0000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, 0x0, 0x0, 0x11, 0x0, 0x0) 18:15:14 executing program 2: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, 0x0, 0x0, 0x11, 0x0, 0x0) 18:15:14 executing program 2: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, 0x0, 0x0, 0x11, 0x0, 0x0) 18:15:14 executing program 2: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300), 0x0, 0x11, 0x0, 0x0) 18:15:14 executing program 2: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300), 0x0, 0x11, 0x0, 0x0) [ 1207.303865] Bluetooth: hci1: command 0x1003 tx timeout [ 1207.309230] Bluetooth: hci0: command 0x1003 tx timeout [ 1207.309268] Bluetooth: hci1: sending frame failed (-49) [ 1207.320137] Bluetooth: hci0: sending frame failed (-49) [ 1207.383748] Bluetooth: hci2: command 0x1003 tx timeout [ 1207.389396] Bluetooth: hci2: sending frame failed (-49) [ 1209.383830] Bluetooth: hci0: command 0x1001 tx timeout [ 1209.383846] Bluetooth: hci1: command 0x1001 tx timeout [ 1209.389214] Bluetooth: hci0: sending frame failed (-49) [ 1209.399765] Bluetooth: hci1: sending frame failed (-49) [ 1209.463819] Bluetooth: hci2: command 0x1001 tx timeout [ 1209.469256] Bluetooth: hci2: sending frame failed (-49) [ 1211.463800] Bluetooth: hci0: command 0x1009 tx timeout [ 1211.463805] Bluetooth: hci1: command 0x1009 tx timeout [ 1211.543833] Bluetooth: hci2: command 0x1009 tx timeout 18:15:24 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) mkdir(&(0x7f0000000100)='./file0/file0\x00', 0x0) 18:15:24 executing program 2: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300), 0x0, 0x11, 0x0, 0x0) 18:15:24 executing program 3: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) prctl$PR_SET_TSC(0x1a, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000180)={&(0x7f0000000040)='./file0\x00', r3}, 0x10) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB="2c726f6f746d6f64653d3030834b16049018a47d12ab1ecadba6d6ec3030303030303030303030303030", @ANYRESDEC=0x0, @ANYBLOB=',group_ir=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0\x00', 0x80840, 0x175) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) mkdir(&(0x7f0000000100)='./file0/file0\x00', 0x0) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000002c0f}}}, 0x90) 18:15:24 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffdb) 18:15:24 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xfffffdfd) 18:15:24 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) r1 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x0, 0x4002011, r1, 0x0) ioctl$SIOCSIFHWADDR(r1, 0x8924, &(0x7f0000000000)={'veth1_virt_wifi\x00', @broadcast}) 18:15:24 executing program 2: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0x1, 0x0, 0x0, 0x0) 18:15:24 executing program 3: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) r1 = open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) getsockopt$llc_int(r1, 0x10c, 0x1, &(0x7f0000000040), &(0x7f0000000180)=0x4) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) mkdir(&(0x7f0000000100)='./file0/file0\x00', 0x0) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, 0x0, 0x0, 0x8, 0x40000002c0f}}}, 0x6f) [ 1215.532363] Bluetooth: hci0: Frame reassembly failed (-84) [ 1215.540188] Bluetooth: hci0: Frame reassembly failed (-84) [ 1215.561400] Bluetooth: hci2: Frame reassembly failed (-84) [ 1215.561447] Bluetooth: hci2: Frame reassembly failed (-84) [ 1215.570974] Bluetooth: hci2: Frame reassembly failed (-84) 18:15:24 executing program 2: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0x1, 0x0, 0x0, 0x0) 18:15:25 executing program 2: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0x1, 0x0, 0x0, 0x0) 18:15:25 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000600)='/dev/dlm-monitor\x00', 0x400000, 0x0) connect$l2tp(r1, &(0x7f0000000640)={0x2, 0x0, @loopback, 0x1}, 0x10) ioctl$KDADDIO(r0, 0x400455c8, 0x1) r2 = creat(&(0x7f0000000380)='./bus\x00', 0x0) openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000680)='/proc/thread-self/attr/exec\x00', 0x2, 0x0) ioctl$EXT4_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000340)=0xe4) recvmsg$can_bcm(0xffffffffffffffff, &(0x7f0000000000)={&(0x7f0000000100)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @dev}}}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000180)=""/141, 0x8d}, {&(0x7f0000000240)=""/140, 0x8c}, {&(0x7f0000000300)=""/192, 0xc0}, {&(0x7f00000003c0)=""/82, 0x52}, {&(0x7f0000000440)=""/95, 0x5f}], 0x5, &(0x7f0000000540)=""/141, 0x8d}, 0x20) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup3(r3, r4, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) setsockopt$inet6_dccp_buf(r5, 0x21, 0xf, &(0x7f0000000900)="f8c14ca0a265cf64356a09bc25932c2438bc89e535d330e041f08d44c8c99e03b1d2959257024eaa12976f2a65d1605b0cf9a3a3d72989f154f01a5187c29317203fe33bed8b5e67e12f287e740d61c920eff5676a7ff36ceed0146646994bfb12e87a0d6d44b13820107edecc118916ad1cf339d94d12bd7409dd2ff974be7a4dd024daf071ca96af4ba53e44bb763b4bbd0a25caf639020926ff8304e25ad1b5eac99f84912f0e4ee7eb6031c2d2ef2bff4d68863df5e39ca28f791de854e47eb057844b38911312a0f9a3d04e59395c276580399c7123b20f0daabf8c4b3056ce386108cb10a6d79230d4aa866f781b53c6a1214c448d631cef", 0x9f) r6 = openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f0000000700)='/selinux/avc/cache_stats\x00', 0x0, 0x0) write$RDMA_USER_CM_CMD_RESOLVE_ROUTE(r6, &(0x7f0000000740)={0x4, 0x8, 0xfa00, {0xffffffffffffffff, 0x4}}, 0x10) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) ioctl$TUNSETSNDBUF(0xffffffffffffffff, 0x400454d4, &(0x7f00000006c0)=0x7) 18:15:25 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) mkdir(&(0x7f0000000100)='./file0/file0\x00', 0x0) 18:15:25 executing program 3: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) mkdir(&(0x7f0000000100)='./file0/file0\x00', 0x0) r1 = syz_open_dev$audion(&(0x7f0000000040)='/dev/audio#\x00', 0x5, 0x2000) sendmsg$nfc_llcp(r1, &(0x7f0000000740)={&(0x7f0000000180)={0x27, 0x1, 0x1, 0x2, 0x3, 0x2, "fafb94f71ebcbf2ac6e6294bb90a9e7a89efd2810de08d482c8f7a975a11bc49dfb06212803029c210391c9122fb635309147f9fbc373835f9189c858536bd", 0x3a}, 0x60, &(0x7f0000000600)=[{&(0x7f0000000340)="651b7617f326bf33350cf27a65779413e0e2ce991f90f695bc4ff07bbea094ada8b27aebc7fa22c2dbbfea7ac60fd987382e6d6276e399af24e7b6824b9f6d5ba7428c01639c77ca9f7b9373f5207ed45d28d1311ffd31b7a1961c380703d0bfec963ff9292570a1560b5bcbe653deb92a5d4b613f96a25999f0611482cef5bace4091aa2a3b263e383ccf9a627ad446184413c17e7f6658a6dbc33b341d124574d288ccd38a", 0xa6}, {&(0x7f0000000480)="d775baf4b1c1037ad3b200f514012a8eb335aaa75fb985d2f26c06f8a69be875e6f645cfdecad9ad866ea4d27881b1af522ce9dc2204821fedc48042a65a2b2481c07bcb96b73bb8c6215645ec6212d2", 0x50}, {&(0x7f0000000500)="987e", 0x2}, {&(0x7f0000000540)="b24fe8df4b618a4712f40060421e3bd36f0008f4369846e1af1f90eaecb173fc0ea706227b7df6d164c30edadf36ccff3703b6f64a8d12644519aa01bcf4cd012ca365763500075ea5da", 0x4a}, {&(0x7f00000005c0)="e2866b5fc8", 0x5}], 0x5, &(0x7f0000000680)={0xb0, 0x10b, 0x0, "900cdac34ccb7c6b514f3cc6c28906bef13052cde9f16d1380232bb56a7c4b67bbf7b773648186a117a03dd2de750158686c8e0472112d949b9c95afbe5aaf767df465fcb7cb53e75748af0cdd09dc913e395a06a72756225dc74a2ab25a8f99a09974c53edb163ada9ec6e785fa09148c0cd590595a6207fb5049a2461a76703dbc5ee00b42fb057194fd9c0502a56786fb50a7a26a014f111d2853"}, 0xb0, 0x10}, 0xc100) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000002c0f}}}, 0x90) 18:15:26 executing program 3: r0 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/policy\x00', 0x0, 0x0) r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000580)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000001c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000140)={0xffffffffffffffff}, 0x2}}, 0x20) r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_MIGRATE_ID(r3, &(0x7f0000000080)={0x12, 0x10, 0xfa00, {&(0x7f00000000c0), r2, r1}}, 0x18) write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000080)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x4e24, 0x4, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x1}, r2}}, 0x30) r4 = add_key$keyring(&(0x7f0000000480)='keyring\x00', &(0x7f00000004c0)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffa) add_key(&(0x7f0000000180)='asymmetric\x00', &(0x7f0000000340)={'syz', 0x2}, &(0x7f0000000380)="88ae26106813153eb23cf9e90c835e678860697ffa4105f2edb561201f865a3067f00ccc34a9a5af3bd7c75bbfbb2d924ddf5c6d4dc2989ee31b8ca122714954814d9d96", 0x44, r4) mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r5 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r5, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r5, &(0x7f0000003540), 0x1000) read$FUSE(r5, &(0x7f0000002540), 0x1000) mkdir(&(0x7f0000000100)='./file0/file0\x00', 0x0) write$FUSE_ENTRY(r5, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000002c0f}}}, 0x90) 18:15:26 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1217.543807] Bluetooth: hci0: command 0x1003 tx timeout [ 1217.549486] Bluetooth: hci0: sending frame failed (-49) [ 1217.623881] Bluetooth: hci2: command 0x1003 tx timeout [ 1217.629474] Bluetooth: hci1: command 0x1003 tx timeout [ 1217.629505] Bluetooth: hci2: sending frame failed (-49) [ 1217.640539] Bluetooth: hci1: sending frame failed (-49) [ 1217.863848] Bluetooth: hci3: command 0x1003 tx timeout [ 1217.870851] Bluetooth: hci3: sending frame failed (-49) [ 1219.623787] Bluetooth: hci0: command 0x1001 tx timeout [ 1219.629179] Bluetooth: hci0: sending frame failed (-49) [ 1219.703814] Bluetooth: hci1: command 0x1001 tx timeout [ 1219.709180] Bluetooth: hci2: command 0x1001 tx timeout [ 1219.709237] Bluetooth: hci1: sending frame failed (-49) [ 1219.714901] Bluetooth: hci2: sending frame failed (-49) [ 1219.944017] Bluetooth: hci3: command 0x1001 tx timeout [ 1219.949428] Bluetooth: hci3: sending frame failed (-49) [ 1221.703806] Bluetooth: hci0: command 0x1009 tx timeout [ 1221.783806] Bluetooth: hci1: command 0x1009 tx timeout [ 1221.783826] Bluetooth: hci2: command 0x1009 tx timeout [ 1222.033869] Bluetooth: hci3: command 0x1009 tx timeout 18:15:34 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:15:34 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000080)=0xffffffdb) 18:15:34 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) r1 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x0, 0x4002011, r1, 0x0) r2 = creat(&(0x7f0000000380)='./bus\x00', 0x0) ioctl$EXT4_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000340)=0xe4) dup(r2) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_REM(r1, 0x84, 0x65, &(0x7f0000000040)=[@in={0x2, 0x4e20, @broadcast}, @in={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}], 0x20) r3 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x0, 0x4002011, r3, 0x0) flock(r3, 0x1) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x12) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:15:34 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000080)=0xfffffdfd) 18:15:34 executing program 3: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) r1 = open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) mkdir(&(0x7f0000000100)='./file0/file0\x00', 0x0) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000002c0f}}}, 0x90) clock_gettime(0x0, &(0x7f0000000180)={0x0, 0x0}) futimesat(r1, &(0x7f0000000040)='./file0/file0\x00', &(0x7f00000001c0)={{}, {r2, r3/1000+10000}}) 18:15:35 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup3(r0, r1, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = accept$ax25(r2, 0x0, &(0x7f00000000c0)) ioctl$SIOCAX25CTLCON(r3, 0x89e8, &(0x7f0000000140)={@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @default, 0x3, 0x2c0, 0x1, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @null]}) r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r4, 0x400455c8, 0x1) r5 = creat(&(0x7f0000000380)='./bus\x00', 0x0) ioctl$EXT4_IOC_SETFLAGS(r5, 0x40086602, &(0x7f0000000340)=0xe4) r6 = accept4$bt_l2cap(r5, &(0x7f0000000380), &(0x7f00000003c0)=0xe, 0x80800) setsockopt$SO_ATTACH_FILTER(r6, 0x1, 0x1a, &(0x7f0000000440)={0x1, &(0x7f0000000400)=[{0xa65, 0x40, 0x8, 0x8}]}, 0x10) openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm_plock\x00', 0x84200, 0x0) r7 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000200)='IPVS\x00') sendmsg$IPVS_CMD_SET_DEST(r5, &(0x7f0000000340)={&(0x7f00000001c0), 0xc, &(0x7f0000000300)={&(0x7f0000000240)={0x84, r7, 0x300, 0x70bd2e, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0xfffffffe}, @IPVS_CMD_ATTR_SERVICE={0x38, 0x1, [@IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x6}, @IPVS_SVC_ATTR_FWMARK={0x8}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0xa}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x1e}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@broadcast}]}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, [@IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e24}]}, @IPVS_CMD_ATTR_DEST={0x14, 0x2, [@IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x5}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x6, 0xb, 0xf}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x7}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x2e8000}]}, 0x84}, 0x1, 0x0, 0x0, 0x8000}, 0x7a99ee1582dbea08) ioctl$SG_SET_FORCE_PACK_ID(0xffffffffffffffff, 0x227b, &(0x7f0000000480)=0x1) ioctl$TIOCSETD(r4, 0x5412, &(0x7f0000000080)) [ 1225.739911] audit: type=1804 audit(1579371335.043:83): pid=13908 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op=invalid_pcr cause=open_writers comm="syz-executor.5" name="/root/syzkaller-testdir561611285/syzkaller.nc9SBy/150/bus" dev="sda1" ino=16555 res=1 18:15:35 executing program 3: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="ea879cda200000003d6e02c48c3c01c8becf318268b92d6fac7ee9b4a994472ff0a3cdcb1469dbc471c9c6fbaf793fcaee2bf8e8664ba7e966268285f7b51c192fdc870f26e48bd4c80b2cde92b527ede7bfa456924ae58b4ea05ad98620b71821b1aa48bfea559452243188", @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) mkdir(&(0x7f0000000100)='./file0/file0\x00', 0x0) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0xfffffffffffffd2d, 0x0, 0x2, {0x3, 0x0, 0x8000, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x100000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000002c0f}}}, 0x90) 18:15:35 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000600)='/dev/dlm-monitor\x00', 0x400000, 0x0) connect$l2tp(r1, &(0x7f0000000640)={0x2, 0x0, @loopback, 0x1}, 0x10) ioctl$KDADDIO(r0, 0x400455c8, 0x1) r2 = creat(&(0x7f0000000380)='./bus\x00', 0x0) openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000680)='/proc/thread-self/attr/exec\x00', 0x2, 0x0) ioctl$EXT4_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000340)=0xe4) recvmsg$can_bcm(0xffffffffffffffff, &(0x7f0000000000)={&(0x7f0000000100)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @dev}}}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000180)=""/141, 0x8d}, {&(0x7f0000000240)=""/140, 0x8c}, {&(0x7f0000000300)=""/192, 0xc0}, {&(0x7f00000003c0)=""/82, 0x52}, {&(0x7f0000000440)=""/95, 0x5f}], 0x5, &(0x7f0000000540)=""/141, 0x8d}, 0x20) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup3(r3, r4, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) setsockopt$inet6_dccp_buf(r5, 0x21, 0xf, &(0x7f0000000900)="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", 0x9f) r6 = openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f0000000700)='/selinux/avc/cache_stats\x00', 0x0, 0x0) write$RDMA_USER_CM_CMD_RESOLVE_ROUTE(r6, &(0x7f0000000740)={0x4, 0x8, 0xfa00, {0xffffffffffffffff, 0x4}}, 0x10) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) ioctl$TUNSETSNDBUF(0xffffffffffffffff, 0x400454d4, &(0x7f00000006c0)=0x7) 18:15:35 executing program 3: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="2b67669ec491fd063c0a0924beb51a56fc2d88175f8ea1e9f271fe9545ecbb5f717f54652baecb7401ece67dac1c69e0bc7e57a726ef8332e6110dced587c315b5dae5c5eb82b8d4f9bca8c4c428ce6fbce78340fafc731112186760eadd", @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/btrfs-control\x00', 0xa0b01, 0x0) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$TCSETXF(r3, 0x5434, &(0x7f0000000180)={0x1000, 0x3, [0x1, 0x7fff, 0xe8, 0x1, 0x4], 0x8}) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) mkdir(&(0x7f0000000100)='./file0/file0\x00', 0x0) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000002c0f}}}, 0x90) 18:15:35 executing program 3: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="66643d2ccbff5391181bb4aa1f92bac29d8d6758de1b0f6f9227476bca427c1cb1ffcdebb0ed6782d86e676b333e40c7c6cea424df425896528041eeef304e671d3be69524d4e6ad87812ce1a2c80223", @ANYRESHEX=r0, @ANYBLOB="2c726f6f746d6f64653d3030303030ffff000000000000303030303034303030302c757365705f69643d9a7b7f5ad0dda54cc67e5ecfdc1c00132f8f22c9cc9efdcabb1f39a98001b4c3c708f9fb7533aaffcb79c425dfa8fde75d45baf1f294ce9461e50e7c14d780d807e050c83f1448defcd9068013d332686bd0c392d0aaf85909dd31936aa88de9f831c0403cdc547a3a7f249a7e856808baebc9479c3c71f78bfb11a3a7f8232b6bd8094bde7e6e3b6f0590c0d58282a1e929864a43cc433fd7a2930bae8f42608dd72a0e53ddd6ed6e1a7f", @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) getsockname$netrom(r3, &(0x7f0000000180)={{0x3, @null}, [@default, @null, @bcast, @default, @bcast, @null, @remote, @default]}, &(0x7f0000000340)=0x48) mkdir(&(0x7f0000000100)='./file0/file0\x00', 0x0) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000002c0f}}}, 0x90) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) dup3(r4, r5, 0x0) r6 = getpid() r7 = getpgid(0x0) rt_tgsigqueueinfo(r6, r7, 0x1f, &(0x7f0000000100)={0x10, 0x2, 0x8}) r8 = getpgrp(r7) ioctl$sock_SIOCSPGRP(r4, 0x8902, &(0x7f0000000040)=r8) 18:15:35 executing program 3: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="eebb39f5e347c6e8d0c9d3a1f30d94b2543bd6b3b5b3ff54adf1c22dd4a00b326ea7ecd985c733f5cb4a98cb2ea114b8884cadd8a927d5d589f79c7e07a0432858689e6fa87950476a3994c6183439117f1561edeef8a1533052aec07dadd474bd9ef68f7eafdd2b60cae6d6a4b7a746027a29051d84b05a1760e9146ca52b07a9c24264dcdae29f56", @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) mkdir(&(0x7f0000000100)='./file0/file0\x00', 0x0) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000002c0f}}}, 0x90) 18:15:35 executing program 3: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) mkdir(&(0x7f0000000100)='./file0/file0\x00', 0x0) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000002c0f}}}, 0x90) 18:15:35 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1227.783854] Bluetooth: hci0: command 0x1003 tx timeout [ 1227.789358] Bluetooth: hci0: sending frame failed (-49) [ 1227.863741] Bluetooth: hci2: command 0x1003 tx timeout [ 1227.869254] Bluetooth: hci2: sending frame failed (-49) [ 1227.874833] Bluetooth: hci1: command 0x1003 tx timeout [ 1227.880387] Bluetooth: hci1: sending frame failed (-49) [ 1228.343801] Bluetooth: hci3: command 0x1003 tx timeout [ 1228.349207] Bluetooth: hci3: sending frame failed (-49) [ 1229.863891] Bluetooth: hci0: command 0x1001 tx timeout [ 1229.869310] Bluetooth: hci0: sending frame failed (-49) [ 1229.943813] Bluetooth: hci2: command 0x1001 tx timeout [ 1229.943821] Bluetooth: hci1: command 0x1001 tx timeout [ 1229.943915] Bluetooth: hci1: sending frame failed (-49) [ 1229.949373] Bluetooth: hci2: sending frame failed (-49) [ 1230.423772] Bluetooth: hci3: command 0x1001 tx timeout [ 1230.429243] Bluetooth: hci3: sending frame failed (-49) [ 1231.943953] Bluetooth: hci0: command 0x1009 tx timeout [ 1232.023815] Bluetooth: hci1: command 0x1009 tx timeout [ 1232.023844] Bluetooth: hci2: command 0x1009 tx timeout [ 1232.503885] Bluetooth: hci3: command 0x1009 tx timeout 18:15:45 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000080)=0xffffffdb) 18:15:45 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:15:45 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000080)=0xfffffdfd) 18:15:45 executing program 3: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) listxattr(&(0x7f0000000040)='./file1\x00', &(0x7f0000000180)=""/5, 0x5) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x2000000, &(0x7f0000000340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB="2c726f303030303030303030436b376535445440ffaf74f94dda16aa303034303030302c757365725f69643d00"/58, @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) mkdir(&(0x7f0000000100)='./file0/file0\x00', 0x0) r1 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) r4 = add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe) keyctl$setperm(0x5, r4, 0x202002) keyctl$chown(0x4, r4, r2, r3) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x2ba, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x40000002c0f, 0x0, 0x0, r3}}}, 0x90) 18:15:45 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) r1 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$TUNSETPERSIST(r1, 0x400454cb, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:15:45 executing program 3: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) dup3(r4, r5, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) dup3(r6, r7, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[]) r8 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7, 0x4002011, r8, 0x0) ioctl$GIO_FONT(r8, 0x4b60, &(0x7f0000000580)=""/274) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) mkdir(&(0x7f0000000100)='./file0/file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r11 = dup3(r9, r10, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r11, 0x8912, 0x400200) bind$pptp(r11, &(0x7f0000000180)={0x18, 0x2, {0x2, @local}}, 0x1e) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000002c0f}}}, 0x90) 18:15:45 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000600)='/dev/dlm-monitor\x00', 0x400000, 0x0) connect$l2tp(r1, &(0x7f0000000640)={0x2, 0x0, @loopback, 0x1}, 0x10) ioctl$KDADDIO(r0, 0x400455c8, 0x1) r2 = creat(&(0x7f0000000380)='./bus\x00', 0x0) openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000680)='/proc/thread-self/attr/exec\x00', 0x2, 0x0) ioctl$EXT4_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000340)=0xe4) recvmsg$can_bcm(0xffffffffffffffff, &(0x7f0000000000)={&(0x7f0000000100)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @dev}}}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000180)=""/141, 0x8d}, {&(0x7f0000000240)=""/140, 0x8c}, {&(0x7f0000000300)=""/192, 0xc0}, {&(0x7f00000003c0)=""/82, 0x52}, {&(0x7f0000000440)=""/95, 0x5f}], 0x5, &(0x7f0000000540)=""/141, 0x8d}, 0x20) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup3(r3, r4, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) setsockopt$inet6_dccp_buf(r5, 0x21, 0xf, &(0x7f0000000900)="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", 0x9f) r6 = openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f0000000700)='/selinux/avc/cache_stats\x00', 0x0, 0x0) write$RDMA_USER_CM_CMD_RESOLVE_ROUTE(r6, &(0x7f0000000740)={0x4, 0x8, 0xfa00, {0xffffffffffffffff, 0x4}}, 0x10) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) ioctl$TUNSETSNDBUF(0xffffffffffffffff, 0x400454d4, &(0x7f00000006c0)=0x7) 18:15:45 executing program 3: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) mkdir(&(0x7f0000000100)='./file0/file0\x00', 0x0) mount(&(0x7f0000000040)=@nullb='/dev/nullb0\x00', &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='sysv\x00', 0x0, &(0x7f0000000340)='fuse\x00') write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000002c0f}}}, 0x90) 18:15:46 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:15:46 executing program 3: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) r1 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcsu\x00', 0x70502, 0x0) ioctl$VIDIOC_SUBDEV_S_SELECTION(r1, 0xc040563e, &(0x7f0000000180)={0x3, 0x0, 0x101, 0x2, {0x470, 0x2, 0x10000, 0x5}}) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) mkdir(&(0x7f0000000100)='./file0/file0\x00', 0x0) r2 = openat$bsg(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/bsg\x00', 0x8000, 0x0) connect$phonet_pipe(r2, &(0x7f0000000340)={0x23, 0x6, 0x1, 0x6}, 0x10) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000002c0f}}}, 0x90) r3 = creat(&(0x7f0000000380)='./bus\x00', 0x0) rename(&(0x7f00000003c0)='./file0/file0\x00', &(0x7f0000000480)='./file0/file0\x00') ioctl$EXT4_IOC_SETFLAGS(r3, 0x40086602, &(0x7f0000000340)=0xe4) write$FUSE_OPEN(r3, &(0x7f0000000380)={0x20, 0xfffffffffffffffe, 0x3, {0x0, 0x14}}, 0x20) 18:15:46 executing program 3: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) truncate(&(0x7f0000000040)='./file0/file0\x00', 0x80000000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) mkdir(&(0x7f0000000100)='./file0/file0\x00', 0x0) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, {0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000002c0f}}}, 0x90) 18:15:46 executing program 3: mkdir(&(0x7f0000000180)='./file0/file0\x00', 0x100) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) r1 = open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup3(r2, r3, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) fchmodat(r4, &(0x7f0000000140)='./bus\x00', 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1, {0x7, 0x1f, 0x1, 0xc04011, 0x0, 0xfffd}}, 0x50) mkdir(&(0x7f0000000100)='./file0/file0\x00', 0x8) sendmsg$NFT_MSG_GETGEN(r1, &(0x7f00000004c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x30}, 0xc, &(0x7f0000000480)={&(0x7f00000003c0)={0x14, 0x10, 0xa, 0x206, 0x0, 0x0, {0x8}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x40060) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = dup3(r5, r6, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) setsockopt$inet6_MRT6_ADD_MFC(r7, 0x29, 0xcc, &(0x7f0000000340)={{0xa, 0x4e20, 0x3, @mcast1, 0x400}, {0xa, 0x4e21, 0x0, @dev={0xfe, 0x80, [], 0x2f}, 0x3}, 0x2, [0xc, 0x2e4d, 0xd7, 0x5, 0x0, 0x776, 0xe7de, 0xffff]}, 0x5c) r8 = dup3(r0, r1, 0x0) ioctl$sock_inet_udp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000500)) write$P9_RREADLINK(r8, &(0x7f0000000040)=ANY=[@ANYBLOB="160000001702000d002e2fcb271df7a05c000000001e"], 0x16) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000002c0f}}}, 0x90) r9 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x0, 0x4002011, r9, 0x0) ioctl$ASHMEM_PURGE_ALL_CACHES(r9, 0x770a, 0x0) socket$bt_cmtp(0x1f, 0x3, 0x5) [ 1238.023775] Bluetooth: hci1: command 0x1003 tx timeout [ 1238.023782] Bluetooth: hci2: command 0x1003 tx timeout [ 1238.023809] Bluetooth: hci0: command 0x1003 tx timeout [ 1238.036390] Bluetooth: hci2: sending frame failed (-49) [ 1238.041053] Bluetooth: hci1: sending frame failed (-49) [ 1238.045590] Bluetooth: hci0: sending frame failed (-49) [ 1238.583753] Bluetooth: hci3: command 0x1003 tx timeout [ 1238.589281] Bluetooth: hci3: sending frame failed (-49) [ 1240.103848] Bluetooth: hci1: command 0x1001 tx timeout [ 1240.103869] Bluetooth: hci0: command 0x1001 tx timeout [ 1240.114577] Bluetooth: hci1: sending frame failed (-49) [ 1240.120004] Bluetooth: hci2: command 0x1001 tx timeout [ 1240.120042] Bluetooth: hci0: sending frame failed (-49) [ 1240.125666] Bluetooth: hci2: sending frame failed (-49) [ 1240.663804] Bluetooth: hci3: command 0x1001 tx timeout [ 1240.669252] Bluetooth: hci3: sending frame failed (-49) [ 1242.183825] Bluetooth: hci0: command 0x1009 tx timeout [ 1242.183877] Bluetooth: hci2: command 0x1009 tx timeout [ 1242.196369] Bluetooth: hci1: command 0x1009 tx timeout [ 1242.743812] Bluetooth: hci3: command 0x1009 tx timeout 18:15:55 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000080)=0xffffffdb) 18:15:55 executing program 3: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) mkdir(&(0x7f0000000100)='./file0/file0\x00', 0x0) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x5, {0x1, 0x0, 0x0, 0x2, 0x0, 0x0, {0x0, 0x0, 0xcc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000002c0f}}}, 0x90) 18:15:55 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:15:55 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000080)=0xfffffdfd) 18:15:55 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000000)=0x1a) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:15:56 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000600)='/dev/dlm-monitor\x00', 0x400000, 0x0) connect$l2tp(r1, &(0x7f0000000640)={0x2, 0x0, @loopback, 0x1}, 0x10) ioctl$KDADDIO(r0, 0x400455c8, 0x1) r2 = creat(&(0x7f0000000380)='./bus\x00', 0x0) openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000680)='/proc/thread-self/attr/exec\x00', 0x2, 0x0) ioctl$EXT4_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000340)=0xe4) recvmsg$can_bcm(0xffffffffffffffff, &(0x7f0000000000)={&(0x7f0000000100)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @dev}}}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000180)=""/141, 0x8d}, {&(0x7f0000000240)=""/140, 0x8c}, {&(0x7f0000000300)=""/192, 0xc0}, {&(0x7f00000003c0)=""/82, 0x52}, {&(0x7f0000000440)=""/95, 0x5f}], 0x5, &(0x7f0000000540)=""/141, 0x8d}, 0x20) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup3(r3, r4, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) setsockopt$inet6_dccp_buf(r5, 0x21, 0xf, &(0x7f0000000900)="f8c14ca0a265cf64356a09bc25932c2438bc89e535d330e041f08d44c8c99e03b1d2959257024eaa12976f2a65d1605b0cf9a3a3d72989f154f01a5187c29317203fe33bed8b5e67e12f287e740d61c920eff5676a7ff36ceed0146646994bfb12e87a0d6d44b13820107edecc118916ad1cf339d94d12bd7409dd2ff974be7a4dd024daf071ca96af4ba53e44bb763b4bbd0a25caf639020926ff8304e25ad1b5eac99f84912f0e4ee7eb6031c2d2ef2bff4d68863df5e39ca28f791de854e47eb057844b38911312a0f9a3d04e59395c276580399c7123b20f0daabf8c4b3056ce386108cb10a6d79230d4aa866f781b53c6a1214c448d631cef", 0x9f) r6 = openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f0000000700)='/selinux/avc/cache_stats\x00', 0x0, 0x0) write$RDMA_USER_CM_CMD_RESOLVE_ROUTE(r6, &(0x7f0000000740)={0x4, 0x8, 0xfa00, {0xffffffffffffffff, 0x4}}, 0x10) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:15:56 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:15:56 executing program 3: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) mkdir(&(0x7f0000000100)='./file0/file0\x00', 0x0) r1 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x0, 0x4002011, r1, 0x0) sendmsg$NFNL_MSG_COMPAT_GET(r1, &(0x7f0000000380)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000340)={&(0x7f0000000180)={0x54, 0x0, 0xb, 0x3, 0x0, 0x0, {0x0, 0x0, 0x7}, [@NFTA_COMPAT_REV={0x8, 0x2, 0x1, 0x0, 0x3}, @NFTA_COMPAT_REV={0x8, 0x2, 0x1, 0x0, 0x5}, @NFTA_COMPAT_NAME={0x5, 0x1, '\x00'}, @NFTA_COMPAT_TYPE={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_COMPAT_REV={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_COMPAT_NAME={0x9, 0x1, 'fuse\x00'}, @NFTA_COMPAT_NAME={0xb, 0x1, 'vmnet0\x00'}]}, 0x54}, 0x1, 0x0, 0x0, 0x40}, 0x80) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000002c0f}}}, 0x90) 18:15:56 executing program 3: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000780)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB="2c65726f75615f69643d6afe9bab8615cfb16042fda516861c051a92106d2c541ff2f31f35f84083ed31c128604d3eab4255c3e63e27400707ec9a9b49eabc77d32f4db38b9dd520f7b2d6790285fdbc89da3377519729c3eae3b74d479ac9132de546e4556839779de0ff6e68e3443389fae62f83cdf00100008000dadbe16ac88c7d9e970a28e51c2febc6b6b535b37516d96a699f4d4fd83f299098d1f2088f0a08037a5d369cff030000554060fabf003ee601c508d6a008c0ca396e804bc9826127a6244938749cbc2f02130ca72cde1fff23d60cdee70e63897f18cc3a51bb1f9da1a6ea47d3837b1fc472b9f5a683597c00"/255, @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) mmap$binder(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x11, r3, 0x81) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) syz_open_dev$vcsa(&(0x7f0000000480)='/dev/vcsa#\x00', 0x4, 0x0) mkdir(&(0x7f0000000100)='./file0/file0\x00', 0x0) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000002c0f}}}, 0x90) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_open_dev$sndctrl(&(0x7f0000000700)='/dev/snd/controlC#\x00', 0xfffffffffffff789, 0x0) dup3(r4, r5, 0x0) ioctl$VIDIOC_TRY_EXT_CTRLS(0xffffffffffffffff, 0xc0205649, &(0x7f0000000340)={0xfffffff, 0x80000001, 0x8, r4, 0x0, &(0x7f00000001c0)={0x990a76, 0x5, [], @p_u16=&(0x7f0000000180)=0x5}}) r7 = syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0)='nl80211\x00') socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r10 = dup3(r8, r9, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r13 = dup3(r11, r12, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r13, 0x8912, 0x400200) getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x20, &(0x7f0000000f80)={@multicast1, @multicast1, 0x0}, &(0x7f0000000fc0)=0xc) r15 = socket(0x11, 0x800000003, 0x0) bind(r15, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2ac5000000012e0b3836005404b0e0301a060075f2e3ff5f163ee340b700000080000000000000fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c65400"}, 0x80) getsockname$packet(r15, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000140)=0x14) r17 = socket(0x11, 0x800000003, 0x0) bind(r17, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2ac5000000012e0b3836005404b0e0301a060075f2e3ff5f163ee340b700000080000000000000fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c65400"}, 0x80) getsockname$packet(r17, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000140)=0x14) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000000)=@setlink={0x34, 0x13, 0x501, 0x0, 0x0, {0x0, 0x0, 0x0, r18}, [@IFLA_IFNAME={0x14, 0x3, 'netdevsim0\x00'}]}, 0x34}}, 0x0) r19 = socket(0x11, 0x800000003, 0x0) bind(r19, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2ac5000000012e0b3836005404b0e0301a060075f2e3ff5f163ee340b700000080000000000000fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c65400"}, 0x80) getsockname$packet(r19, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000140)=0x14) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000000)=@setlink={0x34, 0x13, 0x501, 0x0, 0x0, {0x0, 0x0, 0x0, r20}, [@IFLA_IFNAME={0x14, 0x3, 'netdevsim0\x00'}]}, 0x34}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r13, &(0x7f00000010c0)={&(0x7f0000000740)={0x10, 0x0, 0x0, 0x60400}, 0xc, &(0x7f0000001080)={&(0x7f0000001000)={0x5c, r7, 0x200, 0x70bd2c, 0x25dfdbfe, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r14}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x3}, @NL80211_ATTR_WDEV={0xc, 0x99, {0xb68, 0x1}}, @NL80211_ATTR_IFINDEX={0x8, 0x3, r16}, @NL80211_ATTR_IFINDEX={0x8, 0x3, r18}, @NL80211_ATTR_WIPHY={0x8}, @NL80211_ATTR_WDEV={0xc, 0x99, {0x3f}}, @NL80211_ATTR_IFINDEX={0x8, 0x3, r20}]}, 0x5c}, 0x1, 0x0, 0x0, 0x880}, 0x4008000) ioctl$PERF_EVENT_IOC_ENABLE(r10, 0x8912, 0x400200) getsockopt$inet_IP_XFRM_POLICY(r10, 0x0, 0x11, &(0x7f00000004c0)={{{@in, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast2}, 0x0, @in6=@mcast1}}, &(0x7f00000005c0)=0xe8) sendmsg$NL80211_CMD_DEL_INTERFACE(r6, &(0x7f00000006c0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000680)={&(0x7f0000000600)={0x74, r7, 0x20, 0x70bd2d, 0x25dfdbfe, {}, [@NL80211_ATTR_WIPHY={0x8}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}, @NL80211_ATTR_WDEV={0xc, 0x99, {0x6, 0x2}}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x4}, @NL80211_ATTR_WDEV={0xc, 0x99, {0x7, 0x3}}, @NL80211_ATTR_IFINDEX={0x8, 0x3, r21}, @NL80211_ATTR_WDEV={0xc, 0x99, {0x3ff, 0x3}}, @NL80211_ATTR_WDEV={0xc, 0x99, {0x4, 0x4}}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x7}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x4}]}, 0x74}, 0x1, 0x0, 0x0, 0x4000000}, 0x800) 18:15:56 executing program 3: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) r1 = open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) ioctl$KVM_GET_MSR_INDEX_LIST(r1, 0xc004ae02, &(0x7f0000000040)={0x1, [0x0]}) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) mkdir(&(0x7f0000000100)='./file0/file0\x00', 0x0) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000002c0f}}}, 0x90) 18:15:56 executing program 3: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fdL', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) mkdir(&(0x7f0000000100)='./file0/file0\x00', 0x0) r1 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) r4 = add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe) keyctl$setperm(0x5, r4, 0x202002) keyctl$chown(0x4, r4, r2, r3) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0xffffffffffffffda, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x40000002c0f, 0x0, 0x0, r3}}}, 0x90) 18:15:56 executing program 3: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000540)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB="3d000000000000000000e1bce455d8b29685090d948839b2d653ebebdca7147b54602ba4b3f1ce6d203bfe1134e44eadad203b425d39f67d18bdbe72c9527c141f42626944d5e0ba9750a7e2ec1b46f1802178cdcd3fc331a3ee9436a7491df7eaea70d0b08b8bf528dbf65aaaf0410362b00013f69d7f670ec8cedcc77f89518daeb04ed564686b8d284275a5de187fc9bf277b54931f4f640421c98262d2f39edda4a6b9c2108763c358a23848771b40f242b79aa3d9f755c01160b33d285a875341572043e2f02ba161", @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) mkdir(&(0x7f0000000100)='./file0/file0\x00', 0x0) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000002c0f}}}, 0x90) [ 1248.263739] Bluetooth: hci2: command 0x1003 tx timeout [ 1248.269349] Bluetooth: hci1: command 0x1003 tx timeout [ 1248.269382] Bluetooth: hci2: sending frame failed (-49) [ 1248.275183] Bluetooth: hci0: command 0x1003 tx timeout [ 1248.280240] Bluetooth: hci1: sending frame failed (-49) [ 1248.286069] Bluetooth: hci0: sending frame failed (-49) [ 1248.823809] Bluetooth: hci3: command 0x1003 tx timeout [ 1248.829297] Bluetooth: hci3: sending frame failed (-49) [ 1250.343850] Bluetooth: hci1: command 0x1001 tx timeout [ 1250.343856] Bluetooth: hci0: command 0x1001 tx timeout [ 1250.343927] Bluetooth: hci0: sending frame failed (-49) [ 1250.349236] Bluetooth: hci1: sending frame failed (-49) [ 1250.365509] Bluetooth: hci2: command 0x1001 tx timeout [ 1250.370955] Bluetooth: hci2: sending frame failed (-49) [ 1250.903856] Bluetooth: hci3: command 0x1001 tx timeout [ 1250.909348] Bluetooth: hci3: sending frame failed (-49) [ 1252.423798] Bluetooth: hci1: command 0x1009 tx timeout [ 1252.423804] Bluetooth: hci2: command 0x1009 tx timeout [ 1252.423837] Bluetooth: hci0: command 0x1009 tx timeout [ 1252.983752] Bluetooth: hci3: command 0x1009 tx timeout 18:16:05 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, 0x0) 18:16:05 executing program 3: getsockopt$rose(0xffffffffffffffff, 0x104, 0x2, &(0x7f0000000040), &(0x7f0000000180)=0x4) mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) mkdir(&(0x7f0000000100)='./file0/file0\x00', 0x0) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000002c0f}}}, 0x90) 18:16:05 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:16:05 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, 0x0) 18:16:05 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) r1 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video35\x00', 0x2, 0x0) ioctl$VIDIOC_G_SLICED_VBI_CAP(r1, 0xc0745645, &(0x7f0000000100)={0x8, [0x6, 0x93, 0x7fff, 0xfffa, 0x6, 0x8, 0x1, 0x1, 0xa61, 0xdb63, 0xfdb8, 0x1, 0x7f, 0x6, 0x3ff, 0xff00, 0x800, 0x9, 0x1010, 0x4, 0x6, 0x8, 0x40, 0x2, 0x9, 0x9c6, 0x6, 0xee, 0x400, 0xb3ec, 0x401, 0x90, 0x3ff, 0x100, 0x1, 0x4, 0x800, 0x6, 0x3, 0xf6db, 0xffff, 0x8, 0x9, 0xdd, 0x40, 0x1, 0x8000, 0x8], 0xb}) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:16:06 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000600)='/dev/dlm-monitor\x00', 0x400000, 0x0) connect$l2tp(r1, &(0x7f0000000640)={0x2, 0x0, @loopback, 0x1}, 0x10) ioctl$KDADDIO(r0, 0x400455c8, 0x1) r2 = creat(&(0x7f0000000380)='./bus\x00', 0x0) openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000680)='/proc/thread-self/attr/exec\x00', 0x2, 0x0) ioctl$EXT4_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000340)=0xe4) recvmsg$can_bcm(0xffffffffffffffff, &(0x7f0000000000)={&(0x7f0000000100)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @dev}}}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000180)=""/141, 0x8d}, {&(0x7f0000000240)=""/140, 0x8c}, {&(0x7f0000000300)=""/192, 0xc0}, {&(0x7f00000003c0)=""/82, 0x52}, {&(0x7f0000000440)=""/95, 0x5f}], 0x5, &(0x7f0000000540)=""/141, 0x8d}, 0x20) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup3(r3, r4, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) setsockopt$inet6_dccp_buf(r5, 0x21, 0xf, &(0x7f0000000900)="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", 0x9f) openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f0000000700)='/selinux/avc/cache_stats\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:16:06 executing program 3: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) mkdir(&(0x7f0000000100)='./file0/file0\x00', 0x0) setxattr$trusted_overlay_upper(&(0x7f0000000040)='./file0/file0/file0\x00', &(0x7f0000000180)='trusted.overlay.upper\x00', &(0x7f0000000340)={0x0, 0xfb, 0x7a, 0x6c1294c7c74e990d, 0x28, "461cbd1cc1ed0e35595f3398ef41baa6", "1cc2c444152eb8ac546030c10fb7a7769b7fbd62cb8c9032819fe3e90fd68f22bd154c44072e1c584f39b7c24edebeda8ae7590abed42410502aac64ac2baa8f2b2bd3346c9f06fef9297b0bb935bc4e7665d65aa0b4e1d605af1a3d34af775c94f128230e"}, 0x7a, 0x1) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000002c0f}}}, 0x90) 18:16:06 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:16:06 executing program 3: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB="0d2f7fe8ea000000000000", @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$binfmt_elf32(0xffffffffffffffff, &(0x7f0000000340)={{0x7f, 0x45, 0x4c, 0x46, 0x9, 0x7, 0xff, 0x0, 0x3, 0x2, 0x6, 0x6, 0x388, 0x38, 0xa5, 0x1ff, 0x1000, 0x20, 0x1, 0x4a3d, 0x5, 0x3}, [{0x3, 0x7, 0x8, 0x0, 0x6, 0x2, 0x3f, 0xe65}, {0x0, 0x40000, 0xff, 0x14db, 0x80000000, 0x0, 0xfffffff7, 0x3}], "c75b5335f44acc10e64477e7984f", [[], [], [], [], [], [], [], [], [], []]}, 0xa86) mkdir(&(0x7f0000000040)='./file0/file0\x00', 0x0) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000002c0f}}}, 0x90) 18:16:06 executing program 3: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) r1 = creat(&(0x7f0000000380)='./bus\x00', 0x0) ioctl$EXT4_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000340)=0x400080) r2 = getpid() r3 = getpgid(0x0) rt_tgsigqueueinfo(r2, r3, 0x1f, &(0x7f0000000100)={0x10, 0x2, 0x8}) write$FUSE_LK(r1, &(0x7f0000000040)={0x28, 0x0, 0x2, {{0xffff, 0x8, 0x1, r2}}}, 0x28) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) mkdir(&(0x7f0000000100)='./file0/file0\x00', 0x0) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000002c0f}}}, 0x90) 18:16:06 executing program 3: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) r1 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x0, 0x4002011, r1, 0x0) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r1, 0x84, 0x71, &(0x7f0000000340), &(0x7f0000000380)=0x8) read$FUSE(r0, &(0x7f0000003540), 0x1000) r2 = accept$packet(0xffffffffffffffff, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000180)=0x14) dup(r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup3(r3, r4, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) ioctl$PERF_EVENT_IOC_SET_FILTER(r5, 0x40082406, &(0x7f00000001c0)='\x00') read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) mkdir(&(0x7f0000000100)='./file0/file0\x00', 0x0) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000002c0f}}}, 0x90) 18:16:07 executing program 3: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) dup3(r0, r1, 0x0) r2 = accept4$unix(r1, &(0x7f0000000180)=@abs, &(0x7f0000000040)=0x6e, 0x100000) getpeername$unix(r2, &(0x7f0000000340), &(0x7f00000003c0)=0x6e) r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r3, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r3, &(0x7f0000003540), 0x1000) read$FUSE(r3, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r3, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) mkdir(&(0x7f0000000100)='./file0/file0\x00', 0x0) write$FUSE_ENTRY(r3, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000002c0f}}}, 0x90) [ 1258.503922] Bluetooth: hci1: command 0x1003 tx timeout [ 1258.509321] Bluetooth: hci1: sending frame failed (-49) [ 1258.514909] Bluetooth: hci2: command 0x1003 tx timeout [ 1258.520266] Bluetooth: hci0: command 0x1003 tx timeout [ 1258.520319] Bluetooth: hci2: sending frame failed (-49) [ 1258.526181] Bluetooth: hci0: sending frame failed (-49) [ 1259.063785] Bluetooth: hci3: command 0x1003 tx timeout [ 1259.069317] Bluetooth: hci3: sending frame failed (-49) [ 1260.583860] Bluetooth: hci0: command 0x1001 tx timeout [ 1260.583981] Bluetooth: hci2: command 0x1001 tx timeout [ 1260.589241] Bluetooth: hci0: sending frame failed (-49) [ 1260.594892] Bluetooth: hci2: sending frame failed (-49) [ 1260.599911] Bluetooth: hci1: command 0x1001 tx timeout [ 1260.610668] Bluetooth: hci1: sending frame failed (-49) [ 1261.153826] Bluetooth: hci3: command 0x1001 tx timeout [ 1261.159216] Bluetooth: hci3: sending frame failed (-49) [ 1262.663890] Bluetooth: hci1: command 0x1009 tx timeout [ 1262.669243] Bluetooth: hci2: command 0x1009 tx timeout [ 1262.673730] Bluetooth: hci0: command 0x1009 tx timeout [ 1263.223813] Bluetooth: hci3: command 0x1009 tx timeout 18:16:15 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, 0x0) 18:16:15 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:16:15 executing program 3: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) r1 = openat$vimc1(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video1\x00', 0x2, 0x0) ioctl$VIDIOC_OVERLAY(r1, 0x4004560e, &(0x7f0000000180)=0x7) mkdir(&(0x7f0000000100)='./file0/file0\x00', 0x0) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000002c0f}}}, 0x90) 18:16:15 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, 0x0) 18:16:15 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x19e29869b536d37d, 0x0) ioctl$KDADDIO(r0, 0x400455c8, 0x1) r1 = creat(&(0x7f0000000380)='./bus\x00', 0x0) ioctl$RTC_PLL_SET(r1, 0x40207012, &(0x7f0000000540)={0x8, 0x3, 0x8, 0xb0, 0x6a, 0x2, 0x1d2}) ioctl$EXT4_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000340)=0xe4) r2 = creat(&(0x7f00000005c0)='./bus\x00', 0xdecaa565e0e86097) ioctl$VIDIOC_QBUF(r1, 0xc058560f, &(0x7f0000000400)={0x81, 0x8, 0x4, 0x100800, 0x3, {0x77359400}, {0xdca8b92cf82913ae, 0x0, 0x6, 0x5, 0x4, 0x2, "857d9f32"}, 0x7, 0x4, @planes=&(0x7f00000003c0)={0x6, 0x1ff, @userptr=0x7fffffff}, 0x9, 0x0, r1}) getsockopt$TIPC_SOCK_RECVQ_DEPTH(r3, 0x10f, 0x84, &(0x7f0000000480), &(0x7f00000004c0)=0x4) ioctl$EXT4_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000340)=0xe4) ioctl$VIDIOC_DQBUF(0xffffffffffffffff, 0xc0585611, &(0x7f0000000100)={0x2, 0x9, 0x4, 0x8, 0x80000001, {}, {0x2, 0x2, 0x3, 0x3f, 0x3f, 0xcc}, 0x0, 0x2, @offset=0x7, 0x7, 0x0, r2}) setns(r4, 0xb2000000) ioctl$KDGKBLED(r1, 0x4b64, &(0x7f0000000000)) r5 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x20000, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r5, 0x29, 0x23, &(0x7f0000000180)={{{@in6=@local, @in6=@empty}}, {{@in6=@mcast1}, 0x0, @in=@multicast2}}, &(0x7f0000000280)=0xe8) accept$packet(r5, &(0x7f00000002c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000300)=0x14) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) getsockopt$inet_mreqn(r2, 0x0, 0x23, &(0x7f0000001140)={@dev, @dev, 0x0}, &(0x7f0000001180)=0xc) recvfrom$packet(0xffffffffffffffff, &(0x7f0000000500)=""/35, 0x23, 0x82, &(0x7f00000011c0)={0x11, 0x3, r6, 0x1, 0x80, 0x6, @dev={[], 0x22}}, 0x14) 18:16:16 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000600)='/dev/dlm-monitor\x00', 0x400000, 0x0) connect$l2tp(r1, &(0x7f0000000640)={0x2, 0x0, @loopback, 0x1}, 0x10) ioctl$KDADDIO(r0, 0x400455c8, 0x1) r2 = creat(&(0x7f0000000380)='./bus\x00', 0x0) openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000680)='/proc/thread-self/attr/exec\x00', 0x2, 0x0) ioctl$EXT4_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000340)=0xe4) recvmsg$can_bcm(0xffffffffffffffff, &(0x7f0000000000)={&(0x7f0000000100)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @dev}}}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000180)=""/141, 0x8d}, {&(0x7f0000000240)=""/140, 0x8c}, {&(0x7f0000000300)=""/192, 0xc0}, {&(0x7f00000003c0)=""/82, 0x52}, {&(0x7f0000000440)=""/95, 0x5f}], 0x5, &(0x7f0000000540)=""/141, 0x8d}, 0x20) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup3(r3, r4, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) setsockopt$inet6_dccp_buf(r5, 0x21, 0xf, &(0x7f0000000900)="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", 0x9f) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:16:16 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) syz_read_part_table(0xffffffff, 0x7, &(0x7f0000001400)=[{&(0x7f0000000100)="ffafb5d45e24258f14b72073567a445f768e3181b0922b3d90c16b0c0e5561138a38952f5420b6cf3b97f3f60161152369ae9023f89f55c76a2d4cfacebdb5c96904cce09e32778e41b157c0638eab4cdb1a37724de74b3191ff90e9ed54698e9f567ad06e959d49e30ee7ff1b210824026a368bdc37deaaa716bbc07cfbc47b207f899d701f3b25f501378efc2db3330b4723fdaf20b0a1e0d45414d5b8b55f7c6fb7e7d195635c7ec303d4bd0738b4ae3438112f2a1a8ea7e0cb118634e2692f5871ab7597fa533443b38a71f6cd42fad45cf057901c4fe049534eec7d205aaf76a92bdb695ab4eb2ec8a1f461987042", 0xf1, 0x5bdf021e}, {&(0x7f0000000200)="7055d78a894359e4a619dbd5947df18d16820873002735a278b08e875876e8e6b018cc9cda8f6cd80b18ae22ec791403f4cf2edec1c05d6a1aabb605f2065b30ae74c942777def537a6a4b43dcf6f470888c2f9e06562bb39e606cb5b623b481ec9a6025a746b5ff2d2a83bcee7f8fdd42b67da29ebe82409b8bbe464c928aacf2affd1a5abce16630c0995a9249a57540474517", 0x94, 0x401}, {&(0x7f00000002c0)="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", 0x1000, 0x7f}, {&(0x7f0000000000)="de61021677c7a0947e69c7fc1b767d7862bc8176367fb03a59", 0x19, 0xffff}, {&(0x7f00000012c0)="c0a2b225951879be848cc80fb6a9b03c380d8b3a4c7f248060e1926912417f33781a840c2c784d4b65100804fbb4b47a0cecc9e89addd7cee0e9184bedd1d0c8553d0e81b0cedcf092281a51b7b330ee87b8bad5672da6dcb3ea8a1d1cc5f8", 0x5f, 0x456}, {&(0x7f0000001340)="7f939e1ede5c97eaea95a0e01f5df4848ac13ffe2d9de6e65f41f05456162795acad63fb24c666f22226b9b855c058f016a14cae91d2b8d77471087ccdcfde9ecc0a09dbeafbdaf41b5538de1fc3fce9e538a80fec5c854228c193fee6229fe054791719", 0x64, 0xffffffffffffffff}, {&(0x7f00000013c0)="033b8df70c", 0x5, 0x81}]) r1 = creat(&(0x7f0000000380)='./bus\x00', 0x0) ioctl$EXT4_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000340)=0xe4) ioctl$KDGETKEYCODE(r1, 0x4b4c, &(0x7f00000014c0)={0x8, 0xa1}) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:16:16 executing program 3: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) r1 = syz_open_dev$ptys(0xc, 0x3, 0x0) ioctl$TIOCGPKT(r1, 0x80045438, &(0x7f0000000740)) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB="2c726f6f746d6f64653dad1417f6f3703030303134303030302c757300"/42, @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) r2 = open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) getresgid(&(0x7f0000000340), &(0x7f0000000380)=0x0, &(0x7f00000003c0)) setsockopt$inet_sctp6_SCTP_NODELAY(r2, 0x84, 0x3, &(0x7f0000000640), 0x4) ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f00000006c0)={0x0, 0x0}) prctl$PR_SET_PTRACER(0x59616d61, r4) r5 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setuid(r6) ioprio_get$uid(0x3, r6) syz_mount_image$hfsplus(&(0x7f0000000040)='hfsplus\x00', &(0x7f0000000180)='./file0\x00', 0x8144, 0x1, &(0x7f00000001c0)=[{&(0x7f0000000480)="cc0b14390d5ab9aaea11056f2466f8535aa0d8414df27484980dac521e51c9132fda03351e236afc41bc339eea40af70ccec9e1f79cda238abe56cff2deefa7167f0c5df588787504d2000410994cd68dd478b5a613ebdaec665cae082ff312c9be31b44901ebef1eecce35b56f11fe55cf52d39363011c590fab45bb910fdb7e0cd242687095b08a2f4ad23915845b3227bbcf3636d99c70b58f0242773add4b59f13414efeeee497bee0eba36595e84a1ea4a8612f9436b35653b6fb216fa4fb79fe6c10f165c7a1ad5b1663e0fefbddfec2c01c500f2f8dc3dbbe3209", 0xde, 0x8000}], 0x2240000, &(0x7f0000000580)=ANY=[@ANYBLOB='force,nls=koi-r,force,part=0x00000000000001ff,gid=', @ANYRESHEX=r3, @ANYBLOB=',uid=', @ANYRESHEX=r6, @ANYBLOB=',umask=00000000000000000000000,obj_type=fuse\x00,\x00']) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) mkdir(&(0x7f0000000100)='./file0/file0\x00', 0x0) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000002c0f}}}, 0x90) syz_open_dev$sndmidi(&(0x7f0000000680)='/dev/snd/midiC#D#\x00', 0x5, 0x1) 18:16:16 executing program 3: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) mount$fuse(0x0, &(0x7f0000000980)='./file0/file0\x00', &(0x7f0000000340)='fuse\x00', 0x2000000, &(0x7f0000000780)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB="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", @ANYRESDEC=0x0, @ANYBLOB="2ce8cfd4c8705f00003d", @ANYRESHEX=0x0]) r4 = open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) write$cgroup_type(r4, &(0x7f0000000040)='threaded\x00', 0x9) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0xa) pipe2(&(0x7f0000000680)={0xffffffffffffffff}, 0x0) write$FUSE_INIT(r0, &(0x7f0000000700)={0x50, 0xffffffffffffffda, 0x1, {0x7, 0x1f, 0x6682, 0x0, 0x80, 0x1, 0x1f, 0x3ff}}, 0x50) mkdir(&(0x7f0000000100)='./file0/file0\x00', 0x0) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000002c0f}}}, 0x90) r6 = creat(&(0x7f0000000380)='./bus\x00', 0x0) ioctl$EXT4_IOC_SETFLAGS(r5, 0x40086602, &(0x7f00000006c0)=0x20000000) getsockopt$inet_IP_IPSEC_POLICY(r6, 0x0, 0x10, &(0x7f0000000480)={{{@in6=@dev, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@local}, 0x0, @in6}}, &(0x7f00000003c0)=0xe8) syz_mount_image$btrfs(&(0x7f0000000180)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x9, 0x1, &(0x7f0000000380)=[{&(0x7f0000000340), 0x0, 0x8}], 0x80408, &(0x7f0000000580)={[{@commit={'commit', 0x3d, 0x1}}, {@ref_verify='ref_verify'}, {@space_cache='space_cache'}, {@notreelog='notreelog'}], [{@permit_directio='permit_directio'}, {@dont_appraise='dont_appraise'}, {@euid_lt={'euid<', 0xee01}}, {@fsuuid={'fsuuid', 0x3d, {[0x34, 0x32, 0x32, 0x37, 0x3bb327f3f30f93c3, 0xd, 0x35, 0x66], 0x2d, [0x7, 0x62, 0x33, 0x36], 0x2d, [0x39, 0x4846436c5b88e219, 0x36, 0x39], 0x2d, [0x66, 0x36, 0x32, 0x35], 0x2d, [0xc09ad656a2e9299a, 0xf3b5d9d7e96266f4, 0x37, 0x39, 0x33, 0x63, 0x38, 0x32]}}}, {@fsuuid={'fsuuid', 0x3d, {[0x65, 0x35, 0x32, 0x33, 0x61, 0x62, 0x33, 0x36], 0x2d, [0x65, 0x32, 0x38, 0xdb652d565eaf5649], 0x2d, [0x38, 0x36, 0x66, 0x6], 0x2d, [0x34, 0x6d71758b0aecefed, 0x7e68e15cf207ad32, 0x61], 0x2d, [0x63, 0x34, 0x5a, 0x63, 0x36, 0x0, 0x63, 0x30]}}}, {@fowner_lt={'fowner<', r7}}, {@fscontext={'fscontext', 0x3d, 'sysadm_u'}}]}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r10 = dup3(r8, r9, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r10, 0x8912, 0x400200) ioctl$USBDEVFS_GET_SPEED(r10, 0x551f) 18:16:16 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:16:16 executing program 3: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB="2cf37fddc7a11667726fc1ace5e68c5f1015f8264c2c32eeceaa2aa45eff292ad0b481521ba9a3cc105c49d18824db2ec385668d71951322642a575f004fb8c0f45ad4195d75dd6caf9a7b9604fec18a9029ff2fc98f40837911124c2c98d6c92fabf345b9c3364d99bdbb24958cbd074581fa1009aacbfe91c46f4eb5d2ce5f974d66827c5bf2f06f950a8311622359abf336adc8c632d25d83e25fe68185c3175fa381331ee597f72a520fa91584cfe27dfa3a1b67587698e912887e2f9b779a81bc0f1a1a2bb387e068dbf2ca43d0e909164e886842d0b19bbffb92aee5e23e1d42d8e4054177339ac5", @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) mkdir(&(0x7f0000000100)='./file0/file0\x00', 0x0) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000002c0f}}}, 0x90) 18:16:16 executing program 3: mkdir(&(0x7f0000000040)='./file0/file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB="2c726f6f746d6f64653d3030303030303030303030303030303030e02a303030302c757365725f69643d", @ANYRESDEC=0x0, @ANYBLOB="6813904e12daad65883bb71655102aaf13c12c67726f75705f69643d2298", @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) mkdir(&(0x7f0000000100)='./file0/file0\x00', 0x0) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000002c0f}}}, 0x90) [ 1268.743804] Bluetooth: hci1: command 0x1003 tx timeout [ 1268.749253] Bluetooth: hci0: command 0x1003 tx timeout [ 1268.749302] Bluetooth: hci1: sending frame failed (-49) [ 1268.755968] Bluetooth: hci0: sending frame failed (-49) [ 1269.303831] Bluetooth: hci2: command 0x1003 tx timeout [ 1269.309355] Bluetooth: hci2: sending frame failed (-49) [ 1269.383768] Bluetooth: hci3: command 0x1003 tx timeout [ 1269.389264] Bluetooth: hci3: sending frame failed (-49) [ 1270.823814] Bluetooth: hci0: command 0x1001 tx timeout [ 1270.823832] Bluetooth: hci1: command 0x1001 tx timeout [ 1270.829208] Bluetooth: hci0: sending frame failed (-49) [ 1270.839406] Bluetooth: hci1: sending frame failed (-49) [ 1271.384027] Bluetooth: hci2: command 0x1001 tx timeout [ 1271.389470] Bluetooth: hci2: sending frame failed (-49) [ 1271.463829] Bluetooth: hci3: command 0x1001 tx timeout [ 1271.469260] Bluetooth: hci3: sending frame failed (-49) [ 1272.903796] Bluetooth: hci0: command 0x1009 tx timeout [ 1272.903801] Bluetooth: hci1: command 0x1009 tx timeout [ 1273.463900] Bluetooth: hci2: command 0x1009 tx timeout [ 1273.543996] Bluetooth: hci3: command 0x1009 tx timeout 18:16:26 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, 0x0) 18:16:26 executing program 3: r0 = inotify_add_watch(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', 0x800000c0) inotify_rm_watch(0xffffffffffffffff, r0) mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r1, &(0x7f0000003540), 0x1000) read$FUSE(r1, &(0x7f0000002540), 0x1000) r2 = getpid() r3 = getpgid(0x0) rt_tgsigqueueinfo(r2, r3, 0x1f, &(0x7f0000000100)={0x10, 0x2, 0x8}) syz_open_procfs(r2, &(0x7f0000000040)='children\x00') write$FUSE_INIT(r1, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) mkdir(&(0x7f0000000100)='./file0/file0\x00', 0x0) write$FUSE_ENTRY(r1, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000002c0f}}}, 0x90) 18:16:26 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:16:26 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, 0x0) 18:16:26 executing program 3: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = creat(&(0x7f0000000380)='./bus\x00', 0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000340)=0xe4) getsockopt$bt_BT_FLUSHABLE(r0, 0x112, 0x8, &(0x7f0000000040), &(0x7f0000000180)=0x4) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r1, &(0x7f0000003540), 0x1000) read$FUSE(r1, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r1, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) mkdir(&(0x7f0000000100)='./file0/file0\x00', 0x0) write$FUSE_ENTRY(r1, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000002c0f}}}, 0x90) 18:16:26 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000600)='/dev/dlm-monitor\x00', 0x400000, 0x0) connect$l2tp(r1, &(0x7f0000000640)={0x2, 0x0, @loopback, 0x1}, 0x10) ioctl$KDADDIO(r0, 0x400455c8, 0x1) r2 = creat(&(0x7f0000000380)='./bus\x00', 0x0) openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000680)='/proc/thread-self/attr/exec\x00', 0x2, 0x0) ioctl$EXT4_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000340)=0xe4) recvmsg$can_bcm(0xffffffffffffffff, &(0x7f0000000000)={&(0x7f0000000100)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @dev}}}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000180)=""/141, 0x8d}, {&(0x7f0000000240)=""/140, 0x8c}, {&(0x7f0000000300)=""/192, 0xc0}, {&(0x7f00000003c0)=""/82, 0x52}, {&(0x7f0000000440)=""/95, 0x5f}], 0x5, &(0x7f0000000540)=""/141, 0x8d}, 0x20) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup3(r3, r4, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:16:26 executing program 3: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0e66643d", @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) socket$can_bcm(0x1d, 0x2, 0x2) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) mkdir(&(0x7f0000000100)='./file0/file0\x00', 0x0) ioctl$MON_IOCQ_RING_SIZE(0xffffffffffffffff, 0x9205) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x1, 0x0, 0x4, 0x0, 0x0, 0x7ff, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000002c0f}}}, 0x90) 18:16:26 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x1b) r1 = syz_open_dev$audion(&(0x7f0000000100)='/dev/audio#\x00', 0x5, 0x0) ioctl$FBIOGET_VSCREENINFO(0xffffffffffffffff, 0x4600, &(0x7f0000000200)) ioctl$SNDRV_PCM_IOCTL_STATUS64(r1, 0x80984120, &(0x7f0000000140)) 18:16:26 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:16:27 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:16:27 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:16:27 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1278.993775] Bluetooth: hci0: command 0x1003 tx timeout [ 1278.999352] Bluetooth: hci1: command 0x1003 tx timeout [ 1278.999388] Bluetooth: hci0: sending frame failed (-49) [ 1279.010707] Bluetooth: hci1: sending frame failed (-49) [ 1279.623756] Bluetooth: hci2: command 0x1003 tx timeout [ 1279.623809] Bluetooth: hci3: command 0x1003 tx timeout [ 1279.629451] Bluetooth: hci2: sending frame failed (-49) [ 1279.635053] Bluetooth: hci3: sending frame failed (-49) [ 1279.783823] Bluetooth: hci4: command 0x1003 tx timeout [ 1279.789373] Bluetooth: hci4: sending frame failed (-49) [ 1280.423811] Bluetooth: hci5: command 0x1003 tx timeout [ 1280.429380] Bluetooth: hci5: sending frame failed (-49) [ 1281.063821] Bluetooth: hci1: command 0x1001 tx timeout [ 1281.069168] Bluetooth: hci0: command 0x1001 tx timeout [ 1281.069236] Bluetooth: hci1: sending frame failed (-49) [ 1281.074899] Bluetooth: hci0: sending frame failed (-49) [ 1281.703795] Bluetooth: hci2: command 0x1001 tx timeout [ 1281.703818] Bluetooth: hci3: command 0x1001 tx timeout [ 1281.709223] Bluetooth: hci2: sending frame failed (-49) [ 1281.714916] Bluetooth: hci3: sending frame failed (-49) [ 1281.863952] Bluetooth: hci4: command 0x1001 tx timeout [ 1281.869443] Bluetooth: hci4: sending frame failed (-49) [ 1282.503851] Bluetooth: hci5: command 0x1001 tx timeout [ 1282.509271] Bluetooth: hci5: sending frame failed (-49) [ 1283.143809] Bluetooth: hci1: command 0x1009 tx timeout [ 1283.143836] Bluetooth: hci0: command 0x1009 tx timeout [ 1283.783795] Bluetooth: hci2: command 0x1009 tx timeout [ 1283.783814] Bluetooth: hci3: command 0x1009 tx timeout [ 1283.943884] Bluetooth: hci4: command 0x1009 tx timeout [ 1284.583968] Bluetooth: hci5: command 0x1009 tx timeout 18:16:36 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:16:36 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(0xffffffffffffffff, &(0x7f0000003540), 0x1000) read$FUSE(0xffffffffffffffff, &(0x7f0000002540), 0x1000) write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(0xffffffffffffffff, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:16:36 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:16:36 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(0xffffffffffffffff, &(0x7f0000003540), 0x1000) read$FUSE(0xffffffffffffffff, &(0x7f0000002540), 0x1000) write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(0xffffffffffffffff, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:16:36 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(0xffffffffffffffff, &(0x7f0000003540), 0x1000) read$FUSE(0xffffffffffffffff, &(0x7f0000002540), 0x1000) write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(0xffffffffffffffff, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:16:37 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000600)='/dev/dlm-monitor\x00', 0x400000, 0x0) connect$l2tp(r1, &(0x7f0000000640)={0x2, 0x0, @loopback, 0x1}, 0x10) ioctl$KDADDIO(r0, 0x400455c8, 0x1) r2 = creat(&(0x7f0000000380)='./bus\x00', 0x0) openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000680)='/proc/thread-self/attr/exec\x00', 0x2, 0x0) ioctl$EXT4_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000340)=0xe4) recvmsg$can_bcm(0xffffffffffffffff, &(0x7f0000000000)={&(0x7f0000000100)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @dev}}}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000180)=""/141, 0x8d}, {&(0x7f0000000240)=""/140, 0x8c}, {&(0x7f0000000300)=""/192, 0xc0}, {&(0x7f00000003c0)=""/82, 0x52}, {&(0x7f0000000440)=""/95, 0x5f}], 0x5, &(0x7f0000000540)=""/141, 0x8d}, 0x20) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) dup3(r3, r4, 0x0) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:16:37 executing program 0: r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:16:38 executing program 0: r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:16:38 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:16:38 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) r1 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x0, 0x4002011, r1, 0x0) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xa) ioctl$KDADDIO(r1, 0x400455c8, 0x3) ioctl$BINDER_SET_MAX_THREADS(r1, 0x40046205, &(0x7f0000000000)=0x7) r2 = creat(&(0x7f0000000380)='./bus\x00', 0x0) ioctl$EXT4_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000340)=0xe4) ioctl$TIOCL_BLANKSCREEN(r2, 0x541c, &(0x7f0000000100)) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:16:38 executing program 0: r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:16:38 executing program 0: mkdir(0x0, 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1289.223799] Bluetooth: hci1: command 0x1003 tx timeout [ 1289.229282] Bluetooth: hci1: sending frame failed (-49) [ 1289.234916] Bluetooth: hci0: command 0x1003 tx timeout [ 1289.240280] Bluetooth: hci0: sending frame failed (-49) [ 1289.783768] Bluetooth: hci2: command 0x1003 tx timeout [ 1289.789182] Bluetooth: hci2: sending frame failed (-49) [ 1291.063753] Bluetooth: hci3: command 0x1003 tx timeout [ 1291.069196] Bluetooth: hci3: sending frame failed (-49) [ 1291.303789] Bluetooth: hci0: command 0x1001 tx timeout [ 1291.309181] Bluetooth: hci1: command 0x1001 tx timeout [ 1291.309221] Bluetooth: hci0: sending frame failed (-49) [ 1291.320543] Bluetooth: hci1: sending frame failed (-49) [ 1291.863883] Bluetooth: hci2: command 0x1001 tx timeout [ 1291.869298] Bluetooth: hci2: sending frame failed (-49) [ 1293.143853] Bluetooth: hci3: command 0x1001 tx timeout [ 1293.149248] Bluetooth: hci3: sending frame failed (-49) [ 1293.383820] Bluetooth: hci1: command 0x1009 tx timeout [ 1293.389186] Bluetooth: hci0: command 0x1009 tx timeout [ 1293.943843] Bluetooth: hci2: command 0x1009 tx timeout [ 1295.223735] Bluetooth: hci3: command 0x1009 tx timeout 18:16:46 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:16:46 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) r1 = accept4(0xffffffffffffffff, &(0x7f0000000100)=@nfc, &(0x7f0000000000)=0x80, 0x800) ioctl$SIOCAX25GETINFOOLD(r1, 0x89e9, &(0x7f0000000180)) r2 = creat(&(0x7f0000000380)='./bus\x00', 0x0) ioctl$EXT4_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000340)=0xe4) r3 = creat(&(0x7f0000000380)='./bus\x00', 0x0) ioctl$EXT4_IOC_SETFLAGS(r3, 0x40086602, &(0x7f0000000340)=0xe4) r4 = dup2(r2, r3) write$P9_RRENAMEAT(r4, &(0x7f00000002c0)={0x7, 0x4b, 0x1}, 0x7) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) r5 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000300)='/proc/sys/net/ipv4/vs/amemthresh\x00', 0x2, 0x0) ioctl$IOC_PR_CLEAR(r5, 0x401070cd, &(0x7f00000003c0)={0x81}) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) getsockname$inet6(r3, &(0x7f0000000400)={0xa, 0x0, 0x0, @local}, &(0x7f0000000440)=0x1c) r6 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/avc/cache_threshold\x00', 0x2, 0x0) getresgid(&(0x7f0000000200), &(0x7f0000000240)=0x0, &(0x7f0000000280)) ioctl$TUNSETGROUP(r6, 0x400454ce, r7) 18:16:46 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:16:46 executing program 0: mkdir(0x0, 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:16:46 executing program 0: mkdir(0x0, 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:16:47 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000600)='/dev/dlm-monitor\x00', 0x400000, 0x0) connect$l2tp(r1, &(0x7f0000000640)={0x2, 0x0, @loopback, 0x1}, 0x10) ioctl$KDADDIO(r0, 0x400455c8, 0x1) r2 = creat(&(0x7f0000000380)='./bus\x00', 0x0) openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000680)='/proc/thread-self/attr/exec\x00', 0x2, 0x0) ioctl$EXT4_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000340)=0xe4) recvmsg$can_bcm(0xffffffffffffffff, &(0x7f0000000000)={&(0x7f0000000100)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @dev}}}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000180)=""/141, 0x8d}, {&(0x7f0000000240)=""/140, 0x8c}, {&(0x7f0000000300)=""/192, 0xc0}, {&(0x7f00000003c0)=""/82, 0x52}, {&(0x7f0000000440)=""/95, 0x5f}], 0x5, &(0x7f0000000540)=""/141, 0x8d}, 0x20) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) dup3(r3, r4, 0x0) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:16:47 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:16:47 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:16:48 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:16:48 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:16:48 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, 0x0, &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:16:48 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, 0x0, &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1299.383764] Bluetooth: hci0: command 0x1003 tx timeout [ 1299.383873] Bluetooth: hci1: command 0x1003 tx timeout [ 1299.389268] Bluetooth: hci0: sending frame failed (-49) [ 1299.396503] Bluetooth: hci1: sending frame failed (-49) [ 1299.463803] Bluetooth: hci4: command 0x1003 tx timeout [ 1299.469301] Bluetooth: hci4: sending frame failed (-49) [ 1300.023867] Bluetooth: hci2: command 0x1003 tx timeout [ 1300.029261] Bluetooth: hci2: sending frame failed (-49) [ 1301.303752] Bluetooth: hci3: command 0x1003 tx timeout [ 1301.309231] Bluetooth: hci3: sending frame failed (-49) [ 1301.463766] Bluetooth: hci1: command 0x1001 tx timeout [ 1301.469314] Bluetooth: hci1: sending frame failed (-49) [ 1301.474859] Bluetooth: hci0: command 0x1001 tx timeout [ 1301.480264] Bluetooth: hci0: sending frame failed (-49) [ 1301.543797] Bluetooth: hci4: command 0x1001 tx timeout [ 1301.549266] Bluetooth: hci4: sending frame failed (-49) [ 1302.103839] Bluetooth: hci2: command 0x1001 tx timeout [ 1302.109255] Bluetooth: hci2: sending frame failed (-49) [ 1303.383763] Bluetooth: hci3: command 0x1001 tx timeout [ 1303.389227] Bluetooth: hci3: sending frame failed (-49) [ 1303.543838] Bluetooth: hci1: command 0x1009 tx timeout [ 1303.543861] Bluetooth: hci0: command 0x1009 tx timeout [ 1303.623777] Bluetooth: hci4: command 0x1009 tx timeout [ 1304.183831] Bluetooth: hci2: command 0x1009 tx timeout [ 1305.463782] Bluetooth: hci3: command 0x1009 tx timeout 18:16:56 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:16:56 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) dup3(r1, r2, 0x0) r3 = dup(r2) bind$rose(r3, &(0x7f0000000000)=@short={0xb, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @null, 0x1, @null}, 0x1c) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:16:56 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:16:56 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, 0x0, &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:16:56 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:16:57 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000600)='/dev/dlm-monitor\x00', 0x400000, 0x0) connect$l2tp(r1, &(0x7f0000000640)={0x2, 0x0, @loopback, 0x1}, 0x10) ioctl$KDADDIO(r0, 0x400455c8, 0x1) r2 = creat(&(0x7f0000000380)='./bus\x00', 0x0) openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000680)='/proc/thread-self/attr/exec\x00', 0x2, 0x0) ioctl$EXT4_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000340)=0xe4) recvmsg$can_bcm(0xffffffffffffffff, &(0x7f0000000000)={&(0x7f0000000100)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @dev}}}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000180)=""/141, 0x8d}, {&(0x7f0000000240)=""/140, 0x8c}, {&(0x7f0000000300)=""/192, 0xc0}, {&(0x7f00000003c0)=""/82, 0x52}, {&(0x7f0000000440)=""/95, 0x5f}], 0x5, &(0x7f0000000540)=""/141, 0x8d}, 0x20) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) dup3(r3, r4, 0x0) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:16:57 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:16:57 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:16:58 executing program 3 (fault-call:8 fault-nth:0): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) 18:16:58 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, 0x0) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:16:58 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, 0x0) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1309.524454] FAULT_INJECTION: forcing a failure. [ 1309.524454] name failslab, interval 1, probability 0, space 0, times 0 [ 1309.543399] CPU: 0 PID: 14290 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1309.551241] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1309.560718] Call Trace: [ 1309.563370] dump_stack+0x197/0x210 [ 1309.567058] should_fail.cold+0xa/0x1b 18:16:58 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, 0x0) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1309.570973] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1309.576122] ? lock_downgrade+0x880/0x880 [ 1309.580319] __should_failslab+0x121/0x190 [ 1309.584590] should_failslab+0x9/0x14 [ 1309.588413] kmem_cache_alloc_node+0x26c/0x710 [ 1309.593024] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1309.598683] ? tcp_established_options+0x2ae/0x490 [ 1309.603881] __alloc_skb+0xd5/0x5f0 [ 1309.607675] ? skb_trim+0x190/0x190 [ 1309.611330] ? audit_add_tree_rule+0x772/0xbe0 [ 1309.615941] sk_stream_alloc_skb+0xc8/0x860 [ 1309.620288] tcp_sendmsg_locked+0xc9d/0x3290 [ 1309.624791] ? tcp_sendpage+0x60/0x60 [ 1309.628668] ? trace_hardirqs_on+0x67/0x220 [ 1309.632988] ? lock_sock_nested+0x9a/0x120 [ 1309.637316] ? __local_bh_enable_ip+0x15a/0x270 [ 1309.642125] tcp_sendmsg+0x30/0x50 [ 1309.645737] inet_sendmsg+0x141/0x5d0 [ 1309.649544] ? ipip_gro_receive+0x100/0x100 [ 1309.653906] sock_sendmsg+0xd7/0x130 [ 1309.657616] __sys_sendto+0x262/0x380 [ 1309.661420] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1309.666090] ? kasan_check_write+0x14/0x20 [ 1309.670431] ? __sb_end_write+0xd9/0x110 [ 1309.674510] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1309.680083] ? fput+0x128/0x1a0 [ 1309.683375] ? ksys_write+0x1f1/0x2d0 [ 1309.687193] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1309.691963] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1309.696844] ? do_syscall_64+0x26/0x620 [ 1309.700832] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1309.706199] __x64_sys_sendto+0xe1/0x1a0 [ 1309.710264] do_syscall_64+0xfd/0x620 [ 1309.714192] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1309.719382] RIP: 0033:0x45aff9 [ 1309.722628] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1309.741528] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1309.749249] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1309.756529] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1309.763894] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1309.771207] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1309.778485] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000000 [ 1309.786504] Bluetooth: hci0: command 0x1003 tx timeout [ 1309.791884] Bluetooth: hci0: sending frame failed (-49) [ 1309.799582] Bluetooth: hci4: command 0x1003 tx timeout [ 1309.799640] Bluetooth: hci4: sending frame failed (-49) [ 1309.799668] Bluetooth: hci1: command 0x1003 tx timeout [ 1309.799715] Bluetooth: hci1: sending frame failed (-49) [ 1310.263759] Bluetooth: hci2: command 0x1003 tx timeout [ 1310.269245] Bluetooth: hci2: sending frame failed (-49) [ 1311.863882] Bluetooth: hci1: command 0x1001 tx timeout [ 1311.869235] Bluetooth: hci4: command 0x1001 tx timeout [ 1311.869291] Bluetooth: hci1: sending frame failed (-49) [ 1311.875046] Bluetooth: hci4: sending frame failed (-49) [ 1311.885475] Bluetooth: hci0: command 0x1001 tx timeout [ 1311.890867] Bluetooth: hci0: sending frame failed (-49) [ 1312.238964] audit: type=1400 audit(1579371421.543:84): avc: denied { map } for pid=14299 comm="sh" path="/bin/dash" dev="sda1" ino=1473 scontext=system_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 [ 1312.343784] Bluetooth: hci2: command 0x1001 tx timeout [ 1312.349260] Bluetooth: hci2: sending frame failed (-49) [ 1313.943855] Bluetooth: hci4: command 0x1009 tx timeout [ 1313.943912] Bluetooth: hci0: command 0x1009 tx timeout [ 1313.955009] Bluetooth: hci1: command 0x1009 tx timeout [ 1314.423791] Bluetooth: hci2: command 0x1009 tx timeout 18:17:07 executing program 1 (fault-call:3 fault-nth:0): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xfffffdfd) 18:17:07 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=']) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:17:07 executing program 3 (fault-call:8 fault-nth:1): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) 18:17:07 executing program 4 (fault-call:3 fault-nth:0): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffdb) [ 1317.916125] FAULT_INJECTION: forcing a failure. [ 1317.916125] name failslab, interval 1, probability 0, space 0, times 0 [ 1317.951722] CPU: 1 PID: 14308 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 18:17:07 executing program 5: openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) semctl$GETPID(0xffffffffffffffff, 0x3, 0xb, &(0x7f0000000100)=""/246) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup3(r0, r1, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000340)='devlink\x00') sendmsg$DEVLINK_CMD_PORT_GET(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000900)=ANY=[@ANYBLOB="24010000", @ANYRES16=r3, @ANYBLOB="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"], 0x124}, 0x1, 0x0, 0x0, 0x2000c050}, 0x0) openat$ipvs(0xffffffffffffff9c, &(0x7f0000000200)='/proc/sys/net/ipv4/vs/sync_persist_mode\x00', 0x2, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup3(r4, r5, 0x0) r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) ioctl$KVM_ASSIGN_SET_INTX_MASK(0xffffffffffffffff, 0x4040aea4, &(0x7f0000000000)={0x1ff, 0x1000, 0x2}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000b000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcsu\x00', 0x0, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r8, 0xae60) r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r8, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r9, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x405, 0x0, 0x1, 0x0, 0x0, 0xfff]}) ioctl$KVM_RUN(r9, 0xae80, 0x0) ioctl$KVM_RUN(r9, 0xae80, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) dup(r6) creat(&(0x7f0000000380)='./bus\x00', 0x0) bpf$BPF_PROG_GET_NEXT_ID(0xb, &(0x7f00000003c0)={0x9, 0x6}, 0xc) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r12 = dup3(r10, r11, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r12, 0x8912, 0x400200) [ 1317.959573] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1317.968952] Call Trace: [ 1317.971564] dump_stack+0x197/0x210 [ 1317.975228] should_fail.cold+0xa/0x1b [ 1317.979147] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1317.984415] ? lock_downgrade+0x880/0x880 [ 1317.988608] __should_failslab+0x121/0x190 [ 1317.992871] should_failslab+0x9/0x14 [ 1317.996696] kmem_cache_alloc_node_trace+0x274/0x720 [ 1318.001938] ? __alloc_skb+0xd5/0x5f0 [ 1318.005777] __kmalloc_node_track_caller+0x3d/0x80 [ 1318.010759] __kmalloc_reserve.isra.0+0x40/0xf0 [ 1318.015578] __alloc_skb+0x10b/0x5f0 [ 1318.019324] ? skb_trim+0x190/0x190 [ 1318.022974] ? audit_add_tree_rule+0x772/0xbe0 [ 1318.027586] sk_stream_alloc_skb+0xc8/0x860 [ 1318.032089] tcp_sendmsg_locked+0xc9d/0x3290 [ 1318.036537] ? tcp_sendpage+0x60/0x60 [ 1318.040345] ? trace_hardirqs_on+0x67/0x220 [ 1318.044668] ? lock_sock_nested+0x9a/0x120 [ 1318.048914] ? __local_bh_enable_ip+0x15a/0x270 [ 1318.053583] tcp_sendmsg+0x30/0x50 [ 1318.057124] inet_sendmsg+0x141/0x5d0 [ 1318.060937] ? ipip_gro_receive+0x100/0x100 [ 1318.065266] sock_sendmsg+0xd7/0x130 [ 1318.068993] __sys_sendto+0x262/0x380 [ 1318.072791] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1318.077472] ? kasan_check_write+0x14/0x20 [ 1318.081720] ? __sb_end_write+0xd9/0x110 [ 1318.085905] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1318.091452] ? fput+0x128/0x1a0 [ 1318.094740] ? ksys_write+0x1f1/0x2d0 [ 1318.098553] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1318.103321] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1318.108074] ? do_syscall_64+0x26/0x620 [ 1318.112050] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1318.117548] __x64_sys_sendto+0xe1/0x1a0 [ 1318.121609] do_syscall_64+0xfd/0x620 [ 1318.125419] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1318.130611] RIP: 0033:0x45aff9 [ 1318.133809] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1318.152714] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1318.160429] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1318.167706] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1318.174979] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1318.182251] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1318.189528] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000001 18:17:07 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000600)='/dev/dlm-monitor\x00', 0x400000, 0x0) connect$l2tp(r1, &(0x7f0000000640)={0x2, 0x0, @loopback, 0x1}, 0x10) ioctl$KDADDIO(r0, 0x400455c8, 0x1) r2 = creat(&(0x7f0000000380)='./bus\x00', 0x0) openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000680)='/proc/thread-self/attr/exec\x00', 0x2, 0x0) ioctl$EXT4_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000340)=0xe4) recvmsg$can_bcm(0xffffffffffffffff, &(0x7f0000000000)={&(0x7f0000000100)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @dev}}}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000180)=""/141, 0x8d}, {&(0x7f0000000240)=""/140, 0x8c}, {&(0x7f0000000300)=""/192, 0xc0}, {&(0x7f00000003c0)=""/82, 0x52}, {&(0x7f0000000440)=""/95, 0x5f}], 0x5, &(0x7f0000000540)=""/141, 0x8d}, 0x20) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:17:07 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=']) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:17:07 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x601, 0x0) r1 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x0, 0x4002011, r1, 0x0) ioctl$TCFLSH(r1, 0x540b, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup3(r2, r3, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$KDGETLED(r4, 0x4b31, &(0x7f0000000000)) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:17:07 executing program 3 (fault-call:8 fault-nth:2): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1318.472646] FAULT_INJECTION: forcing a failure. [ 1318.472646] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1318.508940] CPU: 1 PID: 14328 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 18:17:07 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=']) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:17:07 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1318.516786] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1318.526159] Call Trace: [ 1318.528770] dump_stack+0x197/0x210 [ 1318.532427] should_fail.cold+0xa/0x1b [ 1318.536358] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1318.541632] ? __kmalloc_node_track_caller+0x3d/0x80 [ 1318.546769] ? rcu_read_lock_sched_held+0x110/0x130 [ 1318.551813] ? kmem_cache_alloc_node_trace+0x34f/0x720 [ 1318.557127] __alloc_pages_nodemask+0x1ee/0x750 [ 1318.561833] ? __alloc_pages_slowpath+0x2870/0x2870 [ 1318.566876] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 18:17:07 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1318.572450] ? kasan_check_write+0x14/0x20 [ 1318.576712] ? __alloc_skb+0x3d6/0x5f0 [ 1318.580629] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 1318.586348] alloc_pages_current+0x107/0x210 [ 1318.590829] skb_page_frag_refill+0x248/0x560 [ 1318.595357] sk_page_frag_refill+0x55/0x1f0 [ 1318.599708] tcp_sendmsg_locked+0x1001/0x3290 [ 1318.604243] ? tcp_sendpage+0x60/0x60 [ 1318.608071] ? trace_hardirqs_on+0x67/0x220 [ 1318.612415] ? lock_sock_nested+0x9a/0x120 [ 1318.616708] ? __local_bh_enable_ip+0x15a/0x270 [ 1318.621538] tcp_sendmsg+0x30/0x50 [ 1318.625107] inet_sendmsg+0x141/0x5d0 [ 1318.628931] ? ipip_gro_receive+0x100/0x100 [ 1318.633272] sock_sendmsg+0xd7/0x130 [ 1318.637020] __sys_sendto+0x262/0x380 [ 1318.640852] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1318.645558] ? kasan_check_write+0x14/0x20 [ 1318.649834] ? __sb_end_write+0xd9/0x110 [ 1318.653912] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1318.659449] ? fput+0x128/0x1a0 [ 1318.662733] ? ksys_write+0x1f1/0x2d0 [ 1318.666535] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1318.671295] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1318.676060] ? do_syscall_64+0x26/0x620 [ 1318.680029] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1318.685770] __x64_sys_sendto+0xe1/0x1a0 [ 1318.689843] do_syscall_64+0xfd/0x620 [ 1318.693676] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1318.698880] RIP: 0033:0x45aff9 [ 1318.702072] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1318.721075] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1318.728787] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1318.736109] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1318.743455] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1318.750739] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1318.758023] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000002 [ 1319.943820] Bluetooth: hci0: command 0x1003 tx timeout [ 1319.949243] Bluetooth: hci0: sending frame failed (-49) [ 1320.023721] Bluetooth: hci1: command 0x1003 tx timeout [ 1320.029195] Bluetooth: hci1: sending frame failed (-49) [ 1320.503753] Bluetooth: hci2: command 0x1003 tx timeout [ 1320.509232] Bluetooth: hci2: sending frame failed (-49) [ 1320.583768] Bluetooth: hci3: command 0x1003 tx timeout [ 1320.589245] Bluetooth: hci3: sending frame failed (-49) [ 1322.023801] Bluetooth: hci0: command 0x1001 tx timeout [ 1322.029201] Bluetooth: hci0: sending frame failed (-49) [ 1322.103815] Bluetooth: hci1: command 0x1001 tx timeout [ 1322.109283] Bluetooth: hci1: sending frame failed (-49) [ 1322.583841] Bluetooth: hci2: command 0x1001 tx timeout [ 1322.589289] Bluetooth: hci2: sending frame failed (-49) [ 1322.663828] Bluetooth: hci3: command 0x1001 tx timeout [ 1322.669266] Bluetooth: hci3: sending frame failed (-49) [ 1324.103831] Bluetooth: hci0: command 0x1009 tx timeout [ 1324.183878] Bluetooth: hci1: command 0x1009 tx timeout [ 1324.663859] Bluetooth: hci2: command 0x1009 tx timeout [ 1324.743826] Bluetooth: hci3: command 0x1009 tx timeout 18:17:17 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xfffffdfd) 18:17:17 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:17:17 executing program 3 (fault-call:8 fault-nth:3): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) 18:17:17 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffdb) [ 1328.104758] FAULT_INJECTION: forcing a failure. [ 1328.104758] name failslab, interval 1, probability 0, space 0, times 0 [ 1328.124913] CPU: 1 PID: 14343 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1328.132765] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1328.142135] Call Trace: [ 1328.144749] dump_stack+0x197/0x210 [ 1328.148411] should_fail.cold+0xa/0x1b 18:17:17 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB, @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1328.152330] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1328.157454] ? lock_downgrade+0x880/0x880 [ 1328.161628] __should_failslab+0x121/0x190 [ 1328.165891] should_failslab+0x9/0x14 [ 1328.169709] kmem_cache_alloc_node+0x26c/0x710 [ 1328.174306] ? __might_fault+0x12b/0x1e0 [ 1328.178393] __alloc_skb+0xd5/0x5f0 [ 1328.182034] ? skb_trim+0x190/0x190 [ 1328.185754] ? copyin+0xb5/0x100 [ 1328.189150] sk_stream_alloc_skb+0xc8/0x860 [ 1328.193548] tcp_sendmsg_locked+0xc9d/0x3290 [ 1328.197988] ? tcp_sendpage+0x60/0x60 [ 1328.201796] ? trace_hardirqs_on+0x67/0x220 [ 1328.206179] ? lock_sock_nested+0x9a/0x120 [ 1328.210411] ? __local_bh_enable_ip+0x15a/0x270 [ 1328.215127] tcp_sendmsg+0x30/0x50 [ 1328.218658] inet_sendmsg+0x141/0x5d0 [ 1328.222452] ? ipip_gro_receive+0x100/0x100 [ 1328.226767] sock_sendmsg+0xd7/0x130 [ 1328.230469] __sys_sendto+0x262/0x380 [ 1328.234259] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1328.238920] ? kasan_check_write+0x14/0x20 [ 1328.243238] ? __sb_end_write+0xd9/0x110 [ 1328.247292] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1328.252823] ? fput+0x128/0x1a0 [ 1328.256091] ? ksys_write+0x1f1/0x2d0 [ 1328.259884] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1328.264630] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1328.269579] ? do_syscall_64+0x26/0x620 [ 1328.273545] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1328.278907] __x64_sys_sendto+0xe1/0x1a0 [ 1328.282963] do_syscall_64+0xfd/0x620 [ 1328.286757] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1328.292009] RIP: 0033:0x45aff9 [ 1328.295203] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1328.314102] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1328.321811] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1328.329073] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1328.336331] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1328.343590] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1328.350848] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000003 18:17:18 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000600)='/dev/dlm-monitor\x00', 0x400000, 0x0) connect$l2tp(r1, &(0x7f0000000640)={0x2, 0x0, @loopback, 0x1}, 0x10) ioctl$KDADDIO(r0, 0x400455c8, 0x1) r2 = creat(&(0x7f0000000380)='./bus\x00', 0x0) openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000680)='/proc/thread-self/attr/exec\x00', 0x2, 0x0) ioctl$EXT4_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000340)=0xe4) recvmsg$can_bcm(0xffffffffffffffff, &(0x7f0000000000)={&(0x7f0000000100)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @dev}}}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000180)=""/141, 0x8d}, {&(0x7f0000000240)=""/140, 0x8c}, {&(0x7f0000000300)=""/192, 0xc0}, {&(0x7f00000003c0)=""/82, 0x52}, {&(0x7f0000000440)=""/95, 0x5f}], 0x5, &(0x7f0000000540)=""/141, 0x8d}, 0x20) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:17:18 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB, @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:17:18 executing program 5: ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf) clock_gettime(0x0, &(0x7f0000000000)={0x0, 0x0}) r2 = creat(&(0x7f0000000380)='./bus\x00', 0x0) ioctl$EXT4_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000340)=0xe4) ioctl$VIDIOC_DQBUF(0xffffffffffffffff, 0xc0585611, &(0x7f0000000140)={0x8001, 0x6, 0x4, 0x59f500260a9c306, 0xffffffc0, {r0, r1/1000+30000}, {0x1, 0x0, 0x7, 0x40, 0x5a, 0xc9, "29c41f1f"}, 0xfffffffd, 0x2, @fd, 0xd52, 0x0, r2}) ioctl$SNDRV_SEQ_IOCTL_UNSUBSCRIBE_PORT(r3, 0x40505331, &(0x7f00000001c0)={{0x7}, {0x5}, 0x1ff, 0x4, 0x20}) ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x1) ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000080)) r4 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$sock_inet_SIOCGARP(r4, 0x8954, &(0x7f00000000c0)={{0x2, 0x4e21, @multicast2}, {0x306, @random="779b44847eed"}, 0x2, {0x2, 0x4e21, @local}, 'gre0\x00'}) 18:17:18 executing program 3 (fault-call:8 fault-nth:4): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1328.750686] FAULT_INJECTION: forcing a failure. [ 1328.750686] name failslab, interval 1, probability 0, space 0, times 0 [ 1328.782320] CPU: 0 PID: 14358 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1328.790180] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 18:17:18 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$VIDIOC_SUBDEV_DV_TIMINGS_CAP(0xffffffffffffffff, 0xc0905664, &(0x7f0000000100)={0x0, 0x0, [], @raw_data=[0x200, 0x8, 0x2, 0x0, 0x1ff, 0x0, 0x3ff, 0x1, 0x2, 0xfffffff8, 0x8000, 0x0, 0x3f, 0x3, 0x9, 0xfffffffc, 0x3, 0x5, 0xfffffffd, 0xefda, 0x9, 0x40, 0x8001, 0x85c, 0x5, 0xa4, 0x0, 0x3f, 0x7, 0x6, 0x10001, 0xfffffffe]}) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) [ 1328.799550] Call Trace: [ 1328.802166] dump_stack+0x197/0x210 [ 1328.805823] should_fail.cold+0xa/0x1b [ 1328.809742] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1328.814906] ? lock_downgrade+0x880/0x880 [ 1328.819088] __should_failslab+0x121/0x190 [ 1328.823342] should_failslab+0x9/0x14 [ 1328.827163] kmem_cache_alloc_node_trace+0x274/0x720 [ 1328.832288] ? __alloc_skb+0xd5/0x5f0 [ 1328.836103] __kmalloc_node_track_caller+0x3d/0x80 [ 1328.841028] __kmalloc_reserve.isra.0+0x40/0xf0 [ 1328.845689] __alloc_skb+0x10b/0x5f0 [ 1328.849395] ? skb_trim+0x190/0x190 [ 1328.853013] ? copyin+0xb5/0x100 [ 1328.856370] sk_stream_alloc_skb+0xc8/0x860 [ 1328.860790] tcp_sendmsg_locked+0xc9d/0x3290 [ 1328.865201] ? tcp_sendpage+0x60/0x60 [ 1328.868997] ? trace_hardirqs_on+0x67/0x220 [ 1328.873308] ? lock_sock_nested+0x9a/0x120 [ 1328.877639] ? __local_bh_enable_ip+0x15a/0x270 [ 1328.882303] tcp_sendmsg+0x30/0x50 [ 1328.885838] inet_sendmsg+0x141/0x5d0 [ 1328.889651] ? ipip_gro_receive+0x100/0x100 [ 1328.893986] sock_sendmsg+0xd7/0x130 [ 1328.897695] __sys_sendto+0x262/0x380 [ 1328.901486] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1328.906150] ? kasan_check_write+0x14/0x20 [ 1328.910382] ? __sb_end_write+0xd9/0x110 [ 1328.914591] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1328.920128] ? fput+0x128/0x1a0 [ 1328.923403] ? ksys_write+0x1f1/0x2d0 [ 1328.927201] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1328.931947] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1328.936707] ? do_syscall_64+0x26/0x620 [ 1328.940688] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1328.946044] __x64_sys_sendto+0xe1/0x1a0 [ 1328.950132] do_syscall_64+0xfd/0x620 [ 1328.953938] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1328.959118] RIP: 0033:0x45aff9 [ 1328.962429] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1328.981342] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1328.989056] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 18:17:18 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB, @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1328.996316] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1329.003583] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1329.010963] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1329.018231] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000004 18:17:18 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',grou', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1330.183787] Bluetooth: hci0: command 0x1003 tx timeout [ 1330.183956] Bluetooth: hci1: command 0x1003 tx timeout [ 1330.189323] Bluetooth: hci0: sending frame failed (-49) [ 1330.195142] Bluetooth: hci1: sending frame failed (-49) [ 1330.823727] Bluetooth: hci2: command 0x1003 tx timeout [ 1330.823732] Bluetooth: hci3: command 0x1003 tx timeout [ 1330.824741] Bluetooth: hci3: sending frame failed (-49) [ 1330.829357] Bluetooth: hci2: sending frame failed (-49) [ 1332.263900] Bluetooth: hci0: command 0x1001 tx timeout [ 1332.264040] Bluetooth: hci1: command 0x1001 tx timeout [ 1332.274622] Bluetooth: hci0: sending frame failed (-49) [ 1332.280119] Bluetooth: hci1: sending frame failed (-49) [ 1332.903813] Bluetooth: hci3: command 0x1001 tx timeout [ 1332.903831] Bluetooth: hci2: command 0x1001 tx timeout [ 1332.909221] Bluetooth: hci3: sending frame failed (-49) [ 1332.919985] Bluetooth: hci2: sending frame failed (-49) [ 1334.343777] Bluetooth: hci1: command 0x1009 tx timeout [ 1334.344032] Bluetooth: hci0: command 0x1009 tx timeout [ 1334.983823] Bluetooth: hci2: command 0x1009 tx timeout [ 1334.989178] Bluetooth: hci3: command 0x1009 tx timeout 18:17:27 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x2, &(0x7f0000000080)=0xfffffdfd) 18:17:27 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',grou', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:17:27 executing program 3 (fault-call:8 fault-nth:5): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) 18:17:27 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x2, &(0x7f0000000080)=0xffffffdb) [ 1338.336514] FAULT_INJECTION: forcing a failure. [ 1338.336514] name failslab, interval 1, probability 0, space 0, times 0 [ 1338.366283] CPU: 1 PID: 14375 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1338.374139] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1338.383645] Call Trace: [ 1338.386245] dump_stack+0x197/0x210 [ 1338.389880] should_fail.cold+0xa/0x1b [ 1338.393774] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1338.398939] ? lock_downgrade+0x880/0x880 [ 1338.403099] __should_failslab+0x121/0x190 [ 1338.407369] should_failslab+0x9/0x14 [ 1338.411161] kmem_cache_alloc_node+0x26c/0x710 [ 1338.415749] ? __might_fault+0x12b/0x1e0 [ 1338.419835] __alloc_skb+0xd5/0x5f0 [ 1338.423472] ? skb_trim+0x190/0x190 [ 1338.427097] ? copyin+0xb5/0x100 [ 1338.430470] sk_stream_alloc_skb+0xc8/0x860 [ 1338.434890] tcp_sendmsg_locked+0xc9d/0x3290 [ 1338.439312] ? tcp_sendpage+0x60/0x60 [ 1338.443112] ? trace_hardirqs_on+0x67/0x220 [ 1338.447442] ? lock_sock_nested+0x9a/0x120 [ 1338.451682] ? __local_bh_enable_ip+0x15a/0x270 [ 1338.456361] tcp_sendmsg+0x30/0x50 [ 1338.459920] inet_sendmsg+0x141/0x5d0 [ 1338.463723] ? ipip_gro_receive+0x100/0x100 [ 1338.468073] sock_sendmsg+0xd7/0x130 [ 1338.471794] __sys_sendto+0x262/0x380 [ 1338.475602] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1338.480283] ? kasan_check_write+0x14/0x20 [ 1338.484649] ? __sb_end_write+0xd9/0x110 [ 1338.488718] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1338.494260] ? fput+0x128/0x1a0 [ 1338.497542] ? ksys_write+0x1f1/0x2d0 [ 1338.501352] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1338.506126] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1338.510889] ? do_syscall_64+0x26/0x620 [ 1338.514911] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1338.520468] __x64_sys_sendto+0xe1/0x1a0 [ 1338.524553] do_syscall_64+0xfd/0x620 [ 1338.528367] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1338.533556] RIP: 0033:0x45aff9 [ 1338.536769] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1338.555668] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1338.563377] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1338.570648] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1338.577921] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 18:17:27 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',grou', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1338.585195] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1338.592467] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000005 18:17:28 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000600)='/dev/dlm-monitor\x00', 0x400000, 0x0) connect$l2tp(r1, &(0x7f0000000640)={0x2, 0x0, @loopback, 0x1}, 0x10) ioctl$KDADDIO(r0, 0x400455c8, 0x1) r2 = creat(&(0x7f0000000380)='./bus\x00', 0x0) openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000680)='/proc/thread-self/attr/exec\x00', 0x2, 0x0) ioctl$EXT4_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000340)=0xe4) recvmsg$can_bcm(0xffffffffffffffff, &(0x7f0000000000)={&(0x7f0000000100)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @dev}}}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000180)=""/141, 0x8d}, {&(0x7f0000000240)=""/140, 0x8c}, {&(0x7f0000000300)=""/192, 0xc0}, {&(0x7f00000003c0)=""/82, 0x52}, {&(0x7f0000000440)=""/95, 0x5f}], 0x5, &(0x7f0000000540)=""/141, 0x8d}, 0x20) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:17:28 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_i', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:17:28 executing program 3 (fault-call:8 fault-nth:6): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) 18:17:28 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x0, 0x4002011, r1, 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r1, 0xc08c5335, &(0x7f0000000100)={0x80000000, 0xfffffff7, 0x0, 'queue1\x00', 0x9}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup3(r2, r3, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) r5 = creat(&(0x7f0000000380)='./bus\x00', 0x0) ioctl$EXT4_IOC_SETFLAGS(r5, 0x40086602, &(0x7f0000000340)=0xe4) signalfd(r5, &(0x7f0000000000)={0x400}, 0x1dd) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) [ 1338.963834] FAULT_INJECTION: forcing a failure. [ 1338.963834] name failslab, interval 1, probability 0, space 0, times 0 [ 1338.981141] CPU: 1 PID: 14389 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1338.988991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1338.998387] Call Trace: [ 1339.001008] dump_stack+0x197/0x210 [ 1339.004684] should_fail.cold+0xa/0x1b [ 1339.008607] ? fault_create_debugfs_attr+0x1e0/0x1e0 18:17:28 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_i', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1339.013742] ? lock_downgrade+0x880/0x880 [ 1339.018063] __should_failslab+0x121/0x190 [ 1339.022332] should_failslab+0x9/0x14 [ 1339.026152] kmem_cache_alloc_node_trace+0x274/0x720 [ 1339.031281] ? __alloc_skb+0xd5/0x5f0 [ 1339.035114] __kmalloc_node_track_caller+0x3d/0x80 [ 1339.040126] __kmalloc_reserve.isra.0+0x40/0xf0 [ 1339.044844] __alloc_skb+0x10b/0x5f0 [ 1339.048596] ? skb_trim+0x190/0x190 [ 1339.052254] ? copyin+0xb5/0x100 [ 1339.055658] sk_stream_alloc_skb+0xc8/0x860 [ 1339.060013] tcp_sendmsg_locked+0xc9d/0x3290 [ 1339.064477] ? tcp_sendpage+0x60/0x60 [ 1339.068307] ? trace_hardirqs_on+0x67/0x220 [ 1339.072656] ? lock_sock_nested+0x9a/0x120 [ 1339.077038] ? __local_bh_enable_ip+0x15a/0x270 [ 1339.081847] tcp_sendmsg+0x30/0x50 [ 1339.085426] inet_sendmsg+0x141/0x5d0 [ 1339.089253] ? ipip_gro_receive+0x100/0x100 [ 1339.093608] sock_sendmsg+0xd7/0x130 [ 1339.097355] __sys_sendto+0x262/0x380 [ 1339.101282] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1339.106092] ? kasan_check_write+0x14/0x20 [ 1339.110360] ? __sb_end_write+0xd9/0x110 18:17:28 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_i', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1339.114455] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1339.120021] ? fput+0x128/0x1a0 [ 1339.123342] ? ksys_write+0x1f1/0x2d0 [ 1339.127173] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1339.132059] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1339.136840] ? do_syscall_64+0x26/0x620 [ 1339.140835] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1339.146254] __x64_sys_sendto+0xe1/0x1a0 [ 1339.150361] do_syscall_64+0xfd/0x620 [ 1339.154192] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1339.159398] RIP: 0033:0x45aff9 [ 1339.162621] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1339.181729] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1339.189452] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1339.196742] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1339.204149] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 18:17:28 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1339.211442] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1339.218733] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000006 [ 1340.353732] Bluetooth: hci0: command 0x1003 tx timeout [ 1340.359196] Bluetooth: hci0: sending frame failed (-49) [ 1340.423785] Bluetooth: hci1: command 0x1003 tx timeout [ 1340.429251] Bluetooth: hci1: sending frame failed (-49) [ 1341.063900] Bluetooth: hci2: command 0x1003 tx timeout [ 1341.069363] Bluetooth: hci2: sending frame failed (-49) [ 1341.143743] Bluetooth: hci3: command 0x1003 tx timeout [ 1341.149286] Bluetooth: hci3: sending frame failed (-49) [ 1342.433881] Bluetooth: hci0: command 0x1001 tx timeout [ 1342.439400] Bluetooth: hci0: sending frame failed (-49) [ 1342.503794] Bluetooth: hci1: command 0x1001 tx timeout [ 1342.509214] Bluetooth: hci1: sending frame failed (-49) [ 1343.143795] Bluetooth: hci2: command 0x1001 tx timeout [ 1343.149234] Bluetooth: hci2: sending frame failed (-49) [ 1343.223810] Bluetooth: hci3: command 0x1001 tx timeout [ 1343.229204] Bluetooth: hci3: sending frame failed (-49) [ 1344.503812] Bluetooth: hci0: command 0x1009 tx timeout [ 1344.583801] Bluetooth: hci1: command 0x1009 tx timeout [ 1345.223921] Bluetooth: hci2: command 0x1009 tx timeout [ 1345.303845] Bluetooth: hci3: command 0x1009 tx timeout 18:17:37 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x4b47, &(0x7f0000000080)=0xfffffdfd) 18:17:37 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:17:37 executing program 3 (fault-call:8 fault-nth:7): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) 18:17:37 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x4b47, &(0x7f0000000080)=0xffffffdb) [ 1348.566284] FAULT_INJECTION: forcing a failure. [ 1348.566284] name failslab, interval 1, probability 0, space 0, times 0 [ 1348.608566] CPU: 1 PID: 14410 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1348.616640] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1348.626013] Call Trace: [ 1348.628625] dump_stack+0x197/0x210 [ 1348.632373] should_fail.cold+0xa/0x1b [ 1348.636293] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1348.641428] ? lock_downgrade+0x880/0x880 [ 1348.645621] __should_failslab+0x121/0x190 [ 1348.649894] should_failslab+0x9/0x14 [ 1348.653822] kmem_cache_alloc_node+0x26c/0x710 18:17:37 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1348.658425] ? __might_fault+0x12b/0x1e0 [ 1348.662535] __alloc_skb+0xd5/0x5f0 [ 1348.666229] ? skb_trim+0x190/0x190 [ 1348.669916] ? copyin+0xb5/0x100 [ 1348.673317] sk_stream_alloc_skb+0xc8/0x860 [ 1348.677667] tcp_sendmsg_locked+0xc9d/0x3290 [ 1348.682098] ? tcp_sendpage+0x60/0x60 [ 1348.685899] ? trace_hardirqs_on+0x67/0x220 [ 1348.690224] ? lock_sock_nested+0x9a/0x120 [ 1348.694465] ? __local_bh_enable_ip+0x15a/0x270 [ 1348.699162] tcp_sendmsg+0x30/0x50 [ 1348.702784] inet_sendmsg+0x141/0x5d0 [ 1348.706596] ? ipip_gro_receive+0x100/0x100 [ 1348.710982] sock_sendmsg+0xd7/0x130 [ 1348.714692] __sys_sendto+0x262/0x380 [ 1348.718598] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1348.723270] ? kasan_check_write+0x14/0x20 [ 1348.727517] ? __sb_end_write+0xd9/0x110 [ 1348.731582] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1348.737121] ? fput+0x128/0x1a0 [ 1348.740410] ? ksys_write+0x1f1/0x2d0 [ 1348.744213] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1348.748975] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1348.753745] ? do_syscall_64+0x26/0x620 [ 1348.757746] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1348.763126] __x64_sys_sendto+0xe1/0x1a0 [ 1348.767196] do_syscall_64+0xfd/0x620 [ 1348.771006] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1348.776194] RIP: 0033:0x45aff9 [ 1348.779385] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1348.798385] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1348.806096] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1348.813446] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1348.820752] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1348.828028] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1348.835293] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000007 18:17:38 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000600)='/dev/dlm-monitor\x00', 0x400000, 0x0) connect$l2tp(r1, &(0x7f0000000640)={0x2, 0x0, @loopback, 0x1}, 0x10) ioctl$KDADDIO(r0, 0x400455c8, 0x1) r2 = creat(&(0x7f0000000380)='./bus\x00', 0x0) openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000680)='/proc/thread-self/attr/exec\x00', 0x2, 0x0) ioctl$EXT4_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000340)=0xe4) recvmsg$can_bcm(0xffffffffffffffff, &(0x7f0000000000)={&(0x7f0000000100)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @dev}}}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000180)=""/141, 0x8d}, {&(0x7f0000000240)=""/140, 0x8c}, {&(0x7f0000000300)=""/192, 0xc0}, {&(0x7f00000003c0)=""/82, 0x52}, {&(0x7f0000000440)=""/95, 0x5f}], 0x5, &(0x7f0000000540)=""/141, 0x8d}, 0x20) r3 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:17:38 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:17:38 executing program 3 (fault-call:8 fault-nth:8): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) 18:17:38 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) r1 = open(&(0x7f0000000000)='./file0\x00', 0x80000, 0x1) ioctl$TIOCNOTTY(r1, 0x5422) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) [ 1349.199487] FAULT_INJECTION: forcing a failure. [ 1349.199487] name failslab, interval 1, probability 0, space 0, times 0 [ 1349.251581] CPU: 0 PID: 14420 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1349.259545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1349.268919] Call Trace: [ 1349.271547] dump_stack+0x197/0x210 [ 1349.275209] should_fail.cold+0xa/0x1b [ 1349.279237] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1349.284502] ? lock_downgrade+0x880/0x880 [ 1349.288792] __should_failslab+0x121/0x190 [ 1349.293063] should_failslab+0x9/0x14 [ 1349.296888] kmem_cache_alloc_node+0x26c/0x710 [ 1349.301505] ? __might_fault+0x12b/0x1e0 [ 1349.305612] __alloc_skb+0xd5/0x5f0 [ 1349.309272] ? skb_trim+0x190/0x190 [ 1349.312928] ? copyin+0xb5/0x100 [ 1349.316325] sk_stream_alloc_skb+0xc8/0x860 [ 1349.320691] tcp_sendmsg_locked+0xc9d/0x3290 [ 1349.325259] ? tcp_sendpage+0x60/0x60 [ 1349.329208] ? trace_hardirqs_on+0x67/0x220 [ 1349.333557] ? lock_sock_nested+0x9a/0x120 [ 1349.337821] ? __local_bh_enable_ip+0x15a/0x270 [ 1349.342520] tcp_sendmsg+0x30/0x50 [ 1349.346088] inet_sendmsg+0x141/0x5d0 18:17:38 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:17:38 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:17:38 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1349.350047] ? ipip_gro_receive+0x100/0x100 [ 1349.354397] sock_sendmsg+0xd7/0x130 [ 1349.358133] __sys_sendto+0x262/0x380 [ 1349.362098] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1349.366809] ? kasan_check_write+0x14/0x20 [ 1349.371086] ? __sb_end_write+0xd9/0x110 [ 1349.375180] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1349.380745] ? fput+0x128/0x1a0 [ 1349.384056] ? ksys_write+0x1f1/0x2d0 [ 1349.387887] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1349.392661] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1349.397447] ? do_syscall_64+0x26/0x620 [ 1349.401434] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1349.406927] __x64_sys_sendto+0xe1/0x1a0 [ 1349.411014] do_syscall_64+0xfd/0x620 [ 1349.414830] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1349.420023] RIP: 0033:0x45aff9 [ 1349.423210] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1349.442221] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1349.450124] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1349.457425] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1349.464816] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1349.472209] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1349.479530] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000008 [ 1350.663782] Bluetooth: hci1: command 0x1003 tx timeout [ 1350.669271] Bluetooth: hci0: command 0x1003 tx timeout [ 1350.669297] Bluetooth: hci1: sending frame failed (-49) [ 1350.675177] Bluetooth: hci0: sending frame failed (-49) [ 1351.303709] Bluetooth: hci3: command 0x1003 tx timeout [ 1351.309169] Bluetooth: hci2: command 0x1003 tx timeout [ 1351.309204] Bluetooth: hci3: sending frame failed (-49) [ 1351.315018] Bluetooth: hci2: sending frame failed (-49) [ 1352.743832] Bluetooth: hci0: command 0x1001 tx timeout [ 1352.743838] Bluetooth: hci1: command 0x1001 tx timeout [ 1352.743915] Bluetooth: hci1: sending frame failed (-49) [ 1352.749207] Bluetooth: hci0: sending frame failed (-49) [ 1353.383797] Bluetooth: hci3: command 0x1001 tx timeout [ 1353.383813] Bluetooth: hci2: command 0x1001 tx timeout [ 1353.389209] Bluetooth: hci3: sending frame failed (-49) [ 1353.400090] Bluetooth: hci2: sending frame failed (-49) [ 1354.823861] Bluetooth: hci0: command 0x1009 tx timeout [ 1354.823897] Bluetooth: hci1: command 0x1009 tx timeout [ 1355.463757] Bluetooth: hci2: command 0x1009 tx timeout [ 1355.469120] Bluetooth: hci3: command 0x1009 tx timeout 18:17:48 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:17:48 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x4b49, &(0x7f0000000080)=0xfffffdfd) 18:17:48 executing program 3 (fault-call:8 fault-nth:9): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) 18:17:48 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x4b49, &(0x7f0000000080)=0xffffffdb) 18:17:48 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1358.812049] FAULT_INJECTION: forcing a failure. [ 1358.812049] name failslab, interval 1, probability 0, space 0, times 0 [ 1358.837077] CPU: 0 PID: 14437 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1358.844934] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1358.854303] Call Trace: [ 1358.856918] dump_stack+0x197/0x210 [ 1358.860580] should_fail.cold+0xa/0x1b [ 1358.864500] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1358.869635] ? lock_downgrade+0x880/0x880 [ 1358.873819] __should_failslab+0x121/0x190 [ 1358.878079] should_failslab+0x9/0x14 [ 1358.881914] kmem_cache_alloc_node_trace+0x274/0x720 [ 1358.887044] ? __alloc_skb+0xd5/0x5f0 [ 1358.890879] __kmalloc_node_track_caller+0x3d/0x80 [ 1358.895840] __kmalloc_reserve.isra.0+0x40/0xf0 [ 1358.900528] __alloc_skb+0x10b/0x5f0 [ 1358.904236] ? skb_trim+0x190/0x190 [ 1358.907871] ? copyin+0xb5/0x100 [ 1358.911237] sk_stream_alloc_skb+0xc8/0x860 [ 1358.915565] tcp_sendmsg_locked+0xc9d/0x3290 [ 1358.919990] ? tcp_sendpage+0x60/0x60 [ 1358.923939] ? trace_hardirqs_on+0x67/0x220 [ 1358.928303] ? lock_sock_nested+0x9a/0x120 [ 1358.932531] ? __local_bh_enable_ip+0x15a/0x270 [ 1358.937195] tcp_sendmsg+0x30/0x50 [ 1358.940729] inet_sendmsg+0x141/0x5d0 [ 1358.944533] ? ipip_gro_receive+0x100/0x100 [ 1358.948869] sock_sendmsg+0xd7/0x130 [ 1358.952575] __sys_sendto+0x262/0x380 [ 1358.956367] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1358.961097] ? kasan_check_write+0x14/0x20 [ 1358.965329] ? __sb_end_write+0xd9/0x110 [ 1358.969383] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1358.974939] ? fput+0x128/0x1a0 [ 1358.978230] ? ksys_write+0x1f1/0x2d0 [ 1358.982040] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1358.986799] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1358.991552] ? do_syscall_64+0x26/0x620 [ 1358.995520] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1359.000879] __x64_sys_sendto+0xe1/0x1a0 [ 1359.005042] do_syscall_64+0xfd/0x620 [ 1359.008852] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1359.014143] RIP: 0033:0x45aff9 [ 1359.017372] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1359.036263] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1359.043959] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1359.051215] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1359.058530] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1359.065787] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1359.073044] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000009 18:17:48 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000600)='/dev/dlm-monitor\x00', 0x400000, 0x0) connect$l2tp(r1, &(0x7f0000000640)={0x2, 0x0, @loopback, 0x1}, 0x10) ioctl$KDADDIO(r0, 0x400455c8, 0x1) r2 = creat(&(0x7f0000000380)='./bus\x00', 0x0) openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000680)='/proc/thread-self/attr/exec\x00', 0x2, 0x0) ioctl$EXT4_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000340)=0xe4) recvmsg$can_bcm(0xffffffffffffffff, &(0x7f0000000000)={&(0x7f0000000100)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @dev}}}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000180)=""/141, 0x8d}, {&(0x7f0000000240)=""/140, 0x8c}, {&(0x7f0000000300)=""/192, 0xc0}, {&(0x7f00000003c0)=""/82, 0x52}, {&(0x7f0000000440)=""/95, 0x5f}], 0x5, &(0x7f0000000540)=""/141, 0x8d}, 0x20) r3 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:17:48 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB, @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:17:48 executing program 3 (fault-call:8 fault-nth:10): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1359.421234] FAULT_INJECTION: forcing a failure. [ 1359.421234] name failslab, interval 1, probability 0, space 0, times 0 18:17:48 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) dup3(r4, r5, 0x0) r6 = geteuid() r7 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r7, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) r10 = add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe) keyctl$setperm(0x5, r10, 0x202002) keyctl$chown(0x4, r10, r8, r9) fstat(r0, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0}) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000100)='9p\x00', 0x200000, &(0x7f00000001c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[{@access_user='access=user'}, {@dfltuid={'dfltuid', 0x3d, r6}}, {@afid={'afid', 0x3d, 0xfa0}}, {@mmap='mmap'}, {@dfltgid={'dfltgid', 0x3d, r9}}], [{@smackfsdef={'smackfsdef', 0x3d, '/dev/ptmx\x00'}}, {@dont_appraise='dont_appraise'}, {@uid_eq={'uid', 0x3d, r11}}, {@fscontext={'fscontext', 0x3d, 'root'}}, {@appraise_type='appraise_type=imasig'}, {@fsuuid={'fsuuid', 0x3d, {[0x61, 0xd, 0x33, 0xa4, 0xe, 0x63, 0x0, 0x35], 0x2d, [0x37, 0xf8, 0xf1], 0x2d, [0x61, 0x36, 0x31, 0x61], 0x2d, [0x66, 0x64, 0x37, 0x392e7ca3ddfc7f23], 0x2d, [0x64, 0xc4, 0x31, 0x38, 0x35, 0x63, 0x0, 0x66]}}}]}}) [ 1359.477209] CPU: 1 PID: 14452 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1359.485067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1359.494437] Call Trace: [ 1359.497048] dump_stack+0x197/0x210 [ 1359.500703] should_fail.cold+0xa/0x1b [ 1359.504617] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1359.509730] ? lock_downgrade+0x880/0x880 [ 1359.514033] __should_failslab+0x121/0x190 [ 1359.518267] should_failslab+0x9/0x14 [ 1359.522147] kmem_cache_alloc_node_trace+0x274/0x720 18:17:48 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB, @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:17:48 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB, @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1359.527265] ? __alloc_skb+0xd5/0x5f0 [ 1359.531094] __kmalloc_node_track_caller+0x3d/0x80 [ 1359.536063] __kmalloc_reserve.isra.0+0x40/0xf0 [ 1359.541109] __alloc_skb+0x10b/0x5f0 [ 1359.544857] ? skb_trim+0x190/0x190 [ 1359.548514] ? copyin+0xb5/0x100 [ 1359.551906] sk_stream_alloc_skb+0xc8/0x860 [ 1359.556254] tcp_sendmsg_locked+0xc9d/0x3290 [ 1359.560693] ? tcp_sendpage+0x60/0x60 [ 1359.564509] ? trace_hardirqs_on+0x67/0x220 [ 1359.568844] ? lock_sock_nested+0x9a/0x120 [ 1359.573101] ? __local_bh_enable_ip+0x15a/0x270 18:17:48 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1359.577805] tcp_sendmsg+0x30/0x50 [ 1359.581363] inet_sendmsg+0x141/0x5d0 [ 1359.585181] ? ipip_gro_receive+0x100/0x100 [ 1359.589525] sock_sendmsg+0xd7/0x130 [ 1359.593267] __sys_sendto+0x262/0x380 [ 1359.597083] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1359.601773] ? kasan_check_write+0x14/0x20 [ 1359.606040] ? __sb_end_write+0xd9/0x110 [ 1359.610131] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1359.615691] ? fput+0x128/0x1a0 [ 1359.619001] ? ksys_write+0x1f1/0x2d0 [ 1359.622830] ? trace_hardirqs_on_thunk+0x1a/0x1c 18:17:48 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1359.627611] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1359.632397] ? do_syscall_64+0x26/0x620 [ 1359.636391] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1359.641778] __x64_sys_sendto+0xe1/0x1a0 [ 1359.645870] do_syscall_64+0xfd/0x620 [ 1359.649699] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1359.654911] RIP: 0033:0x45aff9 [ 1359.658119] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1359.677042] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1359.684783] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1359.692065] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1359.699336] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1359.706648] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1359.713908] R13: 0000000000000992 R14: 00000000004cacca R15: 000000000000000a [ 1360.903812] Bluetooth: hci1: command 0x1003 tx timeout [ 1360.903834] Bluetooth: hci0: command 0x1003 tx timeout [ 1360.909355] Bluetooth: hci1: sending frame failed (-49) [ 1360.920184] Bluetooth: hci0: sending frame failed (-49) [ 1361.783731] Bluetooth: hci3: command 0x1003 tx timeout [ 1361.789177] Bluetooth: hci2: command 0x1003 tx timeout [ 1361.789215] Bluetooth: hci3: sending frame failed (-49) [ 1361.800136] Bluetooth: hci2: sending frame failed (-49) [ 1362.983913] Bluetooth: hci0: command 0x1001 tx timeout [ 1362.983948] Bluetooth: hci1: command 0x1001 tx timeout [ 1362.994707] Bluetooth: hci0: sending frame failed (-49) [ 1363.000270] Bluetooth: hci1: sending frame failed (-49) [ 1363.863825] Bluetooth: hci2: command 0x1001 tx timeout [ 1363.869162] Bluetooth: hci3: command 0x1001 tx timeout [ 1363.869253] Bluetooth: hci2: sending frame failed (-49) [ 1363.875158] Bluetooth: hci3: sending frame failed (-49) [ 1365.063898] Bluetooth: hci0: command 0x1009 tx timeout [ 1365.063920] Bluetooth: hci1: command 0x1009 tx timeout [ 1365.943798] Bluetooth: hci3: command 0x1009 tx timeout [ 1365.943850] Bluetooth: hci2: command 0x1009 tx timeout 18:17:58 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5409, &(0x7f0000000080)=0xfffffdfd) 18:17:58 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:17:58 executing program 3 (fault-call:8 fault-nth:11): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) 18:17:58 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5409, &(0x7f0000000080)=0xffffffdb) [ 1369.063411] FAULT_INJECTION: forcing a failure. [ 1369.063411] name failslab, interval 1, probability 0, space 0, times 0 [ 1369.086402] CPU: 0 PID: 14473 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1369.094471] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1369.103940] Call Trace: [ 1369.106850] dump_stack+0x197/0x210 [ 1369.110627] should_fail.cold+0xa/0x1b [ 1369.114531] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1369.119645] ? lock_downgrade+0x880/0x880 [ 1369.123941] __should_failslab+0x121/0x190 [ 1369.128440] should_failslab+0x9/0x14 [ 1369.132256] kmem_cache_alloc_node+0x26c/0x710 [ 1369.136845] ? __might_fault+0x12b/0x1e0 [ 1369.141050] __alloc_skb+0xd5/0x5f0 [ 1369.144679] ? skb_trim+0x190/0x190 [ 1369.148406] ? copyin+0xb5/0x100 [ 1369.151931] sk_stream_alloc_skb+0xc8/0x860 [ 1369.156520] tcp_sendmsg_locked+0xc9d/0x3290 [ 1369.160946] ? tcp_sendpage+0x60/0x60 [ 1369.164869] ? trace_hardirqs_on+0x67/0x220 [ 1369.169194] ? lock_sock_nested+0x9a/0x120 [ 1369.173676] ? __local_bh_enable_ip+0x15a/0x270 [ 1369.178355] tcp_sendmsg+0x30/0x50 [ 1369.181898] inet_sendmsg+0x141/0x5d0 [ 1369.185947] ? ipip_gro_receive+0x100/0x100 [ 1369.190276] sock_sendmsg+0xd7/0x130 [ 1369.193988] __sys_sendto+0x262/0x380 [ 1369.197795] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1369.202762] ? kasan_check_write+0x14/0x20 [ 1369.207019] ? __sb_end_write+0xd9/0x110 [ 1369.211239] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1369.216904] ? fput+0x128/0x1a0 [ 1369.220184] ? ksys_write+0x1f1/0x2d0 [ 1369.224001] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1369.228816] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1369.233583] ? do_syscall_64+0x26/0x620 [ 1369.237616] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1369.243033] __x64_sys_sendto+0xe1/0x1a0 [ 1369.247380] do_syscall_64+0xfd/0x620 [ 1369.251204] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1369.256710] RIP: 0033:0x45aff9 [ 1369.259912] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1369.279536] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1369.287536] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1369.295208] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1369.302878] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1369.310284] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1369.317560] R13: 0000000000000992 R14: 00000000004cacca R15: 000000000000000b 18:17:58 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000600)='/dev/dlm-monitor\x00', 0x400000, 0x0) connect$l2tp(r1, &(0x7f0000000640)={0x2, 0x0, @loopback, 0x1}, 0x10) ioctl$KDADDIO(r0, 0x400455c8, 0x1) r2 = creat(&(0x7f0000000380)='./bus\x00', 0x0) openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000680)='/proc/thread-self/attr/exec\x00', 0x2, 0x0) ioctl$EXT4_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000340)=0xe4) recvmsg$can_bcm(0xffffffffffffffff, &(0x7f0000000000)={&(0x7f0000000100)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @dev}}}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000180)=""/141, 0x8d}, {&(0x7f0000000240)=""/140, 0x8c}, {&(0x7f0000000300)=""/192, 0xc0}, {&(0x7f00000003c0)=""/82, 0x52}, {&(0x7f0000000440)=""/95, 0x5f}], 0x5, &(0x7f0000000540)=""/141, 0x8d}, 0x20) r3 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:17:58 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=0000000000000000004000', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:17:58 executing program 3 (fault-call:8 fault-nth:12): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1369.684746] FAULT_INJECTION: forcing a failure. [ 1369.684746] name failslab, interval 1, probability 0, space 0, times 0 [ 1369.701846] CPU: 0 PID: 14481 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1369.709901] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1369.719440] Call Trace: [ 1369.722202] dump_stack+0x197/0x210 [ 1369.726064] should_fail.cold+0xa/0x1b [ 1369.729973] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1369.735355] ? lock_downgrade+0x880/0x880 [ 1369.739678] __should_failslab+0x121/0x190 [ 1369.744057] should_failslab+0x9/0x14 [ 1369.747981] kmem_cache_alloc_node+0x26c/0x710 [ 1369.752569] ? __might_fault+0x12b/0x1e0 [ 1369.756648] __alloc_skb+0xd5/0x5f0 [ 1369.760468] ? skb_trim+0x190/0x190 [ 1369.764109] ? copyin+0xb5/0x100 [ 1369.767626] sk_stream_alloc_skb+0xc8/0x860 [ 1369.772101] tcp_sendmsg_locked+0xc9d/0x3290 [ 1369.776540] ? tcp_sendpage+0x60/0x60 [ 1369.780353] ? trace_hardirqs_on+0x67/0x220 [ 1369.784827] ? lock_sock_nested+0x9a/0x120 [ 1369.789358] ? __local_bh_enable_ip+0x15a/0x270 [ 1369.794042] tcp_sendmsg+0x30/0x50 [ 1369.797600] inet_sendmsg+0x141/0x5d0 [ 1369.801675] ? ipip_gro_receive+0x100/0x100 [ 1369.806285] sock_sendmsg+0xd7/0x130 [ 1369.810220] __sys_sendto+0x262/0x380 [ 1369.814207] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1369.819130] ? kasan_check_write+0x14/0x20 [ 1369.823380] ? __sb_end_write+0xd9/0x110 [ 1369.827719] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1369.833389] ? fput+0x128/0x1a0 [ 1369.836842] ? ksys_write+0x1f1/0x2d0 [ 1369.840822] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1369.845606] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1369.850757] ? do_syscall_64+0x26/0x620 [ 1369.854740] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1369.860251] __x64_sys_sendto+0xe1/0x1a0 [ 1369.864601] do_syscall_64+0xfd/0x620 [ 1369.868546] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1369.873861] RIP: 0033:0x45aff9 [ 1369.877200] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1369.896470] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1369.904437] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1369.911719] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1369.919224] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1369.926780] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1369.934177] R13: 0000000000000992 R14: 00000000004cacca R15: 000000000000000c 18:17:59 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=0000000000000000004000', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:17:59 executing program 5: r0 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000280)='/dev/dlm-monitor\x00', 0x400000, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000880)={0x0, 0xffffffffffffffff, 0xee, 0x5, @scatter={0x8, 0x0, &(0x7f0000000640)=[{&(0x7f00000002c0)=""/35, 0x23}, {&(0x7f0000000300)=""/1, 0x1}, {&(0x7f0000000980)=""/206, 0xcb}, {&(0x7f0000000440)=""/56, 0x38}, {&(0x7f0000000480)=""/25, 0x19}, {&(0x7f00000004c0)=""/70, 0x46}, {&(0x7f0000000540)=""/95, 0x5f}, {&(0x7f00000005c0)=""/67, 0x43}]}, &(0x7f00000006c0)="50b7b4d7848c9b174536459439ffe4041d87cd7cfd5e39b79299bab09b14f8e87b8673d46051f7e55572dc9d6ad2ebc3bd15fb9fed9d2608f3fd5001458d37acb2100f080a36abf1bbe3a7216c1df1e23072bd535b5f0288bfcca2cb0ec34ae9923502695ac85f9638ccabedcf52fd10540ed8279a10826913b852a93e77dd83d18bfd3628b8e936a64b88a3794c3aa8047578e32126cec59c2a274c6af31a8887f066ee82e1b24d2e5641812ea1687f48e477e124204dd343d8c689b17d49a39db5f56711d90f21794b96606cc39dcb29f9", &(0x7f0000000900)=""/81, 0x1, 0x8035, 0xffffffffffffffff, &(0x7f0000000840)}) socket$nl_route(0x10, 0x3, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) socket$kcm(0x29, 0x2, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0xf) mount$9p_virtio(&(0x7f0000000000)='syz\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='9p\x00', 0x11000, &(0x7f0000000180)=ANY=[@ANYBLOB="7472616e733d76697274696f2c64656275673d3078303030303030303030303030303030372c6e6f657874656e642c76657273696f6e3d3970323030302e752c616e616d653d2f6465762f70746d78002c6163636573733d757765722c616669643d3078303030303030303030303030383030302c6d61736b3d4d41595f57524954452c646f6e745f686173682c6673757569643d30626233636351382df6f637382d623131322d3064659d2d50653138c73534302c7063723d30303030303030303030303030303030303032342c646f6e745f6d6561737572652c7375626a5f726f6c653d2f6465762f70746d78002c00"]) ioctl$TCGETS(r1, 0x5401, &(0x7f00000007c0)) ioctl$KDADDIO(r1, 0x400455c8, 0x1) ioctl$TIOCSETD(r1, 0x5412, &(0x7f0000000080)) 18:17:59 executing program 3 (fault-call:8 fault-nth:13): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1370.296903] FAULT_INJECTION: forcing a failure. [ 1370.296903] name failslab, interval 1, probability 0, space 0, times 0 [ 1370.311276] CPU: 0 PID: 14490 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1370.319138] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1370.328839] Call Trace: [ 1370.331604] dump_stack+0x197/0x210 [ 1370.335275] should_fail.cold+0xa/0x1b [ 1370.339210] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1370.344546] ? lock_downgrade+0x880/0x880 [ 1370.348744] __should_failslab+0x121/0x190 [ 1370.353231] should_failslab+0x9/0x14 [ 1370.357062] kmem_cache_alloc_node_trace+0x274/0x720 [ 1370.362206] ? __alloc_skb+0xd5/0x5f0 [ 1370.366062] __kmalloc_node_track_caller+0x3d/0x80 [ 1370.371040] __kmalloc_reserve.isra.0+0x40/0xf0 [ 1370.375751] __alloc_skb+0x10b/0x5f0 [ 1370.379506] ? skb_trim+0x190/0x190 [ 1370.383291] ? copyin+0xb5/0x100 [ 1370.386699] sk_stream_alloc_skb+0xc8/0x860 [ 1370.391080] tcp_sendmsg_locked+0xc9d/0x3290 18:17:59 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=0000000000000000004000', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:17:59 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,use', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1370.395679] ? tcp_sendpage+0x60/0x60 [ 1370.399550] ? trace_hardirqs_on+0x67/0x220 [ 1370.403934] ? lock_sock_nested+0x9a/0x120 [ 1370.408402] ? __local_bh_enable_ip+0x15a/0x270 [ 1370.413110] tcp_sendmsg+0x30/0x50 [ 1370.416679] inet_sendmsg+0x141/0x5d0 [ 1370.420687] ? ipip_gro_receive+0x100/0x100 [ 1370.425048] sock_sendmsg+0xd7/0x130 [ 1370.428875] __sys_sendto+0x262/0x380 [ 1370.432809] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1370.437648] ? kasan_check_write+0x14/0x20 [ 1370.441930] ? __sb_end_write+0xd9/0x110 [ 1370.446027] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1370.451842] ? fput+0x128/0x1a0 [ 1370.455158] ? ksys_write+0x1f1/0x2d0 [ 1370.459045] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1370.464121] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1370.468911] ? do_syscall_64+0x26/0x620 [ 1370.472926] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1370.478475] __x64_sys_sendto+0xe1/0x1a0 [ 1370.482575] do_syscall_64+0xfd/0x620 [ 1370.486560] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1370.492068] RIP: 0033:0x45aff9 [ 1370.495290] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1370.514911] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1370.523229] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1370.530506] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1370.538164] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1370.545600] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1370.553180] R13: 0000000000000992 R14: 00000000004cacca R15: 000000000000000d [ 1371.063799] Bluetooth: hci0: command 0x1003 tx timeout [ 1371.069307] Bluetooth: hci0: sending frame failed (-49) [ 1371.143718] Bluetooth: hci1: command 0x1003 tx timeout [ 1371.149351] Bluetooth: hci1: sending frame failed (-49) [ 1371.703738] Bluetooth: hci2: command 0x1003 tx timeout [ 1371.710446] Bluetooth: hci2: sending frame failed (-49) [ 1372.513909] Bluetooth: hci3: command 0x1003 tx timeout [ 1372.519429] Bluetooth: hci3: sending frame failed (-49) [ 1373.143780] Bluetooth: hci0: command 0x1001 tx timeout [ 1373.149353] Bluetooth: hci0: sending frame failed (-49) [ 1373.223853] Bluetooth: hci1: command 0x1001 tx timeout [ 1373.229464] Bluetooth: hci1: sending frame failed (-49) [ 1373.783886] Bluetooth: hci2: command 0x1001 tx timeout [ 1373.789316] Bluetooth: hci2: sending frame failed (-49) [ 1374.583927] Bluetooth: hci3: command 0x1001 tx timeout [ 1374.589548] Bluetooth: hci3: sending frame failed (-49) [ 1375.223878] Bluetooth: hci0: command 0x1009 tx timeout [ 1375.303867] Bluetooth: hci1: command 0x1009 tx timeout [ 1375.863789] Bluetooth: hci2: command 0x1009 tx timeout [ 1376.663769] Bluetooth: hci3: command 0x1009 tx timeout 18:18:08 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x540b, &(0x7f0000000080)=0xfffffdfd) 18:18:08 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,use', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:18:08 executing program 3 (fault-call:8 fault-nth:14): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) 18:18:08 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x540b, &(0x7f0000000080)=0xffffffdb) [ 1379.286162] FAULT_INJECTION: forcing a failure. [ 1379.286162] name failslab, interval 1, probability 0, space 0, times 0 [ 1379.313150] CPU: 1 PID: 14502 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1379.321002] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1379.330371] Call Trace: [ 1379.332981] dump_stack+0x197/0x210 [ 1379.336635] should_fail.cold+0xa/0x1b [ 1379.340560] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1379.345694] ? lock_downgrade+0x880/0x880 [ 1379.349891] __should_failslab+0x121/0x190 [ 1379.354271] should_failslab+0x9/0x14 [ 1379.358087] kmem_cache_alloc_node+0x26c/0x710 [ 1379.362690] ? __might_fault+0x12b/0x1e0 [ 1379.366769] __alloc_skb+0xd5/0x5f0 [ 1379.370402] ? skb_trim+0x190/0x190 [ 1379.374047] ? copyin+0xb5/0x100 [ 1379.377433] sk_stream_alloc_skb+0xc8/0x860 [ 1379.381770] tcp_sendmsg_locked+0xc9d/0x3290 [ 1379.386185] ? tcp_sendpage+0x60/0x60 [ 1379.389987] ? trace_hardirqs_on+0x67/0x220 [ 1379.394320] ? lock_sock_nested+0x9a/0x120 [ 1379.398584] ? __local_bh_enable_ip+0x15a/0x270 [ 1379.403271] tcp_sendmsg+0x30/0x50 [ 1379.406829] inet_sendmsg+0x141/0x5d0 [ 1379.410633] ? ipip_gro_receive+0x100/0x100 [ 1379.414966] sock_sendmsg+0xd7/0x130 [ 1379.418697] __sys_sendto+0x262/0x380 [ 1379.422509] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1379.427176] ? kasan_check_write+0x14/0x20 [ 1379.431415] ? __sb_end_write+0xd9/0x110 [ 1379.435486] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1379.441036] ? fput+0x128/0x1a0 [ 1379.444328] ? ksys_write+0x1f1/0x2d0 [ 1379.448135] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1379.452989] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1379.457760] ? do_syscall_64+0x26/0x620 [ 1379.461738] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1379.467109] __x64_sys_sendto+0xe1/0x1a0 [ 1379.471193] do_syscall_64+0xfd/0x620 [ 1379.475014] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1379.480212] RIP: 0033:0x45aff9 [ 1379.483396] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1379.502291] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1379.509988] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1379.517265] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1379.524548] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1379.531855] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1379.539130] R13: 0000000000000992 R14: 00000000004cacca R15: 000000000000000e 18:18:09 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,use', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:18:09 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000600)='/dev/dlm-monitor\x00', 0x400000, 0x0) connect$l2tp(r1, &(0x7f0000000640)={0x2, 0x0, @loopback, 0x1}, 0x10) ioctl$KDADDIO(r0, 0x400455c8, 0x1) r2 = creat(&(0x7f0000000380)='./bus\x00', 0x0) openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000680)='/proc/thread-self/attr/exec\x00', 0x2, 0x0) ioctl$EXT4_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000340)=0xe4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup3(r3, r4, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:18:09 executing program 3 (fault-call:8 fault-nth:15): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1379.917185] FAULT_INJECTION: forcing a failure. [ 1379.917185] name failslab, interval 1, probability 0, space 0, times 0 [ 1379.937719] CPU: 1 PID: 14515 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1379.945569] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1379.954944] Call Trace: [ 1379.957561] dump_stack+0x197/0x210 [ 1379.961254] should_fail.cold+0xa/0x1b 18:18:09 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_i', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1379.965186] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1379.970319] ? lock_downgrade+0x880/0x880 [ 1379.974509] __should_failslab+0x121/0x190 [ 1379.979023] should_failslab+0x9/0x14 [ 1379.982838] kmem_cache_alloc_node+0x26c/0x710 [ 1379.987433] ? __might_fault+0x12b/0x1e0 [ 1379.991520] __alloc_skb+0xd5/0x5f0 [ 1379.995176] ? skb_trim+0x190/0x190 [ 1379.998821] ? copyin+0xb5/0x100 [ 1380.002216] sk_stream_alloc_skb+0xc8/0x860 [ 1380.006549] tcp_sendmsg_locked+0xc9d/0x3290 [ 1380.010959] ? tcp_sendpage+0x60/0x60 [ 1380.014766] ? trace_hardirqs_on+0x67/0x220 [ 1380.019103] ? lock_sock_nested+0x9a/0x120 [ 1380.023345] ? __local_bh_enable_ip+0x15a/0x270 [ 1380.028010] tcp_sendmsg+0x30/0x50 [ 1380.031543] inet_sendmsg+0x141/0x5d0 [ 1380.035369] ? ipip_gro_receive+0x100/0x100 [ 1380.039707] sock_sendmsg+0xd7/0x130 [ 1380.043418] __sys_sendto+0x262/0x380 [ 1380.047221] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1380.051885] ? kasan_check_write+0x14/0x20 [ 1380.056144] ? __sb_end_write+0xd9/0x110 [ 1380.060226] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1380.065901] ? fput+0x128/0x1a0 [ 1380.069184] ? ksys_write+0x1f1/0x2d0 [ 1380.072984] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1380.077737] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1380.082483] ? do_syscall_64+0x26/0x620 [ 1380.086451] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1380.091809] __x64_sys_sendto+0xe1/0x1a0 [ 1380.095891] do_syscall_64+0xfd/0x620 [ 1380.099701] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1380.104894] RIP: 0033:0x45aff9 [ 1380.108089] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1380.127091] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1380.134808] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1380.142088] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1380.149360] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1380.156645] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1380.163928] R13: 0000000000000992 R14: 00000000004cacca R15: 000000000000000f 18:18:09 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_i', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:18:09 executing program 3 (fault-call:8 fault-nth:16): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) 18:18:09 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_i', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1380.571843] FAULT_INJECTION: forcing a failure. [ 1380.571843] name failslab, interval 1, probability 0, space 0, times 0 [ 1380.612115] CPU: 0 PID: 14525 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1380.619977] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1380.629461] Call Trace: [ 1380.632088] dump_stack+0x197/0x210 [ 1380.635761] should_fail.cold+0xa/0x1b [ 1380.639713] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1380.644881] ? lock_downgrade+0x880/0x880 [ 1380.649067] __should_failslab+0x121/0x190 [ 1380.653454] should_failslab+0x9/0x14 [ 1380.657284] kmem_cache_alloc_node_trace+0x274/0x720 [ 1380.662417] ? __alloc_skb+0xd5/0x5f0 [ 1380.666252] __kmalloc_node_track_caller+0x3d/0x80 [ 1380.671215] __kmalloc_reserve.isra.0+0x40/0xf0 [ 1380.675917] __alloc_skb+0x10b/0x5f0 [ 1380.679669] ? skb_trim+0x190/0x190 [ 1380.683319] ? copyin+0xb5/0x100 [ 1380.686710] sk_stream_alloc_skb+0xc8/0x860 [ 1380.691058] tcp_sendmsg_locked+0xc9d/0x3290 [ 1380.695506] ? tcp_sendpage+0x60/0x60 [ 1380.699323] ? trace_hardirqs_on+0x67/0x220 [ 1380.703661] ? lock_sock_nested+0x9a/0x120 [ 1380.707924] ? __local_bh_enable_ip+0x15a/0x270 [ 1380.712620] tcp_sendmsg+0x30/0x50 [ 1380.716183] inet_sendmsg+0x141/0x5d0 [ 1380.720005] ? ipip_gro_receive+0x100/0x100 [ 1380.724349] sock_sendmsg+0xd7/0x130 [ 1380.728084] __sys_sendto+0x262/0x380 [ 1380.731907] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1380.736596] ? kasan_check_write+0x14/0x20 [ 1380.740866] ? __sb_end_write+0xd9/0x110 [ 1380.744950] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1380.750508] ? fput+0x128/0x1a0 [ 1380.753809] ? ksys_write+0x1f1/0x2d0 [ 1380.757631] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1380.762405] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1380.767181] ? do_syscall_64+0x26/0x620 [ 1380.771181] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1380.776564] __x64_sys_sendto+0xe1/0x1a0 [ 1380.780651] do_syscall_64+0xfd/0x620 [ 1380.784605] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1380.789809] RIP: 0033:0x45aff9 [ 1380.793022] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1380.812069] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1380.819905] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1380.827197] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1380.834584] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1380.841878] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1380.849173] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000010 18:18:10 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1381.393826] Bluetooth: hci1: command 0x1003 tx timeout [ 1381.399277] Bluetooth: hci0: command 0x1003 tx timeout [ 1381.399308] Bluetooth: hci1: sending frame failed (-49) [ 1381.404888] Bluetooth: hci0: sending frame failed (-49) [ 1381.943828] Bluetooth: hci2: command 0x1003 tx timeout [ 1381.949276] Bluetooth: hci2: sending frame failed (-49) [ 1383.463789] Bluetooth: hci0: command 0x1001 tx timeout [ 1383.463821] Bluetooth: hci1: command 0x1001 tx timeout [ 1383.474528] Bluetooth: hci0: sending frame failed (-49) [ 1383.480083] Bluetooth: hci1: sending frame failed (-49) [ 1384.023889] Bluetooth: hci2: command 0x1001 tx timeout [ 1384.029319] Bluetooth: hci2: sending frame failed (-49) [ 1385.543815] Bluetooth: hci1: command 0x1009 tx timeout [ 1385.553846] Bluetooth: hci0: command 0x1009 tx timeout [ 1386.103823] Bluetooth: hci2: command 0x1009 tx timeout 18:18:18 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x540c, &(0x7f0000000080)=0xfffffdfd) 18:18:18 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:18:18 executing program 3 (fault-call:8 fault-nth:17): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) 18:18:18 executing program 5: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nvram\x00', 0x1001, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000009c0)='/dev/loop-control\x00', 0x80000, 0x0) r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r2) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, r2) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) r4 = creat(&(0x7f0000000100)='./bus\x00', 0x4c) ioctl$EXT4_IOC_SETFLAGS(r4, 0x40086602, &(0x7f0000000340)=0xe4) ioctl$sock_inet6_tcp_SIOCATMARK(r4, 0x8905, &(0x7f0000000000)) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0x11) ioctl$KDADDIO(r3, 0x400455c8, 0x1) ioctl$TIOCSETD(r3, 0x5412, &(0x7f0000000080)) 18:18:18 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x540c, &(0x7f0000000080)=0xffffffdb) [ 1389.518850] FAULT_INJECTION: forcing a failure. [ 1389.518850] name failslab, interval 1, probability 0, space 0, times 0 [ 1389.550540] CPU: 1 PID: 14533 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1389.558379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1389.567878] Call Trace: [ 1389.570488] dump_stack+0x197/0x210 [ 1389.574149] should_fail.cold+0xa/0x1b [ 1389.578186] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1389.583318] ? lock_downgrade+0x880/0x880 [ 1389.587499] __should_failslab+0x121/0x190 [ 1389.591758] should_failslab+0x9/0x14 [ 1389.595587] kmem_cache_alloc_node+0x26c/0x710 [ 1389.600191] ? __might_fault+0x12b/0x1e0 [ 1389.604297] __alloc_skb+0xd5/0x5f0 [ 1389.607957] ? skb_trim+0x190/0x190 [ 1389.611608] ? copyin+0xb5/0x100 [ 1389.615009] sk_stream_alloc_skb+0xc8/0x860 [ 1389.619366] tcp_sendmsg_locked+0xc9d/0x3290 [ 1389.624775] ? tcp_sendpage+0x60/0x60 [ 1389.628607] ? trace_hardirqs_on+0x67/0x220 [ 1389.633087] ? lock_sock_nested+0x9a/0x120 [ 1389.637351] ? __local_bh_enable_ip+0x15a/0x270 [ 1389.642065] tcp_sendmsg+0x30/0x50 [ 1389.645633] inet_sendmsg+0x141/0x5d0 [ 1389.649578] ? ipip_gro_receive+0x100/0x100 [ 1389.653924] sock_sendmsg+0xd7/0x130 [ 1389.657666] __sys_sendto+0x262/0x380 [ 1389.661490] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1389.666271] ? kasan_check_write+0x14/0x20 [ 1389.670569] ? __sb_end_write+0xd9/0x110 [ 1389.674666] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1389.680224] ? fput+0x128/0x1a0 [ 1389.683500] ? ksys_write+0x1f1/0x2d0 [ 1389.687481] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1389.692248] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1389.697020] ? do_syscall_64+0x26/0x620 [ 1389.701075] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1389.706451] __x64_sys_sendto+0xe1/0x1a0 [ 1389.710513] do_syscall_64+0xfd/0x620 [ 1389.714326] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1389.719522] RIP: 0033:0x45aff9 [ 1389.722728] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1389.741643] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1389.749357] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1389.756753] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1389.764059] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1389.771370] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1389.778666] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000011 18:18:19 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000600)='/dev/dlm-monitor\x00', 0x400000, 0x0) connect$l2tp(r1, &(0x7f0000000640)={0x2, 0x0, @loopback, 0x1}, 0x10) ioctl$KDADDIO(r0, 0x400455c8, 0x1) creat(&(0x7f0000000380)='./bus\x00', 0x0) openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000680)='/proc/thread-self/attr/exec\x00', 0x2, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup3(r2, r3, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:18:19 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:18:19 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x540d, &(0x7f0000000080)=0xfffffdfd) 18:18:19 executing program 5: ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup3(r0, r1, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$KDADDIO(r2, 0x400455c8, 0x1) ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000080)) 18:18:19 executing program 3 (fault-call:8 fault-nth:18): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) 18:18:19 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1390.167910] FAULT_INJECTION: forcing a failure. [ 1390.167910] name failslab, interval 1, probability 0, space 0, times 0 [ 1390.188441] CPU: 1 PID: 14551 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1390.196391] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1390.205765] Call Trace: [ 1390.208377] dump_stack+0x197/0x210 [ 1390.212039] should_fail.cold+0xa/0x1b 18:18:19 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1390.215967] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1390.221103] ? lock_downgrade+0x880/0x880 [ 1390.225409] __should_failslab+0x121/0x190 [ 1390.229668] should_failslab+0x9/0x14 [ 1390.233491] kmem_cache_alloc_node_trace+0x274/0x720 [ 1390.238631] ? __alloc_skb+0xd5/0x5f0 [ 1390.242466] __kmalloc_node_track_caller+0x3d/0x80 [ 1390.247426] __kmalloc_reserve.isra.0+0x40/0xf0 [ 1390.252125] __alloc_skb+0x10b/0x5f0 [ 1390.255862] ? skb_trim+0x190/0x190 [ 1390.259511] ? copyin+0xb5/0x100 [ 1390.262908] sk_stream_alloc_skb+0xc8/0x860 18:18:19 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1390.267259] tcp_sendmsg_locked+0xc9d/0x3290 [ 1390.271714] ? tcp_sendpage+0x60/0x60 [ 1390.275661] ? trace_hardirqs_on+0x67/0x220 [ 1390.280009] ? lock_sock_nested+0x9a/0x120 [ 1390.284273] ? __local_bh_enable_ip+0x15a/0x270 [ 1390.288976] tcp_sendmsg+0x30/0x50 [ 1390.292537] inet_sendmsg+0x141/0x5d0 [ 1390.296360] ? ipip_gro_receive+0x100/0x100 [ 1390.300715] sock_sendmsg+0xd7/0x130 [ 1390.304460] __sys_sendto+0x262/0x380 [ 1390.308283] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1390.313022] ? kasan_check_write+0x14/0x20 18:18:19 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1390.317297] ? __sb_end_write+0xd9/0x110 [ 1390.321387] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1390.326951] ? fput+0x128/0x1a0 [ 1390.330250] ? ksys_write+0x1f1/0x2d0 [ 1390.334077] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1390.338860] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1390.343674] ? do_syscall_64+0x26/0x620 [ 1390.347680] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1390.353067] __x64_sys_sendto+0xe1/0x1a0 [ 1390.357163] do_syscall_64+0xfd/0x620 [ 1390.361025] entry_SYSCALL_64_after_hwframe+0x49/0xbe 18:18:19 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:18:19 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1390.366237] RIP: 0033:0x45aff9 [ 1390.369436] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1390.388446] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1390.396184] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1390.403475] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1390.410894] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1390.418186] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1390.425498] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000012 [ 1391.703728] Bluetooth: hci0: command 0x1003 tx timeout [ 1391.709221] Bluetooth: hci0: sending frame failed (-49) [ 1392.183731] Bluetooth: hci1: command 0x1003 tx timeout [ 1392.189236] Bluetooth: hci1: sending frame failed (-49) [ 1392.263748] Bluetooth: hci2: command 0x1003 tx