0x401845ef, &(0x7f0000005680)={0x101, 0x2, 0x3, 0x5, 0xbf2, 0x8}) ioctl$LOOP_SET_FD(r3, 0x4c00, r1) fallocate(r2, 0x1, 0x0, 0x369e5d84) fallocate(r2, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) 13:51:18 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x40000000000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:19 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(0x0, 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:19 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) fsetxattr(r3, &(0x7f0000000000)=@random={'user.', '\x00'}, &(0x7f0000000080)='md5sum\x00', 0x7, 0x3) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:19 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0x6, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = syz_open_dev$vcsn(&(0x7f0000000040)='/dev/vcs#\x00', 0x20, 0x1) ioctl$TCSETSF(r0, 0x5404, &(0x7f0000000080)={0x1, 0x7, 0xe30400000, 0x3ff, 0xe, 0xb2d, 0x3, 0x644, 0x6, 0x9, 0x0, 0xffff}) r1 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r1) r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r2, 0x1, 0x0, 0x369e5d84) fallocate(r2, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) [ 525.780423] FAT-fs (loop0): bogus number of reserved sectors [ 525.840802] FAT-fs (loop0): Can't find a valid FAT filesystem [ 525.938540] FAT-fs (loop0): bogus number of reserved sectors [ 525.960155] FAT-fs (loop0): Can't find a valid FAT filesystem 13:51:19 executing program 4: socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 13:51:19 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x100000000000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:19 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(0x0, 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) [ 526.005351] audit: type=1804 audit(1550065879.512:647): pid=26602 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/369/file0/file0" dev="sda1" ino=16593 res=1 13:51:19 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYBLOB="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"], 0x2}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:19 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x200000000000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 526.139281] audit: type=1804 audit(1550065879.542:648): pid=26605 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/369/file0/file0" dev="sda1" ino=16593 res=1 13:51:19 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(0xffffffffffffffff, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:19 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000080)='./file0\x00', 0xffffffffffffffff, 0x1) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r1, 0x84, 0x7c, &(0x7f0000000040)={0x0, 0x2, 0x1}, &(0x7f0000000180)=0x8) bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000240)={r0, r0, 0xf}, 0x10) setsockopt$inet_sctp6_SCTP_CONTEXT(r1, 0x84, 0x11, &(0x7f0000000200)={r2, 0x95}, 0x8) fallocate(r1, 0x1, 0x0, 0x369e5d84) syz_open_dev$mouse(&(0x7f0000000280)='/dev/input/mouse#\x00', 0x2, 0x480) fallocate(r1, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x18) 13:51:19 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x300000000000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:19 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(0xffffffffffffffff, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:20 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x400000000000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:20 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) fsetxattr(r3, &(0x7f0000000000)=@random={'user.', '\x00'}, &(0x7f0000000080)='md5sum\x00', 0x7, 0x3) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:20 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) syncfs(r1) [ 526.917584] audit: type=1804 audit(1550065880.422:649): pid=26656 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/371/file0/file0" dev="sda1" ino=16834 res=1 13:51:20 executing program 4: socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 13:51:20 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(0xffffffffffffffff, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:20 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x500000000000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 526.985885] audit: type=1804 audit(1550065880.482:650): pid=26662 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/371/file0/file0" dev="sda1" ino=16834 res=1 13:51:20 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYBLOB="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"], 0x2}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:20 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:20 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f0000000040)='./file0\x00', 0xe008, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="d330bf9c0b3f18384b0180000000000000", 0x11, 0x100000}], 0x0, 0x0) r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x240400, 0x0) ioctl$sock_inet6_tcp_SIOCOUTQ(r0, 0x5411, &(0x7f0000000280)) r1 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fsetxattr$trusted_overlay_origin(r0, &(0x7f0000000180)='trusted.overlay.origin\x00', &(0x7f00000001c0)='y\x00', 0x2, 0x2) fchdir(r1) r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r2, 0x1, 0x0, 0x369e5d84) setsockopt$TIPC_DEST_DROPPABLE(r0, 0x10f, 0x81, &(0x7f0000000080)=0x2, 0x4) fallocate(r2, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) 13:51:20 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x600000000000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:20 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680), 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:20 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:20 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x700000000000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 527.305586] FAT-fs (loop0): bogus number of reserved sectors [ 527.327374] FAT-fs (loop0): Can't find a valid FAT filesystem 13:51:21 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x900000000000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:21 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) [ 527.564805] FAT-fs (loop0): bogus number of reserved sectors [ 527.621968] audit: type=1804 audit(1550065881.132:651): pid=26694 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/372/file0/file0" dev="sda1" ino=16787 res=1 [ 527.623880] FAT-fs (loop0): Can't find a valid FAT filesystem 13:51:21 executing program 4: socketpair$unix(0x1, 0x3, 0x0, 0x0) syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) 13:51:21 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0xa00000000000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:21 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380), 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:21 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYBLOB], 0x2}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:21 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) fchdir(0xffffffffffffffff) r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x1, 0x0, 0x369e5d84) fallocate(r0, 0x0, 0x0, 0xea5f) ioctl$KDDISABIO(r0, 0x4b37) 13:51:21 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x1000000000000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:21 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380), 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:21 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680), 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:21 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x1a0f000000000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:21 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380), 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:21 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) ioctl$PPPIOCGDEBUG(r0, 0x80047441, &(0x7f0000000280)) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) write$ppp(r0, &(0x7f0000000340)="0bf194663eaba58240eeb2ffd2d0b45a3ba431f00855c585a73d49d591166379b3fd2b75f184e4cd879c12f29a4fe1a8c696c76256b4569cbbb97a374c3ea51abdc90c75242f15e31d4849859777294afd5dc3edb85955e4bde8dacf5849fdc4f149ba569f96bed49e4e67c4fdba4dbbfc808ad335dad53598b9653932740f9ab8437ac3b85cf0bbb5b1d177170a0dbcf0e7d71a2f6bff133c0ef064d73e4b018aeaee48a1cd8e5df0e45b23343d35692743bdc5f1bdc9e484fd78afd269fc95263ab4adaa", 0xc5) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0xffffffffffffffbd, 0x1, 0xea5f) r2 = creat(&(0x7f0000000100)='./file0\x00', 0x0) ppoll(&(0x7f0000000040)=[{r2, 0x2}, {r0, 0x4001}, {r1}, {r0, 0x1}, {r0, 0xa6}, {r1, 0x4000}, {r2, 0x240}, {r2, 0x2004}, {r1, 0x10}], 0x9, &(0x7f0000000180), &(0x7f0000000240)={0x1}, 0x8) 13:51:22 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x1f00000000000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 528.709633] audit: type=1804 audit(1550065882.212:652): pid=26759 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/374/file0/file0" dev="sda1" ino=16578 res=1 [ 528.806246] audit: type=1804 audit(1550065882.242:653): pid=26761 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/374/file0/file0" dev="sda1" ino=16578 res=1 13:51:22 executing program 4: socketpair$unix(0x1, 0x3, 0x0, 0x0) syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) 13:51:22 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:22 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x2000000000000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:22 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYBLOB], 0x2}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:22 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x1, 0x0, 0x369e5d84) ioctl$TUNSETSTEERINGEBPF(r0, 0x800454e0, &(0x7f0000000040)=r0) fallocate(r1, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) 13:51:22 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x2010000000000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:22 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:22 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x3f00000000000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:22 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) accept4(r1, 0x0, &(0x7f0000000480), 0x800) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) getsockopt$IP_VS_SO_GET_INFO(r1, 0x0, 0x481, &(0x7f0000000080), &(0x7f0000000180)=0xc) fanotify_mark(r1, 0x2c, 0x10, r0, &(0x7f0000000040)='./file0\x00') creat(&(0x7f0000000100)='./file0\x00', 0x0) syz_mount_image$minix(&(0x7f0000000240)='minix\x00', &(0x7f0000000280)='./file0\x00', 0x8, 0x2, &(0x7f00000002c0)=[{&(0x7f0000000340)="d4396db4b01c25f259ba680fa56d9218c202d3f87460fdbd19d123058295328c7468781d3ce620f4d0dea92b4204f0b11559ea3b6c635502c2a917aa9618a8991223e018d655e573ba7197bdf822fc4db0d3c1863dfb8de88eac6d9ba47b5f285c89618c94711b4db02e1ac5fec53c9a3ce3e573b0c04670b75a28234653618cf9966f9466199ae49afaf1c1e71ddaf8fd8eda9344056c5025156a74", 0x9c, 0x7fff}, {&(0x7f0000000400)="1f8a8fa7af733b1fd9be5a1833a529d15f10aa287ed34eedb3e517b23f898d02c0760f80aadc6b78273786adaffb2a87b1cea98e356275d7f6a2d6bfb6c3c8dc8996ed", 0x43, 0x200000000}], 0x24000, 0x0) 13:51:22 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:22 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYBLOB], 0x2}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:22 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680), 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 529.596040] audit: type=1804 audit(1550065883.102:654): pid=26806 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/376/file0/file0" dev="sda1" ino=16514 res=1 [ 529.688763] audit: type=1804 audit(1550065883.132:655): pid=26806 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/376/file0/file0" dev="sda1" ino=16514 res=1 13:51:23 executing program 4: socketpair$unix(0x1, 0x3, 0x0, 0x0) syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) 13:51:23 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x4000000000000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:23 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x10, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:23 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) write$FUSE_WRITE(r0, &(0x7f0000000080)={0x16, 0x0, 0x5, {0x2}}, 0x18) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000000340)={{{@in=@broadcast, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in=@broadcast}}, &(0x7f0000000180)=0xe8) sendmsg$can_bcm(r0, &(0x7f0000000480)={&(0x7f0000000240)={0x1d, r2}, 0x10, &(0x7f0000000440)={&(0x7f0000000280)={0x7, 0x121, 0x8, {0x77359400}, {0x0, 0x2710}, {0x1, 0x4, 0xc16a, 0x100000000}, 0x1, @canfd={{0x3, 0x0, 0x8, 0x8}, 0x40, 0x1, 0x0, 0x0, "6e7ea282d5c11a311a9fea47483033dac340ef737d2e725933406af463745e1df4c0286115ad6d94e958125cae68e22d4fcc5fd94f4a66f7c1a1079917a3bc6d"}}, 0x80}, 0x1, 0x0, 0x0, 0x80}, 0x48001) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x20, 0x182008c8, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) fallocate(r1, 0xb, 0x8001, 0x0) ioctl$KDSKBMETA(r1, 0x4b63, &(0x7f0000000040)=0x5) [ 529.816750] audit: type=1804 audit(1550065883.172:656): pid=26806 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/376/file0/file0" dev="sda1" ino=16514 res=1 13:51:23 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x4800000000000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:23 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x10, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:23 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x4c00000000000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:23 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r3, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) accept4$tipc(r3, &(0x7f0000000000), &(0x7f0000000080)=0x10, 0x80000) 13:51:23 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x10, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:23 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYBLOB="000229bd7000fcdbdf2507000000b0000500080001007564700008000100696200001c00020008000100170000000800020009000000080004000100000008000100696200003c000200080002000800000008000100170000000800040006000000080004008f0000000800010011000000080004000000000008000200010000003c0002000800020003000000080002000100000008000200f800000008000300050000000800030001000000080004000900000008000300010000003c000100380004001400010002004e20e00000"], 0x2}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:23 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x6000000000000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:24 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x6800000000000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:24 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) syz_execute_func(0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 13:51:24 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, 0xffffffffffffffff, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:24 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x6c00000000000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 531.287817] audit: type=1804 audit(1550065884.792:657): pid=26840 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/377/file0/file0" dev="loop0" ino=156 res=1 [ 531.347441] audit: type=1804 audit(1550065884.802:658): pid=26872 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/377/file0/file0" dev="loop0" ino=156 res=1 13:51:25 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) syz_execute_func(0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 13:51:25 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, 0xffffffffffffffff, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:25 executing program 0: r0 = syz_open_dev$vbi(&(0x7f0000000040)='/dev/vbi#\x00', 0x0, 0x2) ioctl$NBD_SET_FLAGS(r0, 0xab0a, 0x2) syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r1 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r1) r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r2, 0x1, 0x0, 0x369e5d84) fallocate(r2, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) socket$unix(0x1, 0x0, 0x0) 13:51:25 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x7400000000000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:25 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYBLOB="000229bd7000fcdbdf2507000000b0000500080001007564700008000100696200001c00020008000100170000000800020009000000080004000100000008000100696200003c000200080002000800000008000100170000000800040006000000080004008f0000000800010011000000080004000000000008000200010000003c0002000800020003000000080002000100000008000200f800000008000300050000000800030001000000080004000900000008000300010000003c000100380004001400010002004e20e00000"], 0x2}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:25 executing program 3: [ 531.506495] audit: type=1804 audit(1550065885.012:659): pid=26877 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/377/file0/file0" dev="loop0" ino=156 res=1 13:51:25 executing program 3: 13:51:25 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) syz_execute_func(0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 13:51:25 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x7a00000000000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:25 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, 0xffffffffffffffff, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:25 executing program 3: 13:51:25 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)) syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) 13:51:25 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x8cffffff00000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:25 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(0xffffffffffffffff, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) [ 531.965763] audit: type=1804 audit(1550065885.472:660): pid=26905 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/378/file0/file0" dev="sda1" ino=16657 res=1 [ 532.056117] audit: type=1804 audit(1550065885.502:661): pid=26905 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/378/file0/file0" dev="sda1" ino=16657 res=1 13:51:25 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) openat$vfio(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vfio/vfio\x00', 0x40002, 0x0) creat(&(0x7f0000000100)='./file0\x00', 0x0) 13:51:25 executing program 3: 13:51:25 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYBLOB="000229bd7000fcdbdf2507000000b0000500080001007564700008000100696200001c00020008000100170000000800020009000000080004000100000008000100696200003c000200080002000800000008000100170000000800040006000000080004008f0000000800010011000000080004000000000008000200010000003c0002000800020003000000080002000100000008000200f800000008000300050000000800030001000000080004000900000008000300010000003c000100380004001400010002004e20e00000"], 0x2}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:25 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x97ffffff00000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:25 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(0xffffffffffffffff, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:25 executing program 3: 13:51:25 executing program 3: 13:51:26 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(0xffffffffffffffff, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:26 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0xf6ffffff00000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:26 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)) syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) 13:51:26 executing program 3: 13:51:26 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, 0x0) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) [ 533.147520] audit: type=1804 audit(1550065886.652:662): pid=27073 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/379/file0/file0" dev="loop0" ino=157 res=1 [ 533.243132] audit: type=1804 audit(1550065886.652:663): pid=27075 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/379/file0/file0" dev="loop0" ino=157 res=1 13:51:26 executing program 3: 13:51:26 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0xfcfdffff00000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:26 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, 0x0) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:26 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYBLOB="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"], 0x2}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:26 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x43, 0x8, 0xffffffff) fallocate(r0, 0x40, 0x0, 0xea5f) r2 = creat(&(0x7f0000000100)='./file0\x00', 0x0) getsockopt$ARPT_SO_GET_REVISION_TARGET(r2, 0x0, 0x63, &(0x7f0000000040)={'icmp6\x00'}, &(0x7f0000000080)=0x1e) 13:51:27 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0xfdfdffff00000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:27 executing program 3: 13:51:27 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, 0x0) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) [ 533.652069] audit: type=1804 audit(1550065887.162:664): pid=27091 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/380/file0/file0" dev="sda1" ino=17009 res=1 13:51:27 executing program 3: 13:51:27 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)) syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) 13:51:27 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0xfdffffff00000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:27 executing program 0: syz_mount_image$vfat(&(0x7f00000004c0)='vfat\x00', &(0x7f0000000180)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f0000000480)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) ioctl$DRM_IOCTL_VERSION(r0, 0xc0406400, &(0x7f0000001800)={0x8, 0x1000, 0x7fffffff, 0x40, &(0x7f0000000740)=""/64, 0x73, &(0x7f0000000780)=""/115, 0x1000, &(0x7f0000000800)=""/4096}) fchdir(r0) ioctl$EVIOCGBITKEY(r0, 0x80404521, &(0x7f0000000040)=""/81) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) write$UHID_CREATE(r1, &(0x7f0000000340)={0x0, 'syz0\x00', 'syz0\x00', 'syz0\x00', &(0x7f0000000240)=""/176, 0xb0, 0x3, 0x0, 0x4, 0x1, 0xffff}, 0x120) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r1, 0x84, 0x6, &(0x7f0000000500)={0x0, @in6={{0xa, 0x4e24, 0x7, @mcast1, 0x7}}}, &(0x7f0000000300)=0x84) getsockopt$inet_sctp_SCTP_RESET_STREAMS(r1, 0x84, 0x77, &(0x7f00000005c0)={0x0, 0x1f, 0x1, [0x0]}, &(0x7f0000000600)=0xa) getsockopt$inet_sctp_SCTP_STATUS(r0, 0x84, 0xe, &(0x7f0000000640)={r2, 0x1, 0x400, 0x8f, 0x7fff, 0x1ff, 0x8, 0x78, {r3, @in={{0x2, 0x4e24, @empty}}, 0x1, 0x9, 0x3b, 0x5, 0xb10000000000000}}, &(0x7f0000000700)=0xb0) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f00000000c0), &(0x7f00000001c0)=0x4) creat(&(0x7f0000000100)='./file0\x00', 0x0) [ 533.778675] audit: type=1804 audit(1550065887.182:665): pid=27095 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/380/file0/file0" dev="sda1" ino=17009 res=1 13:51:27 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, 0x0, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:27 executing program 3: 13:51:27 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0xffffff7f00000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 533.967559] audit: type=1804 audit(1550065887.182:666): pid=27095 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/380/file0/file0" dev="sda1" ino=17009 res=1 13:51:27 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYBLOB="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"], 0x2}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:27 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0xffffffff00000000, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:27 executing program 3: 13:51:27 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, 0x0, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:27 executing program 3: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) write$FUSE_WRITE(r0, &(0x7f0000000080)={0x16, 0x0, 0x5, {0x2}}, 0x18) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000000340)={{{@in=@broadcast, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in=@broadcast}}, &(0x7f0000000180)=0xe8) sendmsg$can_bcm(r0, &(0x7f0000000480)={&(0x7f0000000240)={0x1d, r2}, 0x10, &(0x7f0000000440)={&(0x7f0000000280)={0x7, 0x121, 0x8, {0x77359400}, {0x0, 0x2710}, {0x1, 0x4, 0xc16a, 0x100000000}, 0x1, @canfd={{0x3, 0x0, 0x8, 0x8}, 0x40, 0x1, 0x0, 0x0, "6e7ea282d5c11a311a9fea47483033dac340ef737d2e725933406af463745e1df4c0286115ad6d94e958125cae68e22d4fcc5fd94f4a66f7c1a1079917a3bc6d"}}, 0x80}, 0x1, 0x0, 0x0, 0x80}, 0x48001) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x20, 0x182008c8, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) fallocate(r1, 0xb, 0x8001, 0x0) ioctl$KDSKBMETA(r1, 0x4b63, &(0x7f0000000040)=0x5) 13:51:27 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, 0x0, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:28 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x0) 13:51:28 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:28 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) 13:51:28 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x0, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:28 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x2, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:28 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x0, &(0x7f00000002c0)={0x0, 0xf7}) [ 535.020655] gfs2: quota_quantum mount option requires a positive numeric argument [ 535.078427] gfs2: can't parse mount arguments [ 535.183844] gfs2: quota_quantum mount option requires a positive numeric argument [ 535.204172] gfs2: can't parse mount arguments 13:51:28 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYBLOB="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"], 0x2}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:28 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x0, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:28 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:28 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, 0x0) [ 535.484943] gfs2: quota_quantum mount option requires a positive numeric argument [ 535.579692] gfs2: can't parse mount arguments [ 535.716876] gfs2: quota_quantum mount option requires a positive numeric argument [ 535.743495] gfs2: can't parse mount arguments 13:51:29 executing program 3: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) write$FUSE_WRITE(r0, &(0x7f0000000080)={0x16, 0x0, 0x5, {0x2}}, 0x18) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000000340)={{{@in=@broadcast, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in=@broadcast}}, &(0x7f0000000180)=0xe8) sendmsg$can_bcm(r0, &(0x7f0000000480)={&(0x7f0000000240)={0x1d, r2}, 0x10, &(0x7f0000000440)={&(0x7f0000000280)={0x7, 0x121, 0x8, {0x77359400}, {0x0, 0x2710}, {0x1, 0x4, 0xc16a, 0x100000000}, 0x1, @canfd={{0x3, 0x0, 0x8, 0x8}, 0x40, 0x1, 0x0, 0x0, "6e7ea282d5c11a311a9fea47483033dac340ef737d2e725933406af463745e1df4c0286115ad6d94e958125cae68e22d4fcc5fd94f4a66f7c1a1079917a3bc6d"}}, 0x80}, 0x1, 0x0, 0x0, 0x80}, 0x48001) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x20, 0x182008c8, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) fallocate(r1, 0xb, 0x8001, 0x0) ioctl$KDSKBMETA(r1, 0x4b63, &(0x7f0000000040)=0x5) 13:51:29 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f0000000180)='./file0\x00', 0xe008, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000240)="be3259899eeb3c906d86", 0xfecc}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0x0, r0, 0x45, 0x20000000000, 0x7f, 0x4}) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) 13:51:29 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x0) 13:51:29 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, 0x0) 13:51:29 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYBLOB="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"], 0x2}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:29 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x4, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:29 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, 0x0) [ 535.936648] gfs2: quota_quantum mount option requires a positive numeric argument [ 535.952725] gfs2: can't parse mount arguments [ 536.026180] FAT-fs (loop0): bogus number of reserved sectors [ 536.037464] FAT-fs (loop0): Can't find a valid FAT filesystem 13:51:29 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x5, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:29 executing program 5 (fault-call:10 fault-nth:0): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) [ 536.214816] FAT-fs (loop0): bogus number of reserved sectors [ 536.235169] FAT-fs (loop0): Can't find a valid FAT filesystem [ 536.266166] gfs2: quota_quantum mount option requires a positive numeric argument [ 536.311573] gfs2: can't parse mount arguments 13:51:29 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:29 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) fcntl$getown(r1, 0x9) 13:51:29 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x13) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0xc, &(0x7f0000000000), 0x4) [ 536.458323] gfs2: quota_quantum mount option requires a positive numeric argument [ 536.479530] gfs2: can't parse mount arguments 13:51:30 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x8, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:30 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x6, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 536.696138] gfs2: quota_quantum mount option requires a positive numeric argument 13:51:30 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x0) 13:51:30 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f023c123f3188a070") mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000000c0)) r2 = epoll_create1(0x0) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000013000/0x1000)=nil, 0x1000}, 0x1}) r3 = syz_open_dev$sndtimer(&(0x7f0000000000)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r3, 0xc0145401, &(0x7f0000013000)) ioctl$SNDRV_TIMER_IOCTL_SELECT(r3, 0xc0145401, &(0x7f0000000140)={{0x3}}) dup3(r2, r3, 0x0) dup3(r2, r1, 0x0) [ 536.783057] gfs2: can't parse mount arguments [ 536.838326] kauditd_printk_skb: 4 callbacks suppressed [ 536.838341] audit: type=1804 audit(1550065890.342:671): pid=27265 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/384/file0/file0" dev="sda1" ino=17009 res=1 13:51:30 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYBLOB="000229bd7000fcdbdf2507000000b0000500080001007564700008000100696200001c00020008000100170000000800020009000000080004000100000008000100696200003c000200080002000800000008000100170000000800040006000000080004008f0000000800010011000000080004000000000008000200010000003c0002000800020003000000080002000100000008000200f800000008000300050000000800030001000000080004000900000008000300010000003c000100380004001400010002004e20e00000020000000000000000200002000a004e21000000a6fe880000000000000000000000000101feffffff0c000500080001006962000064000700080002005f6a000008000100ff0700000c00040000000800000000000c000300020000000000000008000200060000000c0004001f000000000000000800010009000000080001000400000008000100000200000c000300080000000000000034000200"], 0x2}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:30 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) r2 = getpgid(0x0) r3 = geteuid() ioctl$DRM_IOCTL_GET_CLIENT(r1, 0xc0286405, &(0x7f0000000040)={0x80, 0x8, r2, 0x0, r3, 0x0, 0x5, 0x324}) creat(&(0x7f0000000100)='./file0\x00', 0x0) [ 536.889930] gfs2: quota_quantum mount option requires a positive numeric argument 13:51:30 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x10, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) [ 536.941704] gfs2: can't parse mount arguments [ 536.951496] audit: type=1804 audit(1550065890.342:672): pid=27341 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/384/file0/file0" dev="sda1" ino=17009 res=1 13:51:30 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x7, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:30 executing program 3: clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) setrlimit(0x7, &(0x7f0000a9cff8)) r0 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000140)='/dev/dlm_plock\x00', 0x10000, 0x0) r1 = getpgid(0x0) getsockopt$sock_cred(0xffffffffffffff9c, 0x1, 0x11, &(0x7f0000001300)={0x0, 0x0}, &(0x7f0000001340)=0xc) fstat(0xffffffffffffff9c, &(0x7f0000001380)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$sock_FIOGETOWN(0xffffffffffffff9c, 0x8903, &(0x7f0000001400)=0x0) fstat(0xffffffffffffffff, &(0x7f0000001440)={0x0, 0x0, 0x0, 0x0, 0x0}) getresgid(&(0x7f00000014c0)=0x0, &(0x7f0000001500), &(0x7f0000001540)) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000001580)={0xffffffffffffffff, 0xffffffffffffffff}) r8 = socket$l2tp(0x18, 0x1, 0x1) r9 = syz_init_net_socket$netrom(0x6, 0x5, 0x0) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f00000015c0)=0x0) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000001600)={{{@in=@multicast2, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@ipv4={[], [], @remote}}, 0x0, @in6=@mcast1}}, &(0x7f0000001700)=0xe8) r12 = getgid() r13 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000002ec0)='/dev/ptmx\x00', 0x10400, 0x0) r14 = syz_init_net_socket$netrom(0x6, 0x5, 0x0) r15 = socket$bt_cmtp(0x1f, 0x3, 0x5) r16 = openat$nullb(0xffffffffffffff9c, &(0x7f0000002f00)='/dev/nullb0\x00', 0x4000, 0x0) r17 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000002f40), 0x4) r18 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000002f80), 0x4) r19 = socket$inet6_udplite(0xa, 0x2, 0x88) r20 = socket$inet6_sctp(0xa, 0x1, 0x84) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000002fc0)={0xffffffffffffffff}) r22 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000003000)={0x0, 0xffffffffffff43b7, 0x8}, 0xc) r23 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000003040)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) r24 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000003080)='/dev/loop-control\x00', 0x14040, 0x0) r25 = openat(0xffffffffffffff9c, &(0x7f00000030c0)='./file0\x00', 0x4000, 0x4a) r26 = syz_open_dev$media(&(0x7f0000003100)='/dev/media#\x00', 0x4251, 0x80) r27 = openat$apparmor_thread_current(0xffffffffffffff9c, &(0x7f0000003140)='/proc/thread-self/attr/current\x00', 0x2, 0x0) r28 = syz_open_dev$midi(&(0x7f0000003180)='/dev/midi#\x00', 0x4, 0x204000) r29 = epoll_create(0xb95b) r30 = getpgrp(0xffffffffffffffff) lstat(&(0x7f00000031c0)='./file0\x00', &(0x7f0000003200)={0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$sock_cred(0xffffffffffffff9c, 0x1, 0x11, &(0x7f0000003280)={0x0, 0x0, 0x0}, &(0x7f00000032c0)=0xc) r33 = syz_open_dev$sndpcmc(&(0x7f0000003300)='/dev/snd/pcmC#D#c\x00', 0x3, 0x200000) r34 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r35 = syz_open_dev$sndctrl(&(0x7f0000003340)='/dev/snd/controlC#\x00', 0x40, 0x50400) r36 = openat$uhid(0xffffffffffffff9c, &(0x7f0000003380)='/dev/uhid\x00', 0x802, 0x0) r37 = syz_open_dev$media(&(0x7f00000033c0)='/dev/media#\x00', 0x1, 0x82001) ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f0000003400)=0x0) getsockopt$sock_cred(0xffffffffffffff9c, 0x1, 0x11, &(0x7f0000003440)={0x0, 0x0}, &(0x7f0000003480)=0xc) fstat(0xffffffffffffff9c, &(0x7f00000034c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) sendmmsg$unix(r0, &(0x7f0000003640)=[{&(0x7f0000000180)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f00000012c0)=[{&(0x7f0000000200)="8c451429497eeca2e85edd38e4c478972988b4a167346f83386cea8cedbebf0608e5477e126f6d448088e8e352e84dba0621bc1effba2e5b4a4ace0855b368958813a486273b0838299f37fa0e9cc2326e56fa0c056d55f6409dee1c6893ff7941e2b82e9597cbf347063594922d0073c3dda7a1ab950adfe01cfa692fd8317b42f0d97f23", 0x85}, {&(0x7f00000002c0)="9017286c4584f965f1046e38be5cf335e8facd2fc61e252e5e44564ce28ffd266bb1a23507ebf108ac87ba6a4dcf1506f77b31ffd527aefccdb083b6e5be9dba214515768449186f9198e204972964e3f84b1edebc3c1da30a10d473616fce097c8496e9488f51cc1b33f67afc79dba6859e4587719983f2f607b11d04b3998bc8e640efcc5834c2eb2d20896da7899b24d2b226883dc12276dd932ef1634adada320cd2c705cfcf9d81ce0651492d41c496f691f70e20e870da06c4bf438f5b25a093c6d46d846c14e1639f54e25f9b933d884acf65b7193f8e2becfc009313585df43779906f39e26278adecffa68ae1e90b997076248ec76e27aca6ee69f4704b345267c08e54ec2fb634f67579a648738ed29ad74d9f8e70ef0d36636d22fdd03b284e4a5de3311a8807483dab36d4a21a5334f330975722bf9695f0e9d1d79612a18c42aa9c5faa3730fafbd25eb1db07192dd75bf106e838809922ad8ec9d625728f482962d4c58532ff17d7ab265a28d9fe2bd28feed46d04078928c25b5065b1d0b8a842ae973befa51aa141f4f2842c695a53347d66555344be62990dae19d092a9fd79ab8f02741d48c0e8aed21c13dd9c2e27fd1f534f262c34f8d279ac6c84e66dac0163a7504c92ca7b7d6cd379a477f310b2280aac1d418448fa71766d0e48fce0a1f43093206b83cc7f43e9e2f53996771e29e18b1d5a432713c9cc5d82be312baf838c2667d54ab33f3f548a06cf55166891b5dd70feada246806d9d6f5d0abcf6887cf47b8b5aadc0ebeda4bb4dc49ec6e9481d9e1430f23c0936ad803566f475fec36b2c9fcfcaeed2ff427abdbeec8c38295a4a0eed6376d9484c9e273c4cf57420f7dd8d5895889705eb91b47687a72a1167c2fc3d425cc98f2fc5f0337f17a93fbbd31c901f3e8c4f3bd87fb475f2314e21ae42d5c2860968087682c9e5cc606aed7ca8a15ae52b8dd50cb04d078a800363e3eb523d6d44bc64a22f69495bf39950c801d2ba9718001e0507d864b3b281ac03e51e9262be5c9fd1d839df3ed2b17754a6dda91bad97ffaacf6a73bd352221f66b465efe8c15b0e7c50834f9ed3033d44b9b08bd0a5bc36ca3a6a105b6484c6af6306f54d20628f78a3b69f7cb300ac0cf9941e0cecb3d0226764a4a227479f40f9fb30ab42366342a87a6013e97351c459e11db47a3a723a4c32e629caa6a5995944015222566020812aa1c436c1fd0c3b436d605ace224ecc7cabde482575b4ab05565c4bf5336ee98a7a22f315aa56d3312e5771cc422f5888ba1d63fd4acbdee67b5512edb7d821b131f2a62491c81a1869d8e2396dfd173d0cd05e1041029366a300b9e1c1d351321cd0fb2027aba967997951ebb8f74be581ec9f7a1d9f0c42d0afdc9d1d6ad4a87fcefa226c6a4261284e7ebc6f9250db6469425f536b640ea57347d2aa9a8491603bfa93f6ab654f4301b9ff34d16ec05534d3c565f08436e816a76dfaada4fa705ac0694df3572aedb274baa9feb9aee9102784d4b451794b2563bd985ff07183e7ab595e478db1ef6f49619a0caa2a6d0e2c9b48f606cb1dba8a5266554d073b2efc3113fa349d38069ac2b36581f7a3bd221dd1e7d66fbb644a21c402ea8be533ad8fde3b5f8704053687aa1fa8c5e91ea4dcf6ed6606f1b1c249cf989eafd8964416c737c87dc3ab593a8993c6fa84c4985ac570ae51760e5dac1bd1c1e6844eefdbe9268bfbf0135f72fd194bdba4bdf7775ffb8fdf34227c5e3abc3f4d5015d84cbbd690f02ba5a38a2508b233db84a1051699b66ad1cedef6148c30ada17b181a29ed7112615e4098adbf6afd49606238c2bbcf4c139ed7f4222b65f47f9ec9e055731c3da8682887ce7823e035a87590a7afdc7d46c37c61d83d9cad9c0437accf428ee33414a56e6a9ef72c54d609cab002bd6daab0ca57edea8fe9c9300159eff2b682abb376b12c90bf6d52afa3b2d086f129da68691a4b572c117456cdce1acb8bf46c98181a543b778f2e0c8b3cc0d8269022464ba9ca529a18e9d281f6a140de83cb7bfc34841bdb74c9934cf9b0107bc9dfe601b96b1abe78bebb968556f0c41bb1d0dc8fead84e7db4cc645580942be2583c1892e1e693c5fea7c3a1de232cae26b5eece7d9344e95ac41313189abd1c554e936b6256b9e42671a942dd30a22043b3f83cf32bb93d7e0f8b591ccd5424131b30026c0ef177de349089e47c2358c5758a90fb7e10e7d10f08d77f61c5fcdd84f535f29310a3af2fdae1faea0104cbc57fdc0429190106de639b08335134567bf75ff8ef3057585f7a00662542006f54bfff294caae51e9cf5674a7429aea94321615ec18b3fc82318e1a627b1eeec4f231318f50605319beba2826c44c719d055b06a54acfb66d965d9844e8a15ff7bb7d5a6747cf717067dcafca80bec3e45ce5289c1130693c5c460e3f4bdb3d06ab8b52eed126235d0c9686d3d607f700bf29092c55423a1624c4290e01b3fe78ec3b2a28aac7cd4a374ca8f343a1e6fe8ffbe570c331d8faeeada4ad10880c7ae792cff29414eb8becc7eb38b82282ea150140ec5023d8c5ddb648fa8b94447729e3d1ba7da9625c5bbe075645b578b41c3c55d3abb610db95bc4be1051e192810f1a3ea4d6fc285034e17bb154e2d39abb946844c6ba7c1ef88d888945b2829704951f53ec79c7ca883cbc3561659f4758e22a9f412a73e87d4aea66a1d206c1daefe982a1c0e83db3b09172a508b268b0fb50a5a292097938bae5115f78ebcf3ec05f617101d170a425dc41bc34d6c9c395b0365e362718505dbdb33ab7afa506eaf3493e75a63778a4f7e51e881c4984f41c4b0e86b8f3aee433f921cd17981656cc0a5482302caf1d1ac7804d7623388e153c93965f569a160b6db7f58a5c2d83da22810cb0dc989afac6aad876c967e437bda20ffa4f44237f779733f90b314aec5d32c6f9f0b35c08bb8b018050057013bf6dd94df9678a139202721d7a0041589214063510cc745f7b2cb73035fc7170f8990d6dd1a312122dd19896dbd7beb0117244b9f778054adcad68ddc2a9709400dbcabe58446cb8ef9e36db29d844503b8722398ccffcaca0538f570bf7dd830a2650f0b31fbe9a928760ce3234c51469a6a9707d0440ee4645a5e4d32f37bf9fc8d9514b811a4b2e421b8986b8ece26b2b7cd32c8faad1e751d3fac11655ac7e88f6a8cf292ecca9c40ad73f5c9df922404022a496215078b04b9d6d5880ab7905cb6b9606336ba4dd7fb93e08df028233ba9ccd2196ce1759f64b58bea754fd3914c2753d7c8fa87a7b432f7e86d15a1fd7d0c3a7b150dff7174ffb9bc4103080e4294633544c13eb72904412b7fac02c428cb2b3f6be4da0626b1d28675d9bafa3b51ffb174557fbf455a952ebaab23741cc3a50569da4560049f6efd673c24efea2856c07ae0420f4db6bffb5187e9701907a38b9c1044729789eef357f1bac84db95417e0d0e91f6006626367259f65eb125a49b6fff855b0b89c69d09eb2412c868fa8cca33f8d84cf9783e8bac198093d9883d5fbc83d162e268e38c23859f6550777a0173c968a5d5b10fe85e4f61245c7fba9171a27663983aad339bb459b96b5f8b32aff1ac0adc2db7f21c7ae73c1fbbd27517d9a4497cc3b90560c85ad2fd2adf59f8cef99b4243a1f08372ef5c4b1a2551ae3096b4d8139ad1dfd0d8db7fa7dbaa72ad0eaf564267de64c2b110d8635e1bcc5161a5c8d227f49e568b9926d8cf5466433ace88910289dea850704daae5ede03062bdcd9d9aa94cb23181105dcfde24d84f0b7b31cc33b68948ef55e164b33915a144e0dc13648657e4fb07f45c5bd386549378e047c79321d1a5a80990f939c5c22bfcd7972f0b6764305447c6b941981c26d33876be8c2fde0a406e4569779cc69ae66a1c3f6766d7e8e846312cede35f0b4b26c92f0355bf1c255d241a55031064ada3341a1ebf3024441b1a5d18e260a8a86d4f16da4524c6cdac3dc18855e67f3a03ed47baf5dc22bd2a0700b733633af269a61430ddab7752980cc6abdcc9cab1a7e020797a1bae7569e6df25a917c611761cbd2210037d71a0f8546abe3a7c07d6ede0d4302e47170bcf02e94c0a9faea7d4ba2858e358cabd96e6ae5c8e837d3fe60fc2f36ad5adca3a9e586b83823c546ee4c92492f538c1beafc54c284aa74f420cb49ab28f22aa3d78aeaba5f56798d6d390d8d497aefeb29a0c45e161cbd03dd37736d6f190bf4ef8e52e2b7b8ee87249665d239e80bad56b0f41d21306b9bc48fd7ac26376481c498a6c78329aab829ad668f7422192174564175bfdea70a5d4db9831446da36a32bc4b03768ad4259e106d6065d8df7b09d273edea6f45672a3afd0d9dc14a6671ca5092eff7689f89614b99a5bafa79c38498a645a3e5e5d999c0330bfecc9970800482af7bb1804e6feaae782e300b58719c0caff0cea9a8717bd96edcfce3a85606c916a9bfc90a6bbb6c4e02f970e6ec9d85776357bd3572732be073aa079fb5a7f7d0c72f207972a24fb5ffd32bd8ceef205ba5c7263ec591f012ad047c214cd3fb7e9d1f2db6cf65ab8af280c5f9ca00417ec78f8d753a2c71fb707e5328dd370479f2ce6a1c7bd7b7249c869d3f3957ebe9091991bf0b97ee33fc40890a435e5d5d44c2fd62c2466a2854eb0b555f3bb1590eae1018e2bb53ff367dfdeacbb8aad4de22484906bd3dd95e0e9ca3f87e77005e12033105749dc4ad9f98bc91fe9ac122e5f3e35a09075dfc06b3ee0e90eb894a0397f6e0392471fbfc2767a6e393e17c7d14f93f58ec685912e6fe73a0792052bfdbaefda01ee283388d243ae244a50d4fd583eda642970b1ace6bfe3c85f32a8707840037ee296809fa282a4fd887e1097bee132dfa8e787060b37c8f62b978b74fa9e38e50b51fe6a24171d6b531c1b284485ec91f61b3a558e6ef875ff3558af001e6fdbcc286c183bf35d4afe016ac49a5ce2d753cb9175501756bca81a9e8ce2d0fe6ad64eec714f59abcea183d780e5ad3ae9d1705bae05e466ba904ac96dfa20d74d59cd28253a9f1053128e1d571b0e1c75302fdf907fa20bd1a66a51c05bf8fddaece989cf781c213f9f5f8c06b698e29132e8f82faa80e7401a18adf3ef16e1c7c7da618504e4a76c37634cc9e7e5fd78b561403318b7f02d18e622241e08160ad5a0bb345a3498726f3f4885dec1c6e05e7c1fe426f9828ccb3ea747a0070fb3413e1718c98bc911c7d5bba0078df99eda923e1cd8ec0c0957c6dc6e315ae4629e95b11f0f0c7ff2eee6b0905af8491f67ee51b4f23ed8e86b5f07b6af5c42827ec6e974dbeeda89df9b32e956bbd533bbfbc07a8604ccb5c0347d3d1bc28ea0de8d6c0a70ab97d3c91a0da5230df4f9cad381aafd3e4bb189fdf53b6c3fcd3b14a2b71ec2d3241ea4613ca5daf17b90fc81d987c2dba4283f8b87f4aabdd53c2c3715111e52135271d251f28818736f24b4535cc20e9be0d031f8a8f77017c5d1f7f189d3e066bc156747831f137c834d158a17dbf7a0bcfd21444d58129a3d6c1c401ee0d3429e7bfb0aa6b489dbf39fb58a8573e11c097750607b95360aa32b3776abad45e32e9ffa9ee57c4197849302a955f8b29981a6680f3a0f0b2041bd9954b59746254b211e982b0126e9abe730c32107491311f81ae46a7f35fa38479b7723f8a0622338405d60f489c16cf32f73cf33beb73abb870cab29593ab8ca3c9b63fd2b015433d1cc3b1e4da236886693774238a2c26b", 0x1000}], 0x2, &(0x7f0000001740)=ANY=[@ANYBLOB="20000000000000000100000002000000", @ANYRES32=r1, @ANYRES32=r2, @ANYRES32=r3, @ANYBLOB="0000000020000000000000000100000002000000", @ANYRES32=r4, @ANYRES32=r5, @ANYRES32=r6, @ANYBLOB="0000002000000200000000010000000500000040", @ANYRES32=r7, @ANYRES32=r8, @ANYRES32=r9, @ANYBLOB="0000000020000000000000000100000002000000", @ANYRES32=r10, @ANYRES32=r11, @ANYRES32=r12, @ANYBLOB='\x00\x00\x00\x00'], 0x80, 0x4}, {&(0x7f00000017c0)=@abs={0x1, 0x0, 0x4e23}, 0x6e, &(0x7f0000001c00)=[{&(0x7f0000001840)="5c7588cb6c4badbfc1eba5e808ccbb669eb264c8dc298402a29521bb680456161478c73d8b2367212c9585fd474ced8dfc5e095f5ff587ad3aa01fd1e4f232f6200c83d5a2fdcd6c6d88743d314343b6331731be4ba3641d56a0bb825140a0", 0x5f}, {&(0x7f00000018c0)="1558b4677f9d1d7a2c2d62e087fd68043d02aa0a473c5bfcd07f107728133823f7154a0958734f0935591b0f3ffd9603b041cb3a86a284c12b91a91ce5e9018d7c5aee9d7d30", 0x46}, {&(0x7f0000001940)="15ffd6", 0x3}, {&(0x7f0000001980)="03db4f8941c2d334674428bf86e567f8997d884279e3201947d5e5d8a7e76ae4df2d73b573c91d11c048d8d67bb48340b6804e1d3fbb23e10220663a59e31d1d236d6d8aed4a68ca92583f574384ae331f885d572afdfea05b138a3dd20f241d31b1b503815ccc12d53d16bb59be437f1222887d2f8647103d75f2ec61ac4d862b3e99347cad3b0192519b648ed00da078e25675e90c", 0x96}, {&(0x7f0000001a40)="5c1cf329408b09bb49eff2e31cad40af26f0393ceaf8400f0bd173d529d8ff72a933d3b1bb36f836e940902b122de300a9cc2800c5043f0089d004536040eff47e76e81fb1371e5865b5ae9ebef0ba74545678b33b412480ae97718f5b8dec97d324ab8d87651efbc5c3f566c075d046be3c565c36505f576fce7ffc11f691eba100b0cb310fc1335147c4dedce04c1b9c08b6a4e206b88716b5da49eb0b56b383b42e6583f8e033b6cb175be57d3e8ba2ef0b6093a476eee7c5bc8233d72313b5ab3b697f47f8ff6641c6f13e791ec5fe3d348df460b1b15ab873", 0xdb}, {&(0x7f0000001b40)="412190ab251a8d81ca035be098a3d23cb6ed7ad99a9e40037fe01373c6da731b759d88587a38d07404014e33cbb0aec24ef08ea8376d899d009286b63a9fa2de99e5982fbcf4a388aaa4d7e8faf8d8cc6e212d12372ac8d0aec0747564f74c3fc269fdf018158dc163485fe8c58c019be00fc663691a16d144a22d08b37c0b2c782fb2869a", 0x85}], 0x6, 0x0, 0x0, 0x840}, {&(0x7f0000001c80)=@abs={0x1, 0x0, 0x4e22}, 0x6e, &(0x7f0000002e80)=[{&(0x7f0000001d00)="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", 0x1000}, {&(0x7f0000002d00)="b08f31dc044a3eacd7b85e41f0d9f3d93ad041548d3d98b6c89e1501518b15b9f23a2571577bf10099a3babf1d22505b0faacded0592bb2f6724d36564abfb82eb5a68c22bd9f2c16f5d268a2f223b897120504df05db2a6b12a9d676758b2130c2036530a41891e32168cf7cd591285c7dd6e52cb46d5b942ba6a0dc25552315f6a435913e0c13774689ee71251a27a70c6c0f0b1e32c46d1a97301837955029f6e09fa8bc1b4644fef8a65db3659523c7eaff8b5bb539a9dfa658cea6cd87fe1b7402f61e31759d3f0e41eb5d06787f0062473ac4a8b2042df14941e", 0xdd}, {&(0x7f0000002e00)="0f35478ef49cef1828a4533489e61110931f4a3a6aaff5ce88425a7523974f88320b8beadc97ea62a33d752220fff67ecdd91918d7bc699bd0d820de74439671e79a816a933a225ee2872a7c922821d115ad", 0x52}], 0x3, &(0x7f0000003540)=[@rights={0x30, 0x1, 0x1, [r13, r14, r15, r16, r17, r18, r19, r20]}, @rights={0x18, 0x1, 0x1, [r21, r22]}, @rights={0x30, 0x1, 0x1, [r23, r24, r25, r26, r27, r28, r29]}, @cred={0x20, 0x1, 0x2, r30, r31, r32}, @rights={0x28, 0x1, 0x1, [r33, r34, r35, r36, r37]}, @cred={0x20, 0x1, 0x2, r38, r39, r40}], 0xe0}], 0x3, 0x4000004) syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1) socket$packet(0x11, 0x3, 0x300) r41 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x10800, 0x0) setsockopt$inet_tcp_buf(r41, 0x6, 0x1b, &(0x7f0000000040)="f2f0fb25be621d56495c28dc3a682195f5be6a0fbfeea10564dbe3f78e54aa49040542d3ea916b1858fe90b62370edc65b76525f9356e277aa2d92c9a6287eeb9ffea4112ec7e8415a1f843ebd02bb43b1fc5a1c38ae3769b0ffeb45a64f7537db2aa219bcd09f976f8c6c82ed63dc86ad441613c1f6bac103b75311d89757a09e958b8329e5ddd954b08ced4430bb745e8bb668dd1ddda34315e3423e21b9390e8c8daee7b4cbc66b48460fbebca0343e8715eea769299eec798efb00ba7a2832ba51ba107189461d6c21bfb8891925e0ef575d", 0xd4) 13:51:30 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4206, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) [ 537.241530] audit: type=1804 audit(1550065890.752:673): pid=27431 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/385/file0" dev="sda1" ino=17137 res=1 [ 537.270994] gfs2: quota_quantum mount option requires a positive numeric argument 13:51:30 executing program 3: getrandom(&(0x7f0000000040)=""/79, 0x4f, 0x3) prctl$PR_MCE_KILL(0x21, 0x0, 0x1) acct(&(0x7f0000000000)='./file0\x00') acct(0x0) [ 537.315648] gfs2: can't parse mount arguments 13:51:31 executing program 0: syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0x9, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0xfffffffffffffffd, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x1, 0x0, 0x369e5d84) ioctl$NBD_SET_FLAGS(r1, 0xab0a, 0x21) fallocate(r1, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) [ 537.452851] gfs2: quota_quantum mount option requires a positive numeric argument [ 537.476286] gfs2: can't parse mount arguments 13:51:31 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x9, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:31 executing program 3: r0 = syz_open_dev$usb(&(0x7f00000000c0)='/dev/bus/usb/00#/00#\x00', 0x201, 0x8001) ioctl$FS_IOC_FSGETXATTR(r0, 0xc0185500, &(0x7f0000000040)={0x0, 0x100000}) setsockopt$inet_sctp_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f0000000000)=0x4, 0x4) 13:51:31 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4207, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:31 executing program 4 (fault-call:1 fault-nth:0): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) [ 537.784314] gfs2: quota_quantum mount option requires a positive numeric argument [ 537.786058] FAULT_INJECTION: forcing a failure. [ 537.786058] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 537.850354] gfs2: can't parse mount arguments [ 537.880158] CPU: 0 PID: 27659 Comm: syz-executor.4 Not tainted 5.0.0-rc6+ #70 [ 537.887485] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 537.896837] Call Trace: [ 537.899457] dump_stack+0x172/0x1f0 [ 537.903108] should_fail.cold+0xa/0x1b [ 537.907013] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 537.912129] ? ___might_sleep+0x163/0x280 [ 537.916299] should_fail_alloc_page+0x50/0x60 [ 537.920810] __alloc_pages_nodemask+0x1a1/0x710 [ 537.925496] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 537.931047] ? __alloc_pages_slowpath+0x2900/0x2900 [ 537.936112] ? mark_held_locks+0x100/0x100 [ 537.940368] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 537.946390] alloc_pages_current+0x107/0x210 [ 537.950947] pte_alloc_one+0x1b/0x1a0 [ 537.954745] do_huge_pmd_anonymous_page+0xa7a/0x1550 [ 537.956571] audit: type=1804 audit(1550065891.392:674): pid=27651 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/386/file0/file0" dev="sda1" ino=17345 res=1 [ 537.959849] ? __lock_acquire+0x53b/0x4700 [ 537.988607] ? __thp_get_unmapped_area+0x190/0x190 [ 537.993549] ? pmd_val+0x100/0x100 [ 537.997111] __handle_mm_fault+0x2daf/0x3f20 [ 538.001542] ? vmf_insert_mixed_mkwrite+0x40/0x40 [ 538.002748] audit: type=1804 audit(1550065891.392:675): pid=27768 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/386/file0/file0" dev="sda1" ino=17345 res=1 [ 538.006396] ? find_held_lock+0x35/0x130 [ 538.006417] ? handle_mm_fault+0x322/0xb30 [ 538.006444] ? kasan_check_read+0x11/0x20 [ 538.042848] handle_mm_fault+0x43f/0xb30 [ 538.046930] __do_page_fault+0x5da/0xd60 [ 538.051041] do_page_fault+0x71/0x581 [ 538.054862] page_fault+0x1e/0x30 [ 538.058316] RIP: 0010:do_fast_syscall_32+0x139/0xc98 [ 538.063430] Code: 24 98 00 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 4f 0a 00 00 49 8b 84 24 98 00 00 00 31 db <67> 8b 08 0f 1f 00 49 8d 7c 24 20 48 b8 00 00 00 00 00 fc ff df 48 [ 538.082340] RSP: 0018:ffff888098f47f10 EFLAGS: 00010246 [ 538.087766] RAX: 000000002073bf00 RBX: 0000000000000000 RCX: ffffc9000e65f000 [ 538.095034] RDX: 1ffff110131e8ffe RSI: ffffffff8100ad2f RDI: ffff888098f47ff0 [ 538.102291] RBP: ffff888098f47f48 R08: ffff88805c5b2140 R09: 0000000000000000 [ 538.109547] R10: 0000000000000000 R11: 0000000000000000 R12: ffff888098f47f58 [ 538.116807] R13: 00007fff8dff5869 R14: ffffffff88928200 R15: ffff888098f47fd8 [ 538.124096] ? do_fast_syscall_32+0xff/0xc98 [ 538.128500] entry_SYSENTER_compat+0x70/0x7f [ 538.132892] RIP: 0023:0x7fff8dff5869 [ 538.136613] Code: Bad RIP value. [ 538.139967] RSP: 002b:000000002073bf00 EFLAGS: 00000286 ORIG_RAX: 0000000057eabc90 [ 538.147679] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 538.154935] RDX: 0000000000401560 RSI: 0000000000000000 RDI: 0000000020000000 [ 538.162197] RBP: 000000002073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 538.169453] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 13:51:31 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYBLOB="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"], 0x2}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:31 executing program 3: bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000040)={0xffffffffffffffff, 0x0, &(0x7f0000000140)}, 0x20) r0 = socket$kcm(0xa, 0x122000000003, 0x11) r1 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_UMEM_REG(r1, 0x11b, 0x4, &(0x7f0000000040)={0x0, 0x1fff, 0x800}, 0x18) r2 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/capi/capi20\x00', 0x40, 0x0) ioctl$UFFDIO_COPY(r2, 0xc028aa03, &(0x7f0000000100)={&(0x7f0000002000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x3000, 0x1}) sendmsg$kcm(r0, &(0x7f0000000000)={&(0x7f0000000040)=@nl=@unspec={0x400000000000000, 0x0, 0x0, 0x80fe}, 0x80, 0x0}, 0x0) 13:51:31 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) r2 = shmget(0x1, 0x1000, 0x54000000, &(0x7f0000ffd000/0x1000)=nil) shmctl$SHM_LOCK(r2, 0xb) creat(&(0x7f0000000100)='./file0\x00', 0x0) 13:51:31 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ubi_ctrl\x00', 0x48000, 0x0) setsockopt$RDS_GET_MR(r2, 0x114, 0x2, &(0x7f0000000300)={{&(0x7f00000013c0)=""/222, 0xde}}, 0x20) r3 = syz_open_dev$adsp(&(0x7f0000000240)='/dev/adsp#\x00', 0x4, 0x200000) r4 = syz_open_dev$admmidi(&(0x7f0000000280)='/dev/admmidi#\x00', 0x8001, 0x101000) connect$bt_l2cap(r3, &(0x7f0000000340)={0x1f, 0x800, {0x1f, 0x0, 0x7, 0x9, 0x9, 0x5}, 0x2, 0x6}, 0xe) r5 = openat$cgroup_ro(r4, &(0x7f0000001540)='c\xac\xa2\x02\a\xc5{1\xe8\x05grful\t\x00\xb9S\x11\x19\xb5\x8a\x10\x00\xa0\n\a\x94\x00s\x96jc\x03\xe5\xb0\xb5\n\x8b\xd1\x1d7\x91\xdd:\\\x01\xd9\a\xe8y\x9c?|\xc8\xe0\xf9K\x8e\xd9\xd4\x9d\x82I\xee\x14\x9a\xa8\xbam\xa1\x9a\nz\xba9]\xb1\xda\x88\xa6\xed\"\x87\xca8O\xb9\x99\xdb\xde', 0x0, 0x0) modify_ldt$read_default(0x2, &(0x7f00000003c0)=""/4096, 0x1000) write$P9_RWSTAT(r5, &(0x7f0000000040)={0xfffffffffffffd39, 0x7f, 0x1}, 0x7) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) r6 = semget$private(0x0, 0x3, 0x0) semctl$IPC_STAT(r6, 0x0, 0x2, &(0x7f00000014c0)=""/102) [ 538.176709] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 13:51:31 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) [ 538.234201] gfs2: quota_quantum mount option requires a positive numeric argument [ 538.283546] gfs2: can't parse mount arguments 13:51:31 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0adc1f023c123f3188a070") r1 = syz_open_dev$cec(&(0x7f0000000040)='/dev/cec#\x00', 0x2, 0x2) execveat(r1, &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)=[&(0x7f00000000c0)='cpuset.memory_spread_page\x00'], &(0x7f0000000240)=[&(0x7f0000000180)='user\x00', &(0x7f00000001c0)='md5sum/\x00'], 0x1400) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r3 = openat$cgroup_int(r2, &(0x7f00000003c0)='cpuset.memory_spread_page\x00', 0x2, 0x0) write$cgroup_int(r3, &(0x7f0000000200), 0x12) 13:51:31 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0xa, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:32 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) r3 = syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0xf1, 0x589400) ioctl$KDSKBLED(r3, 0x4b65, 0x31935fd9) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) [ 538.490999] audit: type=1804 audit(1550065892.002:676): pid=27779 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/387/file0/file0" dev="sda1" ino=16658 res=1 [ 538.542384] gfs2: quota_quantum mount option requires a positive numeric argument 13:51:32 executing program 3: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) clone(0x4000002102001ffb, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000040)='/proc/capi/capi20\x00', 0x2000, 0x0) ioctl$BLKRRPART(r1, 0x125f, 0x0) r2 = getpgrp(0x0) ptrace$setregset(0x4205, r2, 0x7, &(0x7f00000000c0)={&(0x7f00000001c0)="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", 0xfa}) clock_gettime(0x7, &(0x7f0000000000)) request_key(&(0x7f000000aff5)='asymmetric\x00', &(0x7f0000001ffb)={'\x00\x00\b', 0xffffffffffffffff, 0x4c00000000000000}, &(0x7f0000001fee)='R\trist\xe3cusgrVid:De', 0x0) setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000080)=0xffffffffffffffff, 0x4) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) [ 538.617488] gfs2: can't parse mount arguments [ 538.622921] audit: type=1804 audit(1550065892.022:677): pid=27779 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/387/file0/file0" dev="sda1" ino=16658 res=1 [ 538.734997] gfs2: quota_quantum mount option requires a positive numeric argument 13:51:32 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = geteuid() mount$9p_xen(&(0x7f0000000040)='$@+\\\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000180)='9p\x00', 0x0, &(0x7f0000000240)={'trans=xen,', {[{@access_uid={'access', 0x3d, r1}}, {@cache_mmap='cache=mmap'}, {@uname={'uname'}}], [{@subj_role={'subj_role', 0x3d, 'vfat\x00'}}, {@obj_type={'obj_type', 0x3d, '\x85system&'}}, {@seclabel='seclabel'}]}}) r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r2, 0x1, 0x0, 0x369e5d84) fadvise64(r0, 0x0, 0x1, 0x3) ioctl$SIOCGIFMTU(r2, 0x8921, &(0x7f00000002c0)) fallocate(r2, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) ioctl$sock_inet6_tcp_SIOCINQ(r0, 0x541b, &(0x7f0000000340)) [ 538.776781] gfs2: can't parse mount arguments 13:51:32 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0xbd, 0x1) ioctl$DRM_IOCTL_SET_UNIQUE(r1, 0x40106410, &(0x7f0000000340)={0x8f, &(0x7f00000003c0)="0b712bbc3f19934f44031e49b3951c89835004db994a8dc74b4e93851a38ca9b37c31c6747081aa7bc13efc493a8c7b035d221121209562d1ca6841d86a5f8a9758d5cf2f0175c4c6a1148d9ba502469b817d150b0c46b674d54116c31a42c89a72c946ca282cf76df28b6d4f47ac665ac750646f2a8fde1d0761379aea84dec174197b7eebf3c4992272fec8e0648"}) r2 = getpid() fcntl$dupfd(r1, 0x0, r1) rt_tgsigqueueinfo(r2, r2, 0x16, &(0x7f00000000c0)) r3 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x2000, 0x0) getsockopt$bt_sco_SCO_CONNINFO(r3, 0x11, 0x2, &(0x7f00000001c0)=""/244, &(0x7f0000000040)=0xf4) ptrace(0x10, r2) r4 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r4, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r4, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r2, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:32 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) epoll_wait(r1, &(0x7f0000000000)=[{}, {}, {}, {}, {}], 0x5, 0x0) readlinkat(r1, &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)=""/130, 0x82) 13:51:32 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYBLOB="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"], 0x2}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:32 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:32 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = accept4(r0, &(0x7f0000000000)=@ethernet={0x0, @dev}, &(0x7f00000001c0)=0x80, 0x80800) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f00000003c0)={{{@in=@local, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@local}, 0x0, @in=@remote}}, &(0x7f0000000200)=0xe8) ioctl$HCIINQUIRY(r1, 0x800448f0, &(0x7f0000000240)={r2, 0x2, 0x7, 0x1, 0x3ff, 0xfffffffffffffc00, 0x3a}) r3 = getpid() rt_tgsigqueueinfo(r3, r3, 0x16, &(0x7f00000000c0)) ptrace(0x10, r3) r4 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r4, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r4, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r3, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) [ 539.179505] gfs2: quota_quantum mount option requires a positive numeric argument [ 539.191813] audit: type=1804 audit(1550065892.702:678): pid=28031 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/388/file0/file0" dev="sda1" ino=17025 res=1 [ 539.217231] 9pnet: Could not find request transport: xen 13:51:32 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) syz_execute_func(&(0x7f0000000180)="364292642ae793f6c89c7bd6c4038922f240a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000c4c2edba4006c4817911350e000000c4a3f96172a48ac422c5aa717ae5dba77e") r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000200)='/dev/qat_adf_ctl\x00', 0x200, 0x0) getsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r1, 0x84, 0x8, &(0x7f0000000240), &(0x7f0000000280)=0x4) r2 = syz_open_procfs(0x0, &(0x7f0000000040)='net/sockstat\x00') ioctl$SNDRV_CTL_IOCTL_ELEM_LOCK(r1, 0x40405514, &(0x7f0000000380)={0xa, 0x7, 0x6, 0x6, 'syz1\x00', 0xffffffffffffffff}) ioctl$SG_SET_DEBUG(r2, 0x227e, &(0x7f0000000100)=0x1) r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x400000, 0x0) getsockname$netrom(r3, &(0x7f00000002c0)={{}, [@rose, @rose, @bcast, @default, @bcast, @rose, @rose, @netrom]}, &(0x7f0000000340)=0x48) setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r3, 0x6, 0x14, &(0x7f00000000c0)=0x2, 0x4) syz_open_dev$sndpcmc(&(0x7f0000000140)='/dev/snd/pcmC#D#c\x00', 0x400, 0x1a1100) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) [ 539.230146] gfs2: can't parse mount arguments [ 539.311434] gfs2: quota_quantum mount option requires a positive numeric argument [ 539.320149] gfs2: can't parse mount arguments 13:51:32 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000700)='/dev/dlm_plock\x00', 0x105300, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x2400, 0x7) syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000080)='/dev/rfkill\x00', 0x80, 0x0) setsockopt$ARPT_SO_SET_REPLACE(r2, 0x0, 0x60, &(0x7f0000000100)={'filter\x00', 0x7, 0x4, 0x580, 0x0, 0x280, 0x0, 0x498, 0x498, 0x498, 0x4, &(0x7f00000000c0), {[{{@arp={@broadcast, @multicast1, 0xffffffff, 0x0, @empty, {[0xff, 0x0, 0xff, 0xff, 0x0, 0xff]}, @mac=@dev={[], 0xd}, {[0xff, 0xff, 0x0, 0xff, 0xff, 0xff]}, 0x5a0, 0x860a, 0xfffffffffffffc01, 0x4, 0x8, 0x5, 'teql0\x00', 'erspan0\x00', {0xff}, {}, 0x0, 0x10}, 0xf0, 0x140}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @multicast1, @rand_addr=0x3, 0x0, 0xffffffff}}}, {{@arp={@dev={0xac, 0x14, 0x14, 0xe}, @multicast2, 0xffffffff, 0xffffff00, @mac=@local, {[0x0, 0xff, 0xff, 0xff, 0xff, 0xff]}, @mac, {[0xff, 0xff, 0x0, 0x0, 0xff, 0xff]}, 0x79, 0x3, 0x8, 0x7, 0x400, 0x9, 'bridge0\x00', 'bridge_slave_0\x00', {0xff}, {0xff}, 0x0, 0x205}, 0xf0, 0x140}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @mac=@random="cf2d335b5b04", @local, @multicast2, 0x8, 0xffffffff}}}, {{@uncond, 0xf0, 0x218}, @unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x1, 0x8000, 'system_u:object_r:apt_var_log_t:s0\x00'}}}], {{[], 0xc0, 0xe8}, {0x28}}}}, 0x5d0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 13:51:32 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x48, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:33 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) ioctl$VIDIOC_DBG_S_REGISTER(0xffffffffffffffff, 0x4038564f, &(0x7f0000000080)={{0x4, @name="b1c7a9657d1bd6efc3fe135424f19e4c0bbb59ec9f75367672ee0bbf61414d8a"}, 0x8, 0x8, 0x3ff}) fchdir(0xffffffffffffffff) r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) setsockopt$llc_int(r0, 0x10c, 0x0, &(0x7f0000000040), 0x4) fallocate(r0, 0x1, 0x0, 0x369e5d84) fallocate(r0, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) 13:51:33 executing program 5: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f00000001c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x30, 0x48, 0x6, {"10f9c079dc46d66c833d5dfb08ad53920f9ff4439e44a25bba08cea2a0db5716cccdaf5e25d7b292a2b9e87dd322bb"}}, {0x0, "3af0c328b4e8bcf4b86dd79fc09f62dccf1b1d210b027db5ebabaf1e95b632c2db42b020db67d7716ec093b3e71442e8901f428b71378eeb07ba3314d534b9cf9425f73c58cbfef024cb0e4de082fea7bcd23292071287524c13427b977d98d35c3204ab558a1e66a5fc777072646fbb00"}}, &(0x7f00000003c0)=""/180, 0xbb, 0xb4}, 0x20) r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0xec00, 0x0) ioctl$BLKROGET(r2, 0x125e, &(0x7f0000000040)) r3 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r3, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r3, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000300)=0xd7) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) [ 539.592186] gfs2: quota_quantum mount option requires a positive numeric argument 13:51:33 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYBLOB="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"], 0x2}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 539.637893] gfs2: can't parse mount arguments 13:51:33 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x8, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) ptrace$setregset(0x4205, r1, 0x1, &(0x7f0000000340)={&(0x7f00000003c0)="bc0a98c6f2639d8340e4182460b8325bdab27909b3542f48e25b3c8fdd57269ad2221174ea03e3b8d7f3b99a6853e8c822c55d045f9818f80ceedd84242d4566de3520ac0245fb70e462e21591d295af7cdb65bdd6ac3cb6d68adf61732cbe980c2ee9e4f0bcc962242e7a0c9337369efc9ddec8d76a4c78102c09", 0x7b}) r3 = syz_open_dev$dspn(&(0x7f0000000480)='/dev/dsp#\x00', 0xa6ea667, 0x404) mmap$xdp(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x2000000, 0x810, r3, 0x80000000) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) r4 = geteuid() lstat(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) getsockname$packet(r3, &(0x7f00000002c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000300)=0x14) setsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000280)={r1, r4, r5}, 0xc) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f0000000040)={0x0}) ioctl$KVM_SIGNAL_MSI(r3, 0x4020aea5, &(0x7f0000000440)={0x1, 0x10000, 0xdb, 0x5a0000}) ioctl$EVIOCSCLOCKID(r2, 0x400445a0, &(0x7f00000004c0)=0x4800) [ 539.755905] gfs2: quota_quantum mount option requires a positive numeric argument [ 539.790300] gfs2: can't parse mount arguments 13:51:33 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x100, 0x0) ioctl$TCSETAW(r0, 0x5407, &(0x7f0000000040)={0x8001, 0x2, 0x80, 0x81, 0x1a, 0x7, 0x7, 0x2, 0x2, 0x3}) r1 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r1) syz_open_pts(r1, 0x20000) r2 = request_key(&(0x7f0000000080)='rxrpc\x00', &(0x7f0000000180)={'syz', 0x0}, &(0x7f0000000280)='vfat\x00', 0xfffffffffffffffc) r3 = add_key$user(&(0x7f00000002c0)='user\x00', &(0x7f00000019c0)={'syz', 0x0}, &(0x7f0000001a00)="f987ae9372f9506e1d174fde5fd63c522a30d31f26eba364ffcfc4303786794d5e40e3e9dca5f322a1c5a781527dfb806d29825adda4b74d04f3ce75186b5b3765369d8319cbbb5eea3ec644ac680441cba30cc996def304a1f1bcdc22eb0514783b943975b54f33472c03fb4427a21190ee52c537ad2cd3eaffc52fc70cb042193af5db7e2e727a095b45564f98fac18b28e7ab31b5d9cf7b217aafddda57c536cc8ab94b647f5741df6ab98fe8900f09718f1831a61561247e1238", 0xbc, 0x0) keyctl$instantiate_iov(0x14, r2, &(0x7f0000001940)=[{&(0x7f0000000340)="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", 0x1000}, {&(0x7f0000001340)="e7af9e9e880f5e74feae4f0d8f250e1c922496ebeb477e7b9acc7f55b5928ff7bf36f7b958127f24375d457712c72ac1b617effb3e3ef1b5ec88096efa2f5a2ddf3c3a6074c0", 0x46}, {&(0x7f00000013c0)="51e0ee18fbb8546419704525f5f14af9a46e9b5a5b2c8f59dd0a24a8b524bdf33eff9f2aba6f167880ff3a7e0c83bc6dd38d1878e0fb1895ce55ffdcca398a737eee09d29520882fbd13fba699b6a48126058ac950bd127f62e38d7821cd5f3a92457e27fb86fbf55c68914619230df64f566ebb6ed06e4ac1a34bcb6e2d2622396e108334b3edbae9777d143c8522a1e721fc6a9987696b4544de080a55cb535c2589f84507794a5d04a589486d02e4525f00769fb225d2e912df4c21591d2d5b0ffd5d9e78aecdac8e3924b127981b0ae431908d3cf5ec95bed171aa22683c2e8ada35db1abf9d442a", 0xea}, {&(0x7f00000014c0)="5be9f06fea51af616ed296d255f81b5efb60d2e85092bc752ba1e1da57bf0feca86344d7ea4f585aed6c3e08d8d3a38ffdb789e7edc600bd09a1da64279c2d6b0b132ab1609034667d498bb97e46c1cc46b176735e4a0e4c6771f46cf4865717de89cf98c513e74201110e95cc98c204a113093422dc903ddbcacedb5451562bb168e994481a5655f35a6919add828b54c84e1bc2883ab600eca5145582e7e604635ddf38c9d1126fa32e1368ecd", 0xae}, {&(0x7f0000001580)="424979cc540347ba2a9107a9fd1cfb1ebc6618980980178fea360dd2b1efe1a4b73a2b043631a487ddb1742ebb533aa0b2a094374610fefba69f6d0a60b399f8e14f96b2e0978e063a44201e41d4c34534a1fedb62c037b74af052f6e7f04aa5c624a20d58fa03cd0d2f37bbde08025ee267b531fdb0dbbc13507f78dfcf6d61a61294e5797566767f91d5f3c41b220a9884093ca35990b5c9d8d11d80aead9043716f2873575f2833617bb4bc85b28233397fe2587a697a47ad2ecd6846bf63c8dab087dd0e9f97652a7fdaf28db44f9ab878d07c38bdcc34a7d800fd067be9", 0xe0}, {&(0x7f0000001680)="3473d4c66c6cda68532be5ac72b9586ed5a164a778a498a74534f9b8ebb9b4cbfd5f3332ae29f0f43135670b5161684e0496a4c159398c7595211fe95b584eac97c004071384479f9e19ca12ef9a079199c0a50113d29f55bff9298160c3ec0ea4ba7ac3ebb68f16eb1f9c38bc99c970931d7a1ff8728088fe274b298f9991c688d3a7c7b102a7f5f77f2f5d4c891983a384f8ac289ff74216080061208b3d77b28e9b288a89bfdfb99d90f6057cb1f7c67507b25c631550a6646f3e8a47c60fe3717e744f520d027d252e0a9680b35bc1d7d4c632bf05b774d01b8012541c89129fcea60a5b2205ee", 0xe9}, {&(0x7f0000001780)="23a8a0c400df37fb0cd66e03537e818b6cd881a63ed03a415ea698cf752e68128e1455077969da5210f72558af15f82c5de82db6b9e3eecc196d108d2e9c4bd741ba5279dee4a13543bdbebd8df439081f5b968a2b94d37f8b2815e1c6eb4dd05244ed97c6ee15f8617c9ef478c7ce1797d05730144520b3cc6518f7843e5a6fb73db678acb6e174f6cdec1de440cb7c7a051396c497643449897a29861b2269e6f5b12ad008ea37b2e80f79a7e761d31586b51ebad4297f8ada1325fd6a42a113c01f75bdc28d97ce29f7ca3f6c3789d8551364d85e030deda08333917b28b4732c45a271a4a935be40a503ea6d6f", 0xef}, {&(0x7f0000001880)="23c0b4bbdba1d461f6c1957cd379637a0a4d87c27a8ab95bdb9be4be49b696353d853d7546ad7b9eab61c86ea18c23f0e2be499860ef0b3778b64f24dbf955ff847e7ad1c802857173da1534c77a5f9768100e344d6914c69bddf5755cafa01b6ad957ec84399b6e3c99af1ba988a3d7d367076451a0b4330015decd663774f92d210a9bb481643be4f21f5d7341d1ef3f2cd279ed9957650d5d2c7df645286b09b3d7e0e8909ee7c11e524b4b1ddee354172c6958be6ed5fe0f", 0xba}], 0x8, r3) r4 = creat(&(0x7f0000000240)='./file0\x00', 0x100) fallocate(r4, 0x1, 0x0, 0x369e5d84) fallocate(r4, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) 13:51:33 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) epoll_wait(r1, &(0x7f0000000000)=[{}, {}, {}, {}, {}], 0x5, 0x0) readlinkat(r1, &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)=""/130, 0x82) 13:51:33 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x4c, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 540.069389] Unknown ioctl 21511 13:51:33 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) r2 = syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0x9, 0x400000) ioctl$PPPIOCGFLAGS1(r2, 0x8004745a, &(0x7f0000000040)) ptrace(0x10, r1) r3 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r3, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r3, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) [ 540.133778] gfs2: quota_quantum mount option requires a positive numeric argument [ 540.156910] gfs2: can't parse mount arguments [ 540.275363] gfs2: quota_quantum mount option requires a positive numeric argument [ 540.318934] Unknown ioctl 21511 [ 540.332217] gfs2: can't parse mount arguments 13:51:33 executing program 4: r0 = syz_open_dev$swradio(&(0x7f0000000080)='/dev/swradio#\x00', 0x0, 0x2) ioctl$TUNSETVNETHDRSZ(r0, 0x400454d8, &(0x7f00000000c0)=0x7fffffff) socketpair$unix(0x1, 0x4, 0x0, &(0x7f0000000000)) syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") [ 540.348740] audit: type=1804 audit(1550065893.852:679): pid=28457 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/390/file0/file0" dev="sda1" ino=17234 res=1 13:51:33 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x60, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 540.486372] audit: type=1804 audit(1550065893.852:680): pid=28457 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/390/file0/file0" dev="sda1" ino=17234 res=1 13:51:34 executing program 0: pipe(&(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$VIDIOC_ENUMAUDIO(r0, 0xc0345641, &(0x7f00000002c0)={0x401, "4f1d4347dfdd84e4ede0421309f89b6e2cf3df54f0a0760c37f2b42416ae7f69", 0x1, 0x1}) syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r1 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r1) r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r2, 0x1, 0x0, 0x369e5d84) fallocate(r2, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) r3 = getpgid(0x0) sendmsg$nl_netfilter(r2, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000180)={&(0x7f0000000080)={0x1c, 0x4, 0xf, 0x300, 0x70bd2b, 0x25dfdbfe, {0x7, 0x0, 0x5}, [@typed={0x8, 0x18, @pid=r3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x20040000) 13:51:34 executing program 5: setxattr$security_smack_transmute(&(0x7f0000000640)='./file0/file0\x00', &(0x7f0000000680)='security.SMACK64TRANSMUTE\x00', &(0x7f00000006c0)='TRUE', 0x4, 0x2) r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000700)='/dev/snapshot\x00', 0x208000, 0x0) ioctl$SG_NEXT_CMD_LEN(r1, 0x2283, &(0x7f0000000740)=0xf9) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = openat$vsock(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/vsock\x00', 0x80, 0x0) r3 = geteuid() stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) fchownat(r2, &(0x7f0000000200)='./file0\x00', r3, r4, 0x1d00) r5 = getpid() rt_tgsigqueueinfo(r5, r5, 0x16, &(0x7f00000000c0)) r6 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x400000, 0x0) stat(&(0x7f0000000280)='./file0\x00', &(0x7f00000005c0)) setsockopt$inet6_mtu(r6, 0x29, 0x17, &(0x7f0000000040)=0x3, 0x4) ptrace(0x10, r5) r7 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r7, &(0x7f0000000380)='`', 0x1) recvmsg$kcm(r6, &(0x7f0000001e80)={&(0x7f0000000780)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @broadcast}}}, 0x80, &(0x7f0000001cc0)=[{&(0x7f0000000800)=""/76, 0x4c}, {&(0x7f0000000880)=""/153, 0x99}, {&(0x7f0000000940)=""/68, 0x44}, {&(0x7f00000009c0)=""/237, 0xed}, {&(0x7f0000000ac0)=""/4096, 0x1000}, {&(0x7f0000001ac0)=""/8, 0x8}, {&(0x7f0000001b00)=""/109, 0x6d}, {&(0x7f0000001b80)=""/54, 0x36}, {&(0x7f0000001bc0)=""/84, 0x54}, {&(0x7f0000001c40)=""/83, 0x53}], 0xa, &(0x7f0000001d80)=""/215, 0xd7}, 0x1) ioctl$SNDRV_CTL_IOCTL_ELEM_REPLACE(r2, 0xc1105518, &(0x7f0000000480)={{0x1, 0x6, 0xfffffffffffffe61, 0x6, '\x00', 0x5}, 0x4, 0x100, 0x80000001, r5, 0x4, 0x3ff, 'syz1\x00', &(0x7f00000003c0)=['/dev/vsock\x00', '/dev/vsock\x00', '/dev/qat_adf_ctl\x00', '-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8('], 0x9d, [], [0x2, 0x1ff, 0x0, 0x7000000000000]}) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r7, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r5, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:34 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYBLOB="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"], 0x2}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:34 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x68, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:34 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x6c, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:34 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYBLOB="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"], 0x2}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:34 executing program 4: socketpair$unix(0x1, 0xfffffffffffffffe, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) [ 542.134515] device bridge_slave_1 left promiscuous mode [ 542.144964] bridge0: port 2(bridge_slave_1) entered disabled state [ 542.164583] kauditd_printk_skb: 1 callbacks suppressed [ 542.164599] audit: type=1804 audit(1550065895.662:682): pid=28655 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/391/file0/file0" dev="loop0" ino=160 res=1 [ 542.234542] device bridge_slave_0 left promiscuous mode [ 542.244143] bridge0: port 1(bridge_slave_0) entered disabled state [ 542.255183] audit: type=1804 audit(1550065895.662:683): pid=28677 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/391/file0/file0" dev="loop0" ino=160 res=1 [ 542.523841] device hsr_slave_1 left promiscuous mode [ 542.575516] device hsr_slave_0 left promiscuous mode [ 542.635327] team0 (unregistering): Port device team_slave_1 removed [ 542.677674] team0 (unregistering): Port device team_slave_0 removed [ 542.715277] bond0 (unregistering): Releasing backup interface bond_slave_1 [ 542.779643] bond0 (unregistering): Releasing backup interface bond_slave_0 [ 542.886839] bond0 (unregistering): Released all slaves 13:51:36 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) epoll_wait(r1, &(0x7f0000000000)=[{}, {}, {}, {}, {}], 0x5, 0x0) readlinkat(r1, &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)=""/130, 0x82) 13:51:36 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x74, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:36 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x15, 0x2, 0x15) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e22, 0x5, @dev={0xfe, 0x80, [], 0x10}, 0x401}, 0x1c) 13:51:36 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYBLOB="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"], 0x2}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:36 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x3) fallocate(r1, 0x1, 0x0, 0x369e5d84) getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x3, 0x30}, &(0x7f0000000080)=0xc) setsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000000340)={0xbb28, 0x2, 0x2, 0x80000001, 0x18000000000, 0x80000000, 0x401, 0xffff, r2}, 0x20) setsockopt$inet_sctp_SCTP_RESET_STREAMS(r1, 0x84, 0x77, &(0x7f0000000400)=ANY=[@ANYRES32=r2, @ANYBLOB="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"], 0x10) fallocate(r1, 0x0, 0x0, 0xea5f) r3 = creat(&(0x7f00000003c0)='./file0\x00', 0x800000000005) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000240)='/dev/autofs\x00', 0x0, 0x0) getsockopt$inet_sctp_SCTP_GET_ASSOC_NUMBER(r4, 0x84, 0x1c, &(0x7f0000000280), &(0x7f00000002c0)=0x4) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r0) 13:51:36 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x7a, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 543.535332] audit: type=1804 audit(1550065897.042:684): pid=28690 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/392/file0/file0" dev="sda1" ino=17489 res=1 [ 543.602134] audit: type=1804 audit(1550065897.072:685): pid=28712 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/392/file0/file0" dev="sda1" ino=17489 res=1 [ 544.054229] IPVS: ftp: loaded support on port[0] = 21 [ 544.198889] chnl_net:caif_netlink_parms(): no params data found [ 544.275053] bridge0: port 1(bridge_slave_0) entered