timeout [ 1392.269229] Bluetooth: hci2: sending frame failed (-49) [ 1393.783751] Bluetooth: hci0: command 0x1001 tx timeout [ 1393.789256] Bluetooth: hci0: sending frame failed (-49) [ 1394.263823] Bluetooth: hci1: command 0x1001 tx timeout [ 1394.269276] Bluetooth: hci1: sending frame failed (-49) [ 1394.343795] Bluetooth: hci2: command 0x1001 tx timeout [ 1394.349446] Bluetooth: hci2: sending frame failed (-49) [ 1395.863800] Bluetooth: hci0: command 0x1009 tx timeout [ 1396.353923] Bluetooth: hci1: command 0x1009 tx timeout [ 1396.423849] Bluetooth: hci2: command 0x1009 tx timeout 18:18:29 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x540d, &(0x7f0000000080)=0xffffffdb) 18:18:29 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000600)='/dev/dlm-monitor\x00', 0x400000, 0x0) connect$l2tp(r1, &(0x7f0000000640)={0x2, 0x0, @loopback, 0x1}, 0x10) ioctl$KDADDIO(r0, 0x400455c8, 0x1) creat(&(0x7f0000000380)='./bus\x00', 0x0) openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000680)='/proc/thread-self/attr/exec\x00', 0x2, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup3(r2, r3, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:18:29 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:18:29 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) r1 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x0, 0x4002011, r1, 0x0) r2 = open(&(0x7f0000000040)='./bus\x00', 0x42602, 0xa8) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x0, 0x4002011, r2, 0x0) fallocate(r2, 0x2, 0x2, 0x9) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)) r3 = creat(&(0x7f0000000380)='./bus\x00', 0x0) ioctl$EXT4_IOC_SETFLAGS(r3, 0x40086602, &(0x7f0000000340)=0xe4) ioctl$TIOCMBIC(r3, 0x5417, &(0x7f0000000080)=0x8) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000000)) 18:18:29 executing program 3 (fault-call:8 fault-nth:19): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) 18:18:29 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5413, &(0x7f0000000080)=0xfffffdfd) 18:18:29 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1400.422309] FAULT_INJECTION: forcing a failure. [ 1400.422309] name failslab, interval 1, probability 0, space 0, times 0 [ 1400.463026] CPU: 0 PID: 14582 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1400.470877] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1400.480261] Call Trace: [ 1400.482872] dump_stack+0x197/0x210 [ 1400.486523] should_fail.cold+0xa/0x1b [ 1400.490454] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1400.495607] ? lock_downgrade+0x880/0x880 [ 1400.499794] __should_failslab+0x121/0x190 [ 1400.504068] should_failslab+0x9/0x14 [ 1400.508001] kmem_cache_alloc_node+0x26c/0x710 18:18:29 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:18:29 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) ioctl$PIO_UNISCRNMAP(0xffffffffffffffff, 0x4b6a, &(0x7f0000000100)="21ecf91ffcb756446f329f628c1a2cd4dcb9df62970136508523ef5e9249675ef2db7c1bbdcf3e2fce749fddbda6b149e574fe2da8a0cd5d02b5af6f9e264bfb70d4e9208c91fca8caffcb0564af81326908606836b57a859774aaf4caafd08649ff52ed3f87a6f9882be7d2") [ 1400.512609] ? __might_fault+0x12b/0x1e0 [ 1400.516787] __alloc_skb+0xd5/0x5f0 [ 1400.520440] ? skb_trim+0x190/0x190 [ 1400.524090] ? copyin+0xb5/0x100 [ 1400.527494] sk_stream_alloc_skb+0xc8/0x860 [ 1400.531849] tcp_sendmsg_locked+0xc9d/0x3290 [ 1400.536297] ? tcp_sendpage+0x60/0x60 [ 1400.540122] ? trace_hardirqs_on+0x67/0x220 [ 1400.544571] ? lock_sock_nested+0x9a/0x120 [ 1400.548834] ? __local_bh_enable_ip+0x15a/0x270 [ 1400.553647] tcp_sendmsg+0x30/0x50 [ 1400.557428] inet_sendmsg+0x141/0x5d0 18:18:29 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB, @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1400.561257] ? ipip_gro_receive+0x100/0x100 [ 1400.565607] sock_sendmsg+0xd7/0x130 [ 1400.569347] __sys_sendto+0x262/0x380 [ 1400.573173] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1400.577859] ? kasan_check_write+0x14/0x20 [ 1400.582127] ? __sb_end_write+0xd9/0x110 [ 1400.586227] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1400.591916] ? fput+0x128/0x1a0 [ 1400.595221] ? ksys_write+0x1f1/0x2d0 [ 1400.599062] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1400.603854] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1400.608636] ? do_syscall_64+0x26/0x620 18:18:29 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB, @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1400.612633] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1400.618021] __x64_sys_sendto+0xe1/0x1a0 [ 1400.622240] do_syscall_64+0xfd/0x620 [ 1400.626081] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1400.631287] RIP: 0033:0x45aff9 [ 1400.634493] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1400.653510] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c 18:18:29 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB, @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1400.661358] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1400.668648] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1400.675934] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1400.683228] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1400.690648] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000013 [ 1401.783726] Bluetooth: hci0: command 0x1003 tx timeout [ 1401.789158] Bluetooth: hci0: sending frame failed (-49) [ 1402.503763] Bluetooth: hci1: command 0x1003 tx timeout [ 1402.503781] Bluetooth: hci3: command 0x1003 tx timeout [ 1402.509301] Bluetooth: hci1: sending frame failed (-49) [ 1402.520160] Bluetooth: hci2: command 0x1003 tx timeout [ 1402.520186] Bluetooth: hci3: sending frame failed (-49) [ 1402.526356] Bluetooth: hci2: sending frame failed (-49) [ 1403.863919] Bluetooth: hci0: command 0x1001 tx timeout [ 1403.869330] Bluetooth: hci0: sending frame failed (-49) [ 1404.583791] Bluetooth: hci2: command 0x1001 tx timeout [ 1404.583830] Bluetooth: hci3: command 0x1001 tx timeout [ 1404.589203] Bluetooth: hci2: sending frame failed (-49) [ 1404.594541] Bluetooth: hci3: sending frame failed (-49) [ 1404.594579] Bluetooth: hci1: command 0x1001 tx timeout [ 1404.610712] Bluetooth: hci1: sending frame failed (-49) [ 1405.943853] Bluetooth: hci0: command 0x1009 tx timeout [ 1406.663806] Bluetooth: hci3: command 0x1009 tx timeout [ 1406.663834] Bluetooth: hci1: command 0x1009 tx timeout [ 1406.674498] Bluetooth: hci2: command 0x1009 tx timeout 18:18:39 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5413, &(0x7f0000000080)=0xffffffdb) 18:18:39 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000600)='/dev/dlm-monitor\x00', 0x400000, 0x0) connect$l2tp(r1, &(0x7f0000000640)={0x2, 0x0, @loopback, 0x1}, 0x10) ioctl$KDADDIO(r0, 0x400455c8, 0x1) creat(&(0x7f0000000380)='./bus\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup3(r2, r3, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:18:39 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:18:39 executing program 3 (fault-call:8 fault-nth:20): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) 18:18:39 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5414, &(0x7f0000000080)=0xfffffdfd) 18:18:39 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000000)=0xfffffffc) [ 1410.662459] FAULT_INJECTION: forcing a failure. [ 1410.662459] name failslab, interval 1, probability 0, space 0, times 0 [ 1410.720652] CPU: 0 PID: 14610 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1410.728614] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1410.738092] Call Trace: [ 1410.740702] dump_stack+0x197/0x210 [ 1410.744361] should_fail.cold+0xa/0x1b [ 1410.748392] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1410.753622] ? lock_downgrade+0x880/0x880 [ 1410.757820] __should_failslab+0x121/0x190 [ 1410.762082] should_failslab+0x9/0x14 [ 1410.766010] kmem_cache_alloc_node+0x26c/0x710 18:18:40 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:18:40 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:18:40 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(0x0, 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1410.770702] ? __might_fault+0x12b/0x1e0 [ 1410.774799] __alloc_skb+0xd5/0x5f0 [ 1410.778452] ? skb_trim+0x190/0x190 [ 1410.782102] ? copyin+0xb5/0x100 [ 1410.785500] sk_stream_alloc_skb+0xc8/0x860 [ 1410.789952] tcp_sendmsg_locked+0xc9d/0x3290 [ 1410.794408] ? tcp_sendpage+0x60/0x60 [ 1410.798231] ? trace_hardirqs_on+0x67/0x220 [ 1410.802576] ? lock_sock_nested+0x9a/0x120 [ 1410.806842] ? __local_bh_enable_ip+0x15a/0x270 [ 1410.811545] tcp_sendmsg+0x30/0x50 [ 1410.815105] inet_sendmsg+0x141/0x5d0 [ 1410.818922] ? ipip_gro_receive+0x100/0x100 [ 1410.823265] sock_sendmsg+0xd7/0x130 [ 1410.827007] __sys_sendto+0x262/0x380 [ 1410.830830] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1410.840298] ? kasan_check_write+0x14/0x20 [ 1410.844574] ? __sb_end_write+0xd9/0x110 [ 1410.848744] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1410.854284] ? fput+0x128/0x1a0 [ 1410.857576] ? ksys_write+0x1f1/0x2d0 [ 1410.861396] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1410.866267] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1410.871028] ? do_syscall_64+0x26/0x620 [ 1410.875018] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1410.880401] __x64_sys_sendto+0xe1/0x1a0 [ 1410.884666] do_syscall_64+0xfd/0x620 [ 1410.888465] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1410.893661] RIP: 0033:0x45aff9 [ 1410.896858] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1410.915900] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1410.923609] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1410.930894] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1410.938162] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1410.945430] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1410.952808] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000014 18:18:40 executing program 3 (fault-call:8 fault-nth:21): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1411.093433] FAULT_INJECTION: forcing a failure. [ 1411.093433] name failslab, interval 1, probability 0, space 0, times 0 [ 1411.105020] CPU: 0 PID: 14629 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1411.112823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1411.122347] Call Trace: [ 1411.125554] dump_stack+0x197/0x210 [ 1411.129190] should_fail.cold+0xa/0x1b [ 1411.133083] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1411.138200] ? lock_downgrade+0x880/0x880 [ 1411.142362] __should_failslab+0x121/0x190 [ 1411.146594] should_failslab+0x9/0x14 [ 1411.150430] kmem_cache_alloc_node+0x26c/0x710 [ 1411.155048] ? __might_fault+0x12b/0x1e0 [ 1411.159170] __alloc_skb+0xd5/0x5f0 [ 1411.162797] ? skb_trim+0x190/0x190 [ 1411.166420] ? copyin+0xb5/0x100 [ 1411.169788] sk_stream_alloc_skb+0xc8/0x860 [ 1411.174107] tcp_sendmsg_locked+0xc9d/0x3290 [ 1411.178618] ? tcp_sendpage+0x60/0x60 [ 1411.182423] ? trace_hardirqs_on+0x67/0x220 [ 1411.186746] ? lock_sock_nested+0x9a/0x120 [ 1411.190981] ? __local_bh_enable_ip+0x15a/0x270 [ 1411.195669] tcp_sendmsg+0x30/0x50 [ 1411.199218] inet_sendmsg+0x141/0x5d0 [ 1411.203030] ? ipip_gro_receive+0x100/0x100 [ 1411.207365] sock_sendmsg+0xd7/0x130 [ 1411.211088] __sys_sendto+0x262/0x380 [ 1411.214900] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1411.219574] ? kasan_check_write+0x14/0x20 [ 1411.223817] ? __sb_end_write+0xd9/0x110 [ 1411.227888] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1411.233435] ? fput+0x128/0x1a0 [ 1411.236745] ? ksys_write+0x1f1/0x2d0 [ 1411.240560] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1411.245326] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1411.250081] ? do_syscall_64+0x26/0x620 [ 1411.254058] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1411.259433] __x64_sys_sendto+0xe1/0x1a0 [ 1411.263503] do_syscall_64+0xfd/0x620 [ 1411.267441] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1411.272624] RIP: 0033:0x45aff9 [ 1411.275812] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1411.294709] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1411.302429] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1411.309873] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1411.317143] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1411.324414] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1411.331680] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000015 18:18:40 executing program 3 (fault-call:8 fault-nth:22): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1411.470356] FAULT_INJECTION: forcing a failure. [ 1411.470356] name failslab, interval 1, probability 0, space 0, times 0 [ 1411.482053] CPU: 0 PID: 14632 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1411.490019] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1411.500771] Call Trace: [ 1411.503376] dump_stack+0x197/0x210 [ 1411.507032] should_fail.cold+0xa/0x1b [ 1411.510935] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1411.517450] ? lock_downgrade+0x880/0x880 [ 1411.521639] __should_failslab+0x121/0x190 [ 1411.525913] should_failslab+0x9/0x14 [ 1411.529729] kmem_cache_alloc_node_trace+0x274/0x720 [ 1411.535443] ? __alloc_skb+0xd5/0x5f0 [ 1411.539247] __kmalloc_node_track_caller+0x3d/0x80 [ 1411.544193] __kmalloc_reserve.isra.0+0x40/0xf0 [ 1411.548875] __alloc_skb+0x10b/0x5f0 [ 1411.552580] ? skb_trim+0x190/0x190 [ 1411.556216] ? copyin+0xb5/0x100 [ 1411.559610] sk_stream_alloc_skb+0xc8/0x860 [ 1411.563994] tcp_sendmsg_locked+0xc9d/0x3290 [ 1411.568425] ? tcp_sendpage+0x60/0x60 [ 1411.572283] ? trace_hardirqs_on+0x67/0x220 [ 1411.576630] ? lock_sock_nested+0x9a/0x120 [ 1411.580889] ? __local_bh_enable_ip+0x15a/0x270 [ 1411.585790] tcp_sendmsg+0x30/0x50 [ 1411.589372] inet_sendmsg+0x141/0x5d0 [ 1411.593294] ? ipip_gro_receive+0x100/0x100 [ 1411.597775] sock_sendmsg+0xd7/0x130 [ 1411.601485] __sys_sendto+0x262/0x380 [ 1411.605295] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1411.610014] ? kasan_check_write+0x14/0x20 [ 1411.614274] ? __sb_end_write+0xd9/0x110 18:18:40 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(0x0, 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1411.618351] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1411.623895] ? fput+0x128/0x1a0 [ 1411.627182] ? ksys_write+0x1f1/0x2d0 [ 1411.631000] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1411.635784] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1411.640569] ? do_syscall_64+0x26/0x620 [ 1411.645260] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1411.650817] __x64_sys_sendto+0xe1/0x1a0 [ 1411.654898] do_syscall_64+0xfd/0x620 [ 1411.658820] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1411.664052] RIP: 0033:0x45aff9 [ 1411.667239] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1411.686204] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1411.693918] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1411.701190] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1411.708461] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1411.715719] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1411.722984] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000016 [ 1412.023828] Bluetooth: hci0: command 0x1003 tx timeout [ 1412.029350] Bluetooth: hci0: sending frame failed (-49) [ 1412.743761] Bluetooth: hci3: command 0x1003 tx timeout [ 1412.749124] Bluetooth: hci2: command 0x1003 tx timeout [ 1412.749158] Bluetooth: hci3: sending frame failed (-49) [ 1412.759847] Bluetooth: hci2: sending frame failed (-49) [ 1412.765314] Bluetooth: hci1: command 0x1003 tx timeout [ 1412.771129] Bluetooth: hci1: sending frame failed (-49) [ 1414.103834] Bluetooth: hci0: command 0x1001 tx timeout [ 1414.109236] Bluetooth: hci0: sending frame failed (-49) [ 1414.823817] Bluetooth: hci2: command 0x1001 tx timeout [ 1414.823823] Bluetooth: hci1: command 0x1001 tx timeout [ 1414.823900] Bluetooth: hci1: sending frame failed (-49) [ 1414.829279] Bluetooth: hci2: sending frame failed (-49) [ 1414.834593] Bluetooth: hci3: command 0x1001 tx timeout [ 1414.850733] Bluetooth: hci3: sending frame failed (-49) [ 1416.183798] Bluetooth: hci0: command 0x1009 tx timeout [ 1416.903775] Bluetooth: hci3: command 0x1009 tx timeout [ 1416.909114] Bluetooth: hci2: command 0x1009 tx timeout [ 1416.913694] Bluetooth: hci1: command 0x1009 tx timeout 18:18:49 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5414, &(0x7f0000000080)=0xffffffdb) 18:18:50 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000600)='/dev/dlm-monitor\x00', 0x400000, 0x0) connect$l2tp(r1, &(0x7f0000000640)={0x2, 0x0, @loopback, 0x1}, 0x10) ioctl$KDADDIO(r0, 0x400455c8, 0x1) creat(&(0x7f0000000380)='./bus\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup3(r2, r3, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:18:50 executing program 3 (fault-call:8 fault-nth:23): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) 18:18:50 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(0x0, 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:18:50 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5415, &(0x7f0000000080)=0xfffffdfd) 18:18:50 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$MON_IOCQ_URB_LEN(0xffffffffffffffff, 0x9201) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) r1 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x0, 0x4002011, r1, 0x0) setsockopt$pppl2tp_PPPOL2TP_SO_REORDERTO(r1, 0x111, 0x5, 0x4, 0x4) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) [ 1420.904605] FAULT_INJECTION: forcing a failure. [ 1420.904605] name failslab, interval 1, probability 0, space 0, times 0 [ 1420.929394] CPU: 1 PID: 14647 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1420.937246] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1420.946619] Call Trace: [ 1420.949235] dump_stack+0x197/0x210 [ 1420.952908] should_fail.cold+0xa/0x1b [ 1420.956829] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1420.961975] ? lock_downgrade+0x880/0x880 [ 1420.966169] __should_failslab+0x121/0x190 [ 1420.970429] should_failslab+0x9/0x14 [ 1420.974256] kmem_cache_alloc_node+0x26c/0x710 [ 1420.978855] ? __might_fault+0x12b/0x1e0 [ 1420.982948] __alloc_skb+0xd5/0x5f0 [ 1420.986607] ? skb_trim+0x190/0x190 [ 1420.990259] ? copyin+0xb5/0x100 [ 1420.993773] sk_stream_alloc_skb+0xc8/0x860 [ 1420.998126] tcp_sendmsg_locked+0xc9d/0x3290 [ 1421.002572] ? tcp_sendpage+0x60/0x60 [ 1421.006393] ? trace_hardirqs_on+0x67/0x220 [ 1421.010739] ? lock_sock_nested+0x9a/0x120 [ 1421.015003] ? __local_bh_enable_ip+0x15a/0x270 [ 1421.019838] tcp_sendmsg+0x30/0x50 [ 1421.023375] inet_sendmsg+0x141/0x5d0 [ 1421.027176] ? ipip_gro_receive+0x100/0x100 [ 1421.031521] sock_sendmsg+0xd7/0x130 [ 1421.035257] __sys_sendto+0x262/0x380 [ 1421.039122] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1421.043802] ? kasan_check_write+0x14/0x20 [ 1421.048056] ? __sb_end_write+0xd9/0x110 [ 1421.052113] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1421.057656] ? fput+0x128/0x1a0 [ 1421.060957] ? ksys_write+0x1f1/0x2d0 [ 1421.064769] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1421.069542] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1421.074310] ? do_syscall_64+0x26/0x620 [ 1421.078299] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1421.083681] __x64_sys_sendto+0xe1/0x1a0 [ 1421.087753] do_syscall_64+0xfd/0x620 [ 1421.091581] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1421.096791] RIP: 0033:0x45aff9 [ 1421.099996] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1421.118907] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1421.126644] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1421.134060] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1421.141362] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1421.148632] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1421.155914] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000017 18:18:50 executing program 3 (fault-call:8 fault-nth:24): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1421.293168] FAULT_INJECTION: forcing a failure. [ 1421.293168] name failslab, interval 1, probability 0, space 0, times 0 [ 1421.304663] CPU: 1 PID: 14657 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1421.312573] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1421.321935] Call Trace: [ 1421.324534] dump_stack+0x197/0x210 [ 1421.328201] should_fail.cold+0xa/0x1b [ 1421.332095] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1421.337222] ? lock_downgrade+0x880/0x880 [ 1421.341412] __should_failslab+0x121/0x190 [ 1421.345660] should_failslab+0x9/0x14 [ 1421.349476] kmem_cache_alloc_node_trace+0x274/0x720 [ 1421.354597] ? __alloc_skb+0xd5/0x5f0 [ 1421.358423] __kmalloc_node_track_caller+0x3d/0x80 [ 1421.363389] __kmalloc_reserve.isra.0+0x40/0xf0 [ 1421.368170] __alloc_skb+0x10b/0x5f0 [ 1421.371924] ? skb_trim+0x190/0x190 [ 1421.375583] ? copyin+0xb5/0x100 [ 1421.378984] sk_stream_alloc_skb+0xc8/0x860 [ 1421.383341] tcp_sendmsg_locked+0xc9d/0x3290 [ 1421.387880] ? tcp_sendpage+0x60/0x60 [ 1421.391680] ? trace_hardirqs_on+0x67/0x220 [ 1421.396021] ? lock_sock_nested+0x9a/0x120 [ 1421.400285] ? __local_bh_enable_ip+0x15a/0x270 [ 1421.404991] tcp_sendmsg+0x30/0x50 [ 1421.408610] inet_sendmsg+0x141/0x5d0 [ 1421.412420] ? ipip_gro_receive+0x100/0x100 [ 1421.416770] sock_sendmsg+0xd7/0x130 [ 1421.420506] __sys_sendto+0x262/0x380 [ 1421.424339] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1421.429032] ? kasan_check_write+0x14/0x20 [ 1421.433296] ? __sb_end_write+0xd9/0x110 [ 1421.437374] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1421.442924] ? fput+0x128/0x1a0 [ 1421.446207] ? ksys_write+0x1f1/0x2d0 [ 1421.450101] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1421.454915] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1421.459703] ? do_syscall_64+0x26/0x620 [ 1421.463704] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1421.469194] __x64_sys_sendto+0xe1/0x1a0 [ 1421.473283] do_syscall_64+0xfd/0x620 [ 1421.477116] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1421.482329] RIP: 0033:0x45aff9 [ 1421.485550] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1421.504486] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1421.512272] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1421.519588] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1421.526871] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1421.534157] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1421.541614] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000018 18:18:50 executing program 3 (fault-call:8 fault-nth:25): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) 18:18:50 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(0xffffffffffffffff, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1421.694303] FAULT_INJECTION: forcing a failure. [ 1421.694303] name failslab, interval 1, probability 0, space 0, times 0 [ 1421.711377] CPU: 0 PID: 14660 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1421.719395] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1421.728772] Call Trace: [ 1421.731376] dump_stack+0x197/0x210 [ 1421.735034] should_fail.cold+0xa/0x1b [ 1421.738937] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1421.744051] ? lock_downgrade+0x880/0x880 [ 1421.748211] __should_failslab+0x121/0x190 [ 1421.752450] should_failslab+0x9/0x14 [ 1421.756260] kmem_cache_alloc_node+0x26c/0x710 [ 1421.761044] ? __might_fault+0x12b/0x1e0 [ 1421.765123] __alloc_skb+0xd5/0x5f0 [ 1421.768744] ? skb_trim+0x190/0x190 [ 1421.772386] ? copyin+0xb5/0x100 [ 1421.775779] sk_stream_alloc_skb+0xc8/0x860 [ 1421.780137] tcp_sendmsg_locked+0xc9d/0x3290 [ 1421.784557] ? tcp_sendpage+0x60/0x60 [ 1421.788406] ? trace_hardirqs_on+0x67/0x220 [ 1421.792739] ? lock_sock_nested+0x9a/0x120 [ 1421.796994] ? __local_bh_enable_ip+0x15a/0x270 [ 1421.801677] tcp_sendmsg+0x30/0x50 [ 1421.805216] inet_sendmsg+0x141/0x5d0 [ 1421.809019] ? ipip_gro_receive+0x100/0x100 [ 1421.813346] sock_sendmsg+0xd7/0x130 [ 1421.817073] __sys_sendto+0x262/0x380 [ 1421.820878] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1421.825564] ? kasan_check_write+0x14/0x20 [ 1421.829799] ? __sb_end_write+0xd9/0x110 [ 1421.833861] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1421.839466] ? fput+0x128/0x1a0 [ 1421.842803] ? ksys_write+0x1f1/0x2d0 [ 1421.846604] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1421.851365] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1421.856121] ? do_syscall_64+0x26/0x620 [ 1421.860164] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1421.865536] __x64_sys_sendto+0xe1/0x1a0 [ 1421.869605] do_syscall_64+0xfd/0x620 [ 1421.873418] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1421.878606] RIP: 0033:0x45aff9 [ 1421.881802] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1421.900923] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1421.908636] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1421.915908] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1421.923343] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1421.930623] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1421.937897] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000019 18:18:51 executing program 3 (fault-call:8 fault-nth:26): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1422.079398] FAULT_INJECTION: forcing a failure. [ 1422.079398] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1422.091458] CPU: 1 PID: 14666 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1422.099273] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1422.108637] Call Trace: [ 1422.111241] dump_stack+0x197/0x210 [ 1422.114893] should_fail.cold+0xa/0x1b [ 1422.118909] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1422.124033] ? mark_held_locks+0x100/0x100 [ 1422.128292] ? trace_hardirqs_on+0x67/0x220 [ 1422.132625] __alloc_pages_nodemask+0x1ee/0x750 [ 1422.137314] ? __lock_acquire+0x6ee/0x49c0 [ 1422.141557] ? __alloc_pages_slowpath+0x2870/0x2870 [ 1422.146584] cache_grow_begin+0x91/0x8c0 [ 1422.150660] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1422.156204] ? check_preemption_disabled+0x48/0x290 [ 1422.161340] kmem_cache_alloc_node+0x64d/0x710 [ 1422.165940] ? __might_fault+0x12b/0x1e0 [ 1422.170017] __alloc_skb+0xd5/0x5f0 [ 1422.173662] ? skb_trim+0x190/0x190 [ 1422.177416] ? copyin+0xb5/0x100 [ 1422.180789] sk_stream_alloc_skb+0xc8/0x860 [ 1422.185130] tcp_sendmsg_locked+0xc9d/0x3290 [ 1422.189735] ? tcp_sendpage+0x60/0x60 [ 1422.193556] ? trace_hardirqs_on+0x67/0x220 [ 1422.197892] ? lock_sock_nested+0x9a/0x120 [ 1422.202133] ? __local_bh_enable_ip+0x15a/0x270 [ 1422.206813] tcp_sendmsg+0x30/0x50 [ 1422.210369] inet_sendmsg+0x141/0x5d0 [ 1422.214197] ? ipip_gro_receive+0x100/0x100 [ 1422.218528] sock_sendmsg+0xd7/0x130 [ 1422.222245] __sys_sendto+0x262/0x380 [ 1422.226057] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1422.230760] ? kasan_check_write+0x14/0x20 [ 1422.235024] ? __sb_end_write+0xd9/0x110 [ 1422.239105] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1422.244646] ? fput+0x128/0x1a0 [ 1422.247947] ? ksys_write+0x1f1/0x2d0 [ 1422.251764] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1422.256526] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1422.261281] ? do_syscall_64+0x26/0x620 [ 1422.265374] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1422.270868] __x64_sys_sendto+0xe1/0x1a0 [ 1422.275051] do_syscall_64+0xfd/0x620 [ 1422.278876] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1422.284080] RIP: 0033:0x45aff9 [ 1422.287344] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1422.306405] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1422.314209] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1422.321497] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1422.328795] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1422.336089] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1422.343376] R13: 0000000000000992 R14: 00000000004cacca R15: 000000000000001a [ 1422.354209] Bluetooth: hci0: command 0x1003 tx timeout [ 1422.359614] Bluetooth: hci0: sending frame failed (-49) 18:18:51 executing program 3 (fault-call:8 fault-nth:27): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1422.448557] FAULT_INJECTION: forcing a failure. [ 1422.448557] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1422.460608] CPU: 1 PID: 14669 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1422.468536] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1422.477901] Call Trace: [ 1422.480509] dump_stack+0x197/0x210 [ 1422.484324] should_fail.cold+0xa/0x1b [ 1422.488223] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1422.493347] ? mark_held_locks+0x100/0x100 [ 1422.497605] ? trace_hardirqs_on+0x67/0x220 [ 1422.501945] __alloc_pages_nodemask+0x1ee/0x750 [ 1422.506620] ? __lock_acquire+0x6ee/0x49c0 [ 1422.510859] ? __alloc_pages_slowpath+0x2870/0x2870 [ 1422.515905] cache_grow_begin+0x91/0x8c0 [ 1422.520000] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1422.525544] ? check_preemption_disabled+0x48/0x290 [ 1422.530571] kmem_cache_alloc_node+0x64d/0x710 [ 1422.535216] ? __might_fault+0x12b/0x1e0 [ 1422.539315] __alloc_skb+0xd5/0x5f0 [ 1422.542961] ? skb_trim+0x190/0x190 [ 1422.546595] ? copyin+0xb5/0x100 [ 1422.550004] sk_stream_alloc_skb+0xc8/0x860 [ 1422.554427] tcp_sendmsg_locked+0xc9d/0x3290 [ 1422.558874] ? tcp_sendpage+0x60/0x60 [ 1422.562686] ? trace_hardirqs_on+0x67/0x220 [ 1422.567025] ? lock_sock_nested+0x9a/0x120 [ 1422.571295] ? __local_bh_enable_ip+0x15a/0x270 [ 1422.576019] tcp_sendmsg+0x30/0x50 [ 1422.579634] inet_sendmsg+0x141/0x5d0 [ 1422.583439] ? ipip_gro_receive+0x100/0x100 [ 1422.587853] sock_sendmsg+0xd7/0x130 [ 1422.591613] __sys_sendto+0x262/0x380 [ 1422.595421] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1422.600097] ? kasan_check_write+0x14/0x20 [ 1422.604360] ? __sb_end_write+0xd9/0x110 [ 1422.608442] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1422.614009] ? fput+0x128/0x1a0 [ 1422.617301] ? ksys_write+0x1f1/0x2d0 [ 1422.621110] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1422.625869] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1422.630643] ? do_syscall_64+0x26/0x620 [ 1422.634633] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1422.640005] __x64_sys_sendto+0xe1/0x1a0 [ 1422.644075] do_syscall_64+0xfd/0x620 [ 1422.647899] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1422.653088] RIP: 0033:0x45aff9 [ 1422.656322] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1422.675221] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1422.682933] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1422.690316] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 18:18:52 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(0xffffffffffffffff, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1422.697607] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1422.706399] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1422.713678] R13: 0000000000000992 R14: 00000000004cacca R15: 000000000000001b [ 1422.983796] Bluetooth: hci1: command 0x1003 tx timeout [ 1422.989369] Bluetooth: hci1: sending frame failed (-49) [ 1423.063724] Bluetooth: hci3: command 0x1003 tx timeout [ 1423.069327] Bluetooth: hci3: sending frame failed (-49) [ 1423.074879] Bluetooth: hci2: command 0x1003 tx timeout [ 1423.080248] Bluetooth: hci2: sending frame failed (-49) [ 1424.423786] Bluetooth: hci0: command 0x1001 tx timeout [ 1424.429359] Bluetooth: hci0: sending frame failed (-49) [ 1425.063833] Bluetooth: hci1: command 0x1001 tx timeout [ 1425.069288] Bluetooth: hci1: sending frame failed (-49) [ 1425.143790] Bluetooth: hci2: command 0x1001 tx timeout [ 1425.149162] Bluetooth: hci3: command 0x1001 tx timeout [ 1425.149226] Bluetooth: hci2: sending frame failed (-49) [ 1425.154725] Bluetooth: hci3: sending frame failed (-49) [ 1426.503798] Bluetooth: hci0: command 0x1009 tx timeout [ 1427.143833] Bluetooth: hci1: command 0x1009 tx timeout [ 1427.223784] Bluetooth: hci3: command 0x1009 tx timeout [ 1427.223790] Bluetooth: hci2: command 0x1009 tx timeout 18:18:59 executing program 3 (fault-call:8 fault-nth:28): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1430.461179] FAULT_INJECTION: forcing a failure. [ 1430.461179] name failslab, interval 1, probability 0, space 0, times 0 [ 1430.472828] CPU: 1 PID: 14676 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1430.480995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1430.490478] Call Trace: [ 1430.493251] dump_stack+0x197/0x210 [ 1430.496900] should_fail.cold+0xa/0x1b [ 1430.500936] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1430.506357] ? lock_downgrade+0x880/0x880 [ 1430.510631] __should_failslab+0x121/0x190 [ 1430.514877] should_failslab+0x9/0x14 [ 1430.518704] kmem_cache_alloc_node+0x26c/0x710 [ 1430.523573] ? __might_fault+0x12b/0x1e0 [ 1430.527651] __alloc_skb+0xd5/0x5f0 [ 1430.531302] ? skb_trim+0x190/0x190 [ 1430.535101] ? copyin+0xb5/0x100 [ 1430.538795] sk_stream_alloc_skb+0xc8/0x860 [ 1430.543293] tcp_sendmsg_locked+0xc9d/0x3290 [ 1430.548153] ? tcp_sendpage+0x60/0x60 [ 1430.552357] ? trace_hardirqs_on+0x67/0x220 [ 1430.557068] ? lock_sock_nested+0x9a/0x120 [ 1430.561358] ? __local_bh_enable_ip+0x15a/0x270 [ 1430.566304] tcp_sendmsg+0x30/0x50 [ 1430.570075] inet_sendmsg+0x141/0x5d0 [ 1430.574596] ? ipip_gro_receive+0x100/0x100 [ 1430.579120] sock_sendmsg+0xd7/0x130 [ 1430.583126] __sys_sendto+0x262/0x380 [ 1430.587199] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1430.592004] ? kasan_check_write+0x14/0x20 [ 1430.596476] ? __sb_end_write+0xd9/0x110 [ 1430.600818] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1430.606733] ? fput+0x128/0x1a0 [ 1430.610209] ? ksys_write+0x1f1/0x2d0 [ 1430.614022] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1430.619185] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1430.624297] ? do_syscall_64+0x26/0x620 [ 1430.628729] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1430.634419] __x64_sys_sendto+0xe1/0x1a0 [ 1430.638674] do_syscall_64+0xfd/0x620 [ 1430.642485] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1430.647912] RIP: 0033:0x45aff9 [ 1430.651114] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1430.670603] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1430.678406] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1430.685799] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1430.693566] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1430.701108] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1430.708405] R13: 0000000000000992 R14: 00000000004cacca R15: 000000000000001c 18:19:00 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000600)='/dev/dlm-monitor\x00', 0x400000, 0x0) connect$l2tp(r1, &(0x7f0000000640)={0x2, 0x0, @loopback, 0x1}, 0x10) ioctl$KDADDIO(r0, 0x400455c8, 0x1) creat(&(0x7f0000000380)='./bus\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup3(r2, r3, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:19:00 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5415, &(0x7f0000000080)=0xffffffdb) 18:19:00 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(0xffffffffffffffff, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:19:00 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5416, &(0x7f0000000080)=0xfffffdfd) 18:19:00 executing program 3 (fault-call:8 fault-nth:29): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) 18:19:00 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x218600, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f0000000000)) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:19:00 executing program 5: munlockall() r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) clock_adjtime(0x5, &(0x7f0000000100)={0x7, 0x9, 0x8, 0xaf, 0x0, 0x4, 0x3ff, 0x2, 0x5, 0x1, 0x6, 0x1, 0x1, 0xff, 0x3, 0x48384cf2, 0x0, 0xfffffffffffffff7, 0xff, 0x800, 0x401, 0x1, 0x84, 0x9, 0x7fffffff, 0xfa5a}) r1 = creat(&(0x7f0000000040)='./bus\x00', 0x40) ioctl$EXT4_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000340)=0xe4) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000000)=0x1000a) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) [ 1431.202646] FAULT_INJECTION: forcing a failure. [ 1431.202646] name failslab, interval 1, probability 0, space 0, times 0 [ 1431.229882] CPU: 1 PID: 14690 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1431.238055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1431.247621] Call Trace: [ 1431.250246] dump_stack+0x197/0x210 [ 1431.253919] should_fail.cold+0xa/0x1b [ 1431.257972] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1431.263107] ? lock_downgrade+0x880/0x880 [ 1431.267475] __should_failslab+0x121/0x190 [ 1431.271748] should_failslab+0x9/0x14 [ 1431.275589] kmem_cache_alloc_node+0x26c/0x710 [ 1431.280213] ? __might_fault+0x12b/0x1e0 [ 1431.284328] __alloc_skb+0xd5/0x5f0 [ 1431.287993] ? skb_trim+0x190/0x190 [ 1431.291765] ? copyin+0xb5/0x100 [ 1431.295165] sk_stream_alloc_skb+0xc8/0x860 [ 1431.299523] tcp_sendmsg_locked+0xc9d/0x3290 [ 1431.303983] ? tcp_sendpage+0x60/0x60 [ 1431.307961] ? trace_hardirqs_on+0x67/0x220 [ 1431.312436] ? lock_sock_nested+0x9a/0x120 [ 1431.316829] ? __local_bh_enable_ip+0x15a/0x270 [ 1431.321684] tcp_sendmsg+0x30/0x50 [ 1431.325380] inet_sendmsg+0x141/0x5d0 [ 1431.329321] ? ipip_gro_receive+0x100/0x100 [ 1431.333782] sock_sendmsg+0xd7/0x130 [ 1431.337530] __sys_sendto+0x262/0x380 [ 1431.341491] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1431.346309] ? kasan_check_write+0x14/0x20 [ 1431.350828] ? __sb_end_write+0xd9/0x110 [ 1431.355116] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1431.360780] ? fput+0x128/0x1a0 [ 1431.364094] ? ksys_write+0x1f1/0x2d0 [ 1431.367926] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1431.372833] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1431.377729] ? do_syscall_64+0x26/0x620 [ 1431.381730] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1431.387140] __x64_sys_sendto+0xe1/0x1a0 [ 1431.391239] do_syscall_64+0xfd/0x620 [ 1431.395343] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1431.400554] RIP: 0033:0x45aff9 [ 1431.403775] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1431.422949] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1431.430955] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1431.438742] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1431.446308] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 18:19:00 executing program 5: r0 = getpid() r1 = getpgid(0x0) rt_tgsigqueueinfo(r0, r1, 0x1f, &(0x7f0000000100)={0x10, 0x2, 0x8}) ioprio_get$pid(0x1, r0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x80641, 0x0) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r2, 0x400455c8, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup3(r3, r4, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x92, 0x7a, 0x8, 0x4, 0x0, 0x0, 0x10, 0x5, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x24000000, 0x1, @perf_bp={&(0x7f0000000400), 0x6}, 0x0, 0x2, 0x7, 0x5, 0x10001, 0x7ff, 0x400}, 0xffffffffffffffff, 0xf, r5, 0x0) ioctl$TIOCSETD(r2, 0x5412, &(0x7f0000000080)) syz_mount_image$nfs(&(0x7f0000000000)='nfs\x00', &(0x7f00000000c0)='./file0\x00', 0x1, 0x7, &(0x7f0000000500)=[{&(0x7f00000001c0)="3c2a58fa91f6abea1a9a52363ab370f9c96a614943fb3ba26ece76225c4a4b3738342fbe4557906bd34f8e68123869c843b66038eaa2b8acf891e8cc7472d41118775faacfbda007c294a1b4718147ddb0eb4e0b033eb7b0252376c609859a7a97bbb69befe6ff7fa84535edddbf821133c84818bc83e6dcf2f4f1e4665dedfc86b7e0ede75d11dfc0e3003f1fb6ac0690871f12c5469cdf27e06472c8ed940930be36cee5bc25868f21134498cea9d186b41b71c2e7", 0xb6, 0x1001}, {&(0x7f0000000100)="d1f207f1", 0x4, 0xfff}, {&(0x7f0000000280)="90491120163ac6e8ed6432f158a82f952f457297cfc6348fe47189e53d6fd2c4d5d7b6542c6b4966c57fbd58b586539b697515b38138d46163a4e7df7fe7647b12c14dc5dc8b9d49e9786b84434b967a601ceba3b01dd656ac546bba46c1f67287c55b2ca57a7983d0f181e05d4662f34d5a52396bfd9304f6188452a560d2221ae5b43e1716bac55dab793d0720a548229a413516f4fd23e5119f4ac7d34356f795f0db495aa587401949f1320fd4a8037f", 0xb2, 0x7}, {&(0x7f0000000340)="d18e1e6eac3a099d4dc75cd23b8d412040b704e0f8db96b9be18befdc2902e5e6f3a48d8e73295a91e055692c784924b72ca5450d3c36b816bce94418a8b1918696155e8acbcfc4989707771bdc9d01ed12b92538e275eeb6e23a26405c18fb696295dd07a62d3376e13db52af221db5d7340ad0982227b2298da8a7fbf6a78cb7049aca0b73d0da5243b47cfa335f96a33c505ecc4485ad5a016ec21a49dccaab9a90eb", 0xfffffffffffffd5f, 0x40}, {&(0x7f0000000140)="8f607b94ac5d6f6f4523b3ad80fb188193b65644dab5a078947ce593bea2ad7731d1467d7c3d8f7efecbc5879bf0696f104bbc099593d75a57e0fb93930a9f", 0x3f, 0x1000}, {&(0x7f0000000680)="f69fa143cc28107919eaded0841d41c078e7e16d4885d674a5b7e75c7e6ff2167f725d5bf389c64b079dd0ce116f626d715fe0d432e65cffc148487694cee322cd9fc830593629b25978", 0xffffffffffffff9c, 0x1fc}, {&(0x7f0000000440)="11486374784bf1729986c0a12b047d015d8aa2479dfe46534ada91225a3785f62e52abb02e2fb0eb7554cd47159775b42a831786d65376513d34ed2ac0cc78449a887e08d9db5dc42ce3ddbaf65cfb145dc36cb88ff8ee007868e1225bdf2435bc6ef92b1517a9c28ae77ed5cebf7b17a989023741fc9df3391b3d73f7b7edf45ed1cf74d1057ae9cd42331afa6901ac6762e85836139c8f3bf314fe", 0x9c, 0x3}], 0x4223d, &(0x7f00000005c0)='/dev/ptmx\x00') rt_sigprocmask(0x2, &(0x7f0000000600)={0x1}, &(0x7f0000000640), 0x8) [ 1431.453721] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1431.461135] R13: 0000000000000992 R14: 00000000004cacca R15: 000000000000001d [ 1431.490887] Bluetooth: Error in BCSP hdr checksum 18:19:00 executing program 3 (fault-call:8 fault-nth:30): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1431.649868] FAULT_INJECTION: forcing a failure. [ 1431.649868] name failslab, interval 1, probability 0, space 0, times 0 [ 1431.665549] CPU: 1 PID: 14706 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1431.673672] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1431.683449] Call Trace: [ 1431.686050] dump_stack+0x197/0x210 [ 1431.689830] should_fail.cold+0xa/0x1b [ 1431.694023] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1431.699136] ? lock_downgrade+0x880/0x880 [ 1431.703463] __should_failslab+0x121/0x190 [ 1431.707840] should_failslab+0x9/0x14 [ 1431.711788] kmem_cache_alloc_node_trace+0x274/0x720 [ 1431.716924] ? __alloc_skb+0xd5/0x5f0 [ 1431.720920] __kmalloc_node_track_caller+0x3d/0x80 [ 1431.725863] __kmalloc_reserve.isra.0+0x40/0xf0 [ 1431.730638] __alloc_skb+0x10b/0x5f0 [ 1431.734619] ? skb_trim+0x190/0x190 [ 1431.738514] ? copyin+0xb5/0x100 [ 1431.741891] sk_stream_alloc_skb+0xc8/0x860 [ 1431.747091] tcp_sendmsg_locked+0xc9d/0x3290 [ 1431.751517] ? tcp_sendpage+0x60/0x60 [ 1431.755505] ? trace_hardirqs_on+0x67/0x220 [ 1431.759923] ? lock_sock_nested+0x9a/0x120 [ 1431.764314] ? __local_bh_enable_ip+0x15a/0x270 [ 1431.769167] tcp_sendmsg+0x30/0x50 [ 1431.772737] inet_sendmsg+0x141/0x5d0 [ 1431.776766] ? ipip_gro_receive+0x100/0x100 [ 1431.781593] sock_sendmsg+0xd7/0x130 [ 1431.785786] __sys_sendto+0x262/0x380 [ 1431.789814] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1431.794840] ? kasan_check_write+0x14/0x20 [ 1431.799234] ? __sb_end_write+0xd9/0x110 [ 1431.803304] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1431.809220] ? fput+0x128/0x1a0 [ 1431.812630] ? ksys_write+0x1f1/0x2d0 [ 1431.816443] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1431.821366] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1431.826212] ? do_syscall_64+0x26/0x620 [ 1431.830210] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1431.835702] __x64_sys_sendto+0xe1/0x1a0 [ 1431.840148] do_syscall_64+0xfd/0x620 [ 1431.844153] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1431.849354] RIP: 0033:0x45aff9 [ 1431.852554] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1431.872778] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1431.881350] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1431.889055] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 18:19:01 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, 0x0, 0x0) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1431.896698] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1431.904305] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1431.911934] R13: 0000000000000992 R14: 00000000004cacca R15: 000000000000001e 18:19:01 executing program 3 (fault-call:8 fault-nth:31): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1432.075428] FAULT_INJECTION: forcing a failure. [ 1432.075428] name failslab, interval 1, probability 0, space 0, times 0 [ 1432.087146] CPU: 0 PID: 14711 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1432.094975] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1432.107444] Call Trace: [ 1432.110059] dump_stack+0x197/0x210 [ 1432.113706] should_fail.cold+0xa/0x1b [ 1432.117693] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1432.122906] ? lock_downgrade+0x880/0x880 [ 1432.127230] __should_failslab+0x121/0x190 [ 1432.131490] should_failslab+0x9/0x14 [ 1432.135468] kmem_cache_alloc_node+0x26c/0x710 [ 1432.140090] ? __might_fault+0x12b/0x1e0 [ 1432.144479] __alloc_skb+0xd5/0x5f0 [ 1432.148478] ? skb_trim+0x190/0x190 [ 1432.152122] ? copyin+0xb5/0x100 [ 1432.155533] sk_stream_alloc_skb+0xc8/0x860 [ 1432.159877] tcp_sendmsg_locked+0xc9d/0x3290 [ 1432.164464] ? tcp_sendpage+0x60/0x60 [ 1432.168479] ? trace_hardirqs_on+0x67/0x220 [ 1432.172931] ? lock_sock_nested+0x9a/0x120 [ 1432.177175] ? __local_bh_enable_ip+0x15a/0x270 [ 1432.181975] tcp_sendmsg+0x30/0x50 [ 1432.185557] inet_sendmsg+0x141/0x5d0 [ 1432.189737] ? ipip_gro_receive+0x100/0x100 [ 1432.194067] sock_sendmsg+0xd7/0x130 [ 1432.197969] __sys_sendto+0x262/0x380 [ 1432.201928] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1432.206789] ? kasan_check_write+0x14/0x20 [ 1432.211104] ? __sb_end_write+0xd9/0x110 [ 1432.215181] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1432.220885] ? fput+0x128/0x1a0 [ 1432.224175] ? ksys_write+0x1f1/0x2d0 [ 1432.228042] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1432.232947] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1432.237763] ? do_syscall_64+0x26/0x620 [ 1432.241760] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1432.247163] __x64_sys_sendto+0xe1/0x1a0 [ 1432.251382] do_syscall_64+0xfd/0x620 [ 1432.255201] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1432.260674] RIP: 0033:0x45aff9 [ 1432.263880] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1432.282790] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1432.290801] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1432.298233] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1432.305531] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1432.312820] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1432.320265] R13: 0000000000000992 R14: 00000000004cacca R15: 000000000000001f 18:19:01 executing program 3 (fault-call:8 fault-nth:32): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1432.463976] FAULT_INJECTION: forcing a failure. [ 1432.463976] name failslab, interval 1, probability 0, space 0, times 0 [ 1432.475728] CPU: 1 PID: 14716 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1432.483973] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1432.493465] Call Trace: [ 1432.496406] dump_stack+0x197/0x210 [ 1432.500243] should_fail.cold+0xa/0x1b [ 1432.504287] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1432.509524] ? lock_downgrade+0x880/0x880 [ 1432.513958] __should_failslab+0x121/0x190 [ 1432.518251] should_failslab+0x9/0x14 [ 1432.522194] kmem_cache_alloc_node+0x26c/0x710 [ 1432.526807] ? __might_fault+0x12b/0x1e0 [ 1432.530897] __alloc_skb+0xd5/0x5f0 [ 1432.534621] ? skb_trim+0x190/0x190 [ 1432.538261] ? copyin+0xb5/0x100 [ 1432.542118] sk_stream_alloc_skb+0xc8/0x860 [ 1432.546672] tcp_sendmsg_locked+0xc9d/0x3290 [ 1432.551261] ? tcp_sendpage+0x60/0x60 [ 1432.555357] ? trace_hardirqs_on+0x67/0x220 [ 1432.559798] ? lock_sock_nested+0x9a/0x120 [ 1432.564186] ? __local_bh_enable_ip+0x15a/0x270 [ 1432.569190] tcp_sendmsg+0x30/0x50 [ 1432.573006] inet_sendmsg+0x141/0x5d0 [ 1432.576830] ? ipip_gro_receive+0x100/0x100 [ 1432.581284] sock_sendmsg+0xd7/0x130 [ 1432.585296] __sys_sendto+0x262/0x380 [ 1432.591065] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1432.595748] ? kasan_check_write+0x14/0x20 [ 1432.600019] ? __sb_end_write+0xd9/0x110 [ 1432.604096] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1432.609756] ? fput+0x128/0x1a0 [ 1432.613047] ? ksys_write+0x1f1/0x2d0 [ 1432.616962] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1432.622015] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1432.626898] ? do_syscall_64+0x26/0x620 [ 1432.631052] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1432.636582] __x64_sys_sendto+0xe1/0x1a0 [ 1432.640669] do_syscall_64+0xfd/0x620 [ 1432.644753] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1432.650060] RIP: 0033:0x45aff9 [ 1432.653255] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1432.672963] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1432.680986] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1432.688357] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1432.695804] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1432.703120] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1432.710774] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000020 [ 1433.223787] Bluetooth: hci0: command 0x1003 tx timeout [ 1433.224000] Bluetooth: hci2: command 0x1003 tx timeout [ 1433.234847] Bluetooth: hci0: sending frame failed (-49) [ 1433.240633] Bluetooth: hci2: sending frame failed (-49) [ 1433.246161] Bluetooth: hci1: command 0x1003 tx timeout [ 1433.251578] Bluetooth: hci1: sending frame failed (-49) [ 1433.303759] Bluetooth: hci3: command 0x1003 tx timeout [ 1433.309472] Bluetooth: hci3: sending frame failed (-49) [ 1435.303801] Bluetooth: hci1: command 0x1001 tx timeout [ 1435.303970] Bluetooth: hci2: command 0x1001 tx timeout [ 1435.309197] Bluetooth: hci1: sending frame failed (-49) [ 1435.314516] Bluetooth: hci0: command 0x1001 tx timeout [ 1435.320048] Bluetooth: hci2: sending frame failed (-49) [ 1435.325514] Bluetooth: hci0: sending frame failed (-49) [ 1435.383850] Bluetooth: hci3: command 0x1001 tx timeout [ 1435.389264] Bluetooth: hci3: sending frame failed (-49) [ 1437.383808] Bluetooth: hci0: command 0x1009 tx timeout [ 1437.383974] Bluetooth: hci2: command 0x1009 tx timeout [ 1437.389164] Bluetooth: hci1: command 0x1009 tx timeout [ 1437.463779] Bluetooth: hci3: command 0x1009 tx timeout 18:19:10 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000600)='/dev/dlm-monitor\x00', 