blocking state [ 544.286287] bridge0: port 1(bridge_slave_0) entered disabled state [ 544.296417] device bridge_slave_0 entered promiscuous mode [ 544.308471] bridge0: port 2(bridge_slave_1) entered blocking state [ 544.317532] bridge0: port 2(bridge_slave_1) entered disabled state [ 544.329853] device bridge_slave_1 entered promiscuous mode [ 544.368563] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 544.385252] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 544.421360] team0: Port device team_slave_0 added [ 544.427923] team0: Port device team_slave_1 added [ 544.493376] device hsr_slave_0 entered promiscuous mode [ 544.540416] device hsr_slave_1 entered promiscuous mode [ 544.608805] bridge0: port 2(bridge_slave_1) entered blocking state [ 544.615285] bridge0: port 2(bridge_slave_1) entered forwarding state [ 544.621987] bridge0: port 1(bridge_slave_0) entered blocking state [ 544.628377] bridge0: port 1(bridge_slave_0) entered forwarding state [ 544.677313] 8021q: adding VLAN 0 to HW filter on device bond0 [ 544.691488] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 544.699148] bridge0: port 1(bridge_slave_0) entered disabled state [ 544.707135] bridge0: port 2(bridge_slave_1) entered disabled state [ 544.715560] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 544.734391] 8021q: adding VLAN 0 to HW filter on device team0 [ 544.745275] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 544.753613] bridge0: port 1(bridge_slave_0) entered blocking state [ 544.760030] bridge0: port 1(bridge_slave_0) entered forwarding state [ 544.781486] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 544.789143] bridge0: port 2(bridge_slave_1) entered blocking state [ 544.795567] bridge0: port 2(bridge_slave_1) entered forwarding state [ 544.803666] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 544.813464] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 544.820967] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 544.832880] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 544.845362] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 544.856489] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 544.863761] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 544.896269] 8021q: adding VLAN 0 to HW filter on device batadv0 13:51:41 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) fallocate(r2, 0x20, 0x611, 0x0) sendto$inet(r0, &(0x7f00000001c0)="f4ab51929b526cebf998ab5baef818e9100ddbae5d6ee282a682f4b087fe92e73548c6d6f7bd6e740f7dce5bc2e102f81ab5b129775a95e38a3245d5ee81df513deb1f5aafa6446e0ba91070f3d794d05d2e7b8c25015abc394dae1399f6eecbd881cfc4125e53ebbbb1e198f58bc0b75cf08c373e0f3ce12a6915ae008af1237e158e05940eaa00a363124829f5e4a6f42ae200e5bbbec773e711093a4561ff8c71bf4bc816c24cfef73a07f2d6b8a5f63bd821e0fa4a8e73a44267c6812fa79530cad592e05f9115f24d6c85585e42e45772440b0d6672200420c4", 0xdc, 0x20000001, &(0x7f0000000000)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x17}}, 0x10) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) r3 = syz_open_dev$usbmon(&(0x7f0000000040)='/dev/usbmon#\x00', 0x8, 0x80) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(0xffffffffffffff9c, 0x84, 0x22, &(0x7f0000000300)={0x1, 0x1, 0xe5, 0xfffffffffffeffff, 0x0}, &(0x7f0000000340)=0x10) setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r3, 0x84, 0x18, &(0x7f00000003c0)={r4, 0x5}, 0x8) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:41 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYBLOB="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"], 0x2}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:41 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) open_by_handle_at(r0, &(0x7f0000000340)={0x1008, 0x2, "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"}, 0x0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) ioctl$VIDIOC_G_STD(r1, 0x80085617, &(0x7f0000000280)) fallocate(r1, 0x1, 0x0, 0x369e5d84) fallocate(r1, 0x0, 0x0, 0xea5f) creat(&(0x7f0000000100)='./file0\x00', 0x0) 13:51:41 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x300, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:41 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = syz_open_dev$radio(&(0x7f0000000080)='/dev/radio#\x00', 0x0, 0x2) ioctl$sock_bt_hidp_HIDPCONNADD(r2, 0x400448c8, &(0x7f0000000180)={r1, r0, 0x2, 0x2d8, &(0x7f00000000c0)="075af35c31f322f747612a6b436100e3d285016a4fdc73cc40044a723cbf28215869bdd1f5bdb323c87daaa7d9a34473072776f41b0d2d23638fe011708417a2ba33e6712886c57c0d62359bee4e374fd435fd36b120144bb0ba92f46c3e92dcae86f97f0f7be23b9d08df7f39ec5e4741e5bdcb88a7241c85797c6f98964a526db14123774bcfde136b1f7c06ca9d50ff", 0x9, 0x0, 0x40763, 0x3, 0x40, 0x2, 0x8, 'syz1\x00'}) setsockopt$IP_VS_SO_SET_DEL(r2, 0x0, 0x484, &(0x7f0000000600)={0x0, @dev={0xac, 0x14, 0x14, 0x16}, 0x4e22, 0x4, 'none\x00', 0x8, 0x7, 0x76}, 0x2c) r3 = pkey_alloc(0x0, 0x0) pkey_mprotect(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x2000000, r3) ioctl$SIOCX25SSUBSCRIP(r2, 0x89e1, &(0x7f00000002c0)={'ip6gretap0\x00', 0x2, 0x8}) ioctl$VIDIOC_S_SELECTION(r2, 0xc040565f, &(0x7f00000003c0)={0x0, 0x0, 0x2, {0x2, 0x3, 0x8, 0x2}}) bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000400)={r2, r2, 0x2eef25abc38ccee4, 0x2}, 0x10) syz_open_dev$sndpcmp(&(0x7f0000000480)='/dev/snd/pcmC#D#p\x00', 0x1, 0x0) syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") write$P9_RRENAMEAT(r2, &(0x7f0000000500)={0x7, 0x4b, 0x1}, 0x7) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f00000005c0)={0x80000000, 0x103, 0x3, 0x8, 0x7fff}) write$P9_RREMOVE(r2, &(0x7f00000004c0)={0x7, 0x7b, 0x1}, 0x7) setsockopt$X25_QBITINCL(r2, 0x106, 0x1, &(0x7f0000000440), 0x4) write$P9_RATTACH(r2, &(0x7f0000000240)={0x14, 0x69, 0x1, {0x10, 0x0, 0x2}}, 0x14) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000580)={r2, 0x28, &(0x7f0000000540)}, 0x10) ioctl$KDGETKEYCODE(r2, 0x4b4c, &(0x7f0000000280)={0x6, 0x6}) 13:51:41 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) epoll_wait(r1, &(0x7f0000000000)=[{}, {}, {}, {}, {}], 0x5, 0x0) readlinkat(r1, &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)=""/130, 0x82) [ 548.006686] gfs2: quota_quantum mount option requires a positive numeric argument [ 548.067739] gfs2: can't parse mount arguments [ 548.133152] audit: type=1804 audit(1550065901.642:686): pid=28749 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/393/file0/file0" dev="sda1" ino=16605 res=1 [ 548.176813] gfs2: quota_quantum mount option requires a positive numeric argument [ 548.219413] gfs2: can't parse mount arguments [ 548.245283] audit: type=1804 audit(1550065901.642:687): pid=28758 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/393/file0/file0" dev="sda1" ino=16605 res=1 13:51:41 executing program 0: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000040)='/dev/dsp#\x00', 0xc011, 0x2000) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000000340)={{{@in=@loopback, @in=@multicast2}}, {{@in6}, 0x0, @in6=@initdev}}, &(0x7f0000000080)=0xe8) r1 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r1) r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r2, 0x1, 0x0, 0x369e5d84) fallocate(r2, 0x0, 0x0, 0xea5f) ioctl$VT_RESIZE(r0, 0x5609, &(0x7f0000000100)={0x6, 0x5, 0x80000001}) 13:51:41 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x500, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 548.296751] audit: type=1804 audit(1550065901.722:688): pid=28768 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/393/file0/file0" dev="sda1" ino=16605 res=1 [ 548.486278] gfs2: quota_quantum mount option requires a positive numeric argument [ 548.535021] gfs2: can't parse mount arguments [ 548.628974] gfs2: quota_quantum mount option requires a positive numeric argument [ 548.654028] gfs2: can't parse mount arguments 13:51:42 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x600, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:42 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000200)='/dev/btrfs-control\x00', 0x400000, 0x0) r4 = syz_genetlink_get_family_id$tipc(&(0x7f0000000280)='TIPC\x00') sendmsg$TIPC_CMD_GET_MEDIA_NAMES(r3, &(0x7f00000003c0)={&(0x7f0000000240), 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x1c, r4, 0x204, 0x70bd2a, 0x25dfdbfc, {}, [""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x800) 13:51:42 executing program 4: r0 = dup3(0xffffffffffffff9c, 0xffffffffffffffff, 0x80000) ioctl$FIGETBSZ(r0, 0x2, &(0x7f0000000140)) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dlm_plock\x00', 0x20000, 0x0) getsockopt$inet_mtu(r0, 0x0, 0xa, &(0x7f0000000100), &(0x7f0000000180)=0x4) syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) [ 548.806847] gfs2: quota_quantum mount option requires a positive numeric argument [ 548.826530] gfs2: can't parse mount arguments 13:51:42 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYBLOB="000229bd7000fcdbdf2507000000b0000500080001007564700008000100696200001c00020008000100170000000800020009000000080004000100000008000100696200003c000200080002000800000008000100170000000800040006000000080004008f0000000800010011000000080004000000000008000200010000003c0002000800020003000000080002000100000008000200f800000008000300050000000800030001000000080004000900000008000300010000003c000100380004001400010002004e20e00000020000000000000000200002000a004e21000000a6fe880000000000000000000000000101feffffff0c000500080001006962000064000700080002005f6a000008000100ff0700000c00040000000800000000000c000300020000000000000008000200060000000c0004001f000000000000000800010009000000080001000400000008000100000200000c0003000800000000000000340002000800020005000000040004000400040004000400080002000100000008000100d213000008000100f50e00000400"], 0x2}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 548.907727] gfs2: quota_quantum mount option requires a positive numeric argument [ 548.921372] gfs2: can't parse mount arguments 13:51:42 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x700, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 549.128122] gfs2: quota_quantum mount option requires a positive numeric argument [ 549.145896] gfs2: can't parse mount arguments [ 549.221957] gfs2: quota_quantum mount option requires a positive numeric argument [ 549.257343] gfs2: can't parse mount arguments 13:51:42 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x900, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:42 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYBLOB="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"], 0x2}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 549.500863] gfs2: quota_quantum mount option requires a positive numeric argument [ 549.540041] gfs2: can't parse mount arguments [ 549.575657] audit: type=1804 audit(1550065903.082:689): pid=28784 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/394/file0/file0" dev="loop0" ino=161 res=1 [ 549.607044] audit: type=1800 audit(1550065903.082:690): pid=28784 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed comm="syz-executor.0" name="file0" dev="loop0" ino=161 res=0 [ 549.633160] audit: type=1804 audit(1550065903.112:691): pid=28821 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir008473947/syzkaller.DjQfzm/394/file0/file0" dev="loop0" ino=161 res=1 [ 549.678459] gfs2: quota_quantum mount option requires a positive numeric argument 13:51:43 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") r1 = socket$l2tp(0x18, 0x1, 0x1) fcntl$getflags(r0, 0x409) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000080)={0x0, r0, 0x7fff, 0x3f, 0x225f, 0xfff}) [ 549.724609] gfs2: can't parse mount arguments 13:51:43 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) r3 = syz_open_dev$vbi(&(0x7f0000000000)='/dev/vbi#\x00', 0x1, 0x2) r4 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mixer\x00', 0x200000, 0x0) openat$vsock(0xffffffffffffff9c, &(0x7f0000000200)='/dev/vsock\x00', 0x2000, 0x0) ioctl$KVM_IRQFD(r0, 0x4020ae76, &(0x7f00000001c0)={r3, 0x9, 0x7fffffff, r4}) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000040)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) [ 550.138280] FAT-fs (loop0): error, fat_free_clusters: deleting FAT entry beyond EOF [ 550.146408] FAT-fs (loop0): Filesystem has been set read-only 13:51:44 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) epoll_wait(r1, &(0x7f0000000000)=[{}, {}, {}, {}, {}], 0x5, 0x0) 13:51:44 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0xa00, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:44 executing program 0: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYBLOB="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"], 0x2}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:44 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYBLOB="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"], 0x2}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:44 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000080)='/dev/rtc0\x00', 0x8201, 0x0) getsockopt$IP6T_SO_GET_INFO(r1, 0x29, 0x40, &(0x7f00000000c0)={'filter\x00'}, &(0x7f0000000140)=0x54) 13:51:44 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vcs\x00', 0x200000, 0x0) ioctl$KDGKBENT(r1, 0x4b46, &(0x7f0000000280)={0x4, 0xfff, 0x9}) r2 = getpid() rt_tgsigqueueinfo(r2, r2, 0x16, &(0x7f00000000c0)) ptrace(0xffffffffffffffff, r2) r3 = memfd_create(&(0x7f00000001c0)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\x81\xaa~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0fN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(\xc6\x8e\xb8\xae\x1f\x80\xea\x06\xe6\x0e\x7f&\x8c\xb2\xe0\xac9FL=\x0eP\x14\xfb\v1\x00\x00\x00\x00\x00\x00', 0x0) write(r3, &(0x7f0000000380)='`', 0x1) setsockopt$IP_VS_SO_SET_EDIT(r0, 0x0, 0x483, &(0x7f0000000300)={0x527396c6ab6308ec, @dev={0xac, 0x14, 0x14, 0x2a}, 0x4e20, 0x1, 'fo\x00', 0x11, 0x6, 0x4b}, 0x2c) mmap(&(0x7f0000003000/0x3000)=nil, 0x3000, 0x4, 0x1010, r3, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r2, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) r4 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x408000, 0x0) setsockopt$inet6_opts(r4, 0x29, 0x39, &(0x7f0000000040)=@dstopts={0x2e, 0x2, [], [@pad1, @enc_lim={0x4, 0x1, 0xcc3}, @padn={0x1, 0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}]}, 0x18) [ 550.988352] gfs2: quota_quantum mount option requires a positive numeric argument [ 550.996368] gfs2: can't parse mount arguments [ 551.075627] gfs2: quota_quantum mount option requires a positive numeric argument [ 551.086664] IPVS: set_ctl: invalid protocol: 2284 172.20.20.42:20000 [ 551.104629] gfs2: can't parse mount arguments 13:51:44 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0xf1a, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 551.313202] gfs2: quota_quantum mount option requires a positive numeric argument [ 551.364990] gfs2: can't parse mount arguments [ 551.438799] gfs2: quota_quantum mount option requires a positive numeric argument [ 551.519803] gfs2: can't parse mount arguments 13:51:45 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x1020, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:45 executing program 0: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYBLOB="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"], 0x2}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:45 executing program 4: socketpair$unix(0x1, 0x7, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 13:51:45 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)={0x0, 0x7fffffff, 0x6}) r2 = syz_open_dev$mice(&(0x7f0000000280)='/dev/input/mice\x00', 0x0, 0x80800) ioctl$PERF_EVENT_IOC_DISABLE(r2, 0x2401, 0xe0) getsockopt$TIPC_CONN_TIMEOUT(r2, 0x10f, 0x82, &(0x7f0000000480), &(0x7f00000004c0)=0x4) write$binfmt_script(r0, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x15d) ptrace(0x10, r1) r3 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r3, &(0x7f0000000380)='`', 0x1) r4 = syz_open_dev$vcsa(&(0x7f0000000240)='/dev/vcsa#\x00', 0x3, 0x8000) socket$inet(0x2, 0x800, 0x2) r5 = geteuid() socket$nl_netfilter(0x10, 0x3, 0xc) fstat(r3, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) write$P9_RGETATTR(r4, &(0x7f00000003c0)={0xa0, 0x19, 0x1, {0x810, {0x4a, 0x2, 0x2}, 0x140, r5, r6, 0x9, 0x1, 0x8000, 0xffffffffffffff50, 0x0, 0x0, 0x6, 0x6, 0x5, 0x4d, 0x2, 0x5, 0x1, 0x2, 0x9}}, 0xa0) write$P9_RCREATE(r4, &(0x7f0000000500)={0x18, 0x73, 0x1, {{0x2, 0x2, 0x5}, 0x3}}, 0x18) readahead(r4, 0x9, 0x5) r7 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x16100, 0x0) getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000040)={0x0, @initdev, @initdev}, &(0x7f00000001c0)=0xc) write$FUSE_NOTIFY_STORE(r4, &(0x7f00000007c0)=ANY=[@ANYBLOB="2b00000004000000000000000e0000000000000000000000020000000000000003000000000000000000005d2c1ed56ae60c996f1044fbb5732517129b4212a1899bd836d9215993795dfef20625133ad26a0e19c3a21f509517dc1da5334d721a649cdfa045f0affaba2c798d3bc5ca0c7210fff68326fd2ff191ec43ea10d747871fbe948e0ca3"], 0x2b) bind$packet(r7, &(0x7f0000000200)={0x11, 0xf7, r8, 0x1, 0x80000000, 0x6, @broadcast}, 0x14) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r3, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r7, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:45 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYBLOB="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"], 0x2}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 551.823118] IPVS: set_ctl: invalid protocol: 2284 172.20.20.42:20000 13:51:47 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) 13:51:47 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x1a0f, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:47 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYBLOB="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"], 0x2}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:47 executing program 0: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYBLOB="000229bd7000fcdbdf2507000000b0000500080001007564700008000100696200001c00020008000100170000000800020009000000080004000100000008000100696200003c000200080002000800000008000100170000000800040006000000080004008f0000000800010011000000080004000000000008000200010000003c0002000800020003000000080002000100000008000200f800000008000300050000000800030001000000080004000900000008000300010000003c000100380004001400010002004e20e00000020000000000000000200002000a004e21000000a6fe880000000000000000000000000101feffffff0c000500080001006962000064000700080002005f6a000008000100ff0700000c00040000000800000000000c000300020000000000000008000200060000000c0004001f000000000000000800010009000000080001000400000008000100000200000c000300080000000000000034000200"], 0x2}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:47 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(r0, 0x84, 0x74, &(0x7f0000000080)=""/203, &(0x7f0000000180)=0xcb) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 13:51:47 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) r3 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000700)='/dev/mixer\x00', 0x100, 0x0) r4 = syz_genetlink_get_family_id$team(&(0x7f0000000040)='team\x00') getsockopt$inet_pktinfo(r3, 0x0, 0x8, &(0x7f0000000240)={0x0, @local, @remote}, &(0x7f0000000280)=0xc) getsockname$packet(r3, &(0x7f00000006c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000780)=0x14) getpeername$packet(r3, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f00000008c0)=0x14) getsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000900)={{{@in=@initdev, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@ipv4={[], [], @remote}}, 0x0, @in=@loopback}}, &(0x7f0000000a00)=0xe8) ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000a40)={'vcan0\x00', r5}) getsockopt$inet6_IPV6_IPSEC_POLICY(r3, 0x29, 0x22, &(0x7f0000000a80)={{{@in6=@dev, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@dev}, 0x0, @in=@remote}}, &(0x7f0000000b80)=0xe8) getsockopt$inet_mreqn(r3, 0x0, 0x0, &(0x7f0000000bc0)={@broadcast, @loopback, 0x0}, &(0x7f0000000c00)=0xc) recvmmsg(r0, &(0x7f0000008dc0)=[{{&(0x7f0000000c40)=@can, 0x80, &(0x7f0000001000)=[{&(0x7f0000000cc0)=""/156, 0x9c}, {&(0x7f0000000d80)=""/197, 0xc5}, {&(0x7f0000000e80)=""/56, 0x38}, {&(0x7f0000000ec0)=""/126, 0x7e}, {&(0x7f0000000f40)=""/39, 0x27}, {&(0x7f0000000f80)=""/111, 0x6f}], 0x6, &(0x7f0000001080)=""/46, 0x2e}, 0x92fb}, {{&(0x7f00000010c0)=@ipx, 0x80, &(0x7f0000002640)=[{&(0x7f0000001140)=""/150, 0x96}, {&(0x7f0000001200)=""/4, 0x4}, {&(0x7f0000001240)=""/75, 0x4b}, {&(0x7f00000012c0)=""/191, 0xbf}, {&(0x7f0000001380)=""/4096, 0x1000}, {&(0x7f0000002380)=""/192, 0xc0}, {&(0x7f0000002440)=""/222, 0xde}, {&(0x7f0000002540)=""/220, 0xdc}], 0x8, &(0x7f00000026c0)=""/4096, 0x1000}, 0x9}, {{&(0x7f00000036c0)=@nl=@unspec, 0x80, &(0x7f0000004800)=[{&(0x7f0000003740)=""/8, 0x8}, {&(0x7f0000003780)=""/99, 0x63}, {&(0x7f0000003800)=""/4096, 0x1000}], 0x3, &(0x7f0000004840)=""/159, 0x9f}, 0x1}, {{&(0x7f0000004900)=@can, 0x80, &(0x7f0000005cc0)=[{&(0x7f0000004980)=""/125, 0x7d}, {&(0x7f0000004a00)=""/170, 0xaa}, {&(0x7f0000004ac0)=""/4096, 0x1000}, {&(0x7f0000005ac0)=""/227, 0xe3}, {&(0x7f0000005bc0)=""/237, 0xed}], 0x5, &(0x7f0000005d40)=""/190, 0xbe}, 0x4}, {{&(0x7f0000005e00)=@l2, 0x80, &(0x7f0000005f80)=[{&(0x7f0000005e80)=""/208, 0xd0}], 0x1, &(0x7f0000005fc0)=""/49, 0x31}, 0x8ef}, {{&(0x7f0000006000)=@hci={0x1f, 0x0}, 0x80, &(0x7f0000006200)=[{&(0x7f0000006080)=""/73, 0x49}, {&(0x7f0000006100)=""/59, 0x3b}, {&(0x7f0000006140)=""/85, 0x55}, {&(0x7f00000061c0)=""/10, 0xa}], 0x4, &(0x7f0000006240)=""/69, 0x45}, 0x2f}, {{&(0x7f00000062c0)=@nl=@proc, 0x80, &(0x7f00000074c0)=[{&(0x7f0000006340)=""/40, 0x28}, {&(0x7f0000006380)=""/96, 0x60}, {&(0x7f0000006400)=""/4096, 0x1000}, {&(0x7f0000007400)=""/103, 0x67}, {&(0x7f0000007480)=""/53, 0x35}], 0x5, &(0x7f0000007540)=""/84, 0x54}, 0x9}, {{&(0x7f00000075c0)=@in={0x2, 0x0, @broadcast}, 0x80, &(0x7f0000007680)=[{&(0x7f0000007640)=""/64, 0x40}], 0x1, &(0x7f00000076c0)=""/35, 0x23}, 0x3}, {{0x0, 0x0, &(0x7f0000007980)=[{&(0x7f0000007700)=""/123, 0x7b}, {&(0x7f0000007780)=""/244, 0xf4}, {&(0x7f0000007880)=""/202, 0xca}], 0x3, &(0x7f00000079c0)=""/45, 0x2d}, 0x70f7}, {{&(0x7f0000007a00)=@in={0x2, 0x0, @remote}, 0x80, &(0x7f0000008c80)=[{&(0x7f0000007a80)=""/121, 0x79}, {&(0x7f0000007b00)=""/111, 0x6f}, {&(0x7f0000007b80)=""/128, 0x80}, {&(0x7f0000007c00)=""/4096, 0x1000}, {&(0x7f0000008c00)=""/103, 0x67}], 0x5, &(0x7f0000008d00)=""/146, 0x92}, 0x100000000}], 0xa, 0x1, &(0x7f0000009040)) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000009080)={{{@in6=@mcast1, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@ipv4={[], [], @broadcast}}, 0x0, @in6=@ipv4={[], [], @empty}}}, &(0x7f0000009180)=0xe8) ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f00000091c0)={'vcan0\x00', 0x0}) accept$packet(r3, &(0x7f0000009200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000009240)=0x14) accept$packet(r3, &(0x7f0000009280)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000092c0)=0x14) getsockopt$inet_IP_IPSEC_POLICY(r3, 0x0, 0x10, &(0x7f0000009300)={{{@in6=@ipv4={[], [], @multicast1}, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@ipv4={[], [], @dev}}, 0x0, @in=@remote}}, &(0x7f0000009400)=0xe8) getsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f0000009440)={{{@in=@local, @in6=@ipv4={[], [], @initdev}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@dev}, 0x0, @in6=@loopback}}, &(0x7f0000009540)=0xe8) getsockopt$inet_pktinfo(r3, 0x0, 0x8, &(0x7f0000009580)={0x0, @multicast2, @multicast2}, &(0x7f00000095c0)=0xffffffffffffff96) getsockname$packet(r3, &(0x7f0000009600)={0x11, 0x0, 0x0}, &(0x7f0000009640)=0x14) clock_gettime(0x0, &(0x7f000000a040)={0x0, 0x0}) recvmmsg(r3, &(0x7f0000009fc0)=[{{&(0x7f0000009740)=@can={0x1d, 0x0}, 0x80, &(0x7f0000009a80)=[{&(0x7f00000097c0)=""/199, 0xc7}, {&(0x7f00000098c0)=""/194, 0xc2}, {&(0x7f00000099c0)=""/172, 0xac}], 0x3, &(0x7f0000009ac0)=""/162, 0xa2}, 0x180000}, {{&(0x7f0000009b80), 0x80, &(0x7f0000009f40)=[{&(0x7f0000009c00)=""/166, 0xa6}, {&(0x7f0000009cc0)=""/140, 0x8c}, {&(0x7f0000009d80)=""/245, 0xf5}, {&(0x7f0000009e80)=""/156, 0x9c}], 0x4, &(0x7f0000009f80)=""/43, 0x2b}, 0xfffffffffffffffe}], 0x2, 0x2120, &(0x7f000000a080)={r21, r22+30000000}) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f000000a0c0)={{{@in=@local, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast1}, 0x0, @in6}}, &(0x7f000000a1c0)=0xe8) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f000000a200)={{{@in=@loopback, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@remote}, 0x0, @in=@multicast1}}, &(0x7f000000a300)=0xe8) getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f000000a340)={0x0, @local, @multicast2}, &(0x7f000000a380)=0xc) getsockname$packet(r3, &(0x7f000000a3c0)={0x11, 0x0, 0x0}, &(0x7f000000a400)=0x14) getsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f000000a5c0)={@multicast2, @local, 0x0}, &(0x7f00000001c0)=0x164) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f000000a700)={'gretap0\x00', 0x0}) ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f000000a740)={'vcan0\x00', 0x0}) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f000000a780)={{{@in6=@ipv4={[], [], @initdev}, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast2}, 0x0, @in=@remote}}, &(0x7f000000a880)=0xe8) sendmsg$TEAM_CMD_OPTIONS_GET(r3, &(0x7f000000b380)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f000000b340)={&(0x7f000000a8c0)={0xa48, r4, 0x308, 0x70bd2b, 0x25dfdbfd, {}, [{{0x8, 0x1, r5}, {0x160, 0x2, [{0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x8}, {0x8}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r6}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x8}, {0x8, 0x4, 0x8}}}, {0x38, 0x1, @notify_peers_interval={{0x24, 0x1, 'notify_peers_interval\x00'}, {0x8}, {0x8, 0x4, 0x7ff}}}, {0x3c, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x8}, {0xc, 0x4, 'random\x00'}}}, {0x3c, 0x1, @enabled={{{0x24, 0x1, 'enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r7}}}]}}, {{0x8, 0x1, r8}, {0x120, 0x2, [{0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8}, {0x8, 0x4, 0xb838}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x8}, {0x8, 0x4, 0x2}}}, {0x38, 0x1, @activeport={{0x24, 0x1, 'activeport\x00'}, {0x8}, {0x8, 0x4, r9}}}, {0x3c, 0x1, @lb_tx_method={{0x24, 0x1, 'lb_tx_method\x00'}, {0x8}, {0xc, 0x4, 'hash\x00'}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8}, {0x8, 0x4, 0x8001}}}]}}, {{0x8, 0x1, r10}, {0x108, 0x2, [{0x4c, 0x1, @lb_tx_method={{0x24, 0x1, 'lb_tx_method\x00'}, {0x8}, {0x1c, 0x4, 'hash_to_port_mapping\x00'}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8}, {0x8, 0x4, 0x3f}}}, {0x40, 0x1, @lb_port_stats={{{0x24, 0x1, 'lb_port_stats\x00'}, {0x8}, {0x8, 0x4, 0x6}}, {0x8, 0x6, r11}}}, {0x40, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x8}, {0x10, 0x4, 'roundrobin\x00'}}}]}}, {{0x8, 0x1, r12}, {0x288, 0x2, [{0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r13}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8}, {0x8, 0x4, 0x4}}}, {0x40, 0x1, @queue_id={{{0x24, 0x1, 'queue_id\x00'}, {0x8}, {0x8, 0x4, 0x7}}, {0x8, 0x6, r14}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8}, {0x8, 0x4, 0x5}}}, {0x3c, 0x1, @enabled={{{0x24, 0x1, 'enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r15}}}, {0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x8}, {0x8, 0x4, 0x1}}, {0x8}}}, {0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x8}, {0x8, 0x4, 0x1ff}}}, {0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x8}, {0x8, 0x4, 0x4}}}, {0x74, 0x1, @bpf_hash_func={{0x24, 0x1, 'bpf_hash_func\x00'}, {0x8}, {0x44, 0x4, [{0x7f, 0x1, 0x10001, 0x1000}, {0xdeaf, 0x8d, 0xc1, 0xfff}, {0x3, 0xcb8, 0x7f, 0xfffffffffffffff7}, {0x6, 0x3, 0x100, 0x10000}, {0x101, 0x80000001, 0x3f, 0x3}, {0x6, 0x8000, 0x58, 0x100}, {0x7, 0x2, 0xf6a9, 0x7}, {0x8, 0xfcc, 0x2, 0x3}]}}}, {0x38, 0x1, @notify_peers_interval={{0x24, 0x1, 'notify_peers_interval\x00'}, {0x8}, {0x8, 0x4, 0x100000001}}}]}}, {{0x8, 0x1, r16}, {0x1e8, 0x2, [{0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r17}}}, {0x40, 0x1, @priority={{{0x24, 0x1, 'priority\x00'}, {0x8}, {0x8, 0x4, 0x80}}, {0x8, 0x6, r18}}}, {0x40, 0x1, @priority={{{0x24, 0x1, 'priority\x00'}, {0x8}, {0x8, 0x4, 0x5}}, {0x8, 0x6, r19}}}, {0x3c, 0x1, @enabled={{{0x24, 0x1, 'enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r20}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x8}, {0x8, 0x4, 0x2}}}, {0x3c, 0x1, @enabled={{{0x24, 0x1, 'enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r23}}}, {0x38, 0x1, @activeport={{0x24, 0x1, 'activeport\x00'}, {0x8}, {0x8, 0x4, r24}}}, {0x40, 0x1, @lb_port_stats={{{0x24, 0x1, 'lb_port_stats\x00'}, {0x8}, {0x8, 0x4, 0x4}}, {0x8, 0x6, r25}}}]}}, {{0x8, 0x1, r26}, {0xbc, 0x2, [{0x40, 0x1, @priority={{{0x24, 0x1, 'priority\x00'}, {0x8}, {0x8, 0x4, 0x3}}, {0x8, 0x6, r27}}}, {0x3c, 0x1, @enabled={{{0x24, 0x1, 'enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r28}}}, {0x3c, 0x1, @lb_tx_method={{0x24, 0x1, 'lb_tx_method\x00'}, {0x8}, {0xc, 0x4, 'hash\x00'}}}]}}, {{0x8, 0x1, r29}, {0x148, 0x2, [{0x40, 0x1, @lb_port_stats={{{0x24, 0x1, 'lb_port_stats\x00'}, {0x8}, {0x8, 0x4, 0x40}}, {0x8, 0x6, r30}}}, {0x4c, 0x1, @bpf_hash_func={{0x24, 0x1, 'bpf_hash_func\x00'}, {0x8}, {0x1c, 0x4, [{0x8, 0xfffffffffffffffc, 0x6, 0xc4}, {0x100, 0x2d4, 0x7, 0xff}, {0x2, 0x2, 0x2, 0x9}]}}}, {0x40, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x8}, {0x10, 0x4, 'roundrobin\x00'}}}, {0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x8}, {0x8, 0x4, 0xfffffffffffffffc}}}, {0x40, 0x1, @priority={{{0x24, 0x1, 'priority\x00'}, {0x8}, {0x8, 0x4, 0x40}}, {0x8, 0x6, r31}}}]}}]}, 0xa48}}, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r3, 0x6, 0x14, &(0x7f0000000740)=0x1, 0x4) 13:51:47 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x1f00, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:48 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x2000, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:48 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x2010, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:48 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() r2 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000200)='/dev/vga_arbiter\x00', 0x10000, 0x0) connect$vsock_dgram(r2, &(0x7f0000000240)={0x28, 0x0, 0xffffffff, @reserved}, 0x10) rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r3 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r3, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r3, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:48 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) 13:51:48 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f023c123f3188a070") r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140)='/dev/audio\x00', 0x0, 0x0) r2 = gettid() clone(0x802102001ff6, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) clock_gettime(0x0, &(0x7f0000000240)) ppoll(&(0x7f0000000200)=[{r1}], 0x1, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r2, 0x0, 0x0) wait4(r2, 0x0, 0x20000009, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)) syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") r3 = syz_open_dev$mice(&(0x7f0000000080)='/dev/input/mice\x00', 0x0, 0xc0) r4 = syz_open_dev$sndpcmc(&(0x7f00000000c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x10000) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f00000001c0)=0x1) syz_open_dev$mice(&(0x7f0000000180)='/dev/input/mice\x00', 0x0, 0x80000) ioctl$TIOCSPGRP(r3, 0x5410, &(0x7f0000000280)=r2) openat$null(0xffffffffffffff9c, &(0x7f0000000100)='/dev/null\x00', 0x32b001, 0x0) r5 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000140)='cgroup.events\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x9) 13:51:48 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x3f00, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:48 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYBLOB="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"], 0x2}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:48 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) getpeername(r0, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @loopback}}}, &(0x7f00000001c0)=0x80) ioctl$sock_x25_SIOCADDRT(r1, 0x890b, &(0x7f00000003c0)={@remote={[], 0x3}, 0xc, 'hwsim0\x00'}) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = getpid() rt_tgsigqueueinfo(r2, r2, 0x16, &(0x7f00000000c0)) ptrace(0x10, r2) r3 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r3, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r3, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r2, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:48 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() r2 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000200)='/dev/vga_arbiter\x00', 0x10000, 0x0) connect$vsock_dgram(r2, &(0x7f0000000240)={0x28, 0x0, 0xffffffff, @reserved}, 0x10) rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r3 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r3, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r3, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:48 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x4000, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 555.231004] gfs2: quota_quantum mount option requires a positive numeric argument [ 555.251002] gfs2: can't parse mount arguments [ 555.287660] gfs2: quota_quantum mount option requires a positive numeric argument [ 555.318940] gfs2: can't parse mount arguments 13:51:48 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x4800, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:49 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) [ 555.504421] gfs2: quota_quantum mount option requires a positive numeric argument [ 555.523761] gfs2: can't parse mount arguments [ 555.589521] gfs2: quota_quantum mount option requires a positive numeric argument [ 555.602901] gfs2: can't parse mount arguments 13:51:49 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x4c00, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 555.711623] gfs2: quota_quantum mount option requires a positive numeric argument [ 555.743333] gfs2: can't parse mount arguments [ 555.816736] gfs2: quota_quantum mount option requires a positive numeric argument [ 555.834514] gfs2: can't parse mount arguments 13:51:49 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x6000, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:49 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYBLOB="000229bd7000fcdbdf2507000000b0000500080001007564700008000100696200001c00020008000100170000000800020009000000080004000100000008000100696200003c000200080002000800000008000100170000000800040006000000080004008f0000000800010011000000080004000000000008000200010000003c0002000800020003000000080002000100000008000200f800000008000300050000000800030001000000080004000900000008000300010000003c000100380004001400010002004e20e00000020000000000000000200002000a004e21000000a6fe880000000000000000000000000101feffffff0c000500080001006962000064000700080002005f6a000008000100ff0700000c00040000000800000000000c000300020000000000000008000200060000000c0004001f000000000000000800010009000000080001000400000008000100000200000c0003000800000000000000340002000800020005000000040004000400040004000400080002000100000008000100d213000008000100f50e000004000400040004"], 0x2}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:49 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) r3 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x0, 0x0) ioctl$BINDER_SET_MAX_THREADS(r3, 0x40046205, 0x6) mmap$binder(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x8, 0x2010, r3, 0x3d) 13:51:49 executing program 4: syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) 13:51:49 executing program 0: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYBLOB="000229bd7000fcdbdf2507000000b0000500080001007564700008000100696200001c00020008000100170000000800020009000000080004000100000008000100696200003c000200080002000800000008000100170000000800040006000000080004008f0000000800010011000000080004000000000008000200010000003c0002000800020003000000080002000100000008000200f800000008000300050000000800030001000000080004000900000008000300010000003c000100380004001400010002004e20e00000020000000000000000200002000a004e21000000a6fe880000000000000000000000000101feffffff0c000500080001006962000064000700080002005f6a000008000100ff0700000c00040000000800000000000c000300020000000000000008000200060000000c0004001f000000000000000800010009000000080001000400000008000100000200000c0003000800000000000000340002000800020005000000040004000400040004000400080002000100000008000100d213000008000100f50e00000400040004"], 0x2}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:49 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x6800, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:49 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x6c00, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:49 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x7400, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:50 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x7a00, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:50 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm_plock\x00', 0x200000, 0x0) r2 = syz_genetlink_get_family_id$tipc(&(0x7f00000001c0)='TIPC\x00') sendmsg$TIPC_CMD_SET_NODE_ADDR(r1, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x81000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x24, r2, 0x702, 0x70bd2c, 0x25dfdbfd, {{}, 0x0, 0x8001, 0x0, {0x8, 0x11, 0x10000}}, ["", "", "", "", "", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x800}, 0x8800) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r3 = getpid() rt_tgsigqueueinfo(r3, r3, 0x16, &(0x7f00000000c0)) ptrace(0x10, r3) r4 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r4, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r4, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r3, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:52 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r2, 0x0, 0x0) fcntl$setstatus(r0, 0x4, 0x42803) 13:51:52 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYBLOB="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"], 0x2}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:52 executing program 4: socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0x1, 0x2) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_REM(r1, 0x84, 0x65, &(0x7f00000000c0)=[@in6={0xa, 0x4e22, 0x7d92, @initdev={0xfe, 0x88, [], 0x0, 0x0}, 0x80000000}, @in={0x2, 0x4e24, @local}, @in6={0xa, 0x4e21, 0x62c, @local, 0x5}, @in6={0xa, 0x4e20, 0xfffffffffffffffd, @rand_addr="be432630197ec15f11de810446ba9dde", 0x5}], 0x64) syz_execute_func(&(0x7f0000000200)="3642926433ef93c4c22597ff7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6f3f0ff8500f0ffff691f1f63ad489e66460fd9cc0000420f5a910900000043ebbbe51212c4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) setsockopt$nfc_llcp_NFC_LLCP_MIUX(r1, 0x118, 0x1, &(0x7f0000000000)=0x5218, 0x4) 13:51:52 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0xedc0, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:52 executing program 0: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYBLOB="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"], 0x2}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:52 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) r3 = syz_open_dev$vcsa(&(0x7f0000000040)='/dev/vcsa#\x00', 0x9, 0x0) clock_gettime(0x0, &(0x7f0000000180)={0x0, 0x0}) ioctl$VIDIOC_DQBUF(r3, 0xc0585611, &(0x7f00000001c0)={0x1, 0x3, 0x4, 0x4, {r4, r5/1000+10000}, {0x4, 0xc, 0x7, 0x0, 0x8, 0x80000000, "2c4d9036"}, 0x2, 0x3, @offset=0xc939, 0x4}) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:52 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x40000, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:52 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x400000, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:52 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r2, 0x0, 0x0) fcntl$setstatus(r0, 0x4, 0x42803) [ 559.152608] gfs2: quota_quantum mount option requires a positive numeric argument [ 559.208433] gfs2: can't parse mount arguments [ 559.295904] gfs2: quota_quantum mount option requires a positive numeric argument [ 559.349001] gfs2: can't parse mount arguments 13:51:52 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x1000000, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:52 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:51:53 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) syz_execute_func(&(0x7f0000000280)="364292b3823310efeff6c89c7bd667f2440f344198c4e24d3ef9722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc442c50202e5dba77e") r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vsock\x00', 0x200, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$sock_inet_SIOCGIFADDR(r0, 0x8915, &(0x7f0000000040)={'dummy0\x00', {0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}}) ioctl$KDGKBENT(r1, 0x4b46, &(0x7f00000000c0)={0x2, 0x1, 0x3}) 13:51:53 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYBLOB="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"], 0x2}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 559.542761] gfs2: quota_quantum mount option requires a positive numeric argument [ 559.570030] gfs2: can't parse mount arguments 13:51:53 executing program 4: r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x0, 0x0) sendmsg$nfc_llcp(r0, &(0x7f0000000500)={&(0x7f00000000c0)={0x27, 0x1, 0x0, 0x0, 0xffffffffffffffff, 0x8, "2aaad636f0be761071c79407429e5baad455223d6acfb17341d6c36b518f32c553a3cee72d400c1e9020de78afb536e3787f91777bed45ad96fe49a1ce789f", 0x32}, 0x60, &(0x7f0000000440)=[{&(0x7f0000000140)}, {&(0x7f0000000180)="51bdea8d4b5460f1e9014a8b0489a6c4627f2c2e459009ff652a037119bedb11cc1fd18f98261a4079b0b0a69fe794ae954c10640786e5e951e368f45813237318c71ad24a3ce31d2196abcbb3320c7190e23cb47b49d5237fe3f6a6f997bb45e8695ff6faf597e97dbd54be8dfeb02bb77fc76542d4e0796e2d9cd5ee91cfe967f18d70b3c780a93ad50d5388832a47ed709a346a1690239b92eb1441f1fed6e1", 0xa1}, {&(0x7f0000000240)="76c3caf93351ca2b5b6c3a9ff235e3f665762d8215784f0d51c457ff28834eddfb2c", 0x22}, {&(0x7f0000000280)="cd9e4589ff94223840ed67e41e29814037e23307be73d38acf176b1282a8456f410b68cefe6c2f907e5049f59e513c7a160a36c926fdaf8813552c16498d46ce8974e3d0c9d37f3fd89c8c65d6dd249d2ed590ef8d598495e0f719a71888a0ea677a002bbfb0c7914a43fa744dbfd13c9701f434c376b48f6fc25b74b49c99ea9efc9262b99b9f0aa85fd7778e0e", 0x8e}, {&(0x7f0000000340)="745bac777175d6491c59291a86bd48313a7034b63d5e9bda4483606d4e4b5da38811fb6d09b3f26b82ac285266ad34dd4d9424b40e62f0b2f6bf31e8a502d1442f8ad259277e149115b0094d707ae10ad04e47734679f70ebfe4d844edd43a542d7d0eab7b45969742dee4d121ac0b67545955ef1fbe9e107f233b1dad688907d0e091a1a4f0ca2d31be8d7bca3eaf1252a3185fde91dbcec5d5ef51171c68c1d999c987789f7bd4518105fc2cb73539620cd226b308e1743eff034c394bbcdffb3b78d70c72dae9adf2aea241acd61070ac545bdfe9b75b339be78f45c8", 0xde}], 0x5, &(0x7f00000004c0)={0x10, 0x113, 0x1}, 0x10, 0x40000c5}, 0x800) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer2\x00', 0x0, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:51:53 executing program 0: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="06010000", @ANYBLOB="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"], 0x2}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 559.664612] gfs2: quota_quantum mount option requires a positive numeric argument [ 559.726930] gfs2: can't parse mount arguments 13:51:53 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x2000000, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 559.898739] gfs2: quota_quantum mount option requires a positive numeric argument [ 559.952390] gfs2: can't parse mount arguments 13:51:53 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r2, 0x0, 0x0) fcntl$setstatus(r0, 0x4, 0x42803) [ 560.028326] gfs2: quota_quantum mount option requires a positive numeric argument [ 560.069385] gfs2: can't parse mount arguments 13:51:53 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x3000000, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:53 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rfkill\x00', 0x4000, 0x0) ioctl$TIOCMSET(r2, 0x5418, &(0x7f0000000040)=0x401) ptrace(0x10, r1) r3 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r3, &(0x7f0000000380)="e0", 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r3, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) [ 560.290260] gfs2: quota_quantum mount option requires a positive numeric argument [ 560.310267] gfs2: can't parse mount arguments [ 560.393893] gfs2: quota_quantum mount option requires a positive numeric argument [ 560.432125] gfs2: can't parse mount arguments 13:51:54 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x4000000, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:54 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="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"], 0x1}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:54 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)) syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x501000, 0x0) getsockopt$inet_sctp_SCTP_CONTEXT(0xffffffffffffff9c, 0x84, 0x11, &(0x7f00000000c0)={0x0, 0x2}, &(0x7f0000000100)=0x8) openat$vimc2(0xffffffffffffff9c, &(0x7f0000000280)='/dev/video2\x00', 0x2, 0x0) sendto$rose(r0, &(0x7f0000000180)="8440fb1406c6997c10e2bd", 0xb, 0x10, &(0x7f00000001c0)=@short={0xb, @dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, 0x1, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}}, 0x1c) ioctl$VIDIOC_S_MODULATOR(r0, 0x40445637, &(0x7f0000000200)={0x7, "bb7bbfd732c45dfd84b3c44b8fd9a83d43eb25d987af2c8032ebbcc6e73e975b", 0x41, 0xdddc, 0x6, 0x4, 0x1}) setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000140)={r1, 0x100000000}, 0x8) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 13:51:54 executing program 0: r0 = socket$kcm(0x10, 0x20002, 0x0) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x0, 0x0) ioctl$SG_GET_NUM_WAITING(r1, 0x227d, &(0x7f0000000040)) sendmsg$kcm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000240)="230000005e0081aee4050c00000f0000709110ecab372942da4ee4a0008bc652f6d87f", 0x23}], 0x1}, 0x0) [ 560.674103] gfs2: quota_quantum mount option requires a positive numeric argument [ 560.682854] gfs2: can't parse mount arguments [ 560.719315] gfs2: quota_quantum mount option requires a positive numeric argument [ 560.787773] gfs2: can't parse mount arguments 13:51:54 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) tkill(r2, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) 13:51:54 executing program 0: pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff}, 0x0) fcntl$addseals(r0, 0x409, 0x0) openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) syz_open_dev$sndpcmc(0x0, 0x100000001, 0xfd) pipe(&(0x7f0000000880)={0xffffffffffffffff, 0xffffffffffffffff}) write(r2, &(0x7f0000000340), 0x10000014c) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clock_gettime(0x0, &(0x7f0000000500)={0x0, 0x0}) pselect6(0x40, &(0x7f00000000c0), &(0x7f0000000100), &(0x7f0000000140)={0x1b9}, &(0x7f0000000200)={0x0, r3+30000000}, 0x0) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) close(0xffffffffffffffff) setsockopt$inet_sctp_SCTP_DISABLE_FRAGMENTS(r2, 0x84, 0x8, 0x0, 0x0) setsockopt$EBT_SO_SET_COUNTERS(0xffffffffffffffff, 0x0, 0x81, &(0x7f0000000340)=ANY=[@ANYBLOB='filter\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00'], 0x1) flock(0xffffffffffffffff, 0x0) 13:51:54 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x5000000, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 560.951108] gfs2: quota_quantum mount option requires a positive numeric argument [ 560.969539] gfs2: can't parse mount arguments [ 561.018238] gfs2: quota_quantum mount option requires a positive numeric argument [ 561.033689] gfs2: can't parse mount arguments 13:51:54 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x6000000, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:54 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x1) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) [ 561.217223] gfs2: quota_quantum mount option requires a positive numeric argument [ 561.256955] gfs2: can't parse mount arguments [ 561.334353] gfs2: quota_quantum mount option requires a positive numeric argument [ 561.347085] gfs2: can't parse mount arguments 13:51:54 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="000229bd7000fcdbdf2507000000b0000500080001007564700008000100696200001c00020008000100170000000800020009000000080004000100000008000100696200003c000200080002000800000008000100170000000800040006000000080004008f0000000800010011000000080004000000000008000200010000003c0002000800020003000000080002000100000008000200f800000008000300050000000800030001000000080004000900000008000300010000003c000100380004001400010002004e20e00000020000000000000000200002000a004e21000000a6fe880000000000000000000000000101feffffff0c000500080001006962000064000700080002005f6a000008000100ff0700000c00040000000800000000000c000300020000000000000008000200060000000c0004001f000000000000000800010009000000080001000400000008000100000200000c0003000800000000000000340002000800020005000000040004000400040004000400080002000100000008000100d213000008000100f50e00000400040004000400"], 0x1}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:54 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x7000000, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:55 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) tkill(r2, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) 13:51:55 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000080)='/dev/rtc0\x00', 0x441, 0x0) ioctl$SCSI_IOCTL_BENCHMARK_COMMAND(r1, 0x3) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) [ 561.515835] gfs2: quota_quantum mount option requires a positive numeric argument [ 561.554862] gfs2: can't parse mount arguments [ 561.645950] gfs2: quota_quantum mount option requires a positive numeric argument [ 561.664385] gfs2: can't parse mount arguments 13:51:55 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x9000000, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:55 executing program 0: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x36f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/snapshot\x00', 0x200000, 0x0) syz_open_procfs(0x0, &(0x7f0000000140)='fd/4\x00\\\t\xb86\xe6\x83gMZ\r\x9f\xf4`\xadU\xd0+\x90\x8f\\\xb7\x05\xd4') ioctl$TUNGETVNETHDRSZ(r0, 0x800454d7, &(0x7f0000000180)) [ 561.879592] gfs2: quota_quantum mount option requires a positive numeric argument [ 561.922277] gfs2: can't parse mount arguments [ 561.982000] gfs2: quota_quantum mount option requires a positive numeric argument [ 562.022266] gfs2: can't parse mount arguments 13:51:55 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) tkill(r2, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) 13:51:55 executing program 0: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='stat\t\xc0\xd2\xfe\xbc\xf9\xdf-\xea\xc8\xc1w\xff\x17\x12H\xe9\x11\x93Q0I\xf81U\ro}\xe6l\xf67\xbd\xbf\x13\x11\x92\f\x8a&\xed\xa4\xdc\xc3x?