0x400000, 0x0) connect$l2tp(r1, &(0x7f0000000640)={0x2, 0x0, @loopback, 0x1}, 0x10) ioctl$KDADDIO(r0, 0x400455c8, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup3(r2, r3, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:19:10 executing program 3 (fault-call:8 fault-nth:33): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) 18:19:10 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, 0x0, 0x0) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:19:10 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5418, &(0x7f0000000080)=0xfffffdfd) 18:19:10 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5416, &(0x7f0000000080)=0xffffffdb) 18:19:10 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) setsockopt$netlink_NETLINK_LISTEN_ALL_NSID(r3, 0x10e, 0x8, &(0x7f0000000000)=0xffff, 0x4) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) [ 1441.419495] FAULT_INJECTION: forcing a failure. [ 1441.419495] name failslab, interval 1, probability 0, space 0, times 0 [ 1441.451295] CPU: 1 PID: 14722 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1441.459148] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1441.468522] Call Trace: [ 1441.471135] dump_stack+0x197/0x210 [ 1441.474799] should_fail.cold+0xa/0x1b [ 1441.478723] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1441.483918] ? lock_downgrade+0x880/0x880 [ 1441.488084] __should_failslab+0x121/0x190 [ 1441.492321] should_failslab+0x9/0x14 [ 1441.496124] kmem_cache_alloc_node+0x26c/0x710 [ 1441.500694] ? __might_fault+0x12b/0x1e0 [ 1441.504784] __alloc_skb+0xd5/0x5f0 [ 1441.508404] ? skb_trim+0x190/0x190 [ 1441.512033] ? copyin+0xb5/0x100 [ 1441.515394] sk_stream_alloc_skb+0xc8/0x860 [ 1441.519718] tcp_sendmsg_locked+0xc9d/0x3290 [ 1441.524128] ? tcp_sendpage+0x60/0x60 [ 1441.527928] ? trace_hardirqs_on+0x67/0x220 [ 1441.532251] ? lock_sock_nested+0x9a/0x120 [ 1441.536478] ? __local_bh_enable_ip+0x15a/0x270 [ 1441.541246] tcp_sendmsg+0x30/0x50 [ 1441.544848] inet_sendmsg+0x141/0x5d0 [ 1441.548646] ? ipip_gro_receive+0x100/0x100 [ 1441.553018] sock_sendmsg+0xd7/0x130 [ 1441.556767] __sys_sendto+0x262/0x380 [ 1441.560564] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1441.565224] ? kasan_check_write+0x14/0x20 [ 1441.569564] ? __sb_end_write+0xd9/0x110 [ 1441.573764] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1441.579346] ? fput+0x128/0x1a0 [ 1441.582639] ? ksys_write+0x1f1/0x2d0 [ 1441.586445] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1441.591205] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1441.595976] ? do_syscall_64+0x26/0x620 [ 1441.599977] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1441.605340] __x64_sys_sendto+0xe1/0x1a0 [ 1441.609409] do_syscall_64+0xfd/0x620 [ 1441.613270] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1441.618455] RIP: 0033:0x45aff9 [ 1441.621646] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1441.640585] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1441.648289] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1441.655558] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1441.662935] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1441.670207] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1441.677481] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000021 18:19:11 executing program 3 (fault-call:8 fault-nth:34): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1441.774408] FAULT_INJECTION: forcing a failure. [ 1441.774408] name failslab, interval 1, probability 0, space 0, times 0 [ 1441.786372] CPU: 1 PID: 14738 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1441.794210] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1441.803724] Call Trace: [ 1441.806360] dump_stack+0x197/0x210 [ 1441.809993] should_fail.cold+0xa/0x1b [ 1441.813881] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1441.818977] ? lock_downgrade+0x880/0x880 [ 1441.823149] __should_failslab+0x121/0x190 [ 1441.827425] should_failslab+0x9/0x14 [ 1441.831234] kmem_cache_alloc_node+0x26c/0x710 [ 1441.835859] ? __might_fault+0x12b/0x1e0 [ 1441.840060] __alloc_skb+0xd5/0x5f0 [ 1441.843697] ? skb_trim+0x190/0x190 [ 1441.847334] ? copyin+0xb5/0x100 [ 1441.850719] sk_stream_alloc_skb+0xc8/0x860 [ 1441.855203] tcp_sendmsg_locked+0xc9d/0x3290 [ 1441.859638] ? tcp_sendpage+0x60/0x60 [ 1441.863436] ? trace_hardirqs_on+0x67/0x220 [ 1441.867752] ? lock_sock_nested+0x9a/0x120 [ 1441.871985] ? __local_bh_enable_ip+0x15a/0x270 [ 1441.876650] tcp_sendmsg+0x30/0x50 [ 1441.880184] inet_sendmsg+0x141/0x5d0 [ 1441.883976] ? ipip_gro_receive+0x100/0x100 [ 1441.888299] sock_sendmsg+0xd7/0x130 [ 1441.892033] __sys_sendto+0x262/0x380 [ 1441.895827] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1441.900487] ? kasan_check_write+0x14/0x20 [ 1441.904720] ? __sb_end_write+0xd9/0x110 [ 1441.908773] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1441.914297] ? fput+0x128/0x1a0 [ 1441.917575] ? ksys_write+0x1f1/0x2d0 [ 1441.921511] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1441.926263] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1441.931033] ? do_syscall_64+0x26/0x620 [ 1441.935019] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1441.940384] __x64_sys_sendto+0xe1/0x1a0 [ 1441.944443] do_syscall_64+0xfd/0x620 [ 1441.948295] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1441.953481] RIP: 0033:0x45aff9 [ 1441.956680] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1441.975580] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1441.983290] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1441.990571] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1441.997842] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1442.005107] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1442.012445] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000022 18:19:11 executing program 3 (fault-call:8 fault-nth:35): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1442.110382] FAULT_INJECTION: forcing a failure. [ 1442.110382] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1442.122240] CPU: 0 PID: 14742 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1442.130029] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1442.139380] Call Trace: [ 1442.142090] dump_stack+0x197/0x210 [ 1442.145736] should_fail.cold+0xa/0x1b [ 1442.149637] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1442.154749] ? mark_held_locks+0x100/0x100 [ 1442.158988] ? sk_stream_alloc_skb+0xc8/0x860 [ 1442.163477] ? tcp_sendmsg_locked+0xc9d/0x3290 [ 1442.168062] __alloc_pages_nodemask+0x1ee/0x750 [ 1442.172736] ? __alloc_pages_slowpath+0x2870/0x2870 [ 1442.177757] cache_grow_begin+0x91/0x8c0 [ 1442.181812] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1442.187338] ? check_preemption_disabled+0x48/0x290 [ 1442.192348] kmem_cache_alloc_node_trace+0x655/0x720 [ 1442.197453] __kmalloc_node_track_caller+0x3d/0x80 [ 1442.202377] __kmalloc_reserve.isra.0+0x40/0xf0 [ 1442.207041] __alloc_skb+0x10b/0x5f0 [ 1442.210753] ? skb_trim+0x190/0x190 [ 1442.214381] ? copyin+0xb5/0x100 [ 1442.217748] sk_stream_alloc_skb+0xc8/0x860 [ 1442.222064] tcp_sendmsg_locked+0xc9d/0x3290 [ 1442.226486] ? tcp_sendpage+0x60/0x60 [ 1442.230277] ? trace_hardirqs_on+0x67/0x220 [ 1442.234590] ? lock_sock_nested+0x9a/0x120 [ 1442.238818] ? __local_bh_enable_ip+0x15a/0x270 [ 1442.243482] tcp_sendmsg+0x30/0x50 [ 1442.247017] inet_sendmsg+0x141/0x5d0 [ 1442.250811] ? ipip_gro_receive+0x100/0x100 [ 1442.255125] sock_sendmsg+0xd7/0x130 [ 1442.258828] __sys_sendto+0x262/0x380 [ 1442.262617] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1442.267278] ? kasan_check_write+0x14/0x20 [ 1442.271529] ? __sb_end_write+0xd9/0x110 [ 1442.275599] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1442.281127] ? fput+0x128/0x1a0 [ 1442.284399] ? ksys_write+0x1f1/0x2d0 [ 1442.288193] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1442.292953] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1442.297702] ? do_syscall_64+0x26/0x620 [ 1442.301682] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1442.307041] __x64_sys_sendto+0xe1/0x1a0 [ 1442.311097] do_syscall_64+0xfd/0x620 [ 1442.314903] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1442.320084] RIP: 0033:0x45aff9 [ 1442.323268] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1442.342157] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1442.349867] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 18:19:11 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, 0x0, 0x0) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1442.357125] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1442.364383] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1442.371639] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1442.378895] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000023 18:19:11 executing program 3 (fault-call:8 fault-nth:36): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1442.497395] FAULT_INJECTION: forcing a failure. [ 1442.497395] name failslab, interval 1, probability 0, space 0, times 0 [ 1442.509541] CPU: 1 PID: 14747 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1442.517391] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1442.526753] Call Trace: [ 1442.529342] dump_stack+0x197/0x210 [ 1442.532988] should_fail.cold+0xa/0x1b [ 1442.536908] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1442.542457] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1442.547566] ? send_sigurg+0x16d/0x330 [ 1442.551453] ? find_held_lock+0x35/0x130 [ 1442.555526] __should_failslab+0x121/0x190 [ 1442.559776] should_failslab+0x9/0x14 [ 1442.563583] kmem_cache_alloc_node+0x56/0x710 [ 1442.568188] ? kvm_clock_read+0x18/0x30 [ 1442.572161] ? kvm_sched_clock_read+0x9/0x20 [ 1442.576582] __alloc_skb+0xd5/0x5f0 [ 1442.580232] ? skb_trim+0x190/0x190 [ 1442.583866] ? tcp_established_options+0x2ae/0x490 [ 1442.588806] __tcp_send_ack.part.0+0x6a/0x5e0 [ 1442.593320] tcp_send_ack+0x88/0xa0 [ 1442.596967] __tcp_ack_snd_check+0x165/0x8c0 [ 1442.601380] tcp_rcv_established+0xa40/0x1f10 [ 1442.605872] ? tcp_data_queue+0x4270/0x4270 [ 1442.610185] ? __local_bh_enable_ip+0x15a/0x270 [ 1442.614858] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 1442.619892] tcp_v4_do_rcv+0x61f/0x8d0 [ 1442.623797] __release_sock+0x129/0x390 [ 1442.627771] release_sock+0x59/0x1c0 [ 1442.631476] sk_stream_wait_memory+0x590/0xe50 [ 1442.636195] ? sk_stream_kill_queues+0x520/0x520 [ 1442.640959] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1442.646674] ? do_wait_intr_irq+0x2b0/0x2b0 [ 1442.651000] ? tcp_push+0x4e2/0x6d0 [ 1442.654698] ? __check_object_size+0x3d/0x42a [ 1442.659233] tcp_sendmsg_locked+0xdec/0x3290 [ 1442.663777] ? tcp_sendpage+0x60/0x60 [ 1442.667585] ? trace_hardirqs_on+0x67/0x220 [ 1442.671907] ? lock_sock_nested+0x9a/0x120 [ 1442.676158] ? __local_bh_enable_ip+0x15a/0x270 [ 1442.680843] tcp_sendmsg+0x30/0x50 [ 1442.684386] inet_sendmsg+0x141/0x5d0 [ 1442.688209] ? ipip_gro_receive+0x100/0x100 [ 1442.692544] sock_sendmsg+0xd7/0x130 [ 1442.696270] __sys_sendto+0x262/0x380 [ 1442.700097] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1442.704785] ? kasan_check_write+0x14/0x20 [ 1442.709088] ? __sb_end_write+0xd9/0x110 [ 1442.713156] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1442.718706] ? fput+0x128/0x1a0 [ 1442.722013] ? ksys_write+0x1f1/0x2d0 [ 1442.725816] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1442.730667] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1442.735460] ? do_syscall_64+0x26/0x620 [ 1442.739465] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1442.744840] __x64_sys_sendto+0xe1/0x1a0 [ 1442.749028] do_syscall_64+0xfd/0x620 [ 1442.752850] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1442.758153] RIP: 0033:0x45aff9 [ 1442.761361] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1442.780285] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1442.788007] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1442.795286] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1442.802627] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1442.809905] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1442.817197] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000024 18:19:12 executing program 3 (fault-call:8 fault-nth:37): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1442.921953] FAULT_INJECTION: forcing a failure. [ 1442.921953] name failslab, interval 1, probability 0, space 0, times 0 [ 1442.937381] CPU: 0 PID: 14751 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1442.945199] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1442.954657] Call Trace: [ 1442.957261] dump_stack+0x197/0x210 [ 1442.960952] should_fail.cold+0xa/0x1b [ 1442.964837] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1442.970024] ? lock_downgrade+0x880/0x880 [ 1442.974218] __should_failslab+0x121/0x190 [ 1442.978464] should_failslab+0x9/0x14 [ 1442.982264] kmem_cache_alloc_node_trace+0x274/0x720 [ 1442.987365] ? __alloc_skb+0xd5/0x5f0 [ 1442.991300] __kmalloc_node_track_caller+0x3d/0x80 [ 1442.996245] __kmalloc_reserve.isra.0+0x40/0xf0 [ 1443.000921] __alloc_skb+0x10b/0x5f0 [ 1443.004649] ? skb_trim+0x190/0x190 [ 1443.008306] ? copyin+0xb5/0x100 [ 1443.011703] sk_stream_alloc_skb+0xc8/0x860 [ 1443.016058] tcp_sendmsg_locked+0xc9d/0x3290 [ 1443.020749] ? tcp_sendpage+0x60/0x60 [ 1443.024602] ? trace_hardirqs_on+0x67/0x220 [ 1443.028963] ? lock_sock_nested+0x9a/0x120 [ 1443.033201] ? __local_bh_enable_ip+0x15a/0x270 [ 1443.037878] tcp_sendmsg+0x30/0x50 [ 1443.041420] inet_sendmsg+0x141/0x5d0 [ 1443.045229] ? ipip_gro_receive+0x100/0x100 [ 1443.049566] sock_sendmsg+0xd7/0x130 [ 1443.053307] __sys_sendto+0x262/0x380 [ 1443.057114] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1443.061779] ? kasan_check_write+0x14/0x20 [ 1443.066021] ? __sb_end_write+0xd9/0x110 [ 1443.070102] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1443.075651] ? fput+0x128/0x1a0 [ 1443.078950] ? ksys_write+0x1f1/0x2d0 [ 1443.082891] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1443.087715] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1443.092488] ? do_syscall_64+0x26/0x620 [ 1443.096577] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1443.101945] __x64_sys_sendto+0xe1/0x1a0 [ 1443.106024] do_syscall_64+0xfd/0x620 [ 1443.109834] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1443.115030] RIP: 0033:0x45aff9 [ 1443.118242] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1443.137148] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1443.144870] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1443.152245] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1443.159527] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1443.166809] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1443.174085] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000025 18:19:12 executing program 3 (fault-call:8 fault-nth:38): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1443.282767] FAULT_INJECTION: forcing a failure. [ 1443.282767] name failslab, interval 1, probability 0, space 0, times 0 [ 1443.299746] CPU: 0 PID: 14755 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1443.307721] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1443.317086] Call Trace: [ 1443.319680] dump_stack+0x197/0x210 [ 1443.323313] should_fail.cold+0xa/0x1b [ 1443.327229] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1443.332345] ? lock_downgrade+0x880/0x880 [ 1443.336502] __should_failslab+0x121/0x190 [ 1443.340737] should_failslab+0x9/0x14 [ 1443.344537] kmem_cache_alloc_node+0x26c/0x710 [ 1443.349214] ? __might_fault+0x12b/0x1e0 [ 1443.353282] __alloc_skb+0xd5/0x5f0 [ 1443.356904] ? skb_trim+0x190/0x190 [ 1443.360592] ? copyin+0xb5/0x100 [ 1443.363964] sk_stream_alloc_skb+0xc8/0x860 [ 1443.368292] tcp_sendmsg_locked+0xc9d/0x3290 [ 1443.372713] ? tcp_sendpage+0x60/0x60 [ 1443.376517] ? trace_hardirqs_on+0x67/0x220 [ 1443.380835] ? lock_sock_nested+0x9a/0x120 [ 1443.385163] ? __local_bh_enable_ip+0x15a/0x270 [ 1443.389841] tcp_sendmsg+0x30/0x50 [ 1443.393379] inet_sendmsg+0x141/0x5d0 [ 1443.397302] ? ipip_gro_receive+0x100/0x100 [ 1443.401650] sock_sendmsg+0xd7/0x130 [ 1443.405376] __sys_sendto+0x262/0x380 [ 1443.409181] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1443.413853] ? kasan_check_write+0x14/0x20 [ 1443.418188] ? __sb_end_write+0xd9/0x110 [ 1443.422266] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1443.427804] ? fput+0x128/0x1a0 [ 1443.431096] ? ksys_write+0x1f1/0x2d0 [ 1443.434901] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1443.439655] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1443.444418] ? do_syscall_64+0x26/0x620 [ 1443.448409] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1443.453788] __x64_sys_sendto+0xe1/0x1a0 [ 1443.457864] do_syscall_64+0xfd/0x620 [ 1443.461672] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1443.466865] RIP: 0033:0x45aff9 [ 1443.470053] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1443.489063] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1443.496781] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1443.504052] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1443.511479] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1443.518759] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1443.526143] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000026 [ 1443.534209] Bluetooth: hci3: command 0x1003 tx timeout [ 1443.539596] Bluetooth: hci3: sending frame failed (-49) [ 1443.546241] Bluetooth: hci2: command 0x1003 tx timeout [ 1443.551572] Bluetooth: hci1: command 0x1003 tx timeout [ 1443.551611] Bluetooth: hci2: sending frame failed (-49) [ 1443.574062] Bluetooth: hci0: command 0x1003 tx timeout [ 1443.574082] Bluetooth: hci1: sending frame failed (-49) [ 1443.579582] Bluetooth: hci0: sending frame failed (-49) [ 1445.623813] Bluetooth: hci1: command 0x1001 tx timeout [ 1445.623819] Bluetooth: hci0: command 0x1001 tx timeout [ 1445.623848] Bluetooth: hci3: command 0x1001 tx timeout [ 1445.629138] Bluetooth: hci2: command 0x1001 tx timeout [ 1445.634633] Bluetooth: hci0: sending frame failed (-49) [ 1445.646131] Bluetooth: hci1: sending frame failed (-49) [ 1445.650633] Bluetooth: hci2: sending frame failed (-49) [ 1445.658951] Bluetooth: hci3: sending frame failed (-49) [ 1447.703807] Bluetooth: hci2: command 0x1009 tx timeout [ 1447.703832] Bluetooth: hci3: command 0x1009 tx timeout [ 1447.714682] Bluetooth: hci0: command 0x1009 tx timeout [ 1447.720168] Bluetooth: hci1: command 0x1009 tx timeout 18:19:20 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000600)='/dev/dlm-monitor\x00', 0x400000, 0x0) connect$l2tp(r1, &(0x7f0000000640)={0x2, 0x0, @loopback, 0x1}, 0x10) ioctl$KDADDIO(r0, 0x400455c8, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup3(r2, r3, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:19:20 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(0xffffffffffffffff, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:19:20 executing program 3 (fault-call:8 fault-nth:39): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) 18:19:20 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x541b, &(0x7f0000000080)=0xfffffdfd) 18:19:20 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5418, &(0x7f0000000080)=0xffffffdb) 18:19:20 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x6, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) [ 1451.638365] FAULT_INJECTION: forcing a failure. [ 1451.638365] name failslab, interval 1, probability 0, space 0, times 0 [ 1451.712584] CPU: 1 PID: 14758 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1451.720558] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1451.730016] Call Trace: [ 1451.732655] dump_stack+0x197/0x210 [ 1451.736315] should_fail.cold+0xa/0x1b [ 1451.740276] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1451.745410] ? lock_downgrade+0x880/0x880 [ 1451.749587] __should_failslab+0x121/0x190 [ 1451.753850] should_failslab+0x9/0x14 [ 1451.757715] kmem_cache_alloc_node_trace+0x274/0x720 [ 1451.762883] ? __alloc_skb+0xd5/0x5f0 [ 1451.766723] __kmalloc_node_track_caller+0x3d/0x80 [ 1451.771686] __kmalloc_reserve.isra.0+0x40/0xf0 [ 1451.776387] __alloc_skb+0x10b/0x5f0 [ 1451.780127] ? skb_trim+0x190/0x190 [ 1451.783779] ? copyin+0xb5/0x100 [ 1451.787178] sk_stream_alloc_skb+0xc8/0x860 [ 1451.791526] tcp_sendmsg_locked+0xc9d/0x3290 [ 1451.795984] ? tcp_sendpage+0x60/0x60 [ 1451.799813] ? trace_hardirqs_on+0x67/0x220 [ 1451.804272] ? lock_sock_nested+0x9a/0x120 [ 1451.808540] ? __local_bh_enable_ip+0x15a/0x270 18:19:21 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x200, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0xffffffffffff8000) r1 = creat(&(0x7f0000000380)='./bus\x00', 0x0) ioctl$EXT4_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000340)=0xe4) getsockopt$XDP_MMAP_OFFSETS(r1, 0x11b, 0x1, &(0x7f00000002c0), &(0x7f00000000c0)=0x80) r2 = open(&(0x7f0000000000)='./file0\x00', 0x50d4fe4337f36f7d, 0x114) ioctl$VFIO_CHECK_EXTENSION(r2, 0x3b65, 0x7) r3 = creat(&(0x7f0000000380)='./bus\x00', 0x0) ioctl$EXT4_IOC_SETFLAGS(r3, 0x40086602, &(0x7f0000000340)=0xe4) sendto$netrom(r3, &(0x7f0000000140)="e7bc04b5b4571c14d1370edc8ddd1e6adaa6b57a53f5ee09ae378e69144adfa756fd654aaac3f9cd339edb283ee74557a641a76f500d158092d29e7d20c183fc20930366051a283a6180c081a51fdb1e9b821489674b7fff5e6b56cadaa26a197bb0aa6336274bcf14e2e438e8cb73cbc2332d19230bb4d8ac1d16b28046d3938102", 0x82, 0x88, 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) ioctl$FBIOGET_VSCREENINFO(r3, 0x4600, &(0x7f0000000200)) r4 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x0, 0x4002011, r4, 0x0) r5 = syz_genetlink_get_family_id$tipc(&(0x7f0000000400)='TIPC\x00') sendmsg$TIPC_CMD_SET_NETID(r4, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x4000d000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x24, r5, 0x400, 0x70bd28, 0x25dfdbfe, {{}, {}, {0x8, 0x2, 0x3}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x40000}, 0x4048000) [ 1451.813248] tcp_sendmsg+0x30/0x50 [ 1451.813809] audit: type=1804 audit(1579371561.103:85): pid=14779 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op=invalid_pcr cause=open_writers comm="syz-executor.5" name="/root/syzkaller-testdir561611285/syzkaller.nc9SBy/180/bus" dev="sda1" ino=16769 res=1 [ 1451.816809] inet_sendmsg+0x141/0x5d0 [ 1451.816853] ? ipip_gro_receive+0x100/0x100 [ 1451.816876] sock_sendmsg+0xd7/0x130 [ 1451.855368] __sys_sendto+0x262/0x380 18:19:21 executing program 5: ioctl$TCSETA(0xffffffffffffffff, 0x5406, &(0x7f0000000000)={0x0, 0x80, 0x4f2e, 0x100, 0x9, "941a276858452957"}) openat$ion(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ion\x00', 0x1, 0x0) ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x1) ioctl$VIDIOC_QUERYBUF(0xffffffffffffffff, 0xc0585609, &(0x7f0000000100)={0x1, 0x9, 0x4, 0x1000800, 0x4, {0x0, 0x2710}, {0x4, 0x2, 0xd9, 0x20, 0x4, 0x40, "e2a7fe43"}, 0x4, 0x4, @fd, 0x81, 0x0, 0xffffffffffffffff}) ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x2) ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000080)) [ 1451.859297] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1451.864003] ? kasan_check_write+0x14/0x20 [ 1451.868377] ? __sb_end_write+0xd9/0x110 [ 1451.872468] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1451.878039] ? fput+0x128/0x1a0 [ 1451.881353] ? ksys_write+0x1f1/0x2d0 [ 1451.885185] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1451.890092] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1451.894880] ? do_syscall_64+0x26/0x620 [ 1451.898881] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1451.904270] __x64_sys_sendto+0xe1/0x1a0 [ 1451.908364] do_syscall_64+0xfd/0x620 [ 1451.912312] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1451.917524] RIP: 0033:0x45aff9 [ 1451.920739] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1451.939766] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1451.947502] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1451.954795] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1451.962184] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1451.969473] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1451.976788] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000027 18:19:21 executing program 5: r0 = socket(0xa, 0x80a, 0x1) r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000140)='TIPC\x00') sendmsg$TIPC_CMD_SET_LINK_PRI(r0, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80004004}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x68, r1, 0x820, 0x70bd27, 0x25dfdbfc, {{}, {}, {0x4c, 0x18, {0x9, @link='syz1\x00'}}}, [""]}, 0x68}, 0x1, 0x0, 0x0, 0xc4800}, 0x2000000) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) r3 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x1f, 0x1000) r4 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000280)='/dev/sequencer\x00', 0x60a000, 0x0) write$selinux_load(r4, &(0x7f00000002c0)={0xf97cff8c, 0x8, 'SE Linux', "1823fb596572ab512c36e7c38d4bb030cc7a040b151084e24d68203a6ed11807d84b3fe68344f5491a51ff65c91c6f77e2cd32cd7c11b0bd33327b0580e4534e73c36607c45fe08eaa42398877273d5931083c8736e9f29dea9f6e911b1e460166c4cf6562ded65d16c15ee4f3075717f496644e86c2c0fdcf8df489189ed99ab7ca65aacd29274ebd9af8849da8cad83c6905ce308423ac49a483226a54d2fdb20b40ba8d43dbb7b9d21754bc634f269eb84618c7d95ba53decd1b28ade"}, 0xce) ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r2, 0x400455c8, 0x1) r5 = creat(&(0x7f0000000380)='./bus\x00', 0x0) ioctl$EXT4_IOC_SETFLAGS(r5, 0x40086602, &(0x7f0000000340)=0xe4) statx(r5, &(0x7f00000003c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r9 = dup3(r7, r8, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r9, 0x8912, 0x400200) write$FUSE_INIT(r9, &(0x7f0000000500)={0x50, 0x0, 0x6, {0x7, 0x1f, 0x8, 0x2042282, 0x8, 0xc7, 0x6}}, 0x50) r10 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r10, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setuid(r11) ioprio_get$uid(0x3, r11) r12 = getuid() ioctl$VIDIOC_QUERYBUF(r9, 0xc0585609, &(0x7f0000000680)={0x156, 0xb, 0x4, 0x0, 0x3, {}, {0x5, 0xc, 0xff, 0x7a, 0x2, 0x2, "fe64e1cd"}, 0x8, 0x4, @fd=r5, 0x7, 0x0, r0}) r14 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r14, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) r17 = add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe) keyctl$setperm(0x5, r17, 0x202002) keyctl$chown(0x4, r17, r15, r16) write$FUSE_DIRENTPLUS(r13, &(0x7f0000000700)={0xb0, 0x0, 0x1, [{{0x0, 0x1, 0x5, 0x1f, 0xff, 0x9, {0x0, 0x8, 0x8000, 0x100000000, 0xd1, 0x4, 0x0, 0x8000, 0x7fff, 0x9, 0x4, r6, r16, 0x3ff, 0x1}}, {0x5, 0x0, 0x5, 0xffff645f, 'TIPC\x00'}}]}, 0xb0) sendmsg$nl_netfilter(r9, &(0x7f0000000640)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000600)={&(0x7f00000005c0)={0x14, 0xd, 0xa, 0x401, 0x70bd2a, 0x25dfdbfc, {0x1, 0x0, 0x1}}, 0x14}, 0x1, 0x0, 0x0, 0x5}, 0x0) setresuid(r6, r11, r12) ioctl$TIOCSETD(r2, 0x5412, &(0x7f0000000080)) 18:19:21 executing program 3 (fault-call:8 fault-nth:40): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) 18:19:21 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) clock_gettime(0x0, &(0x7f0000000340)={0x0, 0x0}) select(0x40, &(0x7f0000000280)={0x0, 0x0, 0xb0, 0x4, 0x29e, 0x6, 0x400}, &(0x7f00000002c0)={0xd6, 0x5, 0x8, 0x4, 0x5, 0x6358, 0x3, 0x1}, &(0x7f0000000300)={0x3, 0x5, 0xfffffffffffffffa, 0x6, 0x0, 0x1, 0xd0, 0x4}, &(0x7f0000000380)={r1, r2/1000+10000}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup3(r3, r4, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) ioctl$TCSETSF(r5, 0x5404, &(0x7f0000000180)={0xfffffffa, 0x2, 0x1, 0x1, 0x2, "63956cebc8107f30dc94d7a6e16caef83d0452"}) getresuid(&(0x7f0000000000), &(0x7f00000001c0), &(0x7f0000000140)) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) dup3(r6, r7, 0x0) recvfrom(r6, &(0x7f0000000100)=""/28, 0x1c, 0x0, &(0x7f0000000200)=@pppoe={0x18, 0x0, {0x0, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, 'bridge0\x00'}}, 0x80) [ 1452.124243] FAULT_INJECTION: forcing a failure. [ 1452.124243] name failslab, interval 1, probability 0, space 0, times 0 [ 1452.135799] CPU: 1 PID: 14794 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1452.143624] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1452.152994] Call Trace: [ 1452.155644] dump_stack+0x197/0x210 [ 1452.159296] should_fail.cold+0xa/0x1b [ 1452.163213] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1452.168347] ? mark_held_locks+0x100/0x100 [ 1452.172609] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1452.178176] ? should_fail+0x14d/0x85c [ 1452.182190] __should_failslab+0x121/0x190 [ 1452.186478] should_failslab+0x9/0x14 [ 1452.190304] kmem_cache_alloc_node_trace+0x5a/0x720 [ 1452.195346] ? __alloc_skb+0xd5/0x5f0 [ 1452.199183] __kmalloc_node_track_caller+0x3d/0x80 [ 1452.204138] __kmalloc_reserve.isra.0+0x40/0xf0 [ 1452.208843] __alloc_skb+0x10b/0x5f0 [ 1452.212586] ? skb_trim+0x190/0x190 [ 1452.216247] ? tcp_established_options+0x2ae/0x490 [ 1452.221216] __tcp_send_ack.part.0+0x6a/0x5e0 [ 1452.225746] tcp_send_ack+0x88/0xa0 [ 1452.229431] __tcp_ack_snd_check+0x165/0x8c0 [ 1452.233869] tcp_rcv_established+0xa40/0x1f10 [ 1452.238401] ? tcp_data_queue+0x4270/0x4270 [ 1452.242835] ? __local_bh_enable_ip+0x15a/0x270 [ 1452.247519] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 1452.252552] tcp_v4_do_rcv+0x61f/0x8d0 [ 1452.256457] __release_sock+0x129/0x390 [ 1452.260448] release_sock+0x59/0x1c0 [ 1452.264169] sk_stream_wait_memory+0x590/0xe50 [ 1452.268789] ? sk_stream_kill_queues+0x520/0x520 [ 1452.273658] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1452.279225] ? do_wait_intr_irq+0x2b0/0x2b0 [ 1452.283568] ? tcp_push+0x4e2/0x6d0 [ 1452.287214] ? __check_object_size+0x3d/0x42a [ 1452.291770] tcp_sendmsg_locked+0xdec/0x3290 [ 1452.296222] ? tcp_sendpage+0x60/0x60 [ 1452.300056] ? trace_hardirqs_on+0x67/0x220 [ 1452.304393] ? lock_sock_nested+0x9a/0x120 [ 1452.308635] ? __local_bh_enable_ip+0x15a/0x270 [ 1452.313313] tcp_sendmsg+0x30/0x50 [ 1452.316868] inet_sendmsg+0x141/0x5d0 [ 1452.320695] ? ipip_gro_receive+0x100/0x100 [ 1452.325038] sock_sendmsg+0xd7/0x130 [ 1452.328764] __sys_sendto+0x262/0x380 [ 1452.332574] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1452.337264] ? kasan_check_write+0x14/0x20 [ 1452.341519] ? __sb_end_write+0xd9/0x110 [ 1452.345588] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1452.351135] ? fput+0x128/0x1a0 [ 1452.354433] ? ksys_write+0x1f1/0x2d0 [ 1452.358265] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1452.363139] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1452.367909] ? do_syscall_64+0x26/0x620 [ 1452.371884] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1452.377266] __x64_sys_sendto+0xe1/0x1a0 [ 1452.381359] do_syscall_64+0xfd/0x620 [ 1452.385288] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1452.390478] RIP: 0033:0x45aff9 [ 1452.393677] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1452.412613] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c 18:19:21 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(0xffffffffffffffff, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1452.420336] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1452.427894] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1452.435175] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1452.442515] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1452.449815] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000028 [ 1452.453988] Bluetooth: Short BCSP packet [ 1452.713881] Bluetooth: Error in BCSP hdr checksum [ 1452.973961] Bluetooth: Error in BCSP hdr checksum [ 1453.703795] Bluetooth: hci1: command 0x1003 tx timeout [ 1453.709149] Bluetooth: hci0: command 0x1003 tx timeout [ 1453.709193] Bluetooth: hci1: sending frame failed (-49) [ 1453.719957] Bluetooth: hci0: sending frame failed (-49) [ 1453.783778] Bluetooth: hci2: command 0x1003 tx timeout [ 1453.789327] Bluetooth: hci2: sending frame failed (-49) [ 1454.263774] Bluetooth: hci3: command 0x1003 tx timeout [ 1454.269329] Bluetooth: hci3: sending frame failed (-49) [ 1455.783821] Bluetooth: hci0: command 0x1001 tx timeout [ 1455.783827] Bluetooth: hci1: command 0x1001 tx timeout [ 1455.783902] Bluetooth: hci1: sending frame failed (-49) [ 1455.794662] Bluetooth: hci0: sending frame failed (-49) [ 1455.863808] Bluetooth: hci2: command 0x1001 tx timeout [ 1455.869225] Bluetooth: hci2: sending frame failed (-49) [ 1456.353852] Bluetooth: hci3: command 0x1001 tx timeout [ 1456.359265] Bluetooth: hci3: sending frame failed (-49) [ 1457.863822] Bluetooth: hci0: command 0x1009 tx timeout [ 1457.863860] Bluetooth: hci1: command 0x1009 tx timeout [ 1457.943819] Bluetooth: hci2: command 0x1009 tx timeout [ 1458.423771] Bluetooth: hci3: command 0x1009 tx timeout 18:19:31 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x541d, &(0x7f0000000080)=0xfffffdfd) 18:19:31 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000600)='/dev/dlm-monitor\x00', 0x400000, 0x0) connect$l2tp(r1, &(0x7f0000000640)={0x2, 0x0, @loopback, 0x1}, 0x10) ioctl$KDADDIO(r0, 0x400455c8, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup3(r2, r3, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:19:31 executing program 3 (fault-call:8 fault-nth:41): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) 18:19:31 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x541b, &(0x7f0000000080)=0xffffffdb) 18:19:31 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(0xffffffffffffffff, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1461.904294] FAULT_INJECTION: forcing a failure. [ 1461.904294] name failslab, interval 1, probability 0, space 0, times 0 [ 1461.916175] CPU: 1 PID: 14816 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1461.923989] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1461.933360] Call Trace: [ 1461.935951] dump_stack+0x197/0x210 [ 1461.939701] should_fail.cold+0xa/0x1b [ 1461.943657] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1461.948784] ? mark_held_locks+0x100/0x100 [ 1461.953025] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1461.958554] ? should_fail+0x14d/0x85c [ 1461.962450] __should_failslab+0x121/0x190 [ 1461.966701] should_failslab+0x9/0x14 [ 1461.970521] kmem_cache_alloc_node_trace+0x5a/0x720 [ 1461.975545] ? __alloc_skb+0xd5/0x5f0 [ 1461.979483] __kmalloc_node_track_caller+0x3d/0x80 [ 1461.984451] __kmalloc_reserve.isra.0+0x40/0xf0 [ 1461.989156] __alloc_skb+0x10b/0x5f0 [ 1461.992895] ? skb_trim+0x190/0x190 [ 1461.996530] ? tcp_established_options+0x2ae/0x490 [ 1462.001594] __tcp_send_ack.part.0+0x6a/0x5e0 [ 1462.006119] tcp_send_ack+0x88/0xa0 [ 1462.009782] __tcp_ack_snd_check+0x165/0x8c0 [ 1462.014282] tcp_rcv_established+0xa40/0x1f10 [ 1462.018809] ? tcp_data_queue+0x4270/0x4270 [ 1462.023134] ? __local_bh_enable_ip+0x15a/0x270 [ 1462.027824] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 1462.032855] tcp_v4_do_rcv+0x61f/0x8d0 [ 1462.036756] __release_sock+0x129/0x390 [ 1462.040740] release_sock+0x59/0x1c0 [ 1462.044458] sk_stream_wait_memory+0x590/0xe50 [ 1462.049183] ? sk_stream_kill_queues+0x520/0x520 [ 1462.053950] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1462.059498] ? do_wait_intr_irq+0x2b0/0x2b0 [ 1462.063828] ? tcp_push+0x4e2/0x6d0 [ 1462.067476] ? __check_object_size+0x3d/0x42a [ 1462.072001] tcp_sendmsg_locked+0xdec/0x3290 [ 1462.076518] ? tcp_sendpage+0x60/0x60 [ 1462.080365] ? trace_hardirqs_on+0x67/0x220 [ 1462.084696] ? lock_sock_nested+0x9a/0x120 [ 1462.088977] ? __local_bh_enable_ip+0x15a/0x270 [ 1462.093682] tcp_sendmsg+0x30/0x50 [ 1462.097241] inet_sendmsg+0x141/0x5d0 [ 1462.101037] ? ipip_gro_receive+0x100/0x100 [ 1462.105376] sock_sendmsg+0xd7/0x130 [ 1462.109111] __sys_sendto+0x262/0x380 [ 1462.112930] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1462.117615] ? kasan_check_write+0x14/0x20 [ 1462.121867] ? __sb_end_write+0xd9/0x110 [ 1462.125951] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1462.131502] ? fput+0x128/0x1a0 [ 1462.134787] ? ksys_write+0x1f1/0x2d0 [ 1462.138664] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1462.143456] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1462.148243] ? do_syscall_64+0x26/0x620 [ 1462.152238] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1462.157616] __x64_sys_sendto+0xe1/0x1a0 [ 1462.161695] do_syscall_64+0xfd/0x620 [ 1462.165516] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1462.170730] RIP: 0033:0x45aff9 [ 1462.173946] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1462.192959] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1462.200678] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1462.207968] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1462.215381] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1462.222859] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1462.230149] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000029 18:19:31 executing program 3 (fault-call:8 fault-nth:42): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1462.329849] FAULT_INJECTION: forcing a failure. [ 1462.329849] name failslab, interval 1, probability 0, space 0, times 0 [ 1462.341533] CPU: 0 PID: 14822 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1462.349375] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1462.358731] Call Trace: [ 1462.361384] dump_stack+0x197/0x210 [ 1462.365048] should_fail.cold+0xa/0x1b [ 1462.368949] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1462.374059] ? mark_held_locks+0x100/0x100 [ 1462.378320] __should_failslab+0x121/0x190 [ 1462.382571] should_failslab+0x9/0x14 [ 1462.386491] kmem_cache_alloc_node_trace+0x5a/0x720 [ 1462.391514] ? find_held_lock+0x35/0x130 [ 1462.395663] ? is_bpf_text_address+0xac/0x170 [ 1462.400186] __kmalloc_node_track_caller+0x3d/0x80 [ 1462.405128] __kmalloc_reserve.isra.0+0x40/0xf0 [ 1462.409915] pskb_expand_head+0x154/0xe20 [ 1462.414069] ? lock_downgrade+0x880/0x880 [ 1462.418244] skb_prepare_for_shift+0x140/0x190 [ 1462.422853] skb_shift+0xa22/0x1a50 [ 1462.426499] tcp_sacktag_walk+0x6c0/0x1310 [ 1462.430759] tcp_sacktag_write_queue+0x171c/0x3050 [ 1462.435711] ? tcp_sacktag_walk+0x1310/0x1310 [ 1462.440213] ? __lock_is_held+0xb6/0x140 [ 1462.444360] tcp_ack+0x2ce5/0x5120 [ 1462.447933] ? tcp_fastretrans_alert+0x2550/0x2550 [ 1462.452868] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1462.458406] ? tcp_write_xmit+0x12c1/0x5230 [ 1462.462749] ? tcp_established_options+0x2ae/0x490 [ 1462.467690] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 1462.472894] ? tcp_parse_options+0x1c8/0xdc0 [ 1462.477337] ? tcp_validate_incoming+0x43e/0x16b0 [ 1462.482251] ? sched_clock+0x2e/0x50 [ 1462.485971] tcp_rcv_established+0x725/0x1f10 [ 1462.490473] ? tcp_data_queue+0x4270/0x4270 [ 1462.494797] ? __lock_is_held+0xb6/0x140 [ 1462.498864] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 1462.503884] tcp_v4_do_rcv+0x61f/0x8d0 [ 1462.507771] __release_sock+0x129/0x390 [ 1462.511812] release_sock+0x59/0x1c0 [ 1462.515520] sk_stream_wait_memory+0x590/0xe50 [ 1462.520118] ? sk_stream_kill_queues+0x520/0x520 [ 1462.524972] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1462.530522] ? do_wait_intr_irq+0x2b0/0x2b0 [ 1462.534850] ? tcp_push+0x4e2/0x6d0 [ 1462.538502] ? __check_object_size+0x3d/0x42a [ 1462.543024] tcp_sendmsg_locked+0xdec/0x3290 [ 1462.547474] ? tcp_sendpage+0x60/0x60 [ 1462.551294] ? trace_hardirqs_on+0x67/0x220 [ 1462.555721] ? lock_sock_nested+0x9a/0x120 [ 1462.559969] ? __local_bh_enable_ip+0x15a/0x270 [ 1462.564640] tcp_sendmsg+0x30/0x50 [ 1462.568173] inet_sendmsg+0x141/0x5d0 [ 1462.571985] ? ipip_gro_receive+0x100/0x100 [ 1462.576455] sock_sendmsg+0xd7/0x130 [ 1462.580266] __sys_sendto+0x262/0x380 [ 1462.584133] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1462.588811] ? kasan_check_write+0x14/0x20 [ 1462.593062] ? __sb_end_write+0xd9/0x110 [ 1462.597128] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1462.602671] ? fput+0x128/0x1a0 [ 1462.605970] ? ksys_write+0x1f1/0x2d0 [ 1462.609806] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1462.614663] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1462.619692] ? do_syscall_64+0x26/0x620 [ 1462.623676] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe 18:19:31 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, 0x0, 0x0) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1462.629053] __x64_sys_sendto+0xe1/0x1a0 [ 1462.633120] do_syscall_64+0xfd/0x620 [ 1462.636935] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1462.642118] RIP: 0033:0x45aff9 [ 1462.645329] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1462.664257] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1462.671990] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 18:19:32 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) r1 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x0, 0x4002011, r1, 0x0) ioctl$TIOCSETD(r1, 0x5412, &(0x7f0000000080)=0xe) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) dup3(r2, r3, 0x0) ioctl$VIDIOC_QUERYBUF(r1, 0xc0585609, &(0x7f0000000100)={0x7fff, 0x6, 0x4, 0x863e88e5eda66d5f, 0x8, {0x0, 0x7530}, {0x1, 0x1, 0x5, 0xfd, 0x40, 0x7f, "402e32e2"}, 0x7fff, 0x0, @offset=0x7, 0x0, 0x0, r2}) getsockopt$EBT_SO_GET_INIT_ENTRIES(r4, 0x0, 0x83, &(0x7f0000000200)={'filter\x00', 0x0, 0x3, 0x4d, [], 0x4, &(0x7f0000000000)=[{}, {}, {}, {}], &(0x7f0000000180)=""/77}, &(0x7f0000000280)=0x78) [ 1462.679273] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1462.686548] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1462.693828] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1462.701100] R13: 0000000000000992 R14: 00000000004cacca R15: 000000000000002a 18:19:32 executing program 3 (fault-call:8 fault-nth:43): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1462.865126] FAULT_INJECTION: forcing a failure. [ 1462.865126] name failslab, interval 1, probability 0, space 0, times 0 [ 1462.877737] CPU: 1 PID: 14831 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1462.885670] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1462.895054] Call Trace: [ 1462.897673] dump_stack+0x197/0x210 [ 1462.901318] should_fail.cold+0xa/0x1b [ 1462.905210] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1462.910767] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1462.915903] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1462.921474] __should_failslab+0x121/0x190 [ 1462.925714] should_failslab+0x9/0x14 [ 1462.929612] kmem_cache_alloc_node+0x56/0x710 [ 1462.934121] ? kvm_clock_read+0x18/0x30 [ 1462.938109] ? kvm_sched_clock_read+0x9/0x20 [ 1462.942530] __alloc_skb+0xd5/0x5f0 [ 1462.946151] ? skb_trim+0x190/0x190 [ 1462.949781] ? tcp_established_options+0x2ae/0x490 [ 1462.954740] __tcp_send_ack.part.0+0x6a/0x5e0 [ 1462.959245] tcp_send_ack+0x88/0xa0 [ 1462.962865] __tcp_ack_snd_check+0x165/0x8c0 [ 1462.967273] tcp_rcv_established+0xa40/0x1f10 [ 1462.971883] ? tcp_data_queue+0x4270/0x4270 [ 1462.976218] ? __lock_is_held+0xb6/0x140 [ 1462.980288] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 1462.985313] tcp_v4_do_rcv+0x61f/0x8d0 [ 1462.989204] __release_sock+0x129/0x390 [ 1462.993215] release_sock+0x59/0x1c0 [ 1462.996943] sk_stream_wait_memory+0x590/0xe50 [ 1463.001546] ? sk_stream_kill_queues+0x520/0x520 [ 1463.006298] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1463.011846] ? do_wait_intr_irq+0x2b0/0x2b0 [ 1463.016183] ? tcp_push+0x4e2/0x6d0 [ 1463.019828] ? __check_object_size+0x3d/0x42a [ 1463.024330] tcp_sendmsg_locked+0xdec/0x3290 [ 1463.028745] ? tcp_sendpage+0x60/0x60 [ 1463.032612] ? trace_hardirqs_on+0x67/0x220 [ 1463.036957] ? lock_sock_nested+0x9a/0x120 [ 1463.041341] ? __local_bh_enable_ip+0x15a/0x270 [ 1463.046011] tcp_sendmsg+0x30/0x50 [ 1463.049549] inet_sendmsg+0x141/0x5d0 [ 1463.053406] ? ipip_gro_receive+0x100/0x100 [ 1463.057747] sock_sendmsg+0xd7/0x130 [ 1463.061481] __sys_sendto+0x262/0x380 [ 1463.065306] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1463.069994] ? kasan_check_write+0x14/0x20 [ 1463.074257] ? __sb_end_write+0xd9/0x110 [ 1463.078342] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1463.083896] ? fput+0x128/0x1a0 [ 1463.087182] ? ksys_write+0x1f1/0x2d0 [ 1463.090996] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1463.095793] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1463.100561] ? do_syscall_64+0x26/0x620 [ 1463.104542] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1463.109905] __x64_sys_sendto+0xe1/0x1a0 [ 1463.113979] do_syscall_64+0xfd/0x620 [ 1463.117799] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1463.122988] RIP: 0033:0x45aff9 [ 1463.126172] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1463.145070] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1463.152810] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1463.160074] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1463.167334] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1463.174601] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1463.181872] R13: 0000000000000992 R14: 00000000004cacca R15: 000000000000002b 18:19:32 executing program 3 (fault-call:8 fault-nth:44): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1463.282080] FAULT_INJECTION: forcing a failure. [ 1463.282080] name failslab, interval 1, probability 0, space 0, times 0 [ 1463.293475] CPU: 1 PID: 14835 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1463.301273] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1463.310628] Call Trace: [ 1463.313227] dump_stack+0x197/0x210 [ 1463.316988] should_fail.cold+0xa/0x1b [ 1463.320892] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1463.326445] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1463.331574] __should_failslab+0x121/0x190 [ 1463.335819] should_failslab+0x9/0x14 [ 1463.339635] kmem_cache_alloc_node+0x56/0x710 [ 1463.344135] ? kvm_clock_read+0x18/0x30 [ 1463.348125] ? kvm_sched_clock_read+0x9/0x20 [ 1463.352542] __alloc_skb+0xd5/0x5f0 [ 1463.356185] ? skb_trim+0x190/0x190 [ 1463.359822] ? tcp_established_options+0x2ae/0x490 [ 1463.364768] __tcp_send_ack.part.0+0x6a/0x5e0 [ 1463.369276] tcp_send_ack+0x88/0xa0 [ 1463.372903] __tcp_ack_snd_check+0x165/0x8c0 [ 1463.377331] tcp_rcv_established+0xa40/0x1f10 [ 1463.381836] ? tcp_data_queue+0x4270/0x4270 [ 1463.386157] ? __lock_is_held+0xb6/0x140 [ 1463.390404] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 1463.395447] tcp_v4_do_rcv+0x61f/0x8d0 [ 1463.399366] __release_sock+0x129/0x390 [ 1463.403353] release_sock+0x59/0x1c0 [ 1463.407065] sk_stream_wait_memory+0x590/0xe50 [ 1463.411651] ? sk_stream_kill_queues+0x520/0x520 [ 1463.416413] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1463.421960] ? do_wait_intr_irq+0x2b0/0x2b0 [ 1463.426356] ? tcp_push+0x4e2/0x6d0 [ 1463.429987] ? __check_object_size+0x3d/0x42a [ 1463.434491] tcp_sendmsg_locked+0xdec/0x3290 [ 1463.438936] ? tcp_sendpage+0x60/0x60 [ 1463.442754] ? trace_hardirqs_on+0x67/0x220 [ 1463.447076] ? lock_sock_nested+0x9a/0x120 [ 1463.451314] ? __local_bh_enable_ip+0x15a/0x270 [ 1463.456003] tcp_sendmsg+0x30/0x50 [ 1463.459557] inet_sendmsg+0x141/0x5d0 [ 1463.463369] ? ipip_gro_receive+0x100/0x100 [ 1463.467695] sock_sendmsg+0xd7/0x130 [ 1463.471438] __sys_sendto+0x262/0x380 [ 1463.475263] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1463.479965] ? kasan_check_write+0x14/0x20 [ 1463.484233] ? __sb_end_write+0xd9/0x110 [ 1463.488421] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1463.493974] ? fput+0x128/0x1a0 [ 1463.497271] ? ksys_write+0x1f1/0x2d0 [ 1463.501085] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1463.505836] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1463.510582] ? do_syscall_64+0x26/0x620 [ 1463.514570] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1463.519956] __x64_sys_sendto+0xe1/0x1a0 [ 1463.524028] do_syscall_64+0xfd/0x620 [ 1463.527826] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1463.533023] RIP: 0033:0x45aff9 [ 1463.536218] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1463.555137] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1463.562859] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1463.570222] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 18:19:32 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, 0x0, 0x0) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1463.577495] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1463.584782] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1463.592067] R13: 0000000000000992 R14: 00000000004cacca R15: 000000000000002c 18:19:32 executing program 3 (fault-call:8 fault-nth:45): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1463.705677] FAULT_INJECTION: forcing a failure. [ 1463.705677] name failslab, interval 1, probability 0, space 0, times 0 [ 1463.717054] CPU: 1 PID: 14840 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1463.724873] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1463.734260] Call Trace: [ 1463.736874] dump_stack+0x197/0x210 [ 1463.740514] should_fail.cold+0xa/0x1b [ 1463.744408] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1463.749956] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1463.755080] __should_failslab+0x121/0x190 [ 1463.759347] should_failslab+0x9/0x14 [ 1463.763158] kmem_cache_alloc_node+0x56/0x710 [ 1463.767657] ? kvm_clock_read+0x18/0x30 [ 1463.771630] ? kvm_sched_clock_read+0x9/0x20 [ 1463.776054] __alloc_skb+0xd5/0x5f0 [ 1463.779687] ? skb_trim+0x190/0x190 [ 1463.783305] ? tcp_established_options+0x2ae/0x490 [ 1463.788246] __tcp_send_ack.part.0+0x6a/0x5e0 [ 1463.792808] tcp_send_ack+0x88/0xa0 [ 1463.796561] __tcp_ack_snd_check+0x165/0x8c0 [ 1463.800996] tcp_rcv_established+0xa40/0x1f10 [ 1463.805500] ? tcp_data_queue+0x4270/0x4270 [ 1463.809813] ? __lock_is_held+0xb6/0x140 [ 1463.813890] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 1463.818926] tcp_v4_do_rcv+0x61f/0x8d0 [ 1463.822824] __release_sock+0x129/0x390 [ 1463.826811] release_sock+0x59/0x1c0 [ 1463.830526] sk_stream_wait_memory+0x590/0xe50 [ 1463.835131] ? sk_stream_kill_queues+0x520/0x520 [ 1463.840105] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1463.845656] ? do_wait_intr_irq+0x2b0/0x2b0 [ 1463.849982] ? tcp_push+0x4e2/0x6d0 [ 1463.853625] ? __check_object_size+0x3d/0x42a [ 1463.858255] tcp_sendmsg_locked+0xdec/0x3290 [ 1463.863846] ? tcp_sendpage+0x60/0x60 [ 1463.867765] ? trace_hardirqs_on+0x67/0x220 [ 1463.872088] ? lock_sock_nested+0x9a/0x120 [ 1463.876337] ? __local_bh_enable_ip+0x15a/0x270 [ 1463.881022] tcp_sendmsg+0x30/0x50 [ 1463.884579] inet_sendmsg+0x141/0x5d0 [ 1463.888453] ? ipip_gro_receive+0x100/0x100 [ 1463.892772] sock_sendmsg+0xd7/0x130 [ 1463.896499] __sys_sendto+0x262/0x380 [ 1463.900305] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1463.904986] ? kasan_check_write+0x14/0x20 [ 1463.909230] ? __sb_end_write+0xd9/0x110 [ 1463.913298] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1463.918852] ? fput+0x128/0x1a0 [ 1463.922146] ? ksys_write+0x1f1/0x2d0 [ 1463.925953] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1463.930831] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1463.935602] ? do_syscall_64+0x26/0x620 [ 1463.939607] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1463.943799] Bluetooth: hci2: command 0x1003 tx timeout [ 1463.944990] __x64_sys_sendto+0xe1/0x1a0 [ 1463.945016] do_syscall_64+0xfd/0x620 [ 1463.945038] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1463.945049] RIP: 0033:0x45aff9 [ 1463.945067] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1463.950417] Bluetooth: hci2: sending frame failed (-49) [ 1463.954400] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1463.954414] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1463.954422] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1463.954430] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1463.954438] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1463.954446] R13: 0000000000000992 R14: 00000000004cacca R15: 000000000000002d [ 1463.954824] Bluetooth: hci0: command 0x1003 tx timeout [ 1464.047557] Bluetooth: hci1: command 0x1003 tx timeout [ 1464.047927] Bluetooth: hci0: sending frame failed (-49) [ 1464.052949] Bluetooth: hci1: sending frame failed (-49) [ 1464.823905] Bluetooth: hci3: command 0x1003 tx timeout [ 1464.829387] Bluetooth: hci3: sending frame failed (-49) [ 1466.023811] Bluetooth: hci2: command 0x1001 tx timeout [ 1466.029219] Bluetooth: hci2: sending frame failed (-49) [ 1466.103849] Bluetooth: hci0: command 0x1001 tx timeout [ 1466.103855] Bluetooth: hci1: command 0x1001 tx timeout [ 1466.103929] Bluetooth: hci1: sending frame failed (-49) [ 1466.115380] Bluetooth: hci0: sending frame failed (-49) [ 1466.903959] Bluetooth: hci3: command 0x1001 tx timeout [ 1466.909370] Bluetooth: hci3: sending frame failed (-49) [ 1468.103787] Bluetooth: hci2: command 0x1009 tx timeout [ 1468.183805] Bluetooth: hci0: command 0x1009 tx timeout [ 1468.183811] Bluetooth: hci1: command 0x1009 tx timeout [ 1468.983915] Bluetooth: hci3: command 0x1009 tx timeout 18:19:41 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x541e, &(0x7f0000000080)=0xfffffdfd) 18:19:41 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000600)='/dev/dlm-monitor\x00', 0x400000, 0x0) connect$l2tp(r1, &(0x7f0000000640)={0x2, 0x0, @loopback, 0x1}, 0x10) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup3(r2, r3, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:19:41 executing program 3 (fault-call:8 fault-nth:46): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) 18:19:41 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, 0x0, 0x0) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:19:41 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x541d, &(0x7f0000000080)=0xffffffdb) 18:19:41 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000600)='/dev/dlm-monitor\x00', 0x400000, 0x0) connect$l2tp(r1, &(0x7f0000000640)={0x2, 0x0, @loopback, 0x1}, 0x10) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup3(r2, r3, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) [ 1472.138284] FAULT_INJECTION: forcing a failure. [ 1472.138284] name failslab, interval 1, probability 0, space 0, times 0 [ 1472.153359] CPU: 0 PID: 14852 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1472.161294] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1472.170666] Call Trace: [ 1472.173281] dump_stack+0x197/0x210 [ 1472.176945] should_fail.cold+0xa/0x1b [ 1472.180841] ? tcp_sendmsg+0x30/0x50 18:19:41 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000600)='/dev/dlm-monitor\x00', 0x400000, 0x0) connect$l2tp(r1, &(0x7f0000000640)={0x2, 0x0, @loopback, 0x1}, 0x10) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup3(r2, r3, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) [ 1472.184589] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1472.189750] ? debug_check_no_obj_freed+0x200/0x464 [ 1472.194841] __should_failslab+0x121/0x190 [ 1472.199111] should_failslab+0x9/0x14 [ 1472.203042] kmem_cache_alloc_node+0x56/0x710 [ 1472.207577] __alloc_skb+0xd5/0x5f0 [ 1472.211227] ? skb_trim+0x190/0x190 [ 1472.214883] sk_stream_alloc_skb+0xc8/0x860 [ 1472.219316] tcp_write_xmit+0x801/0x5230 [ 1472.223427] ? tcp_established_options+0x2ae/0x490 [ 1472.228403] __tcp_push_pending_frames+0xb4/0x280 [ 1472.233279] tcp_rcv_established+0x9dc/0x1f10 [ 1472.237816] ? tcp_data_queue+0x4270/0x4270 [ 1472.242161] ? __lock_is_held+0xb6/0x140 [ 1472.246255] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 1472.251307] tcp_v4_do_rcv+0x61f/0x8d0 [ 1472.255218] __release_sock+0x129/0x390 [ 1472.259217] release_sock+0x59/0x1c0 [ 1472.262956] sk_stream_wait_memory+0x590/0xe50 [ 1472.267577] ? sk_stream_kill_queues+0x520/0x520 [ 1472.272362] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1472.277920] ? do_wait_intr_irq+0x2b0/0x2b0 [ 1472.282237] ? tcp_push+0x4e2/0x6d0 [ 1472.285876] ? __check_object_size+0x3d/0x42a [ 1472.290374] tcp_sendmsg_locked+0xdec/0x3290 [ 1472.294785] ? tcp_sendpage+0x60/0x60 [ 1472.298578] ? trace_hardirqs_on+0x67/0x220 [ 1472.302889] ? lock_sock_nested+0x9a/0x120 [ 1472.307115] ? __local_bh_enable_ip+0x15a/0x270 [ 1472.311777] tcp_sendmsg+0x30/0x50 [ 1472.315362] inet_sendmsg+0x141/0x5d0 [ 1472.319155] ? ipip_gro_receive+0x100/0x100 [ 1472.323470] sock_sendmsg+0xd7/0x130 [ 1472.327177] __sys_sendto+0x262/0x380 [ 1472.331019] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1472.335706] ? kasan_check_write+0x14/0x20 [ 1472.339978] ? __sb_end_write+0xd9/0x110 [ 1472.344037] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1472.349566] ? fput+0x128/0x1a0 [ 1472.352842] ? ksys_write+0x1f1/0x2d0 [ 1472.356635] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1472.361381] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1472.366133] ? do_syscall_64+0x26/0x620 [ 1472.370095] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1472.375456] __x64_sys_sendto+0xe1/0x1a0 [ 1472.379514] do_syscall_64+0xfd/0x620 [ 1472.383306] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1472.388482] RIP: 0033:0x45aff9 [ 1472.391663] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1472.410672] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1472.418377] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1472.425645] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1472.432906] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1472.440279] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1472.447610] R13: 0000000000000992 R14: 00000000004cacca R15: 000000000000002e 18:19:42 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) r1 = creat(&(0x7f0000000380)='./bus\x00', 0x0) ioctl$EXT4_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000340)=0xe4) r2 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x0, 0x4002011, r2, 0x0) ioctl$TIOCSETD(r2, 0x5412, &(0x7f0000000140)=0x8000019) 18:19:42 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000600)='/dev/dlm-monitor\x00', 0x400000, 0x0) ioctl$KDADDIO(r0, 0x400455c8, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:19:42 executing program 3 (fault-call:8 fault-nth:47): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) 18:19:42 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1473.341637] FAULT_INJECTION: forcing a failure. [ 1473.341637] name failslab, interval 1, probability 0, space 0, times 0 [ 1473.373274] CPU: 0 PID: 14867 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1473.381118] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1473.390484] Call Trace: [ 1473.393097] dump_stack+0x197/0x210 [ 1473.396042] audit: type=1804 audit(1579371582.673:86): pid=14873 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op=invalid_pcr cause=open_writers comm="syz-executor.5" name="/root/syzkaller-testdir561611285/syzkaller.nc9SBy/185/bus" dev="sda1" ino=16786 res=1 [ 1473.396751] should_fail.cold+0xa/0x1b [ 1473.396773] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1473.396794] ? mark_held_locks+0x100/0x100 [ 1473.436763] __should_failslab+0x121/0x190 [ 1473.440991] should_failslab+0x9/0x14 [ 1473.444783] kmem_cache_alloc_node_trace+0x5a/0x720 [ 1473.449788] ? find_held_lock+0x35/0x130 [ 1473.453842] ? is_bpf_text_address+0xac/0x170 [ 1473.458346] __kmalloc_node_track_caller+0x3d/0x80 [ 1473.463392] __kmalloc_reserve.isra.0+0x40/0xf0 [ 1473.468114] pskb_expand_head+0x154/0xe20 [ 1473.472267] ? lock_downgrade+0x880/0x880 [ 1473.476412] skb_prepare_for_shift+0x140/0x190 [ 1473.481000] skb_shift+0xa22/0x1a50 [ 1473.484643] tcp_sacktag_walk+0x6c0/0x1310 [ 1473.488884] tcp_sacktag_write_queue+0x171c/0x3050 [ 1473.493826] ? tcp_sacktag_walk+0x1310/0x1310 [ 1473.498325] ? __lock_is_held+0xb6/0x140 [ 1473.502389] tcp_ack+0x2ce5/0x5120 [ 1473.505958] ? tcp_fastretrans_alert+0x2550/0x2550 [ 1473.510884] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1473.516463] ? tcp_write_xmit+0x12c1/0x5230 [ 1473.520785] ? tcp_established_options+0x2ae/0x490 [ 1473.525704] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 1473.530883] ? tcp_parse_options+0x1c8/0xdc0 [ 1473.535334] ? tcp_validate_incoming+0x43e/0x16b0 [ 1473.540179] ? sched_clock+0x2e/0x50 [ 1473.543900] tcp_rcv_established+0x725/0x1f10 [ 1473.548398] ? tcp_data_queue+0x4270/0x4270 [ 1473.552733] ? __lock_is_held+0xb6/0x140 [ 1473.556806] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 1473.561823] tcp_v4_do_rcv+0x61f/0x8d0 [ 1473.565704] __release_sock+0x129/0x390 [ 1473.569676] release_sock+0x59/0x1c0 [ 1473.573420] sk_stream_wait_memory+0x590/0xe50 [ 1473.578009] ? sk_stream_kill_queues+0x520/0x520 [ 1473.582770] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1473.588323] ? do_wait_intr_irq+0x2b0/0x2b0 [ 1473.592682] ? tcp_push+0x4e2/0x6d0 [ 1473.596316] ? __check_object_size+0x3d/0x42a [ 1473.600803] tcp_sendmsg_locked+0xdec/0x3290 [ 1473.605214] ? tcp_sendpage+0x60/0x60 [ 1473.609004] ? trace_hardirqs_on+0x67/0x220 [ 1473.613328] ? lock_sock_nested+0x9a/0x120 [ 1473.617622] ? __local_bh_enable_ip+0x15a/0x270 [ 1473.622290] tcp_sendmsg+0x30/0x50 [ 1473.625824] inet_sendmsg+0x141/0x5d0 [ 1473.629629] ? ipip_gro_receive+0x100/0x100 [ 1473.633957] sock_sendmsg+0xd7/0x130 [ 1473.637663] __sys_sendto+0x262/0x380 [ 1473.641452] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1473.646170] ? kasan_check_write+0x14/0x20 [ 1473.650404] ? __sb_end_write+0xd9/0x110 [ 1473.654506] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1473.660175] ? fput+0x128/0x1a0 [ 1473.663448] ? ksys_write+0x1f1/0x2d0 [ 1473.667241] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1473.672001] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1473.676862] ? do_syscall_64+0x26/0x620 [ 1473.680843] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1473.686213] __x64_sys_sendto+0xe1/0x1a0 [ 1473.690287] do_syscall_64+0xfd/0x620 [ 1473.694100] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1473.699286] RIP: 0033:0x45aff9 [ 1473.702468] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1473.721363] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1473.729082] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1473.736362] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1473.743682] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1473.750959] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1473.758235] R13: 0000000000000992 R14: 00000000004cacca R15: 000000000000002f 18:19:43 executing program 3 (fault-call:8 fault-nth:48): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1473.860628] FAULT_INJECTION: forcing a failure. [ 1473.860628] name failslab, interval 1, probability 0, space 0, times 0 [ 1473.872447] CPU: 0 PID: 14878 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1473.880311] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1473.889679] Call Trace: [ 1473.892270] dump_stack+0x197/0x210 [ 1473.896033] should_fail.cold+0xa/0x1b [ 1473.899935] ? tcp_sendmsg+0x30/0x50 [ 1473.903685] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1473.908909] ? debug_check_no_obj_freed+0x200/0x464 [ 1473.913963] __should_failslab+0x121/0x190 [ 1473.918217] should_failslab+0x9/0x14 [ 1473.922029] kmem_cache_alloc_node+0x56/0x710 [ 1473.926534] __alloc_skb+0xd5/0x5f0 [ 1473.930165] ? skb_trim+0x190/0x190 [ 1473.933896] sk_stream_alloc_skb+0xc8/0x860 [ 1473.938298] tcp_write_xmit+0x801/0x5230 [ 1473.942363] ? tcp_established_options+0x2ae/0x490 [ 1473.947359] __tcp_push_pending_frames+0xb4/0x280 [ 1473.952214] tcp_rcv_established+0x9dc/0x1f10 [ 1473.956710] ? tcp_data_queue+0x4270/0x4270 [ 1473.961036] ? __lock_is_held+0xb6/0x140 [ 1473.965108] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 1473.970139] tcp_v4_do_rcv+0x61f/0x8d0 [ 1473.974142] __release_sock+0x129/0x390 [ 1473.978140] release_sock+0x59/0x1c0 [ 1473.981865] sk_stream_wait_memory+0x590/0xe50 [ 1473.986453] ? sk_stream_kill_queues+0x520/0x520 [ 1473.991208] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1473.996811] ? do_wait_intr_irq+0x2b0/0x2b0 [ 1474.001191] ? tcp_push+0x4e2/0x6d0 [ 1474.004823] ? __check_object_size+0x3d/0x42a [ 1474.009383] tcp_sendmsg_locked+0xdec/0x3290 [ 1474.013872] ? tcp_sendpage+0x60/0x60 [ 1474.017680] ? trace_hardirqs_on+0x67/0x220 [ 1474.022023] ? lock_sock_nested+0x9a/0x120 [ 1474.026270] ? __local_bh_enable_ip+0x15a/0x270 [ 1474.030946] tcp_sendmsg+0x30/0x50 [ 1474.034503] inet_sendmsg+0x141/0x5d0 [ 1474.038311] ? ipip_gro_receive+0x100/0x100 [ 1474.042784] sock_sendmsg+0xd7/0x130 [ 1474.046492] __sys_sendto+0x262/0x380 [ 1474.050296] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1474.054977] ? kasan_check_write+0x14/0x20 [ 1474.059234] ? __sb_end_write+0xd9/0x110 [ 1474.063312] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1474.068906] ? fput+0x128/0x1a0 [ 1474.072195] ? ksys_write+0x1f1/0x2d0 [ 1474.075996] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1474.080756] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1474.085538] ? do_syscall_64+0x26/0x620 [ 1474.089521] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1474.094890] __x64_sys_sendto+0xe1/0x1a0 [ 1474.098960] do_syscall_64+0xfd/0x620 [ 1474.102761] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1474.107951] RIP: 0033:0x45aff9 [ 1474.111139] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1474.130041] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1474.137759] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1474.145051] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1474.152364] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1474.159646] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1474.166913] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000030 [ 1474.174997] Bluetooth: hci0: command 0x1003 tx timeout [ 1474.180367] Bluetooth: hci0: sending frame failed (-49) [ 1474.184131] Bluetooth: hci1: command 0x1003 tx timeout [ 1474.191222] Bluetooth: hci1: sending frame failed (-49) [ 1475.383761] Bluetooth: hci3: command 0x1003 tx timeout [ 1475.389215] Bluetooth: hci3: sending frame failed (-49) [ 1475.394744] Bluetooth: hci2: command 0x1003 tx timeout [ 1475.400130] Bluetooth: hci2: sending frame failed (-49) [ 1476.263823] Bluetooth: hci1: command 0x1001 tx timeout [ 1476.269316] Bluetooth: hci1: sending frame failed (-49) [ 1476.274783] Bluetooth: hci0: command 0x1001 tx timeout [ 1476.280264] Bluetooth: hci0: sending frame failed (-49) [ 1477.463785] Bluetooth: hci2: command 0x1001 tx timeout [ 1477.469125] Bluetooth: hci3: command 0x1001 tx timeout [ 1477.469204] Bluetooth: hci2: sending frame failed (-49) [ 1477.479834] Bluetooth: hci3: sending frame failed (-49) [ 1478.343880] Bluetooth: hci1: command 0x1009 tx timeout [ 1478.343886] Bluetooth: hci0: command 0x1009 tx timeout [ 1479.543815] Bluetooth: hci2: command 0x1009 tx timeout [ 1479.543823] Bluetooth: hci3: command 0x1009 tx timeout 18:19:51 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5421, &(0x7f0000000080)=0xfffffdfd) 18:19:51 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:19:51 executing program 3 (fault-call:8 fault-nth:49): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) 18:19:51 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x541e, &(0x7f0000000080)=0xffffffdb) [ 1482.323156] FAULT_INJECTION: forcing a failure. [ 1482.323156] name failslab, interval 1, probability 0, space 0, times 0 [ 1482.344021] CPU: 0 PID: 14883 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1482.351875] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1482.361368] Call Trace: [ 1482.363985] dump_stack+0x197/0x210 [ 1482.367649] should_fail.cold+0xa/0x1b [ 1482.371568] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1482.376700] ? __kfree_skb+0x1e/0x30 [ 1482.380442] ? tcp_data_queue+0x1ce4/0x4270 [ 1482.384792] ? tcp_rcv_established+0x951/0x1f10 [ 1482.389474] ? tcp_v4_do_rcv+0x61f/0x8d0 [ 1482.393536] ? __release_sock+0x129/0x390 [ 1482.397681] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1482.403246] ? should_fail+0x14d/0x85c [ 1482.407146] __should_failslab+0x121/0x190 [ 1482.411412] should_failslab+0x9/0x14 [ 1482.415229] kmem_cache_alloc_node_trace+0x5a/0x720 [ 1482.420264] ? __alloc_skb+0xd5/0x5f0 [ 1482.424096] __kmalloc_node_track_caller+0x3d/0x80 [ 1482.429053] __kmalloc_reserve.isra.0+0x40/0xf0 [ 1482.433749] __alloc_skb+0x10b/0x5f0 [ 1482.437482] ? skb_trim+0x190/0x190 [ 1482.441115] sk_stream_alloc_skb+0xc8/0x860 [ 1482.445643] tcp_write_xmit+0x801/0x5230 [ 1482.449719] ? tcp_established_options+0x2ae/0x490 [ 1482.454796] __tcp_push_pending_frames+0xb4/0x280 [ 1482.459670] tcp_rcv_established+0x9dc/0x1f10 [ 1482.464230] ? tcp_data_queue+0x4270/0x4270 [ 1482.468610] ? __lock_is_held+0xb6/0x140 [ 1482.472676] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 1482.477696] tcp_v4_do_rcv+0x61f/0x8d0 [ 1482.481592] __release_sock+0x129/0x390 [ 1482.485632] release_sock+0x59/0x1c0 [ 1482.489383] sk_stream_wait_memory+0x590/0xe50 [ 1482.494007] ? sk_stream_kill_queues+0x520/0x520 [ 1482.498781] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1482.504332] ? do_wait_intr_irq+0x2b0/0x2b0 [ 1482.508661] ? tcp_push+0x4e2/0x6d0 [ 1482.512299] ? __check_object_size+0x3d/0x42a [ 1482.516819] tcp_sendmsg_locked+0xdec/0x3290 [ 1482.521307] ? tcp_sendpage+0x60/0x60 [ 1482.525130] ? trace_hardirqs_on+0x67/0x220 [ 1482.529467] ? lock_sock_nested+0x9a/0x120 [ 1482.533723] ? __local_bh_enable_ip+0x15a/0x270 [ 1482.538449] tcp_sendmsg+0x30/0x50 [ 1482.542000] inet_sendmsg+0x141/0x5d0 [ 1482.545819] ? ipip_gro_receive+0x100/0x100 [ 1482.550158] sock_sendmsg+0xd7/0x130 [ 1482.553892] __sys_sendto+0x262/0x380 [ 1482.557709] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1482.562385] ? kasan_check_write+0x14/0x20 [ 1482.566656] ? __sb_end_write+0xd9/0x110 [ 1482.570829] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1482.576407] ? fput+0x128/0x1a0 [ 1482.579715] ? ksys_write+0x1f1/0x2d0 [ 1482.583537] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1482.588308] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1482.593080] ? do_syscall_64+0x26/0x620 [ 1482.597156] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1482.602566] __x64_sys_sendto+0xe1/0x1a0 [ 1482.606715] do_syscall_64+0xfd/0x620 [ 1482.610538] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1482.615754] RIP: 0033:0x45aff9 [ 1482.619017] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1482.638033] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1482.645758] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1482.653221] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1482.660494] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1482.667863] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1482.675141] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000031 18:19:52 executing program 3 (fault-call:8 fault-nth:50): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1482.779453] FAULT_INJECTION: forcing a failure. [ 1482.779453] name failslab, interval 1, probability 0, space 0, times 0 [ 1482.791464] CPU: 1 PID: 14893 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1482.799322] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1482.808748] Call Trace: [ 1482.811355] dump_stack+0x197/0x210 [ 1482.815012] should_fail.cold+0xa/0x1b [ 1482.818919] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1482.824100] ? __dev_queue_xmit+0x892/0x2fe0 [ 1482.828531] ? mark_held_locks+0x100/0x100 [ 1482.832774] __should_failslab+0x121/0x190 [ 1482.837114] should_failslab+0x9/0x14 [ 1482.840931] kmem_cache_alloc_node_trace+0x5a/0x720 [ 1482.846004] ? ip_finish_output2+0x95d/0x1740 [ 1482.850498] ? find_held_lock+0x35/0x130 [ 1482.854569] __kmalloc_node_track_caller+0x3d/0x80 [ 1482.859497] __kmalloc_reserve.isra.0+0x40/0xf0 [ 1482.864175] pskb_expand_head+0x154/0xe20 [ 1482.868329] ? __local_bh_enable_ip+0x15a/0x270 [ 1482.873126] ? ip_finish_output2+0x995/0x1740 [ 1482.877620] skb_prepare_for_shift+0x140/0x190 [ 1482.882205] skb_shift+0xa22/0x1a50 [ 1482.885844] tcp_sacktag_walk+0x6c0/0x1310 [ 1482.890100] tcp_sacktag_write_queue+0x171c/0x3050 [ 1482.895065] ? tcp_sacktag_walk+0x1310/0x1310 [ 1482.899658] ? __lock_is_held+0xb6/0x140 [ 1482.903785] tcp_ack+0x2ce5/0x5120 [ 1482.907361] ? tcp_fastretrans_alert+0x2550/0x2550 [ 1482.912424] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1482.917961] ? tcp_write_xmit+0x12c1/0x5230 [ 1482.922464] ? tcp_established_options+0x2ae/0x490 [ 1482.927395] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 1482.932585] ? tcp_parse_options+0x1c8/0xdc0 [ 1482.937002] ? tcp_validate_incoming+0x43e/0x16b0 [ 1482.941845] ? sched_clock+0x2e/0x50 [ 1482.945576] tcp_rcv_established+0x725/0x1f10 [ 1482.950115] ? tcp_data_queue+0x4270/0x4270 [ 1482.954454] ? __lock_is_held+0xb6/0x140 [ 1482.958519] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 1482.963540] tcp_v4_do_rcv+0x61f/0x8d0 [ 1482.967428] __release_sock+0x129/0x390 [ 1482.971461] release_sock+0x59/0x1c0 [ 1482.975196] sk_stream_wait_memory+0x590/0xe50 [ 1482.979821] ? sk_stream_kill_queues+0x520/0x520 [ 1482.984652] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1482.990201] ? do_wait_intr_irq+0x2b0/0x2b0 [ 1482.994530] ? tcp_push+0x4e2/0x6d0 [ 1482.998170] ? __check_object_size+0x3d/0x42a [ 1483.002693] tcp_sendmsg_locked+0xdec/0x3290 [ 1483.007214] ? tcp_sendpage+0x60/0x60 [ 1483.011041] ? trace_hardirqs_on+0x67/0x220 [ 1483.015366] ? lock_sock_nested+0x9a/0x120 [ 1483.019613] ? __local_bh_enable_ip+0x15a/0x270 [ 1483.024282] tcp_sendmsg+0x30/0x50 [ 1483.027824] inet_sendmsg+0x141/0x5d0 [ 1483.031622] ? ipip_gro_receive+0x100/0x100 [ 1483.036091] sock_sendmsg+0xd7/0x130 [ 1483.039816] __sys_sendto+0x262/0x380 [ 1483.043636] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1483.048311] ? kasan_check_write+0x14/0x20 [ 1483.052562] ? __sb_end_write+0xd9/0x110 [ 1483.056621] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1483.062165] ? fput+0x128/0x1a0 [ 1483.065445] ? ksys_write+0x1f1/0x2d0 [ 1483.069266] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1483.074042] ? trace_hardirqs_on_thunk+0x1a/0x1c 18:19:52 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1483.078805] ? do_syscall_64+0x26/0x620 [ 1483.082786] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1483.088200] __x64_sys_sendto+0xe1/0x1a0 [ 1483.092272] do_syscall_64+0xfd/0x620 [ 1483.096091] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1483.101298] RIP: 0033:0x45aff9 [ 1483.104508] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1483.123548] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1483.131262] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1483.138533] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1483.145817] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1483.153184] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1483.160455] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000032 18:19:52 executing program 3 (fault-call:8 fault-nth:51): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1483.268858] FAULT_INJECTION: forcing a failure. [ 1483.268858] name failslab, interval 1, probability 0, space 0, times 0 [ 1483.280494] CPU: 0 PID: 14898 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1483.288404] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1483.297778] Call Trace: [ 1483.300379] dump_stack+0x197/0x210 [ 1483.304031] should_fail.cold+0xa/0x1b [ 1483.307932] ? tcp_v4_do_rcv+0x61f/0x8d0 [ 1483.312010] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1483.317233] ? sock_sendmsg+0xd7/0x130 [ 1483.321139] ? __sys_sendto+0x262/0x380 [ 1483.325230] ? __x64_sys_sendto+0xe1/0x1a0 [ 1483.329479] ? do_syscall_64+0xfd/0x620 [ 1483.333472] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1483.338874] __should_failslab+0x121/0x190 [ 1483.343123] should_failslab+0x9/0x14 [ 1483.346939] kmem_cache_alloc_node_trace+0x5a/0x720 [ 1483.351954] __kmalloc_node_track_caller+0x3d/0x80 [ 1483.356909] __kmalloc_reserve.isra.0+0x40/0xf0 [ 1483.361595] pskb_expand_head+0x154/0xe20 [ 1483.365747] ? skb_free_head+0x9e/0xc0 [ 1483.369630] skb_prepare_for_shift+0x140/0x190 [ 1483.374232] skb_shift+0xa22/0x1a50 [ 1483.377901] tcp_sacktag_walk+0x6c0/0x1310 [ 1483.382154] tcp_sacktag_write_queue+0x171c/0x3050 [ 1483.387092] ? tcp_sacktag_walk+0x1310/0x1310 [ 1483.391593] ? __lock_is_held+0xb6/0x140 [ 1483.395675] tcp_ack+0x2ce5/0x5120 [ 1483.399265] ? tcp_fastretrans_alert+0x2550/0x2550 [ 1483.404218] ? __lock_acquire+0x6ee/0x49c0 [ 1483.408466] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1483.414042] ? tcp_write_xmit+0x12c1/0x5230 [ 1483.418390] ? tcp_established_options+0x2ae/0x490 [ 1483.423331] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 1483.428559] ? tcp_validate_incoming+0x43e/0x16b0 [ 1483.433409] ? sched_clock+0x2e/0x50 [ 1483.437152] tcp_rcv_established+0x725/0x1f10 [ 1483.441670] ? tcp_data_queue+0x4270/0x4270 [ 1483.446073] ? __local_bh_enable_ip+0x15a/0x270 [ 1483.450843] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 1483.455886] tcp_v4_do_rcv+0x61f/0x8d0 [ 1483.459805] __release_sock+0x129/0x390 [ 1483.463814] release_sock+0x59/0x1c0 [ 1483.467536] sk_stream_wait_memory+0x590/0xe50 [ 1483.472135] ? sk_stream_kill_queues+0x520/0x520 [ 1483.476906] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1483.482577] ? do_wait_intr_irq+0x2b0/0x2b0 [ 1483.486908] ? tcp_push+0x4e2/0x6d0 [ 1483.490532] ? __check_object_size+0x3d/0x42a [ 1483.495054] tcp_sendmsg_locked+0xdec/0x3290 [ 1483.499507] ? tcp_sendpage+0x60/0x60 [ 1483.503323] ? trace_hardirqs_on+0x67/0x220 [ 1483.507650] ? lock_sock_nested+0x9a/0x120 [ 1483.511901] ? __local_bh_enable_ip+0x15a/0x270 [ 1483.516609] tcp_sendmsg+0x30/0x50 [ 1483.520179] inet_sendmsg+0x141/0x5d0 [ 1483.524048] ? ipip_gro_receive+0x100/0x100 [ 1483.528372] sock_sendmsg+0xd7/0x130 [ 1483.532082] __sys_sendto+0x262/0x380 [ 1483.535906] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1483.540731] ? kasan_check_write+0x14/0x20 [ 1483.544996] ? __sb_end_write+0xd9/0x110 [ 1483.549080] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1483.554733] ? fput+0x128/0x1a0 [ 1483.558038] ? ksys_write+0x1f1/0x2d0 [ 1483.561874] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1483.566666] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1483.571451] ? do_syscall_64+0x26/0x620 [ 1483.575460] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1483.580856] __x64_sys_sendto+0xe1/0x1a0 [ 1483.584950] do_syscall_64+0xfd/0x620 [ 1483.588788] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1483.594093] RIP: 0033:0x45aff9 [ 1483.597308] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 18:19:52 executing program 5: io_setup(0x1529, &(0x7f00000000c0)=0x0) r1 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x0, 0x4002011, r1, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) io_cancel(r0, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x3, 0x0, r1, &(0x7f0000000100)="91ad5bb66c65ee1fb059e1b9fe53a8f2887e62a2a66e9f49424dd0e9e7a39d792da3aae58c125bf2428e360e8cd8dc2ee91126848383ca6b9ba6d9dcf48221969e995f1cbed1c066b43739861afdcd3444dcb682595a25b3bc83d7bc6cc9d5509c2dd75553b3ab9be2efde085a92038f70459b1ce4dc675917d31740befecbbff1cf397ae8cbc0fd424bb4fde7bb298756213c538a567f9675072b8558b9bfa190a8c2fab66ac3915205ffa4b49dbf74e65b747c0a41d64efe95624228c3c892e40c7c101d9a786b8df4357d75c6810f", 0xd0, 0x7fff, 0x0, 0x2, r3}, &(0x7f0000000240)) setsockopt$netlink_NETLINK_PKTINFO(r1, 0x10e, 0x3, &(0x7f0000000280)=0x9, 0x4) r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x101100, 0x0) ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r4, 0x400455c8, 0x1) ioctl$TIOCSETD(r4, 0x5412, &(0x7f0000000080)) clock_gettime(0x6, &(0x7f00000002c0)) 18:19:52 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) [ 1483.616326] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1483.624053] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1483.632309] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1483.639717] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1483.647003] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1483.654291] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000033 18:19:53 executing program 3 (fault-call:8 fault-nth:52): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1483.801257] FAULT_INJECTION: forcing a failure. [ 1483.801257] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1483.813216] CPU: 1 PID: 14910 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1483.821009] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1483.830503] Call Trace: [ 1483.833108] dump_stack+0x197/0x210 [ 1483.836763] should_fail.cold+0xa/0x1b [ 1483.840649] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1483.845745] ? netif_rx+0x6e/0x2d0 [ 1483.849330] ? __dev_queue_xmit+0x1757/0x2fe0 [ 1483.853829] __alloc_pages_nodemask+0x1ee/0x750 [ 1483.858495] ? mark_held_locks+0xb1/0x100 [ 1483.862845] ? __alloc_pages_slowpath+0x2870/0x2870 [ 1483.868003] ? lockdep_hardirqs_on+0x19b/0x5d0 [ 1483.872615] ? __dev_queue_xmit+0x1757/0x2fe0 [ 1483.877257] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1483.882402] cache_grow_begin+0x91/0x8c0 [ 1483.886471] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1483.892006] ? check_preemption_disabled+0x48/0x290 [ 1483.897027] kmem_cache_alloc_node_trace+0x655/0x720 [ 1483.902130] ? ip_finish_output2+0x95d/0x1740 [ 1483.906630] ? find_held_lock+0x35/0x130 [ 1483.910714] __kmalloc_node_track_caller+0x3d/0x80 [ 1483.915669] __kmalloc_reserve.isra.0+0x40/0xf0 [ 1483.920450] pskb_expand_head+0x154/0xe20 [ 1483.924691] ? __local_bh_enable_ip+0x15a/0x270 [ 1483.929365] ? ip_finish_output2+0x995/0x1740 [ 1483.933869] skb_prepare_for_shift+0x140/0x190 [ 1483.938460] skb_shift+0xa22/0x1a50 [ 1483.942223] tcp_sacktag_walk+0x6c0/0x1310 [ 1483.946472] tcp_sacktag_write_queue+0x171c/0x3050 [ 1483.951405] ? tcp_sacktag_walk+0x1310/0x1310 [ 1483.955944] ? __lock_is_held+0xb6/0x140 [ 1483.960012] tcp_ack+0x2ce5/0x5120 [ 1483.963559] ? tcp_fastretrans_alert+0x2550/0x2550 [ 1483.968614] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1483.974176] ? tcp_write_xmit+0x12c1/0x5230 [ 1483.978595] ? tcp_established_options+0x2ae/0x490 [ 1483.983538] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 1483.988736] ? tcp_parse_options+0x1c8/0xdc0 [ 1483.993187] ? tcp_validate_incoming+0x43e/0x16b0 [ 1483.998059] ? sched_clock+0x2e/0x50 [ 1484.001791] tcp_rcv_established+0x725/0x1f10 [ 1484.006295] ? tcp_data_queue+0x4270/0x4270 [ 1484.010625] ? __lock_is_held+0xb6/0x140 [ 1484.014693] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 1484.019732] tcp_v4_do_rcv+0x61f/0x8d0 [ 1484.023649] __release_sock+0x129/0x390 [ 1484.027654] release_sock+0x59/0x1c0 [ 1484.031364] sk_stream_wait_memory+0x590/0xe50 [ 1484.035953] ? sk_stream_kill_queues+0x520/0x520 [ 1484.040714] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1484.046249] ? do_wait_intr_irq+0x2b0/0x2b0 [ 1484.050565] ? tcp_push+0x4e2/0x6d0 [ 1484.054195] ? __check_object_size+0x3d/0x42a [ 1484.058698] tcp_sendmsg_locked+0xdec/0x3290 [ 1484.063129] ? tcp_sendpage+0x60/0x60 [ 1484.066989] ? trace_hardirqs_on+0x67/0x220 [ 1484.071324] ? lock_sock_nested+0x9a/0x120 [ 1484.075567] ? __local_bh_enable_ip+0x15a/0x270 [ 1484.080238] tcp_sendmsg+0x30/0x50 [ 1484.083957] inet_sendmsg+0x141/0x5d0 [ 1484.087767] ? ipip_gro_receive+0x100/0x100 [ 1484.092102] sock_sendmsg+0xd7/0x130 [ 1484.095818] __sys_sendto+0x262/0x380 [ 1484.099627] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1484.104302] ? kasan_check_write+0x14/0x20 [ 1484.108567] ? __sb_end_write+0xd9/0x110 [ 1484.112631] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1484.118176] ? fput+0x128/0x1a0 [ 1484.121454] ? ksys_write+0x1f1/0x2d0 [ 1484.125263] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1484.130024] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1484.134786] ? do_syscall_64+0x26/0x620 [ 1484.138769] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1484.144139] __x64_sys_sendto+0xe1/0x1a0 [ 1484.148206] do_syscall_64+0xfd/0x620 [ 1484.152006] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1484.157202] RIP: 0033:0x45aff9 [ 1484.160405] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1484.179428] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1484.187137] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1484.194418] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 18:19:53 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, 0x0, 0x0) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1484.201740] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1484.209011] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1484.216290] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000034 18:19:53 executing program 3 (fault-call:8 fault-nth:53): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1484.352709] FAULT_INJECTION: forcing a failure. [ 1484.352709] name failslab, interval 1, probability 0, space 0, times 0 [ 1484.364227] Bluetooth: hci0: command 0x1003 tx timeout [ 1484.369713] Bluetooth: hci0: sending frame failed (-49) [ 1484.376162] CPU: 0 PID: 14915 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1484.384175] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1484.393543] Call Trace: [ 1484.396146] dump_stack+0x197/0x210 [ 1484.399808] should_fail.cold+0xa/0x1b [ 1484.403710] ? tcp_v4_do_rcv+0x61f/0x8d0 [ 1484.407805] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1484.412923] ? sock_sendmsg+0xd7/0x130 [ 1484.416821] ? __sys_sendto+0x262/0x380 [ 1484.420800] ? __x64_sys_sendto+0xe1/0x1a0 [ 1484.423787] Bluetooth: hci1: command 0x1003 tx timeout [ 1484.425152] ? do_syscall_64+0xfd/0x620 [ 1484.425172] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1484.425198] __should_failslab+0x121/0x190 [ 1484.425217] should_failslab+0x9/0x14 [ 1484.430580] Bluetooth: hci1: sending frame failed (-49) [ 1484.434501] kmem_cache_alloc_node_trace+0x5a/0x720 [ 1484.434525] __kmalloc_node_track_caller+0x3d/0x80 [ 1484.434546] __kmalloc_reserve.isra.0+0x40/0xf0 [ 1484.434562] pskb_expand_head+0x154/0xe20 [ 1484.434578] ? skb_free_head+0x9e/0xc0 [ 1484.434603] skb_prepare_for_shift+0x140/0x190 [ 1484.480688] skb_shift+0xa22/0x1a50 [ 1484.484355] tcp_sacktag_walk+0x6c0/0x1310 [ 1484.488623] tcp_sacktag_write_queue+0x171c/0x3050 [ 1484.493592] ? tcp_sacktag_walk+0x1310/0x1310 [ 1484.498123] ? __lock_is_held+0xb6/0x140 [ 1484.502205] tcp_ack+0x2ce5/0x5120 [ 1484.505790] ? tcp_fastretrans_alert+0x2550/0x2550 [ 1484.510750] ? __lock_acquire+0x6ee/0x49c0 [ 1484.515095] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1484.520656] ? tcp_write_xmit+0x12c1/0x5230 [ 1484.524994] ? tcp_established_options+0x2ae/0x490 [ 1484.529948] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 1484.535324] ? tcp_validate_incoming+0x43e/0x16b0 [ 1484.540422] ? sched_clock+0x2e/0x50 [ 1484.544188] tcp_rcv_established+0x725/0x1f10 [ 1484.548701] ? tcp_data_queue+0x4270/0x4270 [ 1484.553021] ? __local_bh_enable_ip+0x15a/0x270 [ 1484.557764] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 1484.562802] tcp_v4_do_rcv+0x61f/0x8d0 [ 1484.566719] __release_sock+0x129/0x390 [ 1484.570718] release_sock+0x59/0x1c0 [ 1484.574432] sk_stream_wait_memory+0x590/0xe50 [ 1484.579087] ? sk_stream_kill_queues+0x520/0x520 [ 1484.583876] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1484.589438] ? do_wait_intr_irq+0x2b0/0x2b0 [ 1484.593763] ? tcp_push+0x4e2/0x6d0 [ 1484.597544] ? __check_object_size+0x3d/0x42a [ 1484.602075] tcp_sendmsg_locked+0xdec/0x3290 [ 1484.606536] ? tcp_sendpage+0x60/0x60 [ 1484.610359] ? trace_hardirqs_on+0x67/0x220 [ 1484.614697] ? lock_sock_nested+0x9a/0x120 [ 1484.618951] ? __local_bh_enable_ip+0x15a/0x270 [ 1484.623643] tcp_sendmsg+0x30/0x50 [ 1484.627220] inet_sendmsg+0x141/0x5d0 [ 1484.631248] ? ipip_gro_receive+0x100/0x100 [ 1484.635578] sock_sendmsg+0xd7/0x130 [ 1484.639295] __sys_sendto+0x262/0x380 [ 1484.643215] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1484.647891] ? kasan_check_write+0x14/0x20 [ 1484.652166] ? __sb_end_write+0xd9/0x110 [ 1484.656251] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1484.661795] ? fput+0x128/0x1a0 [ 1484.665096] ? ksys_write+0x1f1/0x2d0 [ 1484.668924] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1484.673702] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1484.678476] ? do_syscall_64+0x26/0x620 [ 1484.682459] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1484.687835] __x64_sys_sendto+0xe1/0x1a0 [ 1484.691913] do_syscall_64+0xfd/0x620 [ 1484.695723] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1484.700909] RIP: 0033:0x45aff9 [ 1484.704107] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1484.723209] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1484.730960] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1484.738275] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1484.745555] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1484.752829] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1484.760175] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000035 [ 1485.703786] Bluetooth: hci2: command 0x1003 tx timeout [ 1485.709266] Bluetooth: hci3: command 0x1003 tx timeout [ 1485.709357] Bluetooth: hci2: sending frame failed (-49) [ 1485.720147] Bluetooth: hci3: sending frame failed (-49) [ 1486.423840] Bluetooth: hci0: command 0x1001 tx timeout [ 1486.429241] Bluetooth: hci0: sending frame failed (-49) [ 1486.503844] Bluetooth: hci1: command 0x1001 tx timeout [ 1486.509325] Bluetooth: hci1: sending frame failed (-49) [ 1487.794000] Bluetooth: hci3: command 0x1001 tx timeout [ 1487.799415] Bluetooth: hci2: command 0x1001 tx timeout [ 1487.799464] Bluetooth: hci3: sending frame failed (-49) [ 1487.805020] Bluetooth: hci2: sending frame failed (-49) [ 1488.503812] Bluetooth: hci0: command 0x1009 tx timeout [ 1488.593846] Bluetooth: hci1: command 0x1009 tx timeout [ 1489.863821] Bluetooth: hci3: command 0x1009 tx timeout [ 1489.863922] Bluetooth: hci2: command 0x1009 tx timeout 18:20:01 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0xfffffdfd) 18:20:01 executing program 3 (fault-call:8 fault-nth:54): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) 18:20:01 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, 0x0, 0x0) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:20:01 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5421, &(0x7f0000000080)=0xffffffdb) [ 1492.577027] FAULT_INJECTION: forcing a failure. [ 1492.577027] name failslab, interval 1, probability 0, space 0, times 0 [ 1492.589310] CPU: 1 PID: 14920 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1492.597230] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1492.606613] Call Trace: [ 1492.609236] dump_stack+0x197/0x210 [ 1492.612908] should_fail.cold+0xa/0x1b [ 1492.616827] ? tcp_v4_do_rcv+0x61f/0x8d0 [ 1492.620908] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1492.626026] ? sock_sendmsg+0xd7/0x130 [ 1492.629942] ? __sys_sendto+0x262/0x380 [ 1492.633946] ? __x64_sys_sendto+0xe1/0x1a0 [ 1492.638307] ? do_syscall_64+0xfd/0x620 [ 1492.642292] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1492.647673] __should_failslab+0x121/0x190 [ 1492.651917] should_failslab+0x9/0x14 [ 1492.655732] kmem_cache_alloc_node_trace+0x5a/0x720 [ 1492.660772] __kmalloc_node_track_caller+0x3d/0x80 [ 1492.665779] __kmalloc_reserve.isra.0+0x40/0xf0 [ 1492.670482] pskb_expand_head+0x154/0xe20 [ 1492.674663] ? skb_free_head+0x9e/0xc0 [ 1492.678562] skb_prepare_for_shift+0x140/0x190 [ 1492.683137] skb_shift+0xa22/0x1a50 [ 1492.686801] tcp_sacktag_walk+0x6c0/0x1310 [ 1492.691058] tcp_sacktag_write_queue+0x171c/0x3050 [ 1492.696156] ? tcp_sacktag_walk+0x1310/0x1310 [ 1492.700675] ? __lock_is_held+0xb6/0x140 [ 1492.704761] tcp_ack+0x2ce5/0x5120 [ 1492.708324] ? tcp_fastretrans_alert+0x2550/0x2550 [ 1492.713259] ? __lock_acquire+0x6ee/0x49c0 [ 1492.717492] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1492.723151] ? tcp_write_xmit+0x12c1/0x5230 [ 1492.727589] ? tcp_established_options+0x2ae/0x490 [ 1492.732525] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 1492.737733] ? tcp_validate_incoming+0x43e/0x16b0 [ 1492.742694] ? sched_clock+0x2e/0x50 [ 1492.746424] tcp_rcv_established+0x725/0x1f10 [ 1492.750933] ? tcp_data_queue+0x4270/0x4270 [ 1492.755275] ? __local_bh_enable_ip+0x15a/0x270 [ 1492.760062] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 1492.765109] tcp_v4_do_rcv+0x61f/0x8d0 [ 1492.769016] __release_sock+0x129/0x390 [ 1492.773109] release_sock+0x59/0x1c0 [ 1492.776852] sk_stream_wait_memory+0x590/0xe50 [ 1492.781464] ? sk_stream_kill_queues+0x520/0x520 [ 1492.786230] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1492.791780] ? do_wait_intr_irq+0x2b0/0x2b0 [ 1492.796124] ? tcp_push+0x4e2/0x6d0 [ 1492.799763] ? __check_object_size+0x3d/0x42a [ 1492.804288] tcp_sendmsg_locked+0xdec/0x3290 [ 1492.808780] ? tcp_sendpage+0x60/0x60 [ 1492.812668] ? trace_hardirqs_on+0x67/0x220 [ 1492.817007] ? lock_sock_nested+0x9a/0x120 [ 1492.821253] ? __local_bh_enable_ip+0x15a/0x270 [ 1492.825933] tcp_sendmsg+0x30/0x50 [ 1492.829509] inet_sendmsg+0x141/0x5d0 [ 1492.833311] ? ipip_gro_receive+0x100/0x100 [ 1492.837630] sock_sendmsg+0xd7/0x130 [ 1492.841338] __sys_sendto+0x262/0x380 [ 1492.845147] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1492.849947] ? kasan_check_write+0x14/0x20 [ 1492.854220] ? __sb_end_write+0xd9/0x110 [ 1492.858299] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1492.863850] ? fput+0x128/0x1a0 [ 1492.867211] ? ksys_write+0x1f1/0x2d0 [ 1492.871014] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1492.875789] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1492.880666] ? do_syscall_64+0x26/0x620 [ 1492.884658] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1492.890042] __x64_sys_sendto+0xe1/0x1a0 [ 1492.894125] do_syscall_64+0xfd/0x620 [ 1492.897954] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1492.903165] RIP: 0033:0x45aff9 [ 1492.906364] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1492.925371] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1492.933327] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1492.940613] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1492.947996] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1492.955374] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1492.962776] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000036 18:20:02 executing program 3 (fault-call:8 fault-nth:55): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1493.061365] FAULT_INJECTION: forcing a failure. [ 1493.061365] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1493.073353] CPU: 0 PID: 14932 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1493.081145] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1493.090498] Call Trace: [ 1493.093091] dump_stack+0x197/0x210 [ 1493.096724] should_fail.cold+0xa/0x1b [ 1493.100621] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1493.105744] __alloc_pages_nodemask+0x1ee/0x750 [ 1493.110548] ? save_stack+0xa9/0xd0 [ 1493.114191] ? __alloc_pages_slowpath+0x2870/0x2870 [ 1493.119227] ? skb_release_data+0x619/0x8d0 [ 1493.123556] ? skb_release_all+0x4d/0x60 [ 1493.127616] ? __kfree_skb+0x16/0x30 [ 1493.131336] ? tcp_v4_do_rcv+0x61f/0x8d0 [ 1493.135410] ? __release_sock+0x129/0x390 [ 1493.139568] ? release_sock+0x59/0x1c0 [ 1493.143470] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1493.148616] ? sock_sendmsg+0xd7/0x130 [ 1493.152514] cache_grow_begin+0x91/0x8c0 [ 1493.156589] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1493.162135] ? check_preemption_disabled+0x48/0x290 [ 1493.167164] kmem_cache_alloc_node_trace+0x655/0x720 [ 1493.172344] __kmalloc_node_track_caller+0x3d/0x80 [ 1493.177293] __kmalloc_reserve.isra.0+0x40/0xf0 [ 1493.181970] pskb_expand_head+0x154/0xe20 [ 1493.186138] ? skb_free_head+0x9e/0xc0 [ 1493.190052] skb_prepare_for_shift+0x140/0x190 [ 1493.194645] skb_shift+0xa22/0x1a50 [ 1493.198293] tcp_sacktag_walk+0x6c0/0x1310 [ 1493.202539] tcp_sacktag_write_queue+0x171c/0x3050 [ 1493.207474] ? tcp_sacktag_walk+0x1310/0x1310 [ 1493.212072] ? __lock_is_held+0xb6/0x140 [ 1493.216262] tcp_ack+0x2ce5/0x5120 [ 1493.219837] ? tcp_fastretrans_alert+0x2550/0x2550 [ 1493.224872] ? __lock_acquire+0x6ee/0x49c0 [ 1493.229112] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1493.234658] ? tcp_write_xmit+0x12c1/0x5230 [ 1493.239003] ? tcp_established_options+0x2ae/0x490 [ 1493.243949] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 1493.249154] ? tcp_validate_incoming+0x43e/0x16b0 [ 1493.254012] ? sched_clock+0x2e/0x50 [ 1493.257741] tcp_rcv_established+0x725/0x1f10 [ 1493.262245] ? tcp_data_queue+0x4270/0x4270 [ 1493.266563] ? __local_bh_enable_ip+0x15a/0x270 [ 1493.271251] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 1493.276466] tcp_v4_do_rcv+0x61f/0x8d0 [ 1493.280367] __release_sock+0x129/0x390 [ 1493.284410] release_sock+0x59/0x1c0 [ 1493.288162] sk_stream_wait_memory+0x590/0xe50 [ 1493.292754] ? sk_stream_kill_queues+0x520/0x520 [ 1493.297615] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1493.303156] ? do_wait_intr_irq+0x2b0/0x2b0 [ 1493.307484] ? tcp_push+0x4e2/0x6d0 [ 1493.311112] ? __check_object_size+0x3d/0x42a [ 1493.315610] tcp_sendmsg_locked+0xdec/0x3290 [ 1493.320034] ? tcp_sendpage+0x60/0x60 [ 1493.323926] ? trace_hardirqs_on+0x67/0x220 [ 1493.328248] ? lock_sock_nested+0x9a/0x120 [ 1493.332496] ? __local_bh_enable_ip+0x15a/0x270 [ 1493.337174] tcp_sendmsg+0x30/0x50 [ 1493.340714] inet_sendmsg+0x141/0x5d0 [ 1493.344533] ? ipip_gro_receive+0x100/0x100 [ 1493.348886] sock_sendmsg+0xd7/0x130 [ 1493.352619] __sys_sendto+0x262/0x380 [ 1493.356431] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1493.361105] ? kasan_check_write+0x14/0x20 [ 1493.365349] ? __sb_end_write+0xd9/0x110 [ 1493.369419] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1493.375174] ? fput+0x128/0x1a0 [ 1493.378576] ? ksys_write+0x1f1/0x2d0 [ 1493.382386] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1493.387249] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1493.392005] ? do_syscall_64+0x26/0x620 [ 1493.395977] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1493.401359] __x64_sys_sendto+0xe1/0x1a0 [ 1493.405431] do_syscall_64+0xfd/0x620 [ 1493.409233] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1493.414423] RIP: 0033:0x45aff9 [ 1493.417686] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1493.436594] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1493.444411] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1493.451682] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 18:20:02 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, 0x0, 0x0) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1493.458954] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1493.466290] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1493.473568] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000037 18:20:02 executing program 3 (fault-call:8 fault-nth:56): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1493.587713] FAULT_INJECTION: forcing a failure. [ 1493.587713] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1493.599549] CPU: 1 PID: 14937 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1493.607456] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1493.616816] Call Trace: [ 1493.619467] dump_stack+0x197/0x210 [ 1493.623118] should_fail.cold+0xa/0x1b [ 1493.627029] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1493.632174] __alloc_pages_nodemask+0x1ee/0x750 [ 1493.636892] ? save_stack+0xa9/0xd0 [ 1493.640548] ? __alloc_pages_slowpath+0x2870/0x2870 [ 1493.645595] ? skb_release_data+0x619/0x8d0 [ 1493.649929] ? skb_release_all+0x4d/0x60 [ 1493.653997] ? __kfree_skb+0x16/0x30 [ 1493.657743] ? tcp_v4_do_rcv+0x61f/0x8d0 [ 1493.661840] ? __release_sock+0x129/0x390 [ 1493.665995] ? release_sock+0x59/0x1c0 [ 1493.669949] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1493.675079] ? sock_sendmsg+0xd7/0x130 [ 1493.678984] cache_grow_begin+0x91/0x8c0 [ 1493.683049] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1493.688605] ? check_preemption_disabled+0x48/0x290 [ 1493.693648] kmem_cache_alloc_node_trace+0x655/0x720 [ 1493.698786] __kmalloc_node_track_caller+0x3d/0x80 [ 1493.703742] __kmalloc_reserve.isra.0+0x40/0xf0 [ 1493.708529] pskb_expand_head+0x154/0xe20 [ 1493.712884] ? skb_free_head+0x9e/0xc0 [ 1493.716790] skb_prepare_for_shift+0x140/0x190 [ 1493.721498] skb_shift+0xa22/0x1a50 [ 1493.725160] tcp_sacktag_walk+0x6c0/0x1310 [ 1493.729414] tcp_sacktag_write_queue+0x171c/0x3050 [ 1493.734485] ? tcp_sacktag_walk+0x1310/0x1310 [ 1493.739045] ? __lock_is_held+0xb6/0x140 [ 1493.743128] tcp_ack+0x2ce5/0x5120 [ 1493.746685] ? tcp_fastretrans_alert+0x2550/0x2550 [ 1493.751624] ? __lock_acquire+0x6ee/0x49c0 [ 1493.755885] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1493.761445] ? tcp_write_xmit+0x12c1/0x5230 [ 1493.765782] ? tcp_established_options+0x2ae/0x490 [ 1493.770851] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 1493.776088] ? tcp_validate_incoming+0x43e/0x16b0 [ 1493.780961] ? sched_clock+0x2e/0x50 [ 1493.784709] tcp_rcv_established+0x725/0x1f10 [ 1493.789227] ? tcp_data_queue+0x4270/0x4270 [ 1493.793555] ? __local_bh_enable_ip+0x15a/0x270 [ 