\x9d\xb5\x11k4\xd3\x1b\x05\x12\xa5`\x8a\xaf\xf0\x1eyR4\f\xd6\xfd\x00\x00\x00\x00', 0x275a, 0x0) r1 = creat(&(0x7f0000000140)='./file0\x00', 0x1) fallocate(r1, 0x0, 0x0, 0x2000002) ioctl$sock_ax25_SIOCDELRT(r1, 0x890c, &(0x7f0000000000)={@default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, 0x2, [@bcast, @bcast, @null, @bcast, @default, @null, @bcast, @default]}) connect(r1, &(0x7f00000001c0)=@isdn={0x22, 0x400, 0x6, 0x101}, 0x80) fallocate(r0, 0x0, 0x0, 0x110001) r2 = openat$apparmor_thread_exec(0xffffffffffffff9c, &(0x7f0000000100)='/proc/thread-self/attr/exec\x00', 0x2, 0x0) r3 = request_key(&(0x7f0000000240)='big_key\x00', &(0x7f0000000280)={'syz', 0x1}, &(0x7f00000002c0)='/proc/thread-self/attr/exec\x00', 0xfffffffffffffffa) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r2, 0x2405, r1) r4 = add_key(&(0x7f0000000300)='dns_resolver\x00', &(0x7f0000000340)={'syz', 0x0}, &(0x7f0000000380)="3a73bae4632c49eab5953a70fa8c8ab37e146800fa969c74b223a68b6002aa7a780511eed85a3818ad3771c9cca0c95134549f686e23ee78b1fb8f53b4e2a9ac41ccdc20e44ebc46e7cc81f91325fe8789cbc36fab51ada1808063c696f4fc2262f0b8fb24ac354bbf9d538bea532581d0e26afb2db95dd396b8319d105158edc1ab4891cb", 0x85, 0xfffffffffffffffb) r5 = request_key(&(0x7f0000000440)='cifs.spnego\x00', &(0x7f0000000480)={'syz', 0x1}, &(0x7f00000004c0)='/proc/thread-self/attr/exec\x00', 0xfffffffffffffff9) keyctl$dh_compute(0x17, &(0x7f0000000500)={r3, r4, r5}, &(0x7f0000000540)=""/47, 0x2f, &(0x7f00000006c0)={&(0x7f0000000580)={'xcbc(camellia)\x00'}, &(0x7f00000005c0)="fe7f4e9a8a88db31757b49172ffb179ea04361200adcbc76f0b6f3497508846f07e36bffe200ec758f132fee5326a0ca46dc322bfa465923bcd531e7790ec77f4a2bebe03cf0caf3728f66476ae18fe7a7c870a8b9e3e0393623afcd368d9fe56e558f549f3b14aa92eb6fce9946a1d185d3dc14a35e01203c2c439ba6e8439fc7636c388bcff9ba12c77458d805662b1a836b404c056ec58ecffca9c6f7e383481661aaf5b8a4bf1aba5325cd0d553cce33863cd48d0fb5da753be55a8e3c886feaae0efe576a8087bddb395ed5b98a9718f2bc53d52e9420e6a6101203947bce614885d8138176e27bced626b1f6cc65e8e1308051bc3ee1", 0xf9}) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000180)={0x0, r1, 0x3, 0xc, 0x5}) 13:51:55 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0xa000000, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:55 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) r3 = openat$vsock(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/vsock\x00', 0x400, 0x0) getsockopt$inet6_tcp_buf(r3, 0x6, 0x3f, &(0x7f0000000200)=""/148, &(0x7f0000000300)=0x94) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) r4 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x80, 0x0) connect$pppoe(r4, &(0x7f0000000040)={0x18, 0x0, {0x3, @random="d9684bfc381b", 'teql0\x00'}}, 0x1e) 13:51:55 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) 13:51:55 executing program 0: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000300)={'nr0\x01\x00', 0x4005}) getgroups(0x4, &(0x7f0000000000)=[0xee00, 0x0, 0xffffffffffffffff, 0xee00]) getresgid(&(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140)) r1 = getegid() getgroups(0x3ffffffffffffff2, &(0x7f0000000200)=[r1, r1]) r2 = syz_open_dev$admmidi(&(0x7f0000000040)='/dev/admmidi#\x00', 0x8000, 0x400) ioctl$KVM_GET_ONE_REG(r2, 0x4010aeab, &(0x7f0000000180)={0x7, 0x7}) ioctl$TUNSETGROUP(r0, 0x400454ce, 0x0) [ 562.306939] gfs2: quota_quantum mount option requires a positive numeric argument 13:51:55 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="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"], 0x1}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 562.434319] gfs2: can't parse mount arguments 13:51:56 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) 13:51:56 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") r2 = fcntl$dupfd(r0, 0x0, r1) ioctl$KDGKBSENT(r2, 0x4b48, &(0x7f0000000080)={0x800, 0x4}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) [ 562.747364] gfs2: quota_quantum mount option requires a positive numeric argument 13:51:56 executing program 0: creat(&(0x7f0000000500)='./file1\x00', 0x0) syz_emit_ethernet(0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) inotify_init() keyctl$assume_authority(0x10, 0x0) ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f0000000280)={0x0, 0x100000001}) r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000e11ff0)=[{&(0x7f0000000140)="580000001500add427323b470c458c560a067fffffff81004e220000000058000b4824ca945f64009400050028925aa80000000000000080000efffe1b0000000000fff5dd00000010000100090a1000410400000000fcff", 0x58}], 0x1) r1 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x51, 0x80) ioctl$SCSI_IOCTL_DOORLOCK(r1, 0x5380) socket$inet(0x2, 0x5, 0x4) getsockopt$inet_sctp_SCTP_DISABLE_FRAGMENTS(r1, 0x84, 0x8, &(0x7f0000000040), &(0x7f0000000080)=0x4) setxattr$trusted_overlay_opaque(&(0x7f00000000c0)='./file1\x00', &(0x7f0000000100)='trusted.overlay.opaque\x00', &(0x7f00000001c0)='y\x00', 0x2, 0x3) [ 562.803211] gfs2: can't parse mount arguments 13:51:56 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x10000000, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 562.932175] netlink: 64 bytes leftover after parsing attributes in process `syz-executor.0'. [ 563.002990] gfs2: quota_quantum mount option requires a positive numeric argument [ 563.043391] gfs2: can't parse mount arguments [ 563.138131] gfs2: quota_quantum mount option requires a positive numeric argument [ 563.152110] gfs2: can't parse mount arguments [ 563.178886] netlink: 64 bytes leftover after parsing attributes in process `syz-executor.0'. 13:51:56 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x1a0f0000, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:51:56 executing program 0: creat(&(0x7f0000000500)='./file1\x00', 0x0) syz_emit_ethernet(0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) inotify_init() keyctl$assume_authority(0x10, 0x0) ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f0000000280)={0x0, 0x100000001}) r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000e11ff0)=[{&(0x7f0000000140)="580000001500add427323b470c458c560a067fffffff81004e220000000058000b4824ca945f64009400050028925aa80000000000000080000efffe1b0000000000fff5dd00000010000100090a1000410400000000fcff", 0x58}], 0x1) r1 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x51, 0x80) ioctl$SCSI_IOCTL_DOORLOCK(r1, 0x5380) socket$inet(0x2, 0x5, 0x4) getsockopt$inet_sctp_SCTP_DISABLE_FRAGMENTS(r1, 0x84, 0x8, &(0x7f0000000040), &(0x7f0000000080)=0x4) setxattr$trusted_overlay_opaque(&(0x7f00000000c0)='./file1\x00', &(0x7f0000000100)='trusted.overlay.opaque\x00', &(0x7f00000001c0)='y\x00', 0x2, 0x3) 13:51:56 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB], 0x1}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:51:56 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) [ 563.473805] netlink: 64 bytes leftover after parsing attributes in process `syz-executor.0'. [ 563.700863] device bridge_slave_1 left promiscuous mode [ 563.706396] bridge0: port 2(bridge_slave_1) entered disabled state [ 563.776550] device bridge_slave_0 left promiscuous mode [ 563.786290] bridge0: port 1(bridge_slave_0) entered disabled state [ 564.132894] device hsr_slave_1 left promiscuous mode [ 564.220101] device hsr_slave_0 left promiscuous mode [ 564.281402] team0 (unregistering): Port device team_slave_1 removed [ 564.318910] team0 (unregistering): Port device team_slave_0 removed [ 564.362294] bond0 (unregistering): Releasing backup interface bond_slave_1 [ 564.416063] bond0 (unregistering): Releasing backup interface bond_slave_0 [ 564.482883] bond0 (unregistering): Released all slaves [ 565.470115] IPVS: ftp: loaded support on port[0] = 21 [ 565.547559] chnl_net:caif_netlink_parms(): no params data found [ 565.612339] bridge0: port 1(bridge_slave_0) entered blocking state [ 565.618756] bridge0: port 1(bridge_slave_0) entered disabled state [ 565.628275] device bridge_slave_0 entered promiscuous mode [ 565.635567] bridge0: port 2(bridge_slave_1) entered blocking state [ 565.642129] bridge0: port 2(bridge_slave_1) entered disabled state [ 565.649437] device bridge_slave_1 entered promiscuous mode [ 565.670142] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 565.679519] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 565.700536] team0: Port device team_slave_0 added [ 565.706803] team0: Port device team_slave_1 added [ 565.772370] device hsr_slave_0 entered promiscuous mode [ 565.810233] device hsr_slave_1 entered promiscuous mode [ 565.856710] bridge0: port 2(bridge_slave_1) entered blocking state [ 565.863115] bridge0: port 2(bridge_slave_1) entered forwarding state [ 565.869676] bridge0: port 1(bridge_slave_0) entered blocking state [ 565.876055] bridge0: port 1(bridge_slave_0) entered forwarding state [ 565.907135] 8021q: adding VLAN 0 to HW filter on device bond0 [ 565.917916] bridge0: port 1(bridge_slave_0) entered disabled state [ 565.925979] bridge0: port 2(bridge_slave_1) entered disabled state [ 565.933461] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 565.944468] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 565.951485] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 565.960891] 8021q: adding VLAN 0 to HW filter on device team0 [ 565.971312] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 565.978890] bridge0: port 1(bridge_slave_0) entered blocking state [ 565.985306] bridge0: port 1(bridge_slave_0) entered forwarding state [ 565.992317] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 565.999857] bridge0: port 2(bridge_slave_1) entered blocking state [ 566.006252] bridge0: port 2(bridge_slave_1) entered forwarding state [ 566.021535] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 566.030726] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 566.039659] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 566.052906] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 566.065539] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 566.076272] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 566.083709] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 566.103257] 8021q: adding VLAN 0 to HW filter on device batadv0 13:52:00 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000040)="0000000040040000", 0x8) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) r3 = syz_open_dev$radio(&(0x7f0000000280)='/dev/radio#\x00', 0x0, 0x2) getsockopt$inet_sctp_SCTP_RESET_STREAMS(0xffffffffffffff9c, 0x84, 0x77, &(0x7f0000000380)={0x0, 0x80000000, 0x5, [0x0, 0x6, 0x1ff, 0x9, 0xc0]}, &(0x7f00000003c0)=0x12) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000400)={r4, @in={{0x2, 0x4e21, @local}}, 0x200, 0x28a, 0x8, 0x33, 0x4}, &(0x7f00000004c0)=0x98) r5 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x798f, 0x200000) ioctl$EVIOCGSND(r5, 0x8040451a, &(0x7f00000001c0)=""/179) 13:52:00 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x1f000000, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:52:00 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") r1 = syz_open_dev$midi(&(0x7f0000000080)='/dev/midi#\x00', 0xae, 0x30080) setsockopt$inet_sctp_SCTP_RECVNXTINFO(r1, 0x84, 0x21, &(0x7f0000000100)=0x80, 0x4) ioctl$VIDIOC_QUERYSTD(r1, 0x8008563f, &(0x7f00000000c0)) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 13:52:00 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) getsockopt$netlink(r0, 0x10e, 0x8000000004, &(0x7f0000000000)=""/4, &(0x7f0000000040)=0x4) 13:52:00 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, 0x0, 0x0, 0x0) tkill(0x0, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) 13:52:00 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB], 0x1}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:52:00 executing program 0: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000300)='/dev/sequencer2\x00', 0x20100, 0x0) setsockopt$XDP_UMEM_COMPLETION_RING(r0, 0x11b, 0x6, &(0x7f0000000340)=0x1002f00, 0x4) r1 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r0, &(0x7f0000000440), 0xfffffffffffffe10) sendmsg$can_bcm(r1, &(0x7f0000000140)={&(0x7f0000000000), 0x10, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="05000000000000000000000000000000", @ANYRES64=0x0, @ANYRES64=0x2710, @ANYRES64=0x77359400, @ANYRES64=0x0, @ANYBLOB="00000000080000000000000000000000c4d96dc6bff8f5ea"], 0x20000108}}, 0x0) r2 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000080)='/proc/capi/capi20ncci\x00', 0x105040, 0x0) ioctl$VIDIOC_S_JPEGCOMP(r2, 0x408c563e, &(0x7f0000000180)={0x0, 0x6, 0x39, "cba895173432e2a4c8f78e10b942f9dfc80c1cfd03a880e67e33aa34c2eab470bb0162cf2c23dfc8cd4ff4712e2f8eee969f454b53245085896ab4a4", 0x15, "7db649dac92fd3b7a9a0732bfd3aa6792d08d26ca883e3e3c8ee563da2065b3f86bab6965bff9143cbc0fd1cb2ddc9e01f47ef0ffa4a4ed2fc9dce3d", 0x58}) delete_module(&(0x7f00000003c0)='%\x00', 0xa00) getsockname(r2, &(0x7f0000000240)=@ipx, &(0x7f00000002c0)=0x80) close(r1) ioctl$SIOCNRDECOBS(r2, 0x89e2) umount2(&(0x7f0000000380)='./file0\x00', 0x8) [ 567.002016] gfs2: quota_quantum mount option requires a positive numeric argument [ 567.009708] gfs2: can't parse mount arguments [ 567.137459] gfs2: quota_quantum mount option requires a positive numeric argument [ 567.169103] gfs2: can't parse mount arguments 13:52:00 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x20000000, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:52:00 executing program 0: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000300)='/dev/sequencer2\x00', 0x20100, 0x0) setsockopt$XDP_UMEM_COMPLETION_RING(r0, 0x11b, 0x6, &(0x7f0000000340)=0x1002f00, 0x4) r1 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r0, &(0x7f0000000440), 0xfffffffffffffe10) sendmsg$can_bcm(r1, &(0x7f0000000140)={&(0x7f0000000000), 0x10, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="05000000000000000000000000000000", @ANYRES64=0x0, @ANYRES64=0x2710, @ANYRES64=0x77359400, @ANYRES64=0x0, @ANYBLOB="00000000080000000000000000000000c4d96dc6bff8f5ea"], 0x20000108}}, 0x0) r2 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000080)='/proc/capi/capi20ncci\x00', 0x105040, 0x0) ioctl$VIDIOC_S_JPEGCOMP(r2, 0x408c563e, &(0x7f0000000180)={0x0, 0x6, 0x39, "cba895173432e2a4c8f78e10b942f9dfc80c1cfd03a880e67e33aa34c2eab470bb0162cf2c23dfc8cd4ff4712e2f8eee969f454b53245085896ab4a4", 0x15, "7db649dac92fd3b7a9a0732bfd3aa6792d08d26ca883e3e3c8ee563da2065b3f86bab6965bff9143cbc0fd1cb2ddc9e01f47ef0ffa4a4ed2fc9dce3d", 0x58}) delete_module(&(0x7f00000003c0)='%\x00', 0xa00) getsockname(r2, &(0x7f0000000240)=@ipx, &(0x7f00000002c0)=0x80) close(r1) ioctl$SIOCNRDECOBS(r2, 0x89e2) umount2(&(0x7f0000000380)='./file0\x00', 0x8) [ 567.375403] gfs2: quota_quantum mount option requires a positive numeric argument [ 567.414148] gfs2: can't parse mount arguments [ 567.492361] gfs2: quota_quantum mount option requires a positive numeric argument [ 567.515684] gfs2: can't parse mount arguments 13:52:01 executing program 0: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000300)='/dev/sequencer2\x00', 0x20100, 0x0) setsockopt$XDP_UMEM_COMPLETION_RING(r0, 0x11b, 0x6, &(0x7f0000000340)=0x1002f00, 0x4) r1 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r0, &(0x7f0000000440), 0xfffffffffffffe10) sendmsg$can_bcm(r1, &(0x7f0000000140)={&(0x7f0000000000), 0x10, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="05000000000000000000000000000000", @ANYRES64=0x0, @ANYRES64=0x2710, @ANYRES64=0x77359400, @ANYRES64=0x0, @ANYBLOB="00000000080000000000000000000000c4d96dc6bff8f5ea"], 0x20000108}}, 0x0) r2 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000080)='/proc/capi/capi20ncci\x00', 0x105040, 0x0) ioctl$VIDIOC_S_JPEGCOMP(r2, 0x408c563e, &(0x7f0000000180)={0x0, 0x6, 0x39, "cba895173432e2a4c8f78e10b942f9dfc80c1cfd03a880e67e33aa34c2eab470bb0162cf2c23dfc8cd4ff4712e2f8eee969f454b53245085896ab4a4", 0x15, "7db649dac92fd3b7a9a0732bfd3aa6792d08d26ca883e3e3c8ee563da2065b3f86bab6965bff9143cbc0fd1cb2ddc9e01f47ef0ffa4a4ed2fc9dce3d", 0x58}) delete_module(&(0x7f00000003c0)='%\x00', 0xa00) getsockname(r2, &(0x7f0000000240)=@ipx, &(0x7f00000002c0)=0x80) close(r1) ioctl$SIOCNRDECOBS(r2, 0x89e2) umount2(&(0x7f0000000380)='./file0\x00', 0x8) 13:52:01 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x20100000, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:52:01 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, 0x0, 0x0, 0x0) tkill(0x0, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) 13:52:01 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() ioctl$FS_IOC_SETFSLABEL(r0, 0x41009432, &(0x7f00000001c0)="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") ioctl$int_in(r0, 0x5421, &(0x7f0000000000)=0x3) rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:52:01 executing program 0: sched_setaffinity(0x0, 0x0, 0x0) r0 = perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$int_in(r0, 0x5452, &(0x7f0000000000)) r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/ipv4/vs/expire_nodest_conn\x00', 0x2, 0x0) r2 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/dlm_plock\x00', 0x40000, 0x0) r3 = openat(r2, &(0x7f0000000180)='./file0\x00', 0x254b81e6c57c42ab, 0x62) ioctl$KVM_ASSIGN_SET_MSIX_NR(r1, 0x4008ae73, &(0x7f00000000c0)={0x7fffffff, 0x8000}) ioctl$sock_bt_bnep_BNEPGETSUPPFEAT(r3, 0x800442d4, &(0x7f0000000100)=0x1) listen(0xffffffffffffffff, 0x0) r4 = socket$kcm(0xa, 0x2, 0x11) setsockopt$sock_attach_bpf(r4, 0x29, 0x14, &(0x7f0000000080), 0x301) 13:52:01 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = syz_open_dev$usbmon(&(0x7f0000000080)='/dev/usbmon#\x00', 0x9, 0x800) ioctl$sock_x25_SIOCDELRT(r1, 0x890c, &(0x7f00000000c0)={@null=' \x00', 0xb, 'bridge_slave_0\x00'}) syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 13:52:01 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x3f000000, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:52:01 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB], 0x1}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:52:01 executing program 0: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_RESERVED_SIZE(r0, 0x2275, &(0x7f00000000c0)) r1 = syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x4, 0x800) getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r1, 0x84, 0x1b, &(0x7f0000000200)={0x0, 0x14, "6b5ea435103e75ce01c2cc0d28f410fe7a7770fe"}, &(0x7f0000000240)=0x1c) setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f0000000280)={r2, 0x5f30ccd3, 0x30}, 0xc) setsockopt$inet6_MCAST_JOIN_GROUP(r1, 0x29, 0x2a, &(0x7f0000000100)={0x2, {{0xa, 0x4e22, 0x4, @dev={0xfe, 0x80, [], 0xd}, 0x401}}}, 0xfffffffffffffe76) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f0000000080)={0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}, &(0x7f00000001c0)=0x18) [ 568.021691] gfs2: quota_quantum mount option requires a positive numeric argument [ 568.029357] gfs2: can't parse mount arguments 13:52:01 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000480)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="f2a6bad004b00fee0f090f3036f30f1a970000660f3806581e0f08bad004b0beeef30f2af8baa100b000ee", 0x2b}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r3 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vsock\x00', 0x2080, 0x0) write$vhci(r3, &(0x7f0000000100)=@HCI_ACLDATA_PKT={0x2, "56596d0e45a80c8a44b62e2e5704922383d77fd1d96510c074b6691dc3bee179e7c903bdc7bf92428dba53bf1115b5ee940d47acbe41b4ea16b40746a13cf51f88edc54b3dcc31532d35586ea0f4f59d0273fcbf3c9ca621c4bcc1612a04ec89c055e76b37425648d4da391d6fec3a0881b4698aec953310def6efdda616fdadecd03d32561d34cefe1701f1ab20161e8045d870ad5d13fc45b1fb524086b108749d83af9d3e136e3fed42dfb2a4cc8a6f809290715e4c66b6a343948093c47f6aaf6f636780f1cfce95a8eee26f3fb4826ab9a23b9106f3a0f3309c8d3d070fa02ffcf2450edb4a3af0bccfcebd"}, 0xef) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4cb], 0x1f000}) creat(&(0x7f0000000000)='./file0\x00', 0x80) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0x8090ae81, 0x709000) [ 568.127740] gfs2: quota_quantum mount option requires a positive numeric argument [ 568.160475] gfs2: can't parse mount arguments 13:52:01 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x40000000, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 568.228529] kvm: pic: non byte write [ 568.232697] kvm: pic: non byte write [ 568.236761] kvm: pic: non byte write [ 568.285743] kvm: pic: non byte write [ 568.289848] kvm: pic: non byte write [ 568.300625] kvm: pic: non byte write [ 568.346317] gfs2: quota_quantum mount option requires a positive numeric argument [ 568.382361] gfs2: can't parse mount arguments 13:52:01 executing program 0: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140067070088ffff00000000000000000000000088cafed752885211d9b6215e2086d34cc461055b73970bff16c862a8bfdbcef4c495ce4fad7d1911f570a4dcc55ce16181b83ae5db2aa83c"], 0x14}}, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x1, 0x19) ioctl$SIOCX25GCAUSEDIAG(r1, 0x89e6, &(0x7f0000000040)={0x8, 0x4}) 13:52:01 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, 0x0, 0x0, 0x0) tkill(0x0, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) 13:52:01 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="000229bd7000fcdbdf2507000000b0000500080001007564700008000100696200001c00020008000100170000000800020009000000080004000100000008000100696200003c000200080002000800000008000100170000000800040006000000080004008f0000000800010011000000080004000000000008000200010000003c0002000800020003000000080002000100000008000200f800000008000300050000000800030001000000080004000900000008000300010000003c000100380004001400010002004e20e00000"], 0x1}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 568.439471] gfs2: quota_quantum mount option requires a positive numeric argument [ 568.496882] gfs2: can't parse mount arguments 13:52:02 executing program 0: r0 = socket$inet_sctp(0x2, 0x5, 0x84) getsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0x22, 0x0, &(0x7f0000000140)=0xffffffffffffff2d) r1 = syz_open_dev$vcsn(&(0x7f00000001c0)='/dev/vcs#\x00', 0x0, 0x101001) ioctl$DRM_IOCTL_RES_CTX(0xffffffffffffff9c, 0xc0106426, &(0x7f0000000080)={0x7, &(0x7f0000000040)=[{}, {}, {}, {}, {}, {0x0}, {}]}) ioctl$DRM_IOCTL_NEW_CTX(r1, 0x40086425, &(0x7f00000000c0)={r2, 0x3}) 13:52:02 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) r3 = syz_open_dev$admmidi(&(0x7f0000000000)='/dev/admmidi#\x00', 0x6, 0x0) ioctl$DRM_IOCTL_RES_CTX(0xffffffffffffffff, 0xc0106426, &(0x7f00000001c0)={0x7, &(0x7f0000000040)=[{}, {}, {}, {}, {0x0}, {}, {}]}) ioctl$DRM_IOCTL_SWITCH_CTX(r3, 0x40086424, &(0x7f0000000200)={r4, 0x2}) ioctl$KVM_GET_XSAVE(r3, 0x9000aea4, &(0x7f00000003c0)) 13:52:02 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x48000000, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:52:02 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0xffffd}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_GET_REG_LIST(0xffffffffffffffff, 0xc008aeb0, &(0x7f0000000040)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00\x00']) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_NMI(r3, 0xae9a) ioctl$KVM_RUN(r3, 0xae80, 0x0) r4 = dup3(r1, r0, 0x80000) setsockopt$inet6_MRT6_ADD_MIF(r4, 0x29, 0xca, &(0x7f0000000080)={0x4, 0x1, 0x401, 0x8000, 0x101}, 0xc) 13:52:02 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080)='/dev/zero\x00', 0x40000, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) ioctl$PERF_EVENT_IOC_DISABLE(r1, 0x2401, 0xffff) [ 568.864999] gfs2: quota_quantum mount option requires a positive numeric argument [ 568.926431] gfs2: can't parse mount arguments [ 569.021010] gfs2: quota_quantum mount option requires a positive numeric argument [ 569.028669] gfs2: can't parse mount arguments 13:52:02 executing program 0: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000980)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x8, 0x4, &(0x7f0000346fc8)=@framed={{}, [@alu={0x8000000201a7f19, 0x0, 0x201a7fa6, 0x5, 0x1, 0xc}]}, &(0x7f0000000100)='GPL\x00'}, 0x48) 13:52:02 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x4c000000, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:52:02 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) r2 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) 13:52:02 executing program 0: perf_event_open(&(0x7f000025c000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) memfd_create(&(0x7f0000000040)='#\x00', 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) r1 = socket$inet_dccp(0x2, 0x6, 0x0) prctl$PR_GET_KEEPCAPS(0x7) listen(r0, 0x6) setsockopt(r1, 0x10d, 0x800000000d, &(0x7f00001c9fff)="03", 0x1) connect$inet(r1, &(0x7f0000e5c000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10) ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c06, 0xffffffffffffffff) r2 = accept(r0, 0x0, 0x0) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0)='IPVS\x00') sendmsg$IPVS_CMD_NEW_DAEMON(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000280)={0x14, 0x0, 0x230}, 0x14}}, 0x0) syz_open_dev$adsp(0x0, 0x0, 0x0) inotify_add_watch(0xffffffffffffffff, 0x0, 0x9) sendmsg$IPVS_CMD_NEW_SERVICE(r2, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x48000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x3c, r3, 0x208, 0x70bd26, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_DEST={0x28, 0x2, [@IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x3}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x40}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@local}]}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20004840}, 0x8001) sendmmsg(r1, &(0x7f0000005700)=[{{&(0x7f0000003900)=@pptp, 0x80, &(0x7f0000003b80), 0x3a5, &(0x7f0000003bc0)}}], 0x3a6, 0x0) [ 569.242788] gfs2: quota_quantum mount option requires a positive numeric argument [ 569.270042] gfs2: can't parse mount arguments [ 569.308857] gfs2: quota_quantum mount option requires a positive numeric argument [ 569.326150] gfs2: can't parse mount arguments 13:52:02 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x60000000, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:52:02 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="000229bd7000fcdbdf2507000000b0000500080001007564700008000100696200001c00020008000100170000000800020009000000080004000100000008000100696200003c000200080002000800000008000100170000000800040006000000080004008f0000000800010011000000080004000000000008000200010000003c0002000800020003000000080002000100000008000200f800000008000300050000000800030001000000080004000900000008000300010000003c000100380004001400010002004e20e00000"], 0x1}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 569.519060] gfs2: quota_quantum mount option requires a positive numeric argument [ 569.568597] gfs2: can't parse mount arguments [ 569.649263] gfs2: quota_quantum mount option requires a positive numeric argument 13:52:03 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") r1 = syz_open_dev$admmidi(&(0x7f0000000080)='/dev/admmidi#\x00', 0x4, 0x200000) ioctl$PPPIOCSDEBUG(r1, 0x40047440, &(0x7f00000000c0)=0x3) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) [ 569.700925] gfs2: can't parse mount arguments 13:52:03 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_netdev_private(r0, 0x89f2, &(0x7f00000001c0)="171338bf4fe4d51d02c87335d87f3511f5aa9fd15242fadf8f91b2d55659c07b889242a964117cab2d37253b54fed84e1287b245941a25c2624401906a8b617060e5e0f6ca1493439341fe642a313a6824cb000ccd5edb2aff61a09a016bd4adac71d13f0e1def625920207fe886a65580a95245139b10993f59cb10dbf1f0168e28a9425cd8d168d649905ec78bc97972afd1598a253f216464e1dc63ca132f7650d2dbff8c4e3171d17f51f5a54eafd152f4c728e5800ceb87b86a") ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpgid(0xffffffffffffffff) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r1, 0x5, &(0x7f00000003c0)=""/247) r2 = getpid() rt_tgsigqueueinfo(r2, r2, 0x16, &(0x7f00000000c0)) ptrace(0x10, r2) r3 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r3, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r3, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000000)) ptrace$setregset(0x4204, r2, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) r4 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000280)='/dev/vga_arbiter\x00', 0x400000, 0x0) ioctl$KVM_ASSIGN_DEV_IRQ(r4, 0x4040ae70, &(0x7f0000000080)={0x8, 0x7f, 0x8000, 0x200}) 13:52:03 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x68000000, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 569.963400] gfs2: quota_quantum mount option requires a positive numeric argument [ 569.999927] gfs2: can't parse mount arguments 13:52:03 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x6c000000, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:52:03 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) r2 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) [ 570.226439] gfs2: quota_quantum mount option requires a positive numeric argument [ 570.252591] gfs2: can't parse mount arguments [ 570.295962] BUG: please report to dccp@vger.kernel.org => prev = 0, last = 0 at net/dccp/ccids/lib/packet_history.c:422/tfrc_rx_hist_sample_rtt() [ 570.309642] CPU: 1 PID: 29740 Comm: syz-executor.0 Not tainted 5.0.0-rc6+ #70 [ 570.316916] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 570.326270] Call Trace: [ 570.329041] [ 570.331194] dump_stack+0x172/0x1f0 [ 570.334999] tfrc_rx_hist_sample_rtt.cold+0x56/0x61 [ 570.340071] ccid3_hc_rx_packet_recv+0x5c6/0xeb0 [ 570.344846] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 570.350389] ? ccid3_hc_tx_send_packet+0x880/0x880 [ 570.355354] dccp_deliver_input_to_ccids+0xee/0x280 [ 570.360391] dccp_rcv_established+0x83/0xb0 [ 570.364762] dccp_v4_do_rcv+0x139/0x190 [ 570.368757] __sk_receive_skb+0x341/0xbf0 [ 570.372911] ? sk_free+0x50/0x50 [ 570.376310] dccp_v4_rcv+0xeaa/0x1bf1 [ 570.380182] ip_protocol_deliver_rcu+0x60/0x8e0 [ 570.384865] ? kasan_check_read+0x11/0x20 [ 570.389049] ? rcu_dynticks_curr_cpu_in_eqs+0x54/0xb0 [ 570.394248] ip_local_deliver_finish+0x23b/0x390 [ 570.399012] ip_local_deliver+0x1e9/0x520 [ 570.403168] ? ip_local_deliver_finish+0x390/0x390 [ 570.408110] ? ip_rcv+0x275/0x3f0 [ 570.411568] ? ip_protocol_deliver_rcu+0x8e0/0x8e0 [ 570.416500] ? ip_rcv_finish_core.isra.0+0x82c/0x1b80 [ 570.421705] ip_rcv_finish+0x1db/0x2f0 [ 570.425600] ip_rcv+0xe8/0x3f0 [ 570.428800] ? ip_local_deliver+0x520/0x520 [ 570.433149] ? ip_rcv_finish_core.isra.0+0x1b80/0x1b80 [ 570.438498] ? process_backlog+0x44e/0x750 [ 570.442752] ? find_held_lock+0x35/0x130 [ 570.446817] ? ip_local_deliver+0x520/0x520 [ 570.451147] __netif_receive_skb_one_core+0x115/0x1a0 [ 570.456355] ? __netif_receive_skb_core+0x3010/0x3010 [ 570.461546] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 570.467088] ? check_preemption_disabled+0x48/0x290 [ 570.472394] ? lock_acquire+0x16f/0x3f0 [ 570.476374] __netif_receive_skb+0x2c/0x1c0 [ 570.480710] process_backlog+0x206/0x750 [ 570.484812] ? net_rx_action+0x27b/0x1070 [ 570.488958] ? lockdep_hardirqs_on+0x19b/0x5d0 [ 570.493562] net_rx_action+0x4fa/0x1070 [ 570.497550] ? napi_complete_done+0x4b0/0x4b0 [ 570.502055] ? __lock_is_held+0xb6/0x140 [ 570.506131] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 570.511587] __do_softirq+0x266/0x95a [ 570.515422] ? ip_finish_output2+0x969/0x1740 [ 570.519921] do_softirq_own_stack+0x2a/0x40 [ 570.524261] [ 570.526565] do_softirq.part.0+0x11a/0x170 [ 570.530806] __local_bh_enable_ip+0x211/0x270 [ 570.535307] ip_finish_output2+0x99c/0x1740 [ 570.539641] ? ip_copy_metadata+0xcc0/0xcc0 [ 570.543984] ? check_preemption_disabled+0x48/0x290 [ 570.549006] ip_finish_output+0x73c/0xd50 [ 570.553163] ? ip_finish_output+0x73c/0xd50 [ 570.557525] ip_output+0x21f/0x670 [ 570.561073] ? ip_mc_output+0xf70/0xf70 [ 570.565077] ? ip_fragment.constprop.0+0x240/0x240 [ 570.570018] ip_local_out+0xc4/0x1b0 [ 570.573740] __ip_queue_xmit+0x86f/0x1bf0 [ 570.577892] ip_queue_xmit+0x5a/0x70 [ 570.581616] dccp_transmit_skb+0x977/0x12c0 [ 570.585951] dccp_xmit_packet+0x1f6/0x660 [ 570.590104] dccp_write_xmit+0x181/0x1e0 [ 570.594173] dccp_sendmsg+0xa60/0xd00 [ 570.597988] ? __might_sleep+0x95/0x190 [ 570.601974] ? dccp_getsockopt+0xf0/0xf0 [ 570.606087] ? aa_sock_msg_perm.isra.0+0xba/0x170 [ 570.610997] inet_sendmsg+0x147/0x5d0 [ 570.614818] ? ipip_gro_receive+0x100/0x100 [ 570.619193] sock_sendmsg+0xdd/0x130 [ 570.622916] ___sys_sendmsg+0x806/0x930 [ 570.626897] ? copy_msghdr_from_user+0x430/0x430 [ 570.631662] ? lock_downgrade+0x810/0x810 [ 570.635815] ? kasan_check_read+0x11/0x20 [ 570.639989] ? __fget+0x367/0x540 [ 570.643449] ? iterate_fd+0x360/0x360 [ 570.647253] ? lock_downgrade+0x810/0x810 [ 570.651406] ? __fget_light+0x1a9/0x230 [ 570.655382] ? __fdget+0x1b/0x20 [ 570.658757] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 570.664307] __sys_sendmsg+0x105/0x1d0 [ 570.668204] ? __ia32_sys_shutdown+0x80/0x80 [ 570.672635] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 570.677398] ? do_syscall_64+0x26/0x610 [ 570.681377] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 570.686744] ? do_syscall_64+0x26/0x610 [ 570.690738] __x64_sys_sendmsg+0x78/0xb0 [ 570.694807] do_syscall_64+0x103/0x610 [ 570.698700] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 570.703928] RIP: 0033:0x457e39 [ 570.707127] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 570.726047] RSP: 002b:00007ffb1e9c3c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 570.733763] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457e39 [ 570.741036] RDX: 0000000000008001 RSI: 0000000020000140 RDI: 0000000000000007 13:52:04 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0xb4, &(0x7f0000000040)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) r2 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-monitor\x00', 0x501400, 0x0) ptrace(0x10, r1) r3 = memfd_create(&(0x7f00000001c0)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) read$alg(r2, &(0x7f0000000180)=""/20, 0x14) write(r3, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r3, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:52:04 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = syz_open_dev$mouse(&(0x7f0000000080)='/dev/input/mouse#\x00', 0x2, 0xc00) recvmmsg(r0, &(0x7f0000002ec0)=[{{&(0x7f0000000100)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @ipv4}}}, 0x80, &(0x7f0000000680)=[{&(0x7f0000000180)=""/159, 0x9f}, {&(0x7f0000000240)=""/251, 0xfb}, {&(0x7f0000000340)=""/73, 0x49}, {&(0x7f00000003c0)}, {&(0x7f0000000400)=""/137, 0x89}, {&(0x7f00000004c0)=""/138, 0x8a}, {&(0x7f0000000580)=""/222, 0xde}], 0x7}, 0x1}, {{&(0x7f0000000700)=@llc, 0x80, &(0x7f0000000880)=[{&(0x7f0000000780)=""/233, 0xe9}], 0x1, &(0x7f00000008c0)=""/223, 0xdf}, 0xffffffffffffffcd}, {{&(0x7f00000009c0)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, 0x80, &(0x7f0000001e40)=[{&(0x7f0000000a40)=""/126, 0x7e}, {&(0x7f0000000ac0)=""/152, 0x98}, {&(0x7f0000000b80)=""/4096, 0x1000}, {&(0x7f0000001b80)=""/81, 0x51}, {&(0x7f0000001c00)=""/18, 0x12}, {&(0x7f0000001c40)=""/212, 0xd4}, {&(0x7f0000001d40)=""/196, 0xc4}], 0x7, &(0x7f0000001ec0)=""/4096, 0x1000}, 0x8}], 0x3, 0x40, 0x0) ioctl$sock_inet6_SIOCDIFADDR(r1, 0x8936, &(0x7f0000002f80)={@local, 0x7, r3}) setsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r2, 0x84, 0x12, &(0x7f00000003c0)=0x10001, 0x4) ioctl$RNDADDTOENTCNT(r1, 0x40045201, &(0x7f00000000c0)=0x7ff) [ 570.748322] RBP: 000000000073c180 R08: 0000000000000000 R09: 0000000000000000 [ 570.755617] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffb1e9c46d4 [ 570.762886] R13: 00000000004c4fae R14: 00000000004d8c70 R15: 00000000ffffffff [ 570.810742] dccp_close: ABORT with 1061 bytes unread [ 570.860192] gfs2: quota_quantum mount option requires a positive numeric argument [ 570.867865] gfs2: can't parse mount arguments 13:52:04 executing program 0: perf_event_open(&(0x7f000025c000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) memfd_create(&(0x7f0000000040)='#\x00', 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) r1 = socket$inet_dccp(0x2, 0x6, 0x0) prctl$PR_GET_KEEPCAPS(0x7) listen(r0, 0x6) setsockopt(r1, 0x10d, 0x800000000d, &(0x7f00001c9fff)="03", 0x1) connect$inet(r1, &(0x7f0000e5c000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10) ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c06, 0xffffffffffffffff) r2 = accept(r0, 0x0, 0x0) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0)='IPVS\x00') sendmsg$IPVS_CMD_NEW_DAEMON(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000280)={0x14, 0x0, 0x230}, 0x14}}, 0x0) syz_open_dev$adsp(0x0, 0x0, 0x0) inotify_add_watch(0xffffffffffffffff, 0x0, 0x9) sendmsg$IPVS_CMD_NEW_SERVICE(r2, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x48000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x3c, r3, 0x208, 0x70bd26, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_DEST={0x28, 0x2, [@IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x3}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x40}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@local}]}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20004840}, 0x8001) sendmmsg(r1, &(0x7f0000005700)=[{{&(0x7f0000003900)=@pptp, 0x80, &(0x7f0000003b80), 0x3a5, &(0x7f0000003bc0)}}], 0x3a6, 0x0) 13:52:04 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="000229bd7000fcdbdf2507000000b0000500080001007564700008000100696200001c00020008000100170000000800020009000000080004000100000008000100696200003c000200080002000800000008000100170000000800040006000000080004008f0000000800010011000000080004000000000008000200010000003c0002000800020003000000080002000100000008000200f800000008000300050000000800030001000000080004000900000008000300010000003c000100380004001400010002004e20e00000"], 0x1}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:52:04 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x74000000, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:52:04 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000240)='/dev/hwrng\x00', 0x400, 0x0) setsockopt$inet_sctp_SCTP_RECVRCVINFO(r1, 0x84, 0x20, &(0x7f0000000280), 0x4) syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x400000, 0x0) perf_event_open$cgroup(&(0x7f0000000140)={0x7, 0x70, 0xfffffffffffffc00, 0x0, 0x4, 0x0, 0x0, 0x11c00000000000, 0x22300, 0x1, 0x8001, 0x1, 0x100000000, 0x4, 0x670, 0x80000000, 0x4, 0x4, 0x5, 0x9, 0x3, 0x91f, 0x10000, 0x8000, 0xef5, 0x7, 0xfffffffffffffffd, 0xfffffffffffffffe, 0x960f, 0x4, 0x5, 0xfffffffffffffff9, 0x0, 0x3, 0x7, 0x1000, 0x2, 0xcca, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000100), 0x8}, 0xc00, 0x3, 0x7f, 0xb, 0x61, 0x0, 0x1}, r2, 0xe, r2, 0x3) syz_init_net_socket$netrom(0x6, 0x5, 0x0) sysfs$2(0x2, 0x20, &(0x7f00000001c0)=""/105) ioctl$SNDRV_TIMER_IOCTL_TREAD(r2, 0x40045402, &(0x7f00000000c0)) [ 571.160903] gfs2: quota_quantum mount option requires a positive numeric argument [ 571.229465] gfs2: can't parse mount arguments [ 571.278830] gfs2: quota_quantum mount option requires a positive numeric argument 13:52:04 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) r2 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) [ 571.328063] gfs2: can't parse mount arguments 13:52:04 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x7a000000, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 571.556278] gfs2: quota_quantum mount option requires a positive numeric argument [ 571.622445] gfs2: can't parse mount arguments 13:52:05 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) syz_genetlink_get_family_id$team(&(0x7f0000000000)='team\x00') r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) [ 571.687772] gfs2: quota_quantum mount option requires a positive numeric argument [ 571.739401] gfs2: can't parse mount arguments 13:52:05 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x8cffffff, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) [ 571.872477] dccp_close: ABORT with 1061 bytes unread 13:52:05 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="000229bd7000fcdbdf2507000000b0000500080001007564700008000100696200001c00020008000100170000000800020009000000080004000100000008000100696200003c000200080002000800000008000100170000000800040006000000080004008f0000000800010011000000080004000000000008000200010000003c0002000800020003000000080002000100000008000200f800000008000300050000000800030001000000080004000900000008000300010000003c000100380004001400010002004e20e00000020000000000000000200002000a004e21000000a6fe880000000000000000000000000101feffffff0c000500080001006962000064000700080002005f6a000008000100ff0700000c00040000000800000000000c00030002000000000000000800020006000000"], 0x1}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:52:05 executing program 0: perf_event_open(&(0x7f000025c000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) memfd_create(&(0x7f0000000040)='#\x00', 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) r1 = socket$inet_dccp(0x2, 0x6, 0x0) prctl$PR_GET_KEEPCAPS(0x7) listen(r0, 0x6) setsockopt(r1, 0x10d, 0x800000000d, &(0x7f00001c9fff)="03", 0x1) connect$inet(r1, &(0x7f0000e5c000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10) ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c06, 0xffffffffffffffff) r2 = accept(r0, 0x0, 0x0) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0)='IPVS\x00') sendmsg$IPVS_CMD_NEW_DAEMON(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000280)={0x14, 0x0, 0x230}, 0x14}}, 0x0) syz_open_dev$adsp(0x0, 0x0, 0x0) inotify_add_watch(0xffffffffffffffff, 0x0, 0x9) sendmsg$IPVS_CMD_NEW_SERVICE(r2, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x48000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x3c, r3, 0x208, 0x70bd26, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_DEST={0x28, 0x2, [@IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x3}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x40}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@local}]}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20004840}, 0x8001) sendmmsg(r1, &(0x7f0000005700)=[{{&(0x7f0000003900)=@pptp, 0x80, &(0x7f0000003b80), 0x3a5, &(0x7f0000003bc0)}}], 0x3a6, 0x0) 13:52:05 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") r2 = getpgrp(0xffffffffffffffff) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000014c0)={0x0, 0x0}, &(0x7f0000001500)=0xc) getgroups(0x9, &(0x7f0000001540)=[0x0, 0xffffffffffffffff, 0xee00, 0xee01, 0xee00, 0x0, 0x0, 0xffffffffffffffff, 0x0]) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000001780)=0x0) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffff9c, 0x29, 0x23, &(0x7f00000017c0)={{{@in=@dev, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@empty}, 0x0, @in=@loopback}}, &(0x7f00000018c0)=0xe8) getresgid(&(0x7f0000001900), &(0x7f0000001940)=0x0, &(0x7f0000001980)) sendmmsg$unix(r1, &(0x7f0000001a00)=[{&(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000100)="9152f13bb8b9b6f20046fc67ebf9aa0e5f1e4417f9d9b38ee812568fa205edf2d11314995f38", 0x26}, {&(0x7f0000000140)="39013ab7c080b12e8152552525720ae65415df6f49bfc44a45b13fdc1e5ad009b6ed5dc758f52aac0b96d53d4168a1982fb08a5829d0ce023cd534d8f03bc3ff691fb5215ff8d889327fd6eb4e77e0d7be7b49c0607cf00608a1dced6ed2ac87c1de9c86cade7c58eb1399a9b514d92037d8d1e8cce95c6eef885f01abc6d940c1ed2888bb5faa5f965562f1528676664fb000b4e6a3fcc04328a0e923e9dc07507be8e1385ebb7c0dd7672bd8e277cfa29ac105d41e742377979ebbc3451b42f2d90be77a06829da0719b25191e20059493ddb3dd2daa6579fb0dbf48e18d89335104a039a5e655d67af86fc78c05f460d30bee", 0xf4}, {&(0x7f0000000240)="10a7c2bcf78e7a79fb6e171a7c19fb351fafd3889ee41a85cdacd25a7c505ec6d6a24dc025625886dce87153ac52f3dfe5fc1b6e26c3e57c2763ca2aada664736d46", 0x42}, {&(0x7f00000002c0)="4c8cc2d68f89d1f7269a8fd874c1a7bc8b29e9b51f80d20c4d1aaf8c984d7e71dcc34b8890f162108a22f8679ff80e1a2db9f16d766709df263dedeeb714e81805b3c21a08a6949bda3ff764d5eeb0193e1caa585b325040dffcd3271e44f451b84aba482b3174dab304e6b291dc091bbdf99debba9b8fa07e93855b3130ac6d29e146bb6a2d0cd219ea02c404d58ccc5f58c9918629591c7fef4e03c9c2fe6c0de91155e01a8762d7590843c5bb90c954b6431a3eb33c3500b5583a4915239c24e05b731ebd5a747da4f1acc7db81535196ee44ba5667ae7c70c7d8a2", 0xdd}], 0x4, 0x0, 0x0, 0xb18098d34d3ed3dc}, {&(0x7f0000000400)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000001480)=[{&(0x7f0000000480)="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", 0x1000}], 0x1, &(0x7f0000001580)=ANY=[@ANYBLOB="20000000000000000100000001000000", @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r0, @ANYBLOB="0000000020000000000000000100000001000000", @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00 \x00\x00\x00\x00\x00\x00\x00', @ANYRES32=r2, @ANYRES32=r3, @ANYRES32=r4, @ANYBLOB='\x00\x00\x00\x00'], 0x60, 0x4}, {&(0x7f0000001600)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000001740)=[{&(0x7f0000001680)="b798e5e002c1f86618733d85f9b5883214860cec7452da2a33eb87c5290773928f1ff8d54d3b2279a8a8566a746dccc92126dcecacf214041864537c94b6ab45224b82f94bd40136f8d7d54da6b3a43d2c76049d9e3463948dd3c5225a9f76bf664489a7a32be2c3576549f95911d94bbbdea6ea5ce594b8cc8afadd26ca12d36a1ba57ff7ed6ed4da0c9bcbc8760f585b531f80538dba79cea2ed9b32fc76a1d7eb52abc96c5c9165b9", 0xaa}], 0x1, &(0x7f00000019c0)=[@cred={0x20, 0x1, 0x2, r5, r6, r7}], 0x20, 0x4004000}], 0x3, 0x40000) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:52:05 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) dup2(r0, r0) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) 13:52:05 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x97ffffff, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:52:05 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) dup2(r0, r0) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) 13:52:05 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0xc0ed0000, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:52:05 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) dup2(r0, r0) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) 13:52:05 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) [ 572.442487] gfs2: quota_quantum mount option requires a positive numeric argument [ 572.474433] gfs2: can't parse mount arguments 13:52:06 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) [ 572.547929] gfs2: quota_quantum mount option requires a positive numeric argument [ 572.556078] gfs2: can't parse mount arguments 13:52:06 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) r3 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-monitor\x00', 0x101000, 0x0) setsockopt$SO_RDS_MSG_RXPATH_LATENCY(r3, 0x114, 0xa, &(0x7f0000000040), 0x1) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:52:06 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) [ 572.790714] dccp_close: ABORT with 80 bytes unread 13:52:06 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="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"], 0x1}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:52:06 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0xf6ffffff, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:52:06 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup3(r1, r0, 0x80000) ioctl$SNDRV_CTL_IOCTL_PCM_INFO(r2, 0xc1205531, &(0x7f0000000080)={0x5, 0xfffffffffffffff8, 0x8, 0x2, [], [], [], 0x3f, 0x0, 0x101, 0xfff, "a6d663a4d763a0165baee214cc30b30a"}) syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:52:06 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) 13:52:06 executing program 0: perf_event_open(&(0x7f000025c000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) memfd_create(&(0x7f0000000040)='#\x00', 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) r1 = socket$inet_dccp(0x2, 0x6, 0x0) prctl$PR_GET_KEEPCAPS(0x7) listen(r0, 0x6) setsockopt(r1, 0x10d, 0x800000000d, &(0x7f00001c9fff)="03", 0x1) connect$inet(r1, &(0x7f0000e5c000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10) ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c06, 0xffffffffffffffff) r2 = accept(r0, 0x0, 0x0) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0)='IPVS\x00') sendmsg$IPVS_CMD_NEW_DAEMON(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000280)={0x14, 0x0, 0x230}, 0x14}}, 0x0) syz_open_dev$adsp(0x0, 0x0, 0x0) inotify_add_watch(0xffffffffffffffff, 0x0, 0x9) sendmsg$IPVS_CMD_NEW_SERVICE(r2, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x48000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x3c, r3, 0x208, 0x70bd26, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_DEST={0x28, 0x2, [@IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x3}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x40}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@local}]}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20004840}, 0x8001) sendmmsg(r1, &(0x7f0000005700)=[{{&(0x7f0000003900)=@pptp, 0x80, &(0x7f0000003b80), 0x3a5, &(0x7f0000003bc0)}}], 0x3a6, 0x0) 13:52:06 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0xfcfdffff, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:52:06 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) 13:52:06 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) 13:52:06 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0xfdfdffff, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:52:06 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) connect$inet6(r0, &(0x7f0000000080), 0x1c) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) 13:52:07 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x13, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000240)=0xb033d3e691026c04) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:52:07 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) connect$inet6(r0, &(0x7f0000000080), 0x1c) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) 13:52:07 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="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"], 0x1}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:52:07 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0xfdffffff, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:52:07 executing program 4: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffff9c, 0x84, 0x7c, &(0x7f0000000080)={0x0, 0x2, 0x17d}, &(0x7f00000000c0)=0x8) setsockopt$inet_sctp_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000100)={r1, 0x370a8ae7, 0x3, [0x1000, 0xd5, 0x401]}, 0xe) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$inet_sctp6_SCTP_AUTOCLOSE(r0, 0x84, 0x4, &(0x7f0000000140), &(0x7f0000000180)=0x4) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) 13:52:07 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) connect$inet6(r0, &(0x7f0000000080), 0x1c) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) 13:52:07 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0xfffffdfc, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:52:07 executing program 0: perf_event_open(&(0x7f000025c000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) memfd_create(&(0x7f0000000040)='#\x00', 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) r1 = socket$inet_dccp(0x2, 0x6, 0x0) prctl$PR_GET_KEEPCAPS(0x7) listen(r0, 0x6) setsockopt(r1, 0x10d, 0x800000000d, &(0x7f00001c9fff)="03", 0x1) connect$inet(r1, &(0x7f0000e5c000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10) ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c06, 0xffffffffffffffff) r2 = accept(r0, 0x0, 0x0) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0)='IPVS\x00') sendmsg$IPVS_CMD_NEW_DAEMON(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000280)={0x14, 0x0, 0x230}, 0x14}}, 0x0) syz_open_dev$adsp(0x0, 0x0, 0x0) inotify_add_watch(0xffffffffffffffff, 0x0, 0x9) sendmsg$IPVS_CMD_NEW_SERVICE(r2, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x48000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x3c, r3, 0x208, 0x70bd26, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_DEST={0x28, 0x2, [@IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x3}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x40}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@local}]}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20004840}, 0x8001) sendmmsg(r1, &(0x7f0000005700)=[{{&(0x7f0000003900)=@pptp, 0x80, &(0x7f0000003b80), 0x3a5, &(0x7f0000003bc0)}}], 0x3a6, 0x0) 13:52:07 executing program 3: setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(0xffffffffffffffff, &(0x7f0000000080), 0x1c) r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x3d) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x42803) [ 574.123619] cgroup: fork rejected by pids controller in /syz3 13:52:07 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0xfffffdfd, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:52:07 executing program 3: setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(0xffffffffffffffff, &(0x7f0000000080), 0x1c) r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x3d) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x42803) 13:52:07 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)) syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/conntrack\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x2, &(0x7f00000000c0)={0xffffffffffffffff}, 0x13f, 0x1000}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r0, &(0x7f0000000140)={0x15, 0x110, 0xfa00, {r1, 0x5434, 0x0, 0x0, 0x0, @in={0x2, 0x4e22, @loopback}, @in6={0xa, 0x7, 0x5f248000000000, @loopback, 0x7}}}, 0x118) ioctl$KVM_SET_IDENTITY_MAP_ADDR(r0, 0x4008ae48, &(0x7f0000000280)=0x4) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 13:52:07 executing program 5: ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = getpid() r1 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm_plock\x00', 0x10000, 0x0) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000200)='IPVS\x00') sendmsg$IPVS_CMD_NEW_DAEMON(r1, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x28100300}, 0xc, &(0x7f0000000240)={&(0x7f00000003c0)={0xc4, r2, 0x114, 0x70bd2b, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_DEST={0x50, 0x2, [@IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e21}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x3ff}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0xa}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e20}, @IPVS_DEST_ATTR_L_THRESH={0x8}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x50eaa758}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@initdev={0xac, 0x1e, 0x1, 