1493.798251] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 1493.803450] tcp_v4_do_rcv+0x61f/0x8d0 [ 1493.807900] __release_sock+0x129/0x390 [ 1493.811883] release_sock+0x59/0x1c0 [ 1493.815621] sk_stream_wait_memory+0x590/0xe50 [ 1493.820218] ? sk_stream_kill_queues+0x520/0x520 [ 1493.824996] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1493.830555] ? do_wait_intr_irq+0x2b0/0x2b0 [ 1493.834894] ? tcp_push+0x4e2/0x6d0 [ 1493.838539] ? __check_object_size+0x3d/0x42a [ 1493.843174] tcp_sendmsg_locked+0xdec/0x3290 [ 1493.847617] ? tcp_sendpage+0x60/0x60 [ 1493.851427] ? trace_hardirqs_on+0x67/0x220 [ 1493.855761] ? lock_sock_nested+0x9a/0x120 [ 1493.860042] ? __local_bh_enable_ip+0x15a/0x270 [ 1493.864748] tcp_sendmsg+0x30/0x50 [ 1493.868300] inet_sendmsg+0x141/0x5d0 [ 1493.872105] ? ipip_gro_receive+0x100/0x100 [ 1493.876545] sock_sendmsg+0xd7/0x130 [ 1493.880294] __sys_sendto+0x262/0x380 [ 1493.884129] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1493.888817] ? kasan_check_write+0x14/0x20 [ 1493.893083] ? __sb_end_write+0xd9/0x110 [ 1493.897168] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1493.902729] ? fput+0x128/0x1a0 [ 1493.906023] ? ksys_write+0x1f1/0x2d0 [ 1493.909850] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1493.914643] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1493.919417] ? do_syscall_64+0x26/0x620 [ 1493.923410] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1493.928795] __x64_sys_sendto+0xe1/0x1a0 [ 1493.932874] do_syscall_64+0xfd/0x620 [ 1493.936699] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1493.942002] RIP: 0033:0x45aff9 [ 1493.945210] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1493.964134] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1493.972078] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1493.979352] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1493.986618] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1493.993892] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1494.001173] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000038 18:20:03 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x17, &(0x7f0000000000)=0xfffffffd, 0x4) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:20:03 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$KDADDIO(r0, 0x400455c8, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:20:03 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$KDADDIO(r0, 0x400455c8, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:20:03 executing program 3 (fault-call:8 fault-nth:57): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) 18:20:03 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$KDADDIO(r0, 0x400455c8, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) [ 1494.229646] FAULT_INJECTION: forcing a failure. [ 1494.229646] name failslab, interval 1, probability 0, space 0, times 0 [ 1494.242097] CPU: 1 PID: 14952 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1494.249926] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1494.259302] Call Trace: [ 1494.261928] dump_stack+0x197/0x210 [ 1494.265601] should_fail.cold+0xa/0x1b [ 1494.269517] ? tcp_v4_do_rcv+0x61f/0x8d0 [ 1494.273609] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1494.278745] ? sock_sendmsg+0xd7/0x130 [ 1494.282659] ? __sys_sendto+0x262/0x380 [ 1494.286780] ? __x64_sys_sendto+0xe1/0x1a0 [ 1494.291146] ? do_syscall_64+0xfd/0x620 [ 1494.295143] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1494.300543] __should_failslab+0x121/0x190 [ 1494.304932] should_failslab+0x9/0x14 [ 1494.308765] kmem_cache_alloc_node_trace+0x5a/0x720 [ 1494.313828] __kmalloc_node_track_caller+0x3d/0x80 [ 1494.318789] __kmalloc_reserve.isra.0+0x40/0xf0 [ 1494.323490] pskb_expand_head+0x154/0xe20 [ 1494.327674] ? skb_free_head+0x9e/0xc0 [ 1494.331582] skb_prepare_for_shift+0x140/0x190 [ 1494.336179] skb_shift+0xa22/0x1a50 [ 1494.339851] tcp_sacktag_walk+0x6c0/0x1310 [ 1494.344127] tcp_sacktag_write_queue+0x171c/0x3050 [ 1494.349103] ? tcp_sacktag_walk+0x1310/0x1310 [ 1494.353627] ? __lock_is_held+0xb6/0x140 [ 1494.357724] tcp_ack+0x2ce5/0x5120 [ 1494.361305] ? tcp_fastretrans_alert+0x2550/0x2550 [ 1494.366381] ? __lock_acquire+0x6ee/0x49c0 [ 1494.370781] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1494.376358] ? tcp_write_xmit+0x12c1/0x5230 [ 1494.380835] ? tcp_established_options+0x2ae/0x490 [ 1494.385790] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 1494.393276] ? tcp_validate_incoming+0x43e/0x16b0 [ 1494.398315] ? sched_clock+0x2e/0x50 [ 1494.402060] tcp_rcv_established+0x725/0x1f10 [ 1494.406586] ? tcp_data_queue+0x4270/0x4270 [ 1494.410936] ? __local_bh_enable_ip+0x15a/0x270 [ 1494.415635] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 1494.420684] tcp_v4_do_rcv+0x61f/0x8d0 [ 1494.424589] __release_sock+0x129/0x390 [ 1494.428588] release_sock+0x59/0x1c0 [ 1494.432309] sk_stream_wait_memory+0x590/0xe50 [ 1494.436924] ? sk_stream_kill_queues+0x520/0x520 [ 1494.441706] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1494.447287] ? do_wait_intr_irq+0x2b0/0x2b0 [ 1494.451733] ? tcp_push+0x4e2/0x6d0 [ 1494.455379] ? __check_object_size+0x3d/0x42a [ 1494.459895] tcp_sendmsg_locked+0xdec/0x3290 [ 1494.464363] ? tcp_sendpage+0x60/0x60 [ 1494.468179] ? trace_hardirqs_on+0x67/0x220 [ 1494.472520] ? lock_sock_nested+0x9a/0x120 [ 1494.476777] ? __local_bh_enable_ip+0x15a/0x270 [ 1494.481598] tcp_sendmsg+0x30/0x50 [ 1494.485169] inet_sendmsg+0x141/0x5d0 [ 1494.488990] ? ipip_gro_receive+0x100/0x100 [ 1494.493327] sock_sendmsg+0xd7/0x130 [ 1494.497048] __sys_sendto+0x262/0x380 [ 1494.500870] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1494.505575] ? kasan_check_write+0x14/0x20 [ 1494.509835] ? __sb_end_write+0xd9/0x110 [ 1494.513913] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1494.519467] ? fput+0x128/0x1a0 [ 1494.522756] ? ksys_write+0x1f1/0x2d0 [ 1494.526580] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1494.531356] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1494.536251] ? do_syscall_64+0x26/0x620 [ 1494.540242] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1494.545634] __x64_sys_sendto+0xe1/0x1a0 [ 1494.549723] do_syscall_64+0xfd/0x620 [ 1494.553559] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1494.558771] RIP: 0033:0x45aff9 [ 1494.561972] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1494.580979] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1494.588709] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1494.595998] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1494.603283] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1494.610555] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1494.617825] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000039 [ 1494.663740] Bluetooth: hci0: command 0x1003 tx timeout [ 1494.663838] Bluetooth: hci1: command 0x1003 tx timeout [ 1494.669148] Bluetooth: hci0: sending frame failed (-49) [ 1494.680754] Bluetooth: hci1: sending frame failed (-49) [ 1496.193723] Bluetooth: hci2: command 0x1003 tx timeout [ 1496.199204] Bluetooth: hci2: sending frame failed (-49) [ 1496.743758] Bluetooth: hci1: command 0x1001 tx timeout [ 1496.749175] Bluetooth: hci1: sending frame failed (-49) [ 1496.754892] Bluetooth: hci0: command 0x1001 tx timeout [ 1496.760324] Bluetooth: hci0: sending frame failed (-49) [ 1498.263806] Bluetooth: hci2: command 0x1001 tx timeout [ 1498.269364] Bluetooth: hci2: sending frame failed (-49) [ 1498.823815] Bluetooth: hci1: command 0x1009 tx timeout [ 1498.823860] Bluetooth: hci0: command 0x1009 tx timeout [ 1500.343805] Bluetooth: hci2: command 0x1009 tx timeout 18:20:12 executing program 2: ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup3(r0, r1, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000080)) 18:20:12 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:20:12 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5424, &(0x7f0000000080)=0xfffffdfd) 18:20:12 executing program 3 (fault-call:8 fault-nth:58): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) 18:20:12 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0xffffffdb) 18:20:12 executing program 2: ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup3(r0, r1, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000080)) [ 1502.818972] FAULT_INJECTION: forcing a failure. [ 1502.818972] name failslab, interval 1, probability 0, space 0, times 0 [ 1502.851292] CPU: 0 PID: 14963 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1502.859147] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1502.868517] Call Trace: [ 1502.871136] dump_stack+0x197/0x210 [ 1502.874808] should_fail.cold+0xa/0x1b [ 1502.878731] ? tcp_v4_do_rcv+0x61f/0x8d0 [ 1502.882939] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1502.888062] ? sock_sendmsg+0xd7/0x130 [ 1502.891967] ? __sys_sendto+0x262/0x380 [ 1502.895962] ? __x64_sys_sendto+0xe1/0x1a0 [ 1502.900305] ? do_syscall_64+0xfd/0x620 [ 1502.904300] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1502.909715] __should_failslab+0x121/0x190 [ 1502.913975] should_failslab+0x9/0x14 18:20:12 executing program 2: ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup3(r0, r1, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000080)) [ 1502.917804] kmem_cache_alloc_node_trace+0x5a/0x720 [ 1502.922969] __kmalloc_node_track_caller+0x3d/0x80 [ 1502.927933] __kmalloc_reserve.isra.0+0x40/0xf0 [ 1502.932629] pskb_expand_head+0x154/0xe20 [ 1502.936805] ? skb_free_head+0x9e/0xc0 [ 1502.940843] skb_prepare_for_shift+0x140/0x190 [ 1502.945442] skb_shift+0xa22/0x1a50 [ 1502.949104] tcp_sacktag_walk+0x6c0/0x1310 [ 1502.953375] tcp_sacktag_write_queue+0x171c/0x3050 [ 1502.958350] ? tcp_sacktag_walk+0x1310/0x1310 [ 1502.962855] ? __lock_is_held+0xb6/0x140 [ 1502.966929] tcp_ack+0x2ce5/0x5120 [ 1502.970491] ? tcp_fastretrans_alert+0x2550/0x2550 [ 1502.975430] ? __lock_acquire+0x6ee/0x49c0 [ 1502.979740] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1502.985285] ? tcp_write_xmit+0x12c1/0x5230 [ 1502.989604] ? tcp_established_options+0x2ae/0x490 [ 1502.994535] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 1502.999841] ? tcp_validate_incoming+0x43e/0x16b0 [ 1503.004676] ? sched_clock+0x2e/0x50 [ 1503.008387] tcp_rcv_established+0x725/0x1f10 [ 1503.012879] ? tcp_data_queue+0x4270/0x4270 [ 1503.017202] ? __local_bh_enable_ip+0x15a/0x270 [ 1503.021876] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 1503.026927] tcp_v4_do_rcv+0x61f/0x8d0 [ 1503.030826] __release_sock+0x129/0x390 [ 1503.034812] release_sock+0x59/0x1c0 [ 1503.038535] sk_stream_wait_memory+0x590/0xe50 [ 1503.043121] ? sk_stream_kill_queues+0x520/0x520 [ 1503.047877] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1503.053408] ? do_wait_intr_irq+0x2b0/0x2b0 [ 1503.057729] ? tcp_push+0x4e2/0x6d0 [ 1503.061399] ? __check_object_size+0x3d/0x42a [ 1503.065906] tcp_sendmsg_locked+0xdec/0x3290 [ 1503.070338] ? tcp_sendpage+0x60/0x60 [ 1503.074144] ? trace_hardirqs_on+0x67/0x220 [ 1503.078467] ? lock_sock_nested+0x9a/0x120 [ 1503.082709] ? __local_bh_enable_ip+0x15a/0x270 [ 1503.087388] tcp_sendmsg+0x30/0x50 [ 1503.090927] inet_sendmsg+0x141/0x5d0 [ 1503.094728] ? ipip_gro_receive+0x100/0x100 [ 1503.099051] sock_sendmsg+0xd7/0x130 [ 1503.102862] __sys_sendto+0x262/0x380 [ 1503.106665] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1503.111335] ? kasan_check_write+0x14/0x20 [ 1503.115582] ? __sb_end_write+0xd9/0x110 [ 1503.119649] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1503.125188] ? fput+0x128/0x1a0 [ 1503.128487] ? ksys_write+0x1f1/0x2d0 [ 1503.132302] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1503.137063] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1503.141835] ? do_syscall_64+0x26/0x620 [ 1503.145815] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1503.151180] __x64_sys_sendto+0xe1/0x1a0 [ 1503.155254] do_syscall_64+0xfd/0x620 [ 1503.159061] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1503.164247] RIP: 0033:0x45aff9 [ 1503.167528] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1503.186490] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1503.194217] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1503.201495] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1503.208773] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1503.216052] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1503.223318] R13: 0000000000000992 R14: 00000000004cacca R15: 000000000000003a 18:20:13 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$VIDIOC_TRY_EXT_CTRLS(r3, 0xc0205649, &(0x7f0000000140)={0x9a0000, 0x66b, 0xffffffff, 0xffffffffffffffff, 0x0, &(0x7f0000000100)={0x980922, 0x8, [], @p_u8=&(0x7f0000000000)=0x9}}) getsockopt$bt_BT_VOICE(r4, 0x112, 0xb, &(0x7f0000000180)=0x69, &(0x7f00000001c0)=0x2) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:20:13 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:20:13 executing program 3 (fault-call:8 fault-nth:59): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) 18:20:13 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1504.737393] FAULT_INJECTION: forcing a failure. [ 1504.737393] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1504.749259] CPU: 1 PID: 14985 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1504.757070] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1504.766573] Call Trace: [ 1504.769189] dump_stack+0x197/0x210 [ 1504.772845] should_fail.cold+0xa/0x1b [ 1504.776880] ? __kmalloc_reserve.isra.0+0x40/0xf0 [ 1504.781756] ? fault_create_debugfs_attr+0x1e0/0x1e0 18:20:14 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) [ 1504.786897] ? mark_held_locks+0x100/0x100 [ 1504.791254] __alloc_pages_nodemask+0x1ee/0x750 [ 1504.795974] ? __lock_acquire+0x6ee/0x49c0 [ 1504.800240] ? __alloc_pages_slowpath+0x2870/0x2870 [ 1504.805303] cache_grow_begin+0x91/0x8c0 [ 1504.809393] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1504.815061] ? check_preemption_disabled+0x48/0x290 [ 1504.820093] kmem_cache_alloc_node+0x64d/0x710 [ 1504.824684] ? __might_fault+0x12b/0x1e0 [ 1504.828774] __alloc_skb+0xd5/0x5f0 [ 1504.832428] ? skb_trim+0x190/0x190 18:20:14 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) [ 1504.836079] ? copyin+0xb5/0x100 [ 1504.839491] sk_stream_alloc_skb+0xc8/0x860 [ 1504.843838] tcp_sendmsg_locked+0xc9d/0x3290 [ 1504.848402] ? tcp_sendpage+0x60/0x60 [ 1504.852228] ? trace_hardirqs_on+0x67/0x220 [ 1504.856595] ? lock_sock_nested+0x9a/0x120 [ 1504.860854] ? __local_bh_enable_ip+0x15a/0x270 [ 1504.865554] tcp_sendmsg+0x30/0x50 [ 1504.869119] inet_sendmsg+0x141/0x5d0 [ 1504.872949] ? ipip_gro_receive+0x100/0x100 [ 1504.877299] sock_sendmsg+0xd7/0x130 [ 1504.881021] __sys_sendto+0x262/0x380 18:20:14 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) [ 1504.884850] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1504.889545] ? kasan_check_write+0x14/0x20 [ 1504.893822] ? __sb_end_write+0xd9/0x110 [ 1504.897915] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1504.903563] ? fput+0x128/0x1a0 [ 1504.906872] ? ksys_write+0x1f1/0x2d0 [ 1504.910723] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1504.915511] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1504.920297] ? do_syscall_64+0x26/0x620 [ 1504.924400] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1504.929787] __x64_sys_sendto+0xe1/0x1a0 [ 1504.933878] do_syscall_64+0xfd/0x620 [ 1504.937704] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1504.942917] RIP: 0033:0x45aff9 [ 1504.946125] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1504.965047] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1504.972892] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1504.980184] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1504.987475] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1504.994776] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1505.002064] R13: 0000000000000992 R14: 00000000004cacca R15: 000000000000003b [ 1505.009763] Bluetooth: hci1: command 0x1003 tx timeout [ 1505.023920] Bluetooth: hci0: command 0x1003 tx timeout [ 1505.025719] Bluetooth: hci1: sending frame failed (-49) [ 1505.034740] Bluetooth: hci0: sending frame failed (-49) [ 1506.823732] Bluetooth: hci2: command 0x1003 tx timeout [ 1506.829145] Bluetooth: hci2: sending frame failed (-49) [ 1507.063771] Bluetooth: hci1: command 0x1001 tx timeout [ 1507.069200] Bluetooth: hci1: sending frame failed (-49) [ 1507.074674] Bluetooth: hci0: command 0x1001 tx timeout [ 1507.080093] Bluetooth: hci0: sending frame failed (-49) [ 1508.903761] Bluetooth: hci2: command 0x1001 tx timeout [ 1508.909221] Bluetooth: hci2: sending frame failed (-49) [ 1509.143808] Bluetooth: hci1: command 0x1009 tx timeout [ 1509.143815] Bluetooth: hci0: command 0x1009 tx timeout [ 1510.983850] Bluetooth: hci2: command 0x1009 tx timeout 18:20:22 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5425, &(0x7f0000000080)=0xfffffdfd) 18:20:22 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:20:22 executing program 3 (fault-call:8 fault-nth:60): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) 18:20:22 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:20:22 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5424, &(0x7f0000000080)=0xffffffdb) [ 1513.059139] FAULT_INJECTION: forcing a failure. [ 1513.059139] name failslab, interval 1, probability 0, space 0, times 0 [ 1513.086010] CPU: 0 PID: 15003 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1513.093871] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1513.103339] Call Trace: [ 1513.105945] dump_stack+0x197/0x210 [ 1513.109569] should_fail.cold+0xa/0x1b [ 1513.113450] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1513.118555] ? lock_downgrade+0x880/0x880 [ 1513.122712] __should_failslab+0x121/0x190 [ 1513.126940] should_failslab+0x9/0x14 [ 1513.130740] kmem_cache_alloc_node_trace+0x274/0x720 [ 1513.135846] ? __alloc_skb+0xd5/0x5f0 [ 1513.139652] __kmalloc_node_track_caller+0x3d/0x80 [ 1513.144626] __kmalloc_reserve.isra.0+0x40/0xf0 [ 1513.149333] __alloc_skb+0x10b/0x5f0 [ 1513.153050] ? skb_trim+0x190/0x190 [ 1513.156687] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1513.162261] sk_stream_alloc_skb+0xc8/0x860 [ 1513.166578] tcp_sendmsg_locked+0xc9d/0x3290 [ 1513.171012] ? tcp_sendpage+0x60/0x60 [ 1513.174827] ? trace_hardirqs_on+0x67/0x220 [ 1513.179140] ? lock_sock_nested+0x9a/0x120 [ 1513.183382] ? __local_bh_enable_ip+0x15a/0x270 [ 1513.188053] tcp_sendmsg+0x30/0x50 [ 1513.191584] inet_sendmsg+0x141/0x5d0 [ 1513.195377] ? ipip_gro_receive+0x100/0x100 [ 1513.199690] sock_sendmsg+0xd7/0x130 [ 1513.203405] __sys_sendto+0x262/0x380 [ 1513.207211] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1513.211874] ? kasan_check_write+0x14/0x20 [ 1513.216107] ? __sb_end_write+0xd9/0x110 [ 1513.220291] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1513.225831] ? fput+0x128/0x1a0 [ 1513.229118] ? ksys_write+0x1f1/0x2d0 [ 1513.232928] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1513.237677] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1513.242431] ? do_syscall_64+0x26/0x620 [ 1513.246408] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1513.251766] __x64_sys_sendto+0xe1/0x1a0 [ 1513.255837] do_syscall_64+0xfd/0x620 [ 1513.259749] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1513.264950] RIP: 0033:0x45aff9 [ 1513.268156] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1513.287070] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1513.294781] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1513.302104] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1513.309373] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1513.316644] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1513.323925] R13: 0000000000000992 R14: 00000000004cacca R15: 000000000000003c 18:20:24 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x14) ioctl$KDADDIO(r0, 0x400455c8, 0x1) r1 = creat(&(0x7f0000000380)='./bus\x00', 0x0) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x109000, 0x0) ioctl$SG_GET_RESERVED_SIZE(0xffffffffffffffff, 0x2272, &(0x7f0000000100)) ioctl$EXT4_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000340)=0xe4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup3(r2, r3, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$TIOCSETD(r4, 0x5412, &(0x7f0000000080)=0x6) 18:20:24 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:20:24 executing program 3 (fault-call:8 fault-nth:61): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) 18:20:24 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(0xffffffffffffffff, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1514.972424] FAULT_INJECTION: forcing a failure. [ 1514.972424] name failslab, interval 1, probability 0, space 0, times 0 [ 1514.989404] CPU: 1 PID: 15019 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1514.997384] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1515.006753] Call Trace: [ 1515.009366] dump_stack+0x197/0x210 [ 1515.013031] should_fail.cold+0xa/0x1b [ 1515.016950] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1515.022087] ? lock_downgrade+0x880/0x880 [ 1515.026277] __should_failslab+0x121/0x190 [ 1515.030526] should_failslab+0x9/0x14 [ 1515.034339] kmem_cache_alloc_node+0x26c/0x710 [ 1515.038937] ? __might_fault+0x12b/0x1e0 [ 1515.043037] __alloc_skb+0xd5/0x5f0 [ 1515.046689] ? skb_trim+0x190/0x190 [ 1515.050340] ? copyin+0xb5/0x100 [ 1515.053736] sk_stream_alloc_skb+0xc8/0x860 [ 1515.058087] tcp_sendmsg_locked+0xc9d/0x3290 [ 1515.062646] ? tcp_sendpage+0x60/0x60 [ 1515.066478] ? trace_hardirqs_on+0x67/0x220 [ 1515.070923] ? lock_sock_nested+0x9a/0x120 [ 1515.075186] ? __local_bh_enable_ip+0x15a/0x270 [ 1515.080105] tcp_sendmsg+0x30/0x50 [ 1515.083675] inet_sendmsg+0x141/0x5d0 [ 1515.087498] ? ipip_gro_receive+0x100/0x100 [ 1515.091841] sock_sendmsg+0xd7/0x130 [ 1515.095577] __sys_sendto+0x262/0x380 [ 1515.099525] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1515.104220] ? kasan_check_write+0x14/0x20 [ 1515.108627] ? __sb_end_write+0xd9/0x110 [ 1515.112719] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1515.118372] ? fput+0x128/0x1a0 [ 1515.121683] ? ksys_write+0x1f1/0x2d0 [ 1515.125512] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1515.130300] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1515.135085] ? do_syscall_64+0x26/0x620 [ 1515.139087] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1515.143738] Bluetooth: hci1: command 0x1003 tx timeout [ 1515.144475] __x64_sys_sendto+0xe1/0x1a0 [ 1515.144498] do_syscall_64+0xfd/0x620 [ 1515.149874] Bluetooth: hci1: sending frame failed (-49) [ 1515.153867] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1515.153878] RIP: 0033:0x45aff9 18:20:24 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, 0x0) ioctl$KDADDIO(r0, 0x400455c8, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) [ 1515.153893] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1515.153900] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1515.153913] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1515.153921] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1515.153929] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1515.153936] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1515.153944] R13: 0000000000000992 R14: 00000000004cacca R15: 000000000000003d [ 1515.161779] Bluetooth: hci0: command 0x1003 tx timeout [ 1515.248014] Bluetooth: hci0: sending frame failed (-49) 18:20:24 executing program 3 (fault-call:8 fault-nth:62): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1515.345939] FAULT_INJECTION: forcing a failure. [ 1515.345939] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1515.357821] CPU: 1 PID: 15042 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1515.365632] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1515.375047] Call Trace: [ 1515.377721] dump_stack+0x197/0x210 [ 1515.381443] should_fail.cold+0xa/0x1b [ 1515.385333] ? __kmalloc_reserve.isra.0+0x40/0xf0 [ 1515.390194] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1515.395319] ? mark_held_locks+0x100/0x100 [ 1515.399605] __alloc_pages_nodemask+0x1ee/0x750 [ 1515.404283] ? __lock_acquire+0x6ee/0x49c0 [ 1515.408523] ? __alloc_pages_slowpath+0x2870/0x2870 [ 1515.413580] cache_grow_begin+0x91/0x8c0 [ 1515.417648] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1515.423199] ? check_preemption_disabled+0x48/0x290 [ 1515.428236] kmem_cache_alloc_node+0x64d/0x710 [ 1515.432826] ? __might_fault+0x12b/0x1e0 [ 1515.436894] __alloc_skb+0xd5/0x5f0 [ 1515.440538] ? skb_trim+0x190/0x190 [ 1515.444174] ? copyin+0xb5/0x100 [ 1515.447658] sk_stream_alloc_skb+0xc8/0x860 [ 1515.451992] tcp_sendmsg_locked+0xc9d/0x3290 [ 1515.456431] ? tcp_sendpage+0x60/0x60 [ 1515.460258] ? trace_hardirqs_on+0x67/0x220 [ 1515.464684] ? lock_sock_nested+0x9a/0x120 [ 1515.468918] ? __local_bh_enable_ip+0x15a/0x270 [ 1515.473717] tcp_sendmsg+0x30/0x50 [ 1515.477274] inet_sendmsg+0x141/0x5d0 [ 1515.481070] ? ipip_gro_receive+0x100/0x100 [ 1515.485400] sock_sendmsg+0xd7/0x130 [ 1515.489175] __sys_sendto+0x262/0x380 [ 1515.492990] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1515.497672] ? kasan_check_write+0x14/0x20 [ 1515.501976] ? __sb_end_write+0xd9/0x110 [ 1515.506089] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1515.511641] ? fput+0x128/0x1a0 [ 1515.514931] ? ksys_write+0x1f1/0x2d0 [ 1515.518746] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1515.523519] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1515.528292] ? do_syscall_64+0x26/0x620 [ 1515.532274] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1515.537667] __x64_sys_sendto+0xe1/0x1a0 [ 1515.541737] do_syscall_64+0xfd/0x620 [ 1515.545552] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1515.550743] RIP: 0033:0x45aff9 [ 1515.553956] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1515.572990] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1515.580711] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1515.587995] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 18:20:24 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x101000, 0x0) sendmmsg$alg(r1, &(0x7f0000000c80)=[{0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000100)="f4a85cf8d47b30e5c584566e07bd50a2aa14a5c89065376c745f361d52cfb1d3f3686a5d4a0d16d78927fee688eece9a26f1bf0cd0705c8e7aeb93ad340d64f352616ba0f3ead9ad2795ec095296", 0x4e}], 0x1, &(0x7f00000001c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x90000}, @op={0x18, 0x117, 0x3, 0xb1fd94dbfab3e50e}, @iv={0x110, 0x117, 0x2, 0xf6, "457011c0b4fba7cfeab2e129b03df2c31acf7029fec45291c5ac68ac068761b3705dae62438ead48e41ccb01781e48719995a383d455fd39b33da304ec6d07b0619762934cf545d337d8d1086944f5af5362da8b4f6c1351fe829b7a7f93e1ebdf1aebafdc3cfbfcd16bd7842cf8dd1d12d722b02fa852bfdcb94ca012b9b34514018c435cc0c99b220c757e490019cf1c0e7810762e358556c70880e9be76e2bc1198570da5522e9620a038a10825894ecc00134baa91e6aaaa50f9e10973090efb0799625e6311f2e43b80a88ec2dd08c9eb557d946e15238b7680b3e5fbc8f66b729edac81133dd9fe24a5c9cfa4f5e043f7164da"}, @assoc={0x18, 0x117, 0x4, 0x6}, @op={0x18}, @assoc={0x18, 0x117, 0x4, 0x4}, @iv={0x110, 0x117, 0x2, 0xfa, "189c385b463ee544a9612f2d7840ba145772b238927b45bf2937aef5f2d3f80506adff2926fb587ef0415485593451f6c20b073c3cb5279da1f4a541b61a8353f39d938888ed92560c7a8eb60458ee635bc57a5f312de4b6f3b544ecc6efe74674ea541a50555d9de6f5ae905e64b8830d58c1b7e48e264198ec901ce74f042c7244c89f8daa3a31621fd79b162a523da09e4f1bd265fa32e425023d9fce63a791ced46a17177bc14e49d1baefa034022534de00524862931c23446f7955e280e7a10a09e547de0f8e36cd3408e8fcb8bdc8c925c30a072b010eededbd2d3dbac3f2cd02daa324ef40edcebf8d95894ca69f9afe470ff52795a4"}, @iv={0x68, 0x117, 0x2, 0x4f, "3e80e64369d408f7baaa9831bf643e51723be682066bd28137fef21519bdbea763d4684964d7a58af4e7e6b314115c1c88c002579d436bb143ff66e09798f49261e479538dba08a9067e42d3d42410"}], 0x318, 0x800}, {0x0, 0x0, &(0x7f0000000b00)=[{&(0x7f0000000500)="5ea416c1753586ef0ad08c0c036d234cfc55e0f27a967e8c9b4ff37b71b6cdc1b30c002a845bd84381838585770a297e23cac46c418e569a8da7305eb1d050ee419dc5ae141c6f4e0323460ae345ca26c8d4be3492168e9e51fe221062b656f73167702b85ccb6c10b0c87512cbc1d641f85444bcc972f560f2e21f95abd4ef9496b52eaf696cf2bf4713706c9e3f5e018803b773d237214f4453aacb144e596b4bc464d9320ed23b6298448a7bf8896dbf63ae04e39b7f9e8d0df2573481206b5b231941dc74f445777672a94", 0xcd}, {&(0x7f0000000600)="00e94793ae2cd4cbef4ae8fc49d26e816059848ddc228ffa27a24cb3393ebb10483fd84472783e5b537e9c88900c48e4ed308f3a9c6e4df5b61b0f67aa51026412070646eeed76400462433e4496e9690b268c8fe86d6a7791a2fdf3a498b1253fa34d54afdd8f2939448e8dc1b3c0501bc5be6aaef7a8daee8044c4e63abde3444e17536519745eb15f", 0x8a}, {&(0x7f00000006c0)="1473afdcbc8a0220580575e5c5e9762ab30cb494185c1fbbe4316e4519644909114a44a5b871d568b3e633828172ea98e867882aab8a29850dc12169951087219b48ef12fda53eb5ddf2d5bb85140f17c95b60580306170782c12226db5e6348fa08eb29f81a7e50c88f", 0x6a}, {&(0x7f0000000740)="71e92e588ff11544e8ffc826af4cfc143f30505837b6b501f835806c5a1185b23db5ff24759270a047524d6ab81846ce42e6b2804eb137dde38015c1b6be4296e7719188c7f37c1eeff479eee089db38217a392c8801562821c40595514ba84dc61ae4cf8bd04fbf3a9deb05f52a79e93f415f55dcb18c1f3ae649423f74a38dd149956bba3e93ef9ae37aa4b4aa4d1dd0508865071c875b0f8c89eb097f2e3d6bec2e8d617004bcaf04999fe5a1c5d8405b2df774bfc09543e07a9327b3f2ca9edb53328f6e0f6a24b363bf4e74da", 0xcf}, {&(0x7f0000000840)="bae8d6a926f05a9f45f55bc445af9ff3ccecc110c4d1313854437b43d4de9676c56ec08d", 0x24}, {&(0x7f0000000880)="8be4bd44cc2eae2d8b1f665e27706e44e6167f1e9fc89bc9cca77d52d85d672edf959852a4bd341b081346385037", 0x2e}, {&(0x7f00000008c0)="58f2804f57bf5feffae4ba2a4fb7edda733b8d6e42ca16eaa63a162aa871be31b9cdbb9f8f21bc5bb9a48e7ca6aeb30dbbc932370042", 0x36}, {&(0x7f0000000900)="e9b689eb9dbbcff1d9604096904a10ec5250eb2ad34c17c07bff1dccc69d78801a6624f06463ac5e889e92f240156255de4fa76e23293751c89a6ac55d857aa18bca1a238da1fe7a002b0de1717caf8318f66d96914b977203167643c2cce5f4de1db3620ee9f2be0abd60f78157608f1383ab34ced4d3aa0c993cf41f78c75e78cb1bf73d44c0b9ba530c242f7009083f9b9ecc4fd352915ab96008bd55c12ad12255a524e8ea70", 0xfffffffffffffc49}, {&(0x7f00000009c0)="e693f7369c6aaa04dfe243ac9afdb3a1203a8561b40e057c84e791b4ec57babb39cebb3ca45c364b4ddc2f2e134ac73cd56cce77b85545122e55cff55d345db449a02d5fe4ae264022c2f00ef94967356f000beab44895a3c08fad7c336a152f4c4073b40fdfa06b8be3d33c3c4bebe6f3d446493462e5c18b71269a81789345eb0fad4ff8cecc9d02", 0x89}, {&(0x7f0000000a80)="6e1546e029dab1a7ea1cd1cbc65e17a325325176a3e7d7bfa62a8c20434452a793cb4cd45ba88b607f0ee8462cd12f379c672e906082042b3bd090aad29df53335fd7e61edc8caedcb4951169aceb14e785fb7e759c46f002d6594537607c9cdabc23a81498f1c9e9769af9f5a7b536df176fb7f39491882b8", 0x79}], 0xa, &(0x7f0000000d40)=[@assoc={0x18, 0x117, 0x4, 0x8000}, @op={0x18}, @iv={0x58, 0x117, 0x2, 0x3f, "4a8bb72b6ddf87d7a9471bff6ad9c18828666dfa1c7e1584728f8e9c1a6be294e579e20ddb5de1b3b3a1018c62772b4dc542d697ae66a8068e18e830d138cc"}, @iv={0xc0, 0x117, 0x2, 0xa8, "5cb477beff144380f40ce264a5b978b2cff9121979e9efb29c85fb57fdfb8446a1f4800f364a54bbd38f71a1032b1fcb1af1c039c405031612c97d44df3f108cf780b7e1180543ced7d01cf2c53f9fb68dd64630a613c67007ed3e42052f0c60d651f3f2d4dbc36d3cf8c09fabe4fe5eecd70d8742d740b3052465adccc9bcb816a6af69b19f4191fc54402fdae2c9c7c4043949f0d0a6de2cef97596f2c0d6508ce8831c34751c9"}], 0x148, 0x4008001}], 0x2, 0x1090) write$FUSE_OPEN(r1, &(0x7f0000000d00)={0x20, 0x0, 0x2}, 0x20) [ 1515.595271] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1515.602554] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1515.609842] R13: 0000000000000992 R14: 00000000004cacca R15: 000000000000003e [ 1517.223798] Bluetooth: hci1: command 0x1001 tx timeout [ 1517.229260] Bluetooth: hci1: sending frame failed (-49) [ 1517.303793] Bluetooth: hci0: command 0x1001 tx timeout [ 1517.309297] Bluetooth: hci0: sending frame failed (-49) [ 1517.783749] Bluetooth: hci2: command 0x1003 tx timeout [ 1517.789270] Bluetooth: hci2: sending frame failed (-49) [ 1519.303896] Bluetooth: hci1: command 0x1009 tx timeout [ 1519.383731] Bluetooth: hci0: command 0x1009 tx timeout [ 1519.863867] Bluetooth: hci2: command 0x1001 tx timeout [ 1519.869266] Bluetooth: hci2: sending frame failed (-49) [ 1521.943866] Bluetooth: hci2: command 0x1009 tx timeout 18:20:32 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5427, &(0x7f0000000080)=0xfffffdfd) 18:20:32 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, 0x0) ioctl$KDADDIO(r0, 0x400455c8, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:20:32 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(0xffffffffffffffff, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:20:32 executing program 3 (fault-call:8 fault-nth:63): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) 18:20:32 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5425, &(0x7f0000000080)=0xffffffdb) 18:20:32 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, 0x0) ioctl$KDADDIO(r0, 0x400455c8, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) [ 1523.298431] FAULT_INJECTION: forcing a failure. [ 1523.298431] name failslab, interval 1, probability 0, space 0, times 0 [ 1523.333823] CPU: 0 PID: 15071 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 18:20:32 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)) ioctl$KDADDIO(r0, 0x400455c8, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) [ 1523.341682] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1523.351050] Call Trace: [ 1523.353661] dump_stack+0x197/0x210 [ 1523.357323] should_fail.cold+0xa/0x1b [ 1523.361281] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1523.366412] ? lock_downgrade+0x880/0x880 [ 1523.370682] __should_failslab+0x121/0x190 [ 1523.374936] should_failslab+0x9/0x14 [ 1523.378747] kmem_cache_alloc_node_trace+0x274/0x720 [ 1523.383865] ? __alloc_skb+0xd5/0x5f0 [ 1523.387693] __kmalloc_node_track_caller+0x3d/0x80 [ 1523.392648] __kmalloc_reserve.isra.0+0x40/0xf0 18:20:32 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)) ioctl$KDADDIO(r0, 0x400455c8, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) [ 1523.397338] __alloc_skb+0x10b/0x5f0 [ 1523.401073] ? skb_trim+0x190/0x190 [ 1523.404716] ? copyin+0xb5/0x100 [ 1523.408103] sk_stream_alloc_skb+0xc8/0x860 [ 1523.412456] tcp_sendmsg_locked+0xc9d/0x3290 [ 1523.416907] ? tcp_sendpage+0x60/0x60 [ 1523.420725] ? trace_hardirqs_on+0x67/0x220 [ 1523.425086] ? lock_sock_nested+0x9a/0x120 [ 1523.429338] ? __local_bh_enable_ip+0x15a/0x270 [ 1523.434030] tcp_sendmsg+0x30/0x50 [ 1523.437591] inet_sendmsg+0x141/0x5d0 [ 1523.441407] ? ipip_gro_receive+0x100/0x100 18:20:32 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)) ioctl$KDADDIO(r0, 0x400455c8, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) [ 1523.445746] sock_sendmsg+0xd7/0x130 [ 1523.449472] __sys_sendto+0x262/0x380 [ 1523.453298] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1523.457991] ? kasan_check_write+0x14/0x20 [ 1523.462256] ? __sb_end_write+0xd9/0x110 [ 1523.466339] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1523.471896] ? fput+0x128/0x1a0 [ 1523.475196] ? ksys_write+0x1f1/0x2d0 [ 1523.479022] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1523.483802] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1523.488575] ? do_syscall_64+0x26/0x620 [ 1523.492563] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe 18:20:32 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) [ 1523.497953] __x64_sys_sendto+0xe1/0x1a0 [ 1523.502038] do_syscall_64+0xfd/0x620 [ 1523.505859] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1523.511059] RIP: 0033:0x45aff9 [ 1523.514264] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1523.533182] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1523.540913] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 18:20:32 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) [ 1523.548208] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1523.555498] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1523.562790] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1523.570083] R13: 0000000000000992 R14: 00000000004cacca R15: 000000000000003f [ 1525.383751] Bluetooth: hci1: command 0x1003 tx timeout [ 1525.389179] Bluetooth: hci1: sending frame failed (-49) [ 1525.394758] Bluetooth: hci0: command 0x1003 tx timeout [ 1525.400348] Bluetooth: hci0: sending frame failed (-49) 18:20:35 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/checkreqprot\x00', 0x2985481f71664188, 0x0) ioctl$KDADDIO(r1, 0x400455c8, 0x8e7) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) [ 1527.463798] Bluetooth: hci0: command 0x1001 tx timeout [ 1527.469212] Bluetooth: hci0: sending frame failed (-49) [ 1527.474745] Bluetooth: hci1: command 0x1001 tx timeout [ 1527.480090] Bluetooth: hci1: sending frame failed (-49) [ 1529.543833] Bluetooth: hci1: command 0x1009 tx timeout [ 1529.543840] Bluetooth: hci0: command 0x1009 tx timeout 18:20:42 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:20:42 executing program 3 (fault-call:8 fault-nth:64): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) 18:20:42 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(0xffffffffffffffff, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:20:42 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5428, &(0x7f0000000080)=0xfffffdfd) 18:20:42 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5427, &(0x7f0000000080)=0xffffffdb) 18:20:42 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x40, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) getsockopt$PNPIPE_HANDLE(r0, 0x113, 0x3, &(0x7f00000001c0), &(0x7f0000000280)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000ac0)={r3, 0x215, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)={0x4, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, r4}, 0x78) bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f00000000c0)=r4, 0x4) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) r5 = creat(&(0x7f0000000380)='./bus\x00', 0x0) ioctl$EXT4_IOC_SETFLAGS(r5, 0x40086602, &(0x7f0000000340)=0xe4) getsockopt$CAN_RAW_RECV_OWN_MSGS(r5, 0x65, 0x4, &(0x7f0000000000), &(0x7f0000000100)=0x4) [ 1533.563173] FAULT_INJECTION: forcing a failure. [ 1533.563173] name failslab, interval 1, probability 0, space 0, times 0 [ 1533.575442] CPU: 1 PID: 15106 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1533.583268] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1533.592743] Call Trace: [ 1533.595360] dump_stack+0x197/0x210 [ 1533.599023] should_fail.cold+0xa/0x1b [ 1533.602941] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1533.608061] ? lock_downgrade+0x880/0x880 [ 1533.612210] __should_failslab+0x121/0x190 [ 1533.616446] should_failslab+0x9/0x14 [ 1533.620238] kmem_cache_alloc_node+0x26c/0x710 [ 1533.624823] ? __might_fault+0x12b/0x1e0 [ 1533.628908] __alloc_skb+0xd5/0x5f0 [ 1533.632542] ? skb_trim+0x190/0x190 [ 1533.636184] ? copyin+0xb5/0x100 [ 1533.639610] sk_stream_alloc_skb+0xc8/0x860 [ 1533.643950] tcp_sendmsg_locked+0xc9d/0x3290 [ 1533.648372] ? tcp_sendpage+0x60/0x60 [ 1533.652163] ? trace_hardirqs_on+0x67/0x220 [ 1533.656489] ? lock_sock_nested+0x9a/0x120 [ 1533.660737] ? __local_bh_enable_ip+0x15a/0x270 [ 1533.665420] tcp_sendmsg+0x30/0x50 [ 1533.668980] inet_sendmsg+0x141/0x5d0 [ 1533.672784] ? ipip_gro_receive+0x100/0x100 [ 1533.677111] sock_sendmsg+0xd7/0x130 [ 1533.680826] __sys_sendto+0x262/0x380 [ 1533.684631] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1533.689305] ? kasan_check_write+0x14/0x20 [ 1533.693534] ? __sb_end_write+0xd9/0x110 [ 1533.697586] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1533.703116] ? fput+0x128/0x1a0 [ 1533.706389] ? ksys_write+0x1f1/0x2d0 [ 1533.710216] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1533.714977] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1533.719764] ? do_syscall_64+0x26/0x620 [ 1533.723744] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1533.729114] __x64_sys_sendto+0xe1/0x1a0 [ 1533.733171] do_syscall_64+0xfd/0x620 [ 1533.736965] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1533.742157] RIP: 0033:0x45aff9 [ 1533.745350] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 18:20:43 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) [ 1533.764268] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1533.771989] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1533.779421] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1533.786687] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1533.793958] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1533.801282] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000040 18:20:43 executing program 3 (fault-call:8 fault-nth:65): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1533.873556] Bluetooth: hci3: Frame reassembly failed (-84) [ 1533.883953] Bluetooth: hci3: Frame reassembly failed (-84) [ 1533.938622] FAULT_INJECTION: forcing a failure. [ 1533.938622] name failslab, interval 1, probability 0, space 0, times 0 [ 1533.950042] CPU: 0 PID: 15120 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1533.957848] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1533.967201] Call Trace: [ 1533.969804] dump_stack+0x197/0x210 [ 1533.973461] should_fail.cold+0xa/0x1b [ 1533.977345] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1533.982443] ? lock_downgrade+0x880/0x880 [ 1533.986611] __should_failslab+0x121/0x190 [ 1533.990865] should_failslab+0x9/0x14 [ 1533.994684] kmem_cache_alloc_node_trace+0x274/0x720 [ 1533.999797] ? __alloc_skb+0xd5/0x5f0 [ 1534.003610] __kmalloc_node_track_caller+0x3d/0x80 [ 1534.008555] __kmalloc_reserve.isra.0+0x40/0xf0 [ 1534.013224] __alloc_skb+0x10b/0x5f0 [ 1534.016948] ? skb_trim+0x190/0x190 [ 1534.020583] ? copyin+0xb5/0x100 [ 1534.023974] sk_stream_alloc_skb+0xc8/0x860 [ 1534.028317] tcp_sendmsg_locked+0xc9d/0x3290 [ 1534.032745] ? tcp_sendpage+0x60/0x60 [ 1534.036558] ? trace_hardirqs_on+0x67/0x220 [ 1534.040944] ? lock_sock_nested+0x9a/0x120 [ 1534.045206] ? __local_bh_enable_ip+0x15a/0x270 [ 1534.049913] tcp_sendmsg+0x30/0x50 [ 1534.053473] inet_sendmsg+0x141/0x5d0 [ 1534.057267] ? ipip_gro_receive+0x100/0x100 [ 1534.061598] sock_sendmsg+0xd7/0x130 [ 1534.065431] __sys_sendto+0x262/0x380 [ 1534.069228] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1534.073941] ? kasan_check_write+0x14/0x20 [ 1534.078183] ? __sb_end_write+0xd9/0x110 [ 1534.082254] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1534.087931] ? fput+0x128/0x1a0 [ 1534.091247] ? ksys_write+0x1f1/0x2d0 [ 1534.095063] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1534.099824] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1534.104576] ? do_syscall_64+0x26/0x620 [ 1534.108555] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1534.113941] __x64_sys_sendto+0xe1/0x1a0 [ 1534.118134] do_syscall_64+0xfd/0x620 [ 1534.122005] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1534.127207] RIP: 0033:0x45aff9 [ 1534.130392] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1534.149291] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1534.157079] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1534.164402] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1534.171682] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1534.178953] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1534.186234] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000041 18:20:43 executing program 3 (fault-call:8 fault-nth:66): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1534.289539] FAULT_INJECTION: forcing a failure. [ 1534.289539] name failslab, interval 1, probability 0, space 0, times 0 [ 1534.301055] CPU: 0 PID: 15123 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1534.308873] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1534.318241] Call Trace: [ 1534.320843] dump_stack+0x197/0x210 [ 1534.324477] should_fail.cold+0xa/0x1b [ 1534.328386] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1534.333529] ? lock_downgrade+0x880/0x880 18:20:43 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, 0x0, 0x0) [ 1534.337714] __should_failslab+0x121/0x190 [ 1534.341977] should_failslab+0x9/0x14 [ 1534.345802] kmem_cache_alloc_node+0x26c/0x710 [ 1534.350396] ? __might_fault+0x12b/0x1e0 [ 1534.354466] __alloc_skb+0xd5/0x5f0 [ 1534.358085] ? skb_trim+0x190/0x190 [ 1534.361730] ? copyin+0xb5/0x100 [ 1534.365098] sk_stream_alloc_skb+0xc8/0x860 [ 1534.369427] tcp_sendmsg_locked+0xc9d/0x3290 [ 1534.373844] ? tcp_sendpage+0x60/0x60 [ 1534.377647] ? trace_hardirqs_on+0x67/0x220 [ 1534.382037] ? lock_sock_nested+0x9a/0x120 [ 1534.386279] ? __local_bh_enable_ip+0x15a/0x270 [ 1534.390953] tcp_sendmsg+0x30/0x50 [ 1534.394496] inet_sendmsg+0x141/0x5d0 [ 1534.398315] ? ipip_gro_receive+0x100/0x100 [ 1534.402667] sock_sendmsg+0xd7/0x130 [ 1534.406393] __sys_sendto+0x262/0x380 [ 1534.410221] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1534.414897] ? kasan_check_write+0x14/0x20 [ 1534.419146] ? __sb_end_write+0xd9/0x110 [ 1534.423211] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1534.428779] ? fput+0x128/0x1a0 [ 1534.432059] ? ksys_write+0x1f1/0x2d0 [ 1534.435874] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1534.440663] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1534.445483] ? do_syscall_64+0x26/0x620 [ 1534.449449] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1534.454818] __x64_sys_sendto+0xe1/0x1a0 [ 1534.458885] do_syscall_64+0xfd/0x620 [ 1534.462693] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1534.467886] RIP: 0033:0x45aff9 [ 1534.471131] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1534.490044] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1534.497752] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1534.505125] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1534.512393] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1534.519661] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1534.526939] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000042 18:20:43 executing program 3 (fault-call:8 fault-nth:67): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1534.648769] FAULT_INJECTION: forcing a failure. [ 1534.648769] name failslab, interval 1, probability 0, space 0, times 0 [ 1534.660346] CPU: 0 PID: 15128 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1534.668164] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1534.677627] Call Trace: [ 1534.680217] dump_stack+0x197/0x210 [ 1534.683874] should_fail.cold+0xa/0x1b [ 1534.688747] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1534.693862] ? lock_downgrade+0x880/0x880 [ 1534.698011] __should_failslab+0x121/0x190 [ 1534.702255] should_failslab+0x9/0x14 [ 1534.706061] kmem_cache_alloc_node_trace+0x274/0x720 [ 1534.711172] ? __alloc_skb+0xd5/0x5f0 [ 1534.714980] __kmalloc_node_track_caller+0x3d/0x80 [ 1534.719934] __kmalloc_reserve.isra.0+0x40/0xf0 [ 1534.724614] __alloc_skb+0x10b/0x5f0 [ 1534.728332] ? skb_trim+0x190/0x190 [ 1534.731965] ? copyin+0xb5/0x100 [ 1534.735340] sk_stream_alloc_skb+0xc8/0x860 [ 1534.739671] tcp_sendmsg_locked+0xc9d/0x3290 [ 1534.744093] ? tcp_sendpage+0x60/0x60 [ 1534.747888] ? trace_hardirqs_on+0x67/0x220 [ 1534.752270] ? lock_sock_nested+0x9a/0x120 [ 1534.756510] ? __local_bh_enable_ip+0x15a/0x270 [ 1534.761183] tcp_sendmsg+0x30/0x50 [ 1534.764724] inet_sendmsg+0x141/0x5d0 [ 1534.768548] ? ipip_gro_receive+0x100/0x100 [ 1534.772906] sock_sendmsg+0xd7/0x130 [ 1534.776630] __sys_sendto+0x262/0x380 [ 1534.780434] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1534.785109] ? kasan_check_write+0x14/0x20 [ 1534.789356] ? __sb_end_write+0xd9/0x110 [ 1534.793435] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1534.798991] ? fput+0x128/0x1a0 [ 1534.802288] ? ksys_write+0x1f1/0x2d0 [ 1534.806087] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1534.810845] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1534.815603] ? do_syscall_64+0x26/0x620 [ 1534.819573] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1534.824944] __x64_sys_sendto+0xe1/0x1a0 [ 1534.829026] do_syscall_64+0xfd/0x620 [ 1534.832827] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1534.838099] RIP: 0033:0x45aff9 [ 1534.841283] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1534.860180] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1534.867892] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1534.875176] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1534.882459] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1534.889730] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1534.897013] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000043 18:20:44 executing program 3 (fault-call:8 fault-nth:68): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1535.002879] FAULT_INJECTION: forcing a failure. [ 1535.002879] name failslab, interval 1, probability 0, space 0, times 0 [ 1535.014257] CPU: 1 PID: 15133 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1535.022117] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1535.031470] Call Trace: [ 1535.034074] dump_stack+0x197/0x210 [ 1535.037714] should_fail.cold+0xa/0x1b [ 1535.041708] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1535.046844] ? lock_downgrade+0x880/0x880 [ 1535.051016] __should_failslab+0x121/0x190 [ 1535.055332] should_failslab+0x9/0x14 [ 1535.059161] kmem_cache_alloc_node+0x26c/0x710 [ 1535.063753] ? __might_fault+0x12b/0x1e0 [ 1535.067827] __alloc_skb+0xd5/0x5f0 [ 1535.071530] ? skb_trim+0x190/0x190 [ 1535.075179] ? copyin+0xb5/0x100 [ 1535.078708] sk_stream_alloc_skb+0xc8/0x860 [ 1535.083043] tcp_sendmsg_locked+0xc9d/0x3290 [ 1535.087557] ? tcp_sendpage+0x60/0x60 [ 1535.091382] ? trace_hardirqs_on+0x67/0x220 [ 1535.095735] ? lock_sock_nested+0x9a/0x120 [ 1535.100043] ? __local_bh_enable_ip+0x15a/0x270 [ 1535.104737] tcp_sendmsg+0x30/0x50 [ 1535.108311] inet_sendmsg+0x141/0x5d0 [ 1535.112127] ? ipip_gro_receive+0x100/0x100 [ 1535.116467] sock_sendmsg+0xd7/0x130 [ 1535.120318] __sys_sendto+0x262/0x380 [ 1535.124129] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1535.128816] ? kasan_check_write+0x14/0x20 [ 1535.133081] ? __sb_end_write+0xd9/0x110 [ 1535.137282] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1535.142900] ? fput+0x128/0x1a0 [ 1535.146215] ? ksys_write+0x1f1/0x2d0 [ 1535.150034] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1535.154808] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1535.159577] ? do_syscall_64+0x26/0x620 [ 1535.163563] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1535.168933] __x64_sys_sendto+0xe1/0x1a0 [ 1535.172998] do_syscall_64+0xfd/0x620 [ 1535.176815] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1535.182021] RIP: 