0x0}}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x9}]}, @IPVS_CMD_ATTR_DAEMON={0x60, 0x3, [@IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @local}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @rand_addr="9ce98083c89dcd27f1e3c1b485c0b97d"}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e23}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'nr0\x00'}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @broadcast}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x9}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @remote}]}]}, 0xc4}, 0x1, 0x0, 0x0, 0x41}, 0x4040081) rt_tgsigqueueinfo(r0, r0, 0x16, &(0x7f00000000c0)) perf_event_open(&(0x7f0000000500)={0x5, 0x70, 0x20, 0x40, 0x0, 0x6, 0x0, 0x9, 0x100, 0x8, 0x3, 0xa181, 0x6b9, 0x8, 0x5, 0x8, 0x3, 0x4, 0x800, 0x1, 0x6, 0x4, 0x80000000, 0xffff, 0x200, 0x1, 0x7, 0x50a5, 0x5, 0x1ff, 0x1000, 0x1, 0xfa, 0x5eb, 0x8, 0x101, 0x800000000, 0xfff, 0x0, 0x5, 0x915b61b2778ce99f, @perf_bp={&(0x7f00000004c0), 0x8}, 0x30001, 0x40, 0x86, 0x4, 0x688, 0x2, 0x3}, r0, 0x6, r1, 0x2) ptrace(0x10, r0) r3 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) ioctl$VIDIOC_SUBDEV_G_FMT(r1, 0xc0585604, &(0x7f0000000300)={0x0, 0x0, {0x3, 0x7fff, 0x302b, 0x7, 0xc, 0xf, 0x2, 0x6}}) write(r3, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r3, 0x0) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x80000, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(0xffffffffffffffff, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r0, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:52:07 executing program 3: setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(0xffffffffffffffff, &(0x7f0000000080), 0x1c) r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x3d) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x42803) 13:52:07 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="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"], 0x1}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:52:08 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0xffffff7f, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:52:08 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) 13:52:08 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0xffffff8c, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:52:08 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) 13:52:08 executing program 0: perf_event_open(&(0x7f000025c000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) memfd_create(&(0x7f0000000040)='#\x00', 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) r1 = socket$inet_dccp(0x2, 0x6, 0x0) prctl$PR_GET_KEEPCAPS(0x7) listen(r0, 0x6) setsockopt(r1, 0x10d, 0x800000000d, &(0x7f00001c9fff)="03", 0x1) connect$inet(r1, &(0x7f0000e5c000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10) ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c06, 0xffffffffffffffff) r2 = accept(r0, 0x0, 0x0) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0)='IPVS\x00') sendmsg$IPVS_CMD_NEW_DAEMON(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000280)={0x14, 0x0, 0x230}, 0x14}}, 0x0) syz_open_dev$adsp(0x0, 0x0, 0x0) inotify_add_watch(0xffffffffffffffff, 0x0, 0x9) sendmsg$IPVS_CMD_NEW_SERVICE(r2, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x48000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x3c, r3, 0x208, 0x70bd26, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_DEST={0x28, 0x2, [@IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x3}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x40}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@local}]}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20004840}, 0x8001) sendmmsg(r1, &(0x7f0000005700)=[{{&(0x7f0000003900)=@pptp, 0x80, &(0x7f0000003b80), 0x3a5, &(0x7f0000003bc0)}}], 0x3a6, 0x0) 13:52:08 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) 13:52:08 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0xffffff97, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:52:08 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x0, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) 13:52:08 executing program 4: ioctl$sock_SIOCGPGRP(0xffffffffffffff9c, 0x8904, &(0x7f0000000080)=0x0) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f00000000c0)={0x0, 0x0}) r2 = socket$nl_route(0x10, 0x3, 0x0) pipe(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = openat$ion(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ion\x00', 0x430000, 0x0) kcmp$KCMP_EPOLL_TFD(r0, r1, 0x7, r2, &(0x7f0000000180)={r3, r4, 0x8001}) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) 13:52:08 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) r3 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) getsockopt$inet_sctp_SCTP_RECVNXTINFO(r3, 0x84, 0x21, &(0x7f0000000040), &(0x7f00000001c0)=0x4) 13:52:08 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x0, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) 13:52:08 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0xfffffff6, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:52:08 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="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"], 0x1}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:52:09 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x0, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) 13:52:09 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0xfffffffd, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:52:09 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, 0x0, 0x0) connect$inet6(r0, &(0x7f0000000080), 0x1c) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) 13:52:09 executing program 0: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="000229bd7000fcdbdf2507000000b0000500080001007564700008000100696200001c00020008000100170000000800020009000000080004000100000008000100696200003c000200080002000800000008000100170000000800040006000000080004008f0000000800010011000000080004000000000008000200010000003c0002000800020003000000080002000100000008000200f800000008000300050000000800030001000000080004000900000008000300010000003c000100380004001400010002004e20e00000020000000000000000200002000a004e21000000a6fe880000000000000000000000000101feffffff0c000500080001006962000064000700080002005f6a000008000100ff0700000c00040000000800000000000c00030002000000000000000800020006000000"], 0x1}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:52:09 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x1000000000, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:52:09 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, 0x0, 0x0) connect$inet6(r0, &(0x7f0000000080), 0x1c) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) 13:52:09 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, 0x0, 0x0) connect$inet6(r0, &(0x7f0000000080), 0x1c) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) 13:52:09 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000000)=0x0) sched_setparam(r1, &(0x7f0000000100)=0x6) syz_execute_func(&(0x7f0000000080)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") prctl$PR_SET_ENDIAN(0x14, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 13:52:09 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/net/pfkey\x00', 0x200, 0x0) ioctl$PPPIOCNEWUNIT(r1, 0xc004743e, &(0x7f0000000340)=0x2) clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = getpid() write$binfmt_elf64(r1, &(0x7f0000000540)={{0x7f, 0x45, 0x4c, 0x46, 0x8000, 0x5, 0xf3, 0x81, 0x3f, 0x3, 0x3e, 0x1, 0x348, 0x40, 0xa9, 0x90000000, 0x3, 0x38, 0x2, 0x6, 0xffff, 0x7}, [{0x7, 0xff3b, 0x6, 0xffffffffffff8000, 0x2d6, 0x1, 0x7ff, 0x8}, {0x60000000, 0x0, 0x81, 0x1, 0x11, 0x20, 0x23b, 0xfdeb}], "c4ad9fd8d6586ea6a9c05834363732299b5dcc578cba6bf769f68be412d0092eb1", [[], [], [], [], [], [], [], []]}, 0x8d1) rt_tgsigqueueinfo(r2, r2, 0x16, &(0x7f00000000c0)) ptrace(0xffffffffffffffff, r2) r3 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r3, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r3, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) eventfd(0x4) r4 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0xcf, 0xa0240) ioctl$sock_inet_tcp_SIOCOUTQNSD(r3, 0x894b, &(0x7f0000000240)) getsockopt$inet_sctp6_SCTP_NODELAY(r4, 0x84, 0x3, &(0x7f00000001c0), &(0x7f0000000200)=0x4) fstat(r3, &(0x7f00000004c0)) 13:52:09 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0xedc000000000, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:52:09 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="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"], 0x1}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:52:09 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280), 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) 13:52:09 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280), 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) 13:52:10 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x4000000000000, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:52:10 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280), 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) 13:52:10 executing program 0: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="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"], 0x1}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:52:10 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x40000000000000, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:52:10 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(0xffffffffffffffff, &(0x7f0000000080), 0x1c) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) 13:52:10 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(0xffffffffffffffff, &(0x7f0000000080), 0x1c) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) 13:52:10 executing program 4: r0 = syz_open_dev$mouse(&(0x7f0000000080)='/dev/input/mouse#\x00', 0x80000001, 0x1c1100) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffff9c, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x80000}) r2 = syz_open_dev$mouse(&(0x7f0000000100)='/dev/input/mouse#\x00', 0x101, 0x1) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f0000000140)={r1, 0x80000, r2}) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") syz_init_net_socket$x25(0x9, 0x5, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) 13:52:10 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000000)='/proc/capi/capi20\x00', 0x0, 0x0) bind$rxrpc(r1, &(0x7f0000000040)=@in4={0x21, 0x2, 0x2, 0x10, {0x2, 0x4e23, @broadcast}}, 0x24) r2 = getpid() rt_tgsigqueueinfo(r2, r2, 0x16, &(0x7f00000000c0)) ptrace(0x10, r2) r3 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r3, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r3, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r2, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:52:10 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="000229bd7000fcdbdf2507000000b0000500080001007564700008000100696200001c00020008000100170000000800020009000000080004000100000008000100696200003c000200080002000800000008000100170000000800040006000000080004008f0000000800010011000000080004000000000008000200010000003c0002000800020003000000080002000100000008000200f800000008000300050000000800030001000000080004000900000008000300010000003c000100380004001400010002004e20e00000020000000000000000200002000a004e21000000a6fe880000000000000000000000000101feffffff0c000500080001006962000064000700080002005f6a000008000100ff0700000c00040000000800000000000c000300020000000000000008000200060000000c0004001f000000000000000800010009000000080001000400000008000100000200000c0003000800000000000000340002000800020005000000040004000400040004000400080002000100"], 0x1}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:52:10 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x100000000000000, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:52:10 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(0xffffffffffffffff, &(0x7f0000000080), 0x1c) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) 13:52:10 executing program 0: perf_event_open(&(0x7f000025c000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) memfd_create(&(0x7f0000000040)='#\x00', 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) r1 = socket$inet_dccp(0x2, 0x6, 0x0) prctl$PR_GET_KEEPCAPS(0x7) listen(r0, 0x6) setsockopt(r1, 0x10d, 0x800000000d, &(0x7f00001c9fff)="03", 0x1) connect$inet(r1, &(0x7f0000e5c000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10) ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c06, 0xffffffffffffffff) r2 = accept(r0, 0x0, 0x0) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0)='IPVS\x00') sendmsg$IPVS_CMD_NEW_DAEMON(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000280)={0x14, 0x0, 0x230}, 0x14}}, 0x0) syz_open_dev$adsp(0x0, 0x0, 0x0) inotify_add_watch(0xffffffffffffffff, 0x0, 0x9) sendmsg$IPVS_CMD_NEW_SERVICE(r2, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x48000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x3c, r3, 0x208, 0x70bd26, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_DEST={0x28, 0x2, [@IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x3}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x40}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@local}]}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20004840}, 0x8001) sendmmsg(r1, &(0x7f0000005700)=[{{&(0x7f0000003900)=@pptp, 0x80, &(0x7f0000003b80), 0x3a5, &(0x7f0000003bc0)}}], 0x3a6, 0x0) 13:52:11 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x200000000000000, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:52:11 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r0, 0x0, 0x0) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) 13:52:11 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r0, 0x0, 0x0) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) 13:52:11 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x300000000000000, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:52:11 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="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"], 0x1}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:52:11 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r0, 0x0, 0x0) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) 13:52:11 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) r1 = dup2(0xffffffffffffffff, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) 13:52:11 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") fcntl$dupfd(r0, 0x0, r0) dup3(r0, r1, 0x80000) r2 = perf_event_open$cgroup(&(0x7f00000010c0)={0x7, 0x70, 0x6, 0x12, 0x0, 0xcc, 0x0, 0x6, 0x9400, 0x2, 0x8, 0x80000001, 0x1, 0xfffffffffffffffd, 0x1, 0x2, 0x72, 0xffffffffffff40c3, 0x645, 0x2, 0x7f, 0xfffffffffffffff8, 0x3, 0x5, 0x9, 0x1, 0x2, 0x0, 0x1, 0x5, 0xffffffff, 0x80000000, 0x80, 0x0, 0x1, 0xffff, 0x3, 0x0, 0x0, 0x800, 0x4, @perf_bp={&(0x7f0000001080), 0x8}, 0x10000, 0xfffffffffffffffe, 0x1ff, 0x5, 0x8, 0x5, 0x1}, 0xffffffffffffffff, 0xc, 0xffffffffffffff9c, 0x1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = dup3(r1, r1, 0x80000) ioctl$BLKGETSIZE(r3, 0x1260, &(0x7f0000001140)) ioctl$EVIOCGUNIQ(r3, 0x80404508, &(0x7f0000000080)=""/4096) 13:52:11 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:52:11 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x400000000000000, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:52:11 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) r1 = dup2(0xffffffffffffffff, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) 13:52:11 executing program 0: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$radio(&(0x7f00000000c0)='/dev/radio#\x00', 0x3, 0x2) ioctl$SG_GET_RESERVED_SIZE(r0, 0x2272, &(0x7f0000000100)) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='clear_refs\x00') r2 = syz_open_procfs(0x0, &(0x7f0000000180)='stat\x00') sendfile(r1, r2, &(0x7f0000000040), 0x1) r3 = syz_genetlink_get_family_id$tipc2(&(0x7f00000001c0)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r2, &(0x7f00000002c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x68, r3, 0x102, 0x70bd26, 0x25dfdbfd, {}, [@TIPC_NLA_MEDIA={0x54, 0x5, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1f}]}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x33}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}]}]}, 0x68}, 0x1, 0x0, 0x0, 0x4}, 0x40840) 13:52:11 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) r1 = dup2(0xffffffffffffffff, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) 13:52:11 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x500000000000000, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:52:12 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) r1 = dup2(r0, 0xffffffffffffffff) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) 13:52:12 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x600000000000000, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:52:12 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="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"], 0x1}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:52:12 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) r1 = dup2(r0, 0xffffffffffffffff) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) 13:52:12 executing program 0: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$radio(&(0x7f00000000c0)='/dev/radio#\x00', 0x3, 0x2) ioctl$SG_GET_RESERVED_SIZE(r0, 0x2272, &(0x7f0000000100)) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='clear_refs\x00') r2 = syz_open_procfs(0x0, &(0x7f0000000180)='stat\x00') sendfile(r1, r2, &(0x7f0000000040), 0x1) r3 = syz_genetlink_get_family_id$tipc2(&(0x7f00000001c0)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r2, &(0x7f00000002c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x68, r3, 0x102, 0x70bd26, 0x25dfdbfd, {}, [@TIPC_NLA_MEDIA={0x54, 0x5, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1f}]}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x33}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}]}]}, 0x68}, 0x1, 0x0, 0x0, 0x4}, 0x40840) 13:52:12 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) syz_execute_func(&(0x7f00000009c0)="3640de6433ef937bd667f2440f34a2ebf717c4dc7518ffc4e24d0b3ef1d646dec5631f1f63ad489e66460fd9cc0000c4615d7c3dd2280000260f850bc50000aec4817911350e0000810000c422c5aa717ae5db70f426660fdd6a4444420f1c9d00f8ffff") r1 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000080)='/proc/capi/capi20ncci\x00', 0x800, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f0000000240)={{{@in6=@initdev, @in=@local}}, {{@in=@dev}, 0x0, @in=@initdev}}, &(0x7f0000000340)=0xe8) setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000600)=@broute={'broute\x00', 0x20, 0x1, 0x220, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200003c0], 0x0, &(0x7f0000000380), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x5, 0x32, 0x22f0, 'veth0_to_team\x00', 'gre0\x00', 'team_slave_1\x00', 'vcan0\x00', @local, [0x0, 0xff, 0xff, 0xff, 0x0, 0xff], @broadcast, [0x0, 0xff, 0x0, 0xff, 0xff, 0xff], 0xa0, 0x118, 0x160, [@pkttype={'pkttype\x00', 0x8, {{0x4, 0x1}}}]}, [@common=@nflog={'nflog\x00', 0x50, {{0x80000000, 0x8001, 0x1, 0x0, 0x0, "fbcd06d6ebd103ecded361531dc1de695b3b207a97a1122f00cfae91ac469be69b5e2111d14297e07e1bcc262e1870ab75092579cac2a69d9e6d5172f058e12f"}}}]}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz1\x00', 0xfff, 0x4, 0x6}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff}]}, 0x298) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(0xffffffffffffff9c, 0x84, 0x71, &(0x7f00000000c0)={0x0, 0x8}, &(0x7f0000000100)=0x8) r3 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000680)='/dev/ubi_ctrl\x00', 0x101000, 0x0) ioctl$KDGKBENT(r1, 0x4b46, &(0x7f0000000200)={0x2, 0x1, 0x1}) ioctl$KVM_XEN_HVM_CONFIG(r3, 0x4038ae7a, &(0x7f0000000780)={0x117e, 0xc0010aff, &(0x7f0000000040), &(0x7f00000006c0)="d10b1eadd81fab5de13c2fbc1517691c7f5294deacf89c8aeb6f4ea2664b0ee73c0f9a9d89cf59ce111e4403bb3225fdac4abb1ffad06cf6fa031066dba5feb0b3bffac9430b29a517967b3c28e7a56f616334d05f4065fb3fc8a77fcc29208beacfdb91e58cc854b624db5f33fbb660f6e1983ffee9dfc72230ef79942e114a6f82f0b9ebdf6ab7ec6dff049d", 0x0, 0x8d}) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000140)={r2, @in6={{0xa, 0x4e23, 0xb1, @local, 0x800}}, 0x40, 0x2, 0x5, 0x0, 0x42}, 0x98) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 13:52:12 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = getpid() rt_tgsigqueueinfo(r1, r1, 0x16, &(0x7f00000000c0)) ptrace(0x10, r1) r2 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) r3 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) ioctl$SG_SET_DEBUG(r3, 0x227e, &(0x7f0000000040)) ptrace$setregset(0x4204, r1, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:52:12 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) r1 = dup2(r0, 0xffffffffffffffff) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) 13:52:12 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x700000000000000, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:52:12 executing program 4: socketpair$unix(0x1, 0x7, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) syz_execute_func(&(0x7f0000000000)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) ioctl$FITRIM(r0, 0xc0185879, &(0x7f0000000100)={0x400, 0x3, 0x1}) r1 = syz_open_procfs(0x0, &(0x7f0000000140)='stack\x00') ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TEMPO(r1, 0xc02c5341, &(0x7f0000000180)) r2 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x800, 0x0) connect$rose(r2, &(0x7f00000000c0)=@short={0xb, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x1, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}}, 0x1c) fsetxattr$trusted_overlay_nlink(r2, &(0x7f0000000200)='trusted.overlay.nlink\x00', &(0x7f0000000240)={'U+', 0x401}, 0x28, 0x3) 13:52:12 executing program 0: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$radio(&(0x7f00000000c0)='/dev/radio#\x00', 0x3, 0x2) ioctl$SG_GET_RESERVED_SIZE(r0, 0x2272, &(0x7f0000000100)) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='clear_refs\x00') r2 = syz_open_procfs(0x0, &(0x7f0000000180)='stat\x00') sendfile(r1, r2, &(0x7f0000000040), 0x1) r3 = syz_genetlink_get_family_id$tipc2(&(0x7f00000001c0)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r2, &(0x7f00000002c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x68, r3, 0x102, 0x70bd26, 0x25dfdbfd, {}, [@TIPC_NLA_MEDIA={0x54, 0x5, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1f}]}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x33}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}]}]}, 0x68}, 0x1, 0x0, 0x0, 0x4}, 0x40840) 13:52:12 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) 13:52:12 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x900000000000000, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:52:13 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f023c123f3188a070") getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffff9c, 0x29, 0x23, &(0x7f00000001c0)={{{@in6=@local, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@local}, 0x0, @in=@local}}, &(0x7f0000000000)=0xe8) fstat(r0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) fchown(r0, r1, r2) clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r3 = getpid() rt_tgsigqueueinfo(r3, r3, 0x16, &(0x7f00000000c0)) ptrace(0x10, r3) r4 = memfd_create(&(0x7f0000000100)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r4, &(0x7f0000000380)='`', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r4, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, 0x0, &(0x7f0000000080)) ptrace$setregset(0x4204, r3, 0x202, &(0x7f00000002c0)={0x0, 0xf7}) 13:52:13 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe(&(0x7f00000005c0)={0xffffffffffffffff}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000640)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2200040}, 0xc, &(0x7f0000000680)={&(0x7f0000000800)=ANY=[@ANYBLOB="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"], 0x1}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000200)="b8010000000f01d965660faeb603000000b8358556370f23c80f21f8350400d0000f23f8640fc7ae02000000ea00600000fa00c4c18566220f20d835080000000f22d8360f01cf66baf80cb83bd30c85ef66bafc0cb06aee0fc7b49f0a000000", 0x60}], 0x1, 0x5, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40, 0x0) fcntl$getown(r0, 0x9) sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x840003}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x800) bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:52:13 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) 13:52:13 executing program 0: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x8}, 0x2c) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGSND(0xffffffffffffffff, 0x8040451a, &(0x7f0000000500)=""/217) futex(&(0x7f00000006c0), 0x0, 0x2, 0x0, 0x0, 0x0) epoll_wait(0xffffffffffffffff, 0x0, 0x0, 0x40) r1 = socket$can_raw(0x1d, 0x3, 0x1) bind$can_raw(r1, &(0x7f0000000140), 0x10) setsockopt(r1, 0x65, 0x1, &(0x7f0000000700)="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", 0x258) syz_open_dev$dri(&(0x7f0000000240)='/dev/dri/card#\x00', 0x0, 0x0) epoll_wait(r0, &(0x7f0000000000)=[{}, {}, {}, {}], 0x4, 0x4f25) close(r1) getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(0xffffffffffffffff, 0x84, 0x71, 0x0, &(0x7f0000000480)) unshare(0x40000000) 13:52:13 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0xa00000000000000, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001']) 13:52:13 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) 13:52:13 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) syz_execute_func(&(0x7f0000000100)="3642926433ef93f6c89c7bd667f2440f34a2ebf717c4dc7518ffc4e24d3ef9d6722b691f1f63ad489e66460fd9cc000000615167660fda9803000000aec4817911350e000000fdc422c5aa717ae5db6726660fdd6244a77e") ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) [ 580.100408] IPVS: ftp: loaded support on port[0] = 21 13:52:13 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, 0x0, 0x0) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x0, 0x0}, 0x8) ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x3d) fcntl$setstatus(r0, 0x4, 0x42803) 13:52:13 executing program 1: syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x1000000000000000, &(0x7f0000000580)=ANY=[@ANYBLOB='quota_quantum=0x0000000100000001'])