0033:0x45aff9 [ 1535.185238] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1535.204267] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1535.211989] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1535.219267] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1535.226551] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1535.233940] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1535.241223] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000044 18:20:44 executing program 3 (fault-call:8 fault-nth:69): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) 18:20:44 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, 0x0, 0x0) [ 1535.455444] FAULT_INJECTION: forcing a failure. [ 1535.455444] name failslab, interval 1, probability 0, space 0, times 0 [ 1535.467047] CPU: 1 PID: 15136 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1535.474853] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1535.484323] Call Trace: [ 1535.486946] dump_stack+0x197/0x210 [ 1535.490596] should_fail.cold+0xa/0x1b [ 1535.494511] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1535.499741] ? lock_downgrade+0x880/0x880 [ 1535.503926] __should_failslab+0x121/0x190 [ 1535.508195] should_failslab+0x9/0x14 [ 1535.512066] kmem_cache_alloc_node_trace+0x274/0x720 [ 1535.517182] ? __alloc_skb+0xd5/0x5f0 [ 1535.520986] __kmalloc_node_track_caller+0x3d/0x80 [ 1535.525937] __kmalloc_reserve.isra.0+0x40/0xf0 [ 1535.530626] __alloc_skb+0x10b/0x5f0 [ 1535.534338] ? skb_trim+0x190/0x190 [ 1535.537979] ? copyin+0xb5/0x100 [ 1535.541367] sk_stream_alloc_skb+0xc8/0x860 [ 1535.545718] tcp_sendmsg_locked+0xc9d/0x3290 [ 1535.550172] ? tcp_sendpage+0x60/0x60 [ 1535.554002] ? trace_hardirqs_on+0x67/0x220 [ 1535.558331] ? lock_sock_nested+0x9a/0x120 [ 1535.562588] ? __local_bh_enable_ip+0x15a/0x270 [ 1535.567291] tcp_sendmsg+0x30/0x50 [ 1535.570842] inet_sendmsg+0x141/0x5d0 [ 1535.574697] ? ipip_gro_receive+0x100/0x100 [ 1535.579040] sock_sendmsg+0xd7/0x130 [ 1535.582758] __sys_sendto+0x262/0x380 [ 1535.586580] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1535.591267] ? kasan_check_write+0x14/0x20 [ 1535.595614] ? __sb_end_write+0xd9/0x110 [ 1535.599784] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1535.605342] ? fput+0x128/0x1a0 [ 1535.608638] ? ksys_write+0x1f1/0x2d0 [ 1535.612444] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1535.617208] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1535.622098] ? do_syscall_64+0x26/0x620 [ 1535.623979] Bluetooth: hci2: command 0x1003 tx timeout [ 1535.626204] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1535.626225] __x64_sys_sendto+0xe1/0x1a0 [ 1535.626249] do_syscall_64+0xfd/0x620 [ 1535.626270] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1535.626281] RIP: 0033:0x45aff9 [ 1535.626299] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1535.631832] Bluetooth: hci2: sending frame failed (-49) [ 1535.636944] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1535.636960] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1535.636968] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 18:20:45 executing program 3 (fault-call:8 fault-nth:70): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1535.636978] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1535.636986] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1535.636993] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000045 [ 1535.723376] Bluetooth: hci1: command 0x1003 tx timeout [ 1535.729281] Bluetooth: hci1: sending frame failed (-49) [ 1535.734805] Bluetooth: hci0: command 0x1003 tx timeout [ 1535.740177] Bluetooth: hci0: sending frame failed (-49) [ 1535.797187] FAULT_INJECTION: forcing a failure. [ 1535.797187] name failslab, interval 1, probability 0, space 0, times 0 [ 1535.808727] CPU: 1 PID: 15141 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1535.816538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1535.825910] Call Trace: [ 1535.828522] dump_stack+0x197/0x210 [ 1535.832162] should_fail.cold+0xa/0x1b [ 1535.836068] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1535.841188] ? lock_downgrade+0x880/0x880 [ 1535.845363] __should_failslab+0x121/0x190 [ 1535.849607] should_failslab+0x9/0x14 [ 1535.853411] kmem_cache_alloc_node+0x26c/0x710 [ 1535.858090] ? __might_fault+0x12b/0x1e0 [ 1535.862219] __alloc_skb+0xd5/0x5f0 [ 1535.865873] ? skb_trim+0x190/0x190 [ 1535.869507] ? copyin+0xb5/0x100 [ 1535.872870] sk_stream_alloc_skb+0xc8/0x860 [ 1535.877315] tcp_sendmsg_locked+0xc9d/0x3290 [ 1535.881741] ? tcp_sendpage+0x60/0x60 [ 1535.885554] ? trace_hardirqs_on+0x67/0x220 [ 1535.889883] ? lock_sock_nested+0x9a/0x120 [ 1535.894134] ? __local_bh_enable_ip+0x15a/0x270 [ 1535.898823] tcp_sendmsg+0x30/0x50 [ 1535.902356] inet_sendmsg+0x141/0x5d0 [ 1535.906176] ? ipip_gro_receive+0x100/0x100 [ 1535.910511] sock_sendmsg+0xd7/0x130 [ 1535.914242] __sys_sendto+0x262/0x380 [ 1535.918106] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1535.922776] ? kasan_check_write+0x14/0x20 [ 1535.927036] ? __sb_end_write+0xd9/0x110 [ 1535.931102] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1535.936651] ? fput+0x128/0x1a0 [ 1535.939943] ? ksys_write+0x1f1/0x2d0 [ 1535.943763] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1535.943868] Bluetooth: hci3: command 0x1003 tx timeout [ 1535.948528] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1535.948545] ? do_syscall_64+0x26/0x620 [ 1535.948562] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1535.948582] __x64_sys_sendto+0xe1/0x1a0 [ 1535.948601] do_syscall_64+0xfd/0x620 [ 1535.959339] Bluetooth: hci3: sending frame failed (-49) [ 1535.962587] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1535.962600] RIP: 0033:0x45aff9 [ 1535.962618] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1535.962663] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1536.016311] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1536.023585] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1536.030856] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1536.038134] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1536.045524] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000046 [ 1537.783826] Bluetooth: hci0: command 0x1001 tx timeout [ 1537.789185] Bluetooth: hci1: command 0x1001 tx timeout [ 1537.789234] Bluetooth: hci0: sending frame failed (-49) [ 1537.794895] Bluetooth: hci2: command 0x1001 tx timeout [ 1537.800002] Bluetooth: hci1: sending frame failed (-49) [ 1537.805616] Bluetooth: hci2: sending frame failed (-49) [ 1538.033886] Bluetooth: hci3: command 0x1001 tx timeout [ 1538.039412] Bluetooth: hci3: sending frame failed (-49) [ 1539.863780] Bluetooth: hci1: command 0x1009 tx timeout [ 1539.863798] Bluetooth: hci2: command 0x1009 tx timeout [ 1539.874509] Bluetooth: hci0: command 0x1009 tx timeout [ 1540.103820] Bluetooth: hci3: command 0x1009 tx timeout 18:20:53 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5437, &(0x7f0000000080)=0xfffffdfd) 18:20:53 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5428, &(0x7f0000000080)=0xffffffdb) 18:20:53 executing program 3 (fault-call:8 fault-nth:71): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1543.805520] FAULT_INJECTION: forcing a failure. [ 1543.805520] name failslab, interval 1, probability 0, space 0, times 0 [ 1543.816972] CPU: 1 PID: 15148 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1543.824795] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1543.834178] Call Trace: [ 1543.836788] dump_stack+0x197/0x210 [ 1543.840420] should_fail.cold+0xa/0x1b [ 1543.844326] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1543.849447] ? lock_downgrade+0x880/0x880 [ 1543.853606] __should_failslab+0x121/0x190 [ 1543.857871] should_failslab+0x9/0x14 [ 1543.861679] kmem_cache_alloc_node_trace+0x274/0x720 [ 1543.866800] ? __alloc_skb+0xd5/0x5f0 [ 1543.870616] __kmalloc_node_track_caller+0x3d/0x80 [ 1543.875571] __kmalloc_reserve.isra.0+0x40/0xf0 [ 1543.880263] __alloc_skb+0x10b/0x5f0 [ 1543.883994] ? skb_trim+0x190/0x190 [ 1543.887645] ? copyin+0xb5/0x100 [ 1543.891031] sk_stream_alloc_skb+0xc8/0x860 [ 1543.895375] tcp_sendmsg_locked+0xc9d/0x3290 [ 1543.899813] ? tcp_sendpage+0x60/0x60 [ 1543.903621] ? trace_hardirqs_on+0x67/0x220 [ 1543.908063] ? lock_sock_nested+0x9a/0x120 [ 1543.912315] ? __local_bh_enable_ip+0x15a/0x270 [ 1543.916991] tcp_sendmsg+0x30/0x50 [ 1543.920535] inet_sendmsg+0x141/0x5d0 [ 1543.924459] ? ipip_gro_receive+0x100/0x100 [ 1543.928796] sock_sendmsg+0xd7/0x130 [ 1543.932634] __sys_sendto+0x262/0x380 [ 1543.936441] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1543.941311] ? kasan_check_write+0x14/0x20 [ 1543.945682] ? __sb_end_write+0xd9/0x110 [ 1543.949775] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1543.955337] ? fput+0x128/0x1a0 [ 1543.958620] ? ksys_write+0x1f1/0x2d0 [ 1543.962419] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1543.967184] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1543.971951] ? do_syscall_64+0x26/0x620 [ 1543.975919] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1543.981389] __x64_sys_sendto+0xe1/0x1a0 [ 1543.985584] do_syscall_64+0xfd/0x620 [ 1543.989451] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1543.994642] RIP: 0033:0x45aff9 [ 1543.997836] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1544.016746] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1544.024579] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1544.031856] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1544.039132] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1544.046416] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1544.053698] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000047 18:20:53 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:20:53 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, 0x0, 0x0) 18:20:53 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x200040, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:20:53 executing program 3 (fault-call:8 fault-nth:72): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) 18:20:53 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x8000, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) r1 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x0, 0x4002011, r1, 0x0) sendmmsg$sock(r1, &(0x7f00000003c0)=[{{&(0x7f0000000100)=@tipc=@id={0x1e, 0x3, 0x8255649376a6d935, {0x4e22, 0x3}}, 0x80, &(0x7f0000000000)=[{&(0x7f0000000180)="cde23f0bc83dc8fe43a913d174b968a7e06d42d6f194565afdb25f04e16ba04c7ffc45b07f956a8b428a52e40307b2587963d86132130f43d255141f767ac918af948294b9e1a285bb9b7385ee5da878b92cc1a58150c22d7c8f674f29084132ae5c82a74180f3e8348725ef5b0b7eac9230aebf3be9702022b14ee6aa1b5d45657bce8a8028edd20cdf960d3d1b79f8f78ab02574cc15b41131ab7229b838c18211", 0xa2}, {&(0x7f0000000240)="926dc6eab53e003e8fb065b7e4fe1ecbbdfe6fd9f05bdc0dc7c2c6609d5286f743272466eeb265c7eb66c927366911c61dbd7cfdfb32b4bbada8e4d88cf6a05536bc66f5ba693867a01410c665dade7b47ba9bc831952ee36d99a6431a9ca34c27f08e2e2b44c3d56c6d1f5d44e9771a9ad2549397bf6f01b58f650c860e918228830204c81578c497bfe38f3edf3b5290432384704667debf7eafd4302ee74bb1670329cfaead47b03846111f2ef2fd8e3c64d4abf40e4349304bed20374751a6ddb7fe475537d56aaa3b4514", 0xcd}], 0x2, &(0x7f0000000340)=[@timestamping={{0x14, 0x1, 0x25, 0x84}}, @mark={{0x14, 0x1, 0x24, 0x7}}, @mark={{0x14, 0x1, 0x24, 0x6}}, @timestamping={{0x14, 0x1, 0x25, 0x1}}, @mark={{0x14, 0x1, 0x24, 0x8}}], 0x78}}], 0x1, 0x22948f4852b5e8bc) ioctl$TIOCGPKT(r0, 0x80045438, &(0x7f0000000400)) [ 1544.409980] FAULT_INJECTION: forcing a failure. [ 1544.409980] name failslab, interval 1, probability 0, space 0, times 0 [ 1544.452885] CPU: 0 PID: 15160 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1544.460463] Bluetooth: hci2: Frame reassembly failed (-84) [ 1544.460836] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1544.460842] Call Trace: [ 1544.460864] dump_stack+0x197/0x210 [ 1544.460887] should_fail.cold+0xa/0x1b [ 1544.485933] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1544.491048] ? lock_downgrade+0x880/0x880 [ 1544.495225] __should_failslab+0x121/0x190 [ 1544.499474] should_failslab+0x9/0x14 [ 1544.503280] kmem_cache_alloc_node+0x26c/0x710 [ 1544.507860] ? __might_fault+0x12b/0x1e0 [ 1544.511935] __alloc_skb+0xd5/0x5f0 [ 1544.515601] ? skb_trim+0x190/0x190 [ 1544.519238] ? copyin+0xb5/0x100 [ 1544.522618] sk_stream_alloc_skb+0xc8/0x860 [ 1544.526947] tcp_sendmsg_locked+0xc9d/0x3290 [ 1544.531370] ? tcp_sendpage+0x60/0x60 [ 1544.535203] ? trace_hardirqs_on+0x67/0x220 [ 1544.539529] ? lock_sock_nested+0x9a/0x120 [ 1544.543768] ? __local_bh_enable_ip+0x15a/0x270 [ 1544.548553] tcp_sendmsg+0x30/0x50 [ 1544.552098] inet_sendmsg+0x141/0x5d0 [ 1544.555896] ? ipip_gro_receive+0x100/0x100 [ 1544.560230] sock_sendmsg+0xd7/0x130 [ 1544.563963] __sys_sendto+0x262/0x380 [ 1544.567825] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1544.572497] ? kasan_check_write+0x14/0x20 [ 1544.576740] ? __sb_end_write+0xd9/0x110 [ 1544.580813] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1544.586379] ? fput+0x128/0x1a0 [ 1544.589756] ? ksys_write+0x1f1/0x2d0 [ 1544.593619] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1544.598398] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1544.603147] ? do_syscall_64+0x26/0x620 [ 1544.607135] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1544.612572] __x64_sys_sendto+0xe1/0x1a0 [ 1544.616631] do_syscall_64+0xfd/0x620 [ 1544.620476] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1544.625664] RIP: 0033:0x45aff9 [ 1544.628865] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1544.647885] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1544.655596] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1544.663111] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1544.670597] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1544.677948] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1544.685232] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000048 18:20:54 executing program 3 (fault-call:8 fault-nth:73): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1544.790226] FAULT_INJECTION: forcing a failure. [ 1544.790226] name failslab, interval 1, probability 0, space 0, times 0 [ 1544.801794] CPU: 1 PID: 15174 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1544.809602] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1544.818974] Call Trace: [ 1544.821582] dump_stack+0x197/0x210 [ 1544.825234] should_fail.cold+0xa/0x1b [ 1544.829143] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1544.834329] ? lock_downgrade+0x880/0x880 [ 1544.838485] __should_failslab+0x121/0x190 [ 1544.842736] should_failslab+0x9/0x14 [ 1544.846565] kmem_cache_alloc_node_trace+0x274/0x720 [ 1544.851679] ? __alloc_skb+0xd5/0x5f0 [ 1544.855566] __kmalloc_node_track_caller+0x3d/0x80 [ 1544.860504] __kmalloc_reserve.isra.0+0x40/0xf0 [ 1544.865198] __alloc_skb+0x10b/0x5f0 [ 1544.868939] ? skb_trim+0x190/0x190 [ 1544.872710] ? copyin+0xb5/0x100 [ 1544.876095] sk_stream_alloc_skb+0xc8/0x860 [ 1544.880551] tcp_sendmsg_locked+0xc9d/0x3290 [ 1544.885092] ? tcp_sendpage+0x60/0x60 [ 1544.888927] ? trace_hardirqs_on+0x67/0x220 [ 1544.893263] ? lock_sock_nested+0x9a/0x120 [ 1544.897513] ? __local_bh_enable_ip+0x15a/0x270 [ 1544.902228] tcp_sendmsg+0x30/0x50 [ 1544.905798] inet_sendmsg+0x141/0x5d0 [ 1544.909623] ? ipip_gro_receive+0x100/0x100 [ 1544.914024] sock_sendmsg+0xd7/0x130 [ 1544.917743] __sys_sendto+0x262/0x380 [ 1544.921562] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1544.926305] ? kasan_check_write+0x14/0x20 [ 1544.930602] ? __sb_end_write+0xd9/0x110 [ 1544.934721] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1544.940263] ? fput+0x128/0x1a0 [ 1544.943597] ? ksys_write+0x1f1/0x2d0 [ 1544.947423] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1544.952195] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1544.956959] ? do_syscall_64+0x26/0x620 [ 1544.960938] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1544.966317] __x64_sys_sendto+0xe1/0x1a0 [ 1544.970386] do_syscall_64+0xfd/0x620 [ 1544.974253] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1544.979444] RIP: 0033:0x45aff9 [ 1544.982728] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1545.001632] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1545.011605] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1545.018983] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1545.026332] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1545.033593] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1545.040864] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000049 18:20:54 executing program 3 (fault-call:8 fault-nth:74): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1545.143834] FAULT_INJECTION: forcing a failure. [ 1545.143834] name failslab, interval 1, probability 0, space 0, times 0 [ 1545.159046] CPU: 1 PID: 15177 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1545.166963] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1545.176324] Call Trace: [ 1545.178956] dump_stack+0x197/0x210 [ 1545.182607] should_fail.cold+0xa/0x1b [ 1545.186640] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1545.191772] ? lock_downgrade+0x880/0x880 [ 1545.195942] __should_failslab+0x121/0x190 [ 1545.200235] should_failslab+0x9/0x14 [ 1545.204096] kmem_cache_alloc_node+0x26c/0x710 [ 1545.208689] ? __might_fault+0x12b/0x1e0 [ 1545.212776] __alloc_skb+0xd5/0x5f0 [ 1545.216409] ? skb_trim+0x190/0x190 [ 1545.220048] ? copyin+0xb5/0x100 [ 1545.223422] sk_stream_alloc_skb+0xc8/0x860 [ 1545.227761] tcp_sendmsg_locked+0xc9d/0x3290 [ 1545.232233] ? tcp_sendpage+0x60/0x60 [ 1545.236068] ? trace_hardirqs_on+0x67/0x220 [ 1545.240405] ? lock_sock_nested+0x9a/0x120 [ 1545.244861] ? __local_bh_enable_ip+0x15a/0x270 [ 1545.249549] tcp_sendmsg+0x30/0x50 [ 1545.253119] inet_sendmsg+0x141/0x5d0 [ 1545.256926] ? ipip_gro_receive+0x100/0x100 [ 1545.261253] sock_sendmsg+0xd7/0x130 [ 1545.265841] __sys_sendto+0x262/0x380 [ 1545.269641] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1545.274324] ? kasan_check_write+0x14/0x20 [ 1545.278581] ? __sb_end_write+0xd9/0x110 [ 1545.282777] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1545.288432] ? fput+0x128/0x1a0 [ 1545.291722] ? ksys_write+0x1f1/0x2d0 [ 1545.295542] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1545.300353] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1545.305130] ? do_syscall_64+0x26/0x620 [ 1545.309125] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1545.314507] __x64_sys_sendto+0xe1/0x1a0 [ 1545.318595] do_syscall_64+0xfd/0x620 [ 1545.322407] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1545.327768] RIP: 0033:0x45aff9 18:20:54 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x0, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1545.330965] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1545.350055] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1545.357768] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1545.365059] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1545.372347] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1545.379630] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1545.386916] R13: 0000000000000992 R14: 00000000004cacca R15: 000000000000004a 18:20:54 executing program 3 (fault-call:8 fault-nth:75): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1545.501958] FAULT_INJECTION: forcing a failure. [ 1545.501958] name failslab, interval 1, probability 0, space 0, times 0 [ 1545.513327] CPU: 1 PID: 15182 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1545.521145] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1545.530500] Call Trace: [ 1545.533170] dump_stack+0x197/0x210 [ 1545.536813] should_fail.cold+0xa/0x1b [ 1545.540733] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1545.545864] ? lock_downgrade+0x880/0x880 [ 1545.550035] __should_failslab+0x121/0x190 [ 1545.554284] should_failslab+0x9/0x14 [ 1545.558207] kmem_cache_alloc_node_trace+0x274/0x720 [ 1545.563399] ? __alloc_skb+0xd5/0x5f0 [ 1545.567278] __kmalloc_node_track_caller+0x3d/0x80 [ 1545.572223] __kmalloc_reserve.isra.0+0x40/0xf0 [ 1545.576903] __alloc_skb+0x10b/0x5f0 [ 1545.580702] ? skb_trim+0x190/0x190 [ 1545.584395] ? copyin+0xb5/0x100 [ 1545.587776] sk_stream_alloc_skb+0xc8/0x860 [ 1545.592236] tcp_sendmsg_locked+0xc9d/0x3290 [ 1545.596663] ? tcp_sendpage+0x60/0x60 [ 1545.600473] ? trace_hardirqs_on+0x67/0x220 [ 1545.604819] ? lock_sock_nested+0x9a/0x120 [ 1545.609069] ? __local_bh_enable_ip+0x15a/0x270 [ 1545.613782] tcp_sendmsg+0x30/0x50 [ 1545.617349] inet_sendmsg+0x141/0x5d0 [ 1545.621170] ? ipip_gro_receive+0x100/0x100 [ 1545.625511] sock_sendmsg+0xd7/0x130 [ 1545.629258] __sys_sendto+0x262/0x380 [ 1545.633094] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1545.637789] ? kasan_check_write+0x14/0x20 [ 1545.642051] ? __sb_end_write+0xd9/0x110 [ 1545.646203] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1545.651815] ? fput+0x128/0x1a0 [ 1545.655117] ? ksys_write+0x1f1/0x2d0 [ 1545.658977] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1545.663872] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1545.668639] ? do_syscall_64+0x26/0x620 [ 1545.672634] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1545.678019] __x64_sys_sendto+0xe1/0x1a0 [ 1545.682105] do_syscall_64+0xfd/0x620 [ 1545.685969] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1545.691181] RIP: 0033:0x45aff9 [ 1545.694400] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1545.713324] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1545.721059] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1545.728473] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1545.735753] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1545.743038] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1545.750311] R13: 0000000000000992 R14: 00000000004cacca R15: 000000000000004b [ 1545.863895] Bluetooth: hci1: command 0x1003 tx timeout [ 1545.869409] Bluetooth: hci0: command 0x1003 tx timeout [ 1545.869443] Bluetooth: hci1: sending frame failed (-49) [ 1545.880477] Bluetooth: hci0: sending frame failed (-49) [ 1546.503773] Bluetooth: hci2: command 0x1003 tx timeout [ 1546.503803] Bluetooth: hci3: command 0x1003 tx timeout [ 1546.509308] Bluetooth: hci2: sending frame failed (-49) [ 1546.520235] Bluetooth: hci3: sending frame failed (-49) [ 1547.943799] Bluetooth: hci1: command 0x1001 tx timeout [ 1547.943805] Bluetooth: hci0: command 0x1001 tx timeout [ 1547.943882] Bluetooth: hci0: sending frame failed (-49) [ 1547.949214] Bluetooth: hci1: sending frame failed (-49) [ 1548.583849] Bluetooth: hci3: command 0x1001 tx timeout [ 1548.589271] Bluetooth: hci2: command 0x1001 tx timeout [ 1548.589331] Bluetooth: hci3: sending frame failed (-49) [ 1548.594990] Bluetooth: hci2: sending frame failed (-49) [ 1550.023830] Bluetooth: hci0: command 0x1009 tx timeout [ 1550.023837] Bluetooth: hci1: command 0x1009 tx timeout [ 1550.663819] Bluetooth: hci2: command 0x1009 tx timeout [ 1550.663825] Bluetooth: hci3: command 0x1009 tx timeout 18:21:03 executing program 3 (fault-call:8 fault-nth:76): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) 18:21:03 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x0, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:21:03 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5441, &(0x7f0000000080)=0xfffffdfd) [ 1554.009105] FAULT_INJECTION: forcing a failure. [ 1554.009105] name failslab, interval 1, probability 0, space 0, times 0 [ 1554.022844] CPU: 0 PID: 15190 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1554.030987] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1554.040433] Call Trace: [ 1554.043095] dump_stack+0x197/0x210 [ 1554.046739] should_fail.cold+0xa/0x1b [ 1554.050659] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1554.055783] ? lock_downgrade+0x880/0x880 [ 1554.059940] __should_failslab+0x121/0x190 [ 1554.064180] should_failslab+0x9/0x14 [ 1554.068040] kmem_cache_alloc_node+0x26c/0x710 [ 1554.072632] ? __might_fault+0x12b/0x1e0 [ 1554.076696] __alloc_skb+0xd5/0x5f0 [ 1554.080332] ? skb_trim+0x190/0x190 [ 1554.083975] ? copyin+0xb5/0x100 [ 1554.087349] sk_stream_alloc_skb+0xc8/0x860 [ 1554.091682] tcp_sendmsg_locked+0xc9d/0x3290 [ 1554.096110] ? tcp_sendpage+0x60/0x60 [ 1554.099994] ? trace_hardirqs_on+0x67/0x220 [ 1554.104326] ? lock_sock_nested+0x9a/0x120 [ 1554.108680] ? __local_bh_enable_ip+0x15a/0x270 [ 1554.113364] tcp_sendmsg+0x30/0x50 [ 1554.116916] inet_sendmsg+0x141/0x5d0 [ 1554.120898] ? ipip_gro_receive+0x100/0x100 [ 1554.125229] sock_sendmsg+0xd7/0x130 [ 1554.128944] __sys_sendto+0x262/0x380 [ 1554.132765] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1554.137457] ? kasan_check_write+0x14/0x20 [ 1554.141714] ? __sb_end_write+0xd9/0x110 [ 1554.145898] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1554.151443] ? fput+0x128/0x1a0 [ 1554.154736] ? ksys_write+0x1f1/0x2d0 [ 1554.158556] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1554.163332] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1554.168095] ? do_syscall_64+0x26/0x620 [ 1554.172088] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1554.177470] __x64_sys_sendto+0xe1/0x1a0 [ 1554.181541] do_syscall_64+0xfd/0x620 [ 1554.185354] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1554.190556] RIP: 0033:0x45aff9 [ 1554.193745] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1554.212843] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1554.220555] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1554.227826] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1554.235222] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1554.242508] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1554.249780] R13: 0000000000000992 R14: 00000000004cacca R15: 000000000000004c 18:21:03 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:21:03 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5437, &(0x7f0000000080)=0xffffffdb) 18:21:03 executing program 3 (fault-call:8 fault-nth:77): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) 18:21:03 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup3(r0, r1, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$KVM_SET_PIT2(r2, 0x4070aea0, &(0x7f0000000100)={[{0x2, 0x8, 0x1, 0xfa, 0x3, 0x0, 0x5, 0x3c, 0x5, 0x3, 0x5, 0x9, 0x2}, {0x80000001, 0x1, 0x32, 0xad, 0x6e, 0xfb, 0x7f, 0x6, 0x7, 0x40, 0x40, 0x0, 0x8}, {0x9, 0x8, 0x9, 0x4, 0x8, 0x1, 0xe1, 0x81, 0x1, 0x3, 0x0, 0x2, 0x1}], 0x1}) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) r4 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x20001, 0x0) ioctl$KVM_SET_MSRS(r4, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="050007000000000000000000000000000200000000000000cf0a000000000000020000000000000077030000000000000200000000000000480a000000000000ff0100000000000008090000000000008011000000000000"]) ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000040)=0x2000013) ioctl$KDADDIO(r3, 0x400455c8, 0x1) ioctl$TIOCSETD(r3, 0x5412, &(0x7f0000000080)=0x1) [ 1554.656664] FAULT_INJECTION: forcing a failure. [ 1554.656664] name failslab, interval 1, probability 0, space 0, times 0 [ 1554.674108] CPU: 1 PID: 15199 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1554.681966] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1554.691343] Call Trace: [ 1554.693964] dump_stack+0x197/0x210 [ 1554.694652] Bluetooth: hci2: Frame reassembly failed (-84) [ 1554.697629] should_fail.cold+0xa/0x1b [ 1554.697654] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1554.697672] ? lock_downgrade+0x880/0x880 [ 1554.697696] __should_failslab+0x121/0x190 [ 1554.721137] should_failslab+0x9/0x14 [ 1554.721159] kmem_cache_alloc_node_trace+0x274/0x720 [ 1554.730090] ? __alloc_skb+0xd5/0x5f0 [ 1554.733985] __kmalloc_node_track_caller+0x3d/0x80 [ 1554.734007] __kmalloc_reserve.isra.0+0x40/0xf0 [ 1554.734027] __alloc_skb+0x10b/0x5f0 [ 1554.747384] ? skb_trim+0x190/0x190 [ 1554.751171] ? copyin+0xb5/0x100 [ 1554.754566] sk_stream_alloc_skb+0xc8/0x860 [ 1554.758927] tcp_sendmsg_locked+0xc9d/0x3290 [ 1554.763359] ? tcp_sendpage+0x60/0x60 [ 1554.767184] ? trace_hardirqs_on+0x67/0x220 [ 1554.771636] ? lock_sock_nested+0x9a/0x120 [ 1554.776075] ? __local_bh_enable_ip+0x15a/0x270 [ 1554.780770] tcp_sendmsg+0x30/0x50 [ 1554.784327] inet_sendmsg+0x141/0x5d0 [ 1554.788135] ? ipip_gro_receive+0x100/0x100 [ 1554.792556] sock_sendmsg+0xd7/0x130 [ 1554.796272] __sys_sendto+0x262/0x380 [ 1554.800189] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1554.804875] ? kasan_check_write+0x14/0x20 [ 1554.809125] ? __sb_end_write+0xd9/0x110 [ 1554.813197] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1554.818740] ? fput+0x128/0x1a0 [ 1554.822032] ? ksys_write+0x1f1/0x2d0 [ 1554.825908] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1554.830672] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1554.835446] ? do_syscall_64+0x26/0x620 [ 1554.839434] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1554.844798] __x64_sys_sendto+0xe1/0x1a0 [ 1554.848878] do_syscall_64+0xfd/0x620 [ 1554.852703] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1554.857889] RIP: 0033:0x45aff9 [ 1554.861102] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1554.880046] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1554.887759] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1554.895037] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 18:21:04 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f00000001c0)=0x13) r1 = openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/avc/cache_stats\x00', 0x0, 0x0) openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ttyprintk\x00', 0x480100, 0x0) getsockopt$inet6_buf(r1, 0x29, 0x16, &(0x7f0000000100)=""/54, &(0x7f0000000140)=0x36) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) execve(&(0x7f0000000200)='./file0\x00', &(0x7f00000004c0)=[&(0x7f0000000240)='/dev/ttyprintk\x00', &(0x7f0000000280)='/selinux/avc/cache_stats\x00', &(0x7f00000002c0)='\x00', &(0x7f0000000300)='/dev/ptmx\x00', &(0x7f0000000340)=')GPL\aeth1vmnet1\'bdev+{system$-\x14\x00', &(0x7f0000000380)='/dev/ttyprintk\x00', &(0x7f00000003c0)='/dev/ttyprintk\x00', &(0x7f0000000400)='/dev/ttyprintk\x00', &(0x7f0000000440)='\x00', &(0x7f0000000480)='/dev/ttyprintk\x00'], &(0x7f0000000540)) [ 1554.902313] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1554.909591] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1554.916987] R13: 0000000000000992 R14: 00000000004cacca R15: 000000000000004d 18:21:04 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x0, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:21:04 executing program 3 (fault-call:8 fault-nth:78): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1555.072961] FAULT_INJECTION: forcing a failure. [ 1555.072961] name failslab, interval 1, probability 0, space 0, times 0 [ 1555.085645] CPU: 0 PID: 15215 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1555.093673] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1555.103220] Call Trace: [ 1555.105822] dump_stack+0x197/0x210 [ 1555.109463] should_fail.cold+0xa/0x1b [ 1555.113364] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1555.118559] ? lock_downgrade+0x880/0x880 [ 1555.122751] __should_failslab+0x121/0x190 [ 1555.127011] should_failslab+0x9/0x14 [ 1555.130819] kmem_cache_alloc_node+0x26c/0x710 [ 1555.135398] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1555.140983] ? tcp_established_options+0x2ae/0x490 [ 1555.145980] __alloc_skb+0xd5/0x5f0 [ 1555.149629] ? skb_trim+0x190/0x190 [ 1555.153382] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1555.158945] sk_stream_alloc_skb+0xc8/0x860 [ 1555.163275] tcp_sendmsg_locked+0xc9d/0x3290 [ 1555.167710] ? tcp_sendpage+0x60/0x60 [ 1555.171530] ? trace_hardirqs_on+0x67/0x220 [ 1555.175859] ? lock_sock_nested+0x9a/0x120 [ 1555.180103] ? __local_bh_enable_ip+0x15a/0x270 [ 1555.184904] tcp_sendmsg+0x30/0x50 [ 1555.188481] inet_sendmsg+0x141/0x5d0 [ 1555.192349] ? ipip_gro_receive+0x100/0x100 [ 1555.196848] sock_sendmsg+0xd7/0x130 [ 1555.200630] __sys_sendto+0x262/0x380 [ 1555.204465] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1555.209146] ? kasan_check_write+0x14/0x20 [ 1555.213405] ? __sb_end_write+0xd9/0x110 [ 1555.217642] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1555.223267] ? fput+0x128/0x1a0 [ 1555.226568] ? ksys_write+0x1f1/0x2d0 [ 1555.230455] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1555.235308] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1555.240139] ? do_syscall_64+0x26/0x620 [ 1555.244134] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1555.249706] __x64_sys_sendto+0xe1/0x1a0 [ 1555.253800] do_syscall_64+0xfd/0x620 [ 1555.257908] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1555.263362] RIP: 0033:0x45aff9 [ 1555.266660] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1555.286601] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1555.294324] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1555.301600] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1555.308882] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1555.316165] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1555.323433] R13: 0000000000000992 R14: 00000000004cacca R15: 000000000000004e 18:21:04 executing program 3 (fault-call:8 fault-nth:79): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1555.436765] FAULT_INJECTION: forcing a failure. [ 1555.436765] name failslab, interval 1, probability 0, space 0, times 0 [ 1555.452628] CPU: 1 PID: 15220 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1555.460477] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1555.470046] Call Trace: [ 1555.472676] dump_stack+0x197/0x210 [ 1555.476332] should_fail.cold+0xa/0x1b [ 1555.480246] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1555.485360] ? lock_downgrade+0x880/0x880 [ 1555.489546] __should_failslab+0x121/0x190 [ 1555.493816] should_failslab+0x9/0x14 [ 1555.497670] kmem_cache_alloc_node+0x26c/0x710 [ 1555.502278] ? __might_fault+0x12b/0x1e0 [ 1555.506377] __alloc_skb+0xd5/0x5f0 [ 1555.510026] ? skb_trim+0x190/0x190 [ 1555.513863] ? copyin+0xb5/0x100 [ 1555.517244] sk_stream_alloc_skb+0xc8/0x860 [ 1555.521578] tcp_sendmsg_locked+0xc9d/0x3290 [ 1555.525994] ? tcp_sendpage+0x60/0x60 [ 1555.529792] ? trace_hardirqs_on+0x67/0x220 [ 1555.534172] ? lock_sock_nested+0x9a/0x120 [ 1555.538427] ? __local_bh_enable_ip+0x15a/0x270 [ 1555.543129] tcp_sendmsg+0x30/0x50 [ 1555.546741] inet_sendmsg+0x141/0x5d0 [ 1555.550546] ? ipip_gro_receive+0x100/0x100 [ 1555.554872] sock_sendmsg+0xd7/0x130 [ 1555.558588] __sys_sendto+0x262/0x380 [ 1555.562404] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1555.567112] ? kasan_check_write+0x14/0x20 [ 1555.571367] ? __sb_end_write+0xd9/0x110 [ 1555.575449] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1555.580991] ? fput+0x128/0x1a0 [ 1555.584394] ? ksys_write+0x1f1/0x2d0 [ 1555.588214] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1555.592981] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1555.597758] ? do_syscall_64+0x26/0x620 [ 1555.601741] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1555.607105] __x64_sys_sendto+0xe1/0x1a0 [ 1555.611263] do_syscall_64+0xfd/0x620 [ 1555.615091] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1555.620298] RIP: 0033:0x45aff9 [ 1555.623485] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1555.642697] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1555.650498] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1555.657776] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1555.665065] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1555.672459] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1555.679735] R13: 0000000000000992 R14: 00000000004cacca R15: 000000000000004f 18:21:05 executing program 3 (fault-call:8 fault-nth:80): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1555.782219] FAULT_INJECTION: forcing a failure. [ 1555.782219] name failslab, interval 1, probability 0, space 0, times 0 [ 1555.794089] CPU: 0 PID: 15225 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1555.801907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1555.811269] Call Trace: [ 1555.813879] dump_stack+0x197/0x210 [ 1555.817509] should_fail.cold+0xa/0x1b [ 1555.821406] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1555.826568] ? lock_downgrade+0x880/0x880 18:21:05 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1555.830750] __should_failslab+0x121/0x190 [ 1555.835006] should_failslab+0x9/0x14 [ 1555.838886] kmem_cache_alloc_node+0x26c/0x710 [ 1555.843474] ? __might_fault+0x12b/0x1e0 [ 1555.847571] __alloc_skb+0xd5/0x5f0 [ 1555.851336] ? skb_trim+0x190/0x190 [ 1555.854987] ? copyin+0xb5/0x100 [ 1555.858382] sk_stream_alloc_skb+0xc8/0x860 [ 1555.862733] tcp_sendmsg_locked+0xc9d/0x3290 [ 1555.867175] ? tcp_sendpage+0x60/0x60 [ 1555.870993] ? trace_hardirqs_on+0x67/0x220 [ 1555.875340] ? lock_sock_nested+0x9a/0x120 [ 1555.879603] ? __local_bh_enable_ip+0x15a/0x270 [ 1555.884311] tcp_sendmsg+0x30/0x50 [ 1555.887875] inet_sendmsg+0x141/0x5d0 [ 1555.891679] ? ipip_gro_receive+0x100/0x100 [ 1555.896018] sock_sendmsg+0xd7/0x130 [ 1555.899743] __sys_sendto+0x262/0x380 [ 1555.903669] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1555.908356] ? kasan_check_write+0x14/0x20 [ 1555.912611] ? __sb_end_write+0xd9/0x110 [ 1555.916700] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1555.922350] ? fput+0x128/0x1a0 [ 1555.925648] ? ksys_write+0x1f1/0x2d0 [ 1555.929462] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1555.934235] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1555.939005] ? do_syscall_64+0x26/0x620 [ 1555.943002] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1555.948370] __x64_sys_sendto+0xe1/0x1a0 [ 1555.952449] do_syscall_64+0xfd/0x620 [ 1555.956276] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1555.961468] RIP: 0033:0x45aff9 [ 1555.964669] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1555.983939] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1555.991670] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1555.999104] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1556.006384] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1556.013676] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1556.021058] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000050 [ 1556.029261] Bluetooth: hci0: command 0x1003 tx timeout [ 1556.035774] Bluetooth: hci0: sending frame failed (-49) 18:21:05 executing program 3 (fault-call:8 fault-nth:81): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1556.142071] FAULT_INJECTION: forcing a failure. [ 1556.142071] name failslab, interval 1, probability 0, space 0, times 0 [ 1556.153542] CPU: 0 PID: 15230 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1556.161350] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1556.170811] Call Trace: [ 1556.173403] dump_stack+0x197/0x210 [ 1556.177045] should_fail.cold+0xa/0x1b [ 1556.180972] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1556.186086] ? lock_downgrade+0x880/0x880 [ 1556.190247] __should_failslab+0x121/0x190 [ 1556.194603] should_failslab+0x9/0x14 [ 1556.198423] kmem_cache_alloc_node_trace+0x274/0x720 [ 1556.203562] ? __alloc_skb+0xd5/0x5f0 [ 1556.207393] __kmalloc_node_track_caller+0x3d/0x80 [ 1556.212463] __kmalloc_reserve.isra.0+0x40/0xf0 [ 1556.217169] __alloc_skb+0x10b/0x5f0 [ 1556.220908] ? skb_trim+0x190/0x190 [ 1556.224549] ? copyin+0xb5/0x100 [ 1556.227943] sk_stream_alloc_skb+0xc8/0x860 [ 1556.232381] tcp_sendmsg_locked+0xc9d/0x3290 [ 1556.236814] ? tcp_sendpage+0x60/0x60 [ 1556.240635] ? trace_hardirqs_on+0x67/0x220 [ 1556.244984] ? lock_sock_nested+0x9a/0x120 [ 1556.249363] ? __local_bh_enable_ip+0x15a/0x270 [ 1556.254033] tcp_sendmsg+0x30/0x50 [ 1556.257581] inet_sendmsg+0x141/0x5d0 [ 1556.261396] ? ipip_gro_receive+0x100/0x100 [ 1556.265740] sock_sendmsg+0xd7/0x130 [ 1556.269519] __sys_sendto+0x262/0x380 [ 1556.273345] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1556.278120] ? kasan_check_write+0x14/0x20 [ 1556.282466] ? __sb_end_write+0xd9/0x110 [ 1556.286556] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1556.292093] ? fput+0x128/0x1a0 [ 1556.295394] ? ksys_write+0x1f1/0x2d0 [ 1556.299213] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1556.303981] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1556.308789] ? do_syscall_64+0x26/0x620 [ 1556.312766] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1556.318360] __x64_sys_sendto+0xe1/0x1a0 [ 1556.322436] do_syscall_64+0xfd/0x620 [ 1556.326248] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1556.331441] RIP: 0033:0x45aff9 [ 1556.334636] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1556.353679] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1556.361509] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1556.368790] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1556.376072] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1556.383347] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1556.390630] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000051 [ 1556.743850] Bluetooth: hci2: command 0x1003 tx timeout [ 1556.749449] Bluetooth: hci1: command 0x1003 tx timeout [ 1556.749500] Bluetooth: hci2: sending frame failed (-49) [ 1556.760397] Bluetooth: hci1: sending frame failed (-49) [ 1556.983743] Bluetooth: hci3: command 0x1003 tx timeout [ 1556.989366] Bluetooth: hci3: sending frame failed (-49) [ 1557.463866] Bluetooth: hci4: command 0x1003 tx timeout [ 1557.469494] Bluetooth: hci4: sending frame failed (-49) [ 1558.104030] Bluetooth: hci0: command 0x1001 tx timeout [ 1558.109494] Bluetooth: hci0: sending frame failed (-49) [ 1558.823890] Bluetooth: hci1: command 0x1001 tx timeout [ 1558.829243] Bluetooth: hci2: command 0x1001 tx timeout [ 1558.829305] Bluetooth: hci1: sending frame failed (-49) [ 1558.834696] Bluetooth: hci2: sending frame failed (-49) [ 1559.063842] Bluetooth: hci3: command 0x1001 tx timeout [ 1559.069267] Bluetooth: hci3: sending frame failed (-49) [ 1559.543953] Bluetooth: hci4: command 0x1001 tx timeout [ 1559.549438] Bluetooth: hci4: sending frame failed (-49) [ 1560.183825] Bluetooth: hci0: command 0x1009 tx timeout [ 1560.903864] Bluetooth: hci2: command 0x1009 tx timeout [ 1560.903894] Bluetooth: hci1: command 0x1009 tx timeout [ 1561.143818] Bluetooth: hci3: command 0x1009 tx timeout [ 1561.623796] Bluetooth: hci4: command 0x1009 tx timeout 18:21:13 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5450, &(0x7f0000000080)=0xfffffdfd) 18:21:14 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:21:14 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5441, &(0x7f0000000080)=0xffffffdb) 18:21:14 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:21:14 executing program 3 (fault-call:8 fault-nth:82): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) 18:21:14 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = creat(&(0x7f0000000380)='./bus\x00', 0x0) ioctl$EXT4_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000340)=0xe4) r2 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x0, 0x4002011, r2, 0x0) write$vhci(r2, &(0x7f0000000100)=@HCI_EVENT_PKT={0x4, "9199a0d2f43c281e9ccb15f993a72ae14710549070b3acb6df8c58790453b17942d2132f3129a3c3f1151fe536d655555536112fdb9e4e54f804fef76a055a79615851d7d72c"}, 0x47) ioctl$KDGETKEYCODE(r1, 0x4b4c, &(0x7f0000000000)={0x52c, 0x8}) r3 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x0, 0x4002011, r3, 0x0) r4 = creat(&(0x7f0000000380)='./bus\x00', 0x0) ioctl$EXT4_IOC_SETFLAGS(r4, 0x40086602, &(0x7f0000000340)=0xe4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = dup3(r5, r6, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) ioctl$KDADDIO(r7, 0x400455c8, 0x5c) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) [ 1565.538600] FAULT_INJECTION: forcing a failure. [ 1565.538600] name failslab, interval 1, probability 0, space 0, times 0 [ 1565.563282] CPU: 1 PID: 15242 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1565.571155] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1565.580734] Call Trace: [ 1565.583362] dump_stack+0x197/0x210 18:21:14 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) r1 = creat(&(0x7f0000000100)='./bus\x00', 0x41) ioctl$EXT4_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000340)=0xe4) ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000000)=0x200000f) [ 1565.587026] should_fail.cold+0xa/0x1b [ 1565.591046] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1565.596177] ? lock_downgrade+0x880/0x880 [ 1565.600467] __should_failslab+0x121/0x190 [ 1565.604727] should_failslab+0x9/0x14 [ 1565.608550] kmem_cache_alloc_node+0x26c/0x710 [ 1565.613154] ? __might_fault+0x12b/0x1e0 [ 1565.617253] __alloc_skb+0xd5/0x5f0 [ 1565.620910] ? skb_trim+0x190/0x190 [ 1565.624561] ? copyin+0xb5/0x100 [ 1565.627955] sk_stream_alloc_skb+0xc8/0x860 [ 1565.632300] tcp_sendmsg_locked+0xc9d/0x3290 [ 1565.636847] ? tcp_sendpage+0x60/0x60 [ 1565.640773] ? trace_hardirqs_on+0x67/0x220 [ 1565.645114] ? lock_sock_nested+0x9a/0x120 [ 1565.649369] ? __local_bh_enable_ip+0x15a/0x270 [ 1565.654073] tcp_sendmsg+0x30/0x50 [ 1565.657636] inet_sendmsg+0x141/0x5d0 [ 1565.661469] ? ipip_gro_receive+0x100/0x100 [ 1565.665929] sock_sendmsg+0xd7/0x130 [ 1565.669664] __sys_sendto+0x262/0x380 [ 1565.673485] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1565.674513] audit: type=1804 audit(1579371674.883:87): pid=15248 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op=invalid_pcr cause=open_writers comm="syz-executor.5" name="/root/syzkaller-testdir561611285/syzkaller.nc9SBy/197/bus" dev="sda1" ino=16579 res=1 [ 1565.678193] ? kasan_check_write+0x14/0x20 [ 1565.678223] ? __sb_end_write+0xd9/0x110 [ 1565.713176] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1565.718741] ? fput+0x128/0x1a0 [ 1565.722035] ? ksys_write+0x1f1/0x2d0 [ 1565.725926] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1565.730715] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1565.735642] ? do_syscall_64+0x26/0x620 [ 1565.739613] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1565.745002] __x64_sys_sendto+0xe1/0x1a0 [ 1565.749162] do_syscall_64+0xfd/0x620 [ 1565.752985] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1565.758180] RIP: 0033:0x45aff9 [ 1565.761377] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1565.780393] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1565.788162] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1565.795435] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1565.802711] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1565.809983] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1565.817455] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000052 18:21:15 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:21:15 executing program 3 (fault-call:8 fault-nth:83): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1565.933845] FAULT_INJECTION: forcing a failure. [ 1565.933845] name failslab, interval 1, probability 0, space 0, times 0 [ 1565.951329] CPU: 0 PID: 15258 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1565.959198] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1565.968568] Call Trace: [ 1565.971181] dump_stack+0x197/0x210 [ 1565.974831] should_fail.cold+0xa/0x1b [ 1565.978734] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1565.983840] ? lock_downgrade+0x880/0x880 [ 1565.987995] __should_failslab+0x121/0x190 [ 1565.992233] should_failslab+0x9/0x14 [ 1565.996039] kmem_cache_alloc_node+0x26c/0x710 [ 1566.000615] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1566.006160] ? tcp_established_options+0x2ae/0x490 [ 1566.011206] __alloc_skb+0xd5/0x5f0 [ 1566.014841] ? skb_trim+0x190/0x190 [ 1566.018485] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1566.027749] sk_stream_alloc_skb+0xc8/0x860 18:21:15 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1566.032140] tcp_sendmsg_locked+0xc9d/0x3290 [ 1566.036573] ? tcp_sendpage+0x60/0x60 [ 1566.040506] ? trace_hardirqs_on+0x67/0x220 [ 1566.044832] ? lock_sock_nested+0x9a/0x120 [ 1566.049074] ? __local_bh_enable_ip+0x15a/0x270 [ 1566.053839] tcp_sendmsg+0x30/0x50 [ 1566.057388] inet_sendmsg+0x141/0x5d0 [ 1566.061246] ? ipip_gro_receive+0x100/0x100 [ 1566.065583] sock_sendmsg+0xd7/0x130 [ 1566.069315] __sys_sendto+0x262/0x380 [ 1566.073134] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1566.077835] ? kasan_check_write+0x14/0x20 [ 1566.082104] ? __sb_end_write+0xd9/0x110 [ 1566.086181] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1566.091829] ? fput+0x128/0x1a0 [ 1566.095180] ? ksys_write+0x1f1/0x2d0 [ 1566.099037] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1566.103924] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1566.108698] ? do_syscall_64+0x26/0x620 [ 1566.112688] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1566.118059] __x64_sys_sendto+0xe1/0x1a0 [ 1566.122909] do_syscall_64+0xfd/0x620 [ 1566.126740] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1566.131943] RIP: 0033:0x45aff9 [ 1566.135130] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1566.154122] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1566.161850] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1566.169127] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1566.176404] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1566.183696] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1566.190974] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000053 18:21:15 executing program 3 (fault-call:8 fault-nth:84): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1566.265779] Bluetooth: hci0: command 0x1003 tx timeout [ 1566.271417] Bluetooth: hci0: sending frame failed (-49) [ 1566.311199] FAULT_INJECTION: forcing a failure. [ 1566.311199] name failslab, interval 1, probability 0, space 0, times 0 [ 1566.322727] CPU: 1 PID: 15267 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1566.330537] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1566.339899] Call Trace: [ 1566.342499] dump_stack+0x197/0x210 [ 1566.346179] should_fail.cold+0xa/0x1b [ 1566.350082] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1566.355198] ? lock_downgrade+0x880/0x880 [ 1566.359484] __should_failslab+0x121/0x190 [ 1566.363781] should_failslab+0x9/0x14 [ 1566.367607] kmem_cache_alloc_node+0x26c/0x710 [ 1566.372201] ? __might_fault+0x12b/0x1e0 [ 1566.376272] __alloc_skb+0xd5/0x5f0 [ 1566.379918] ? skb_trim+0x190/0x190 [ 1566.383562] ? copyin+0xb5/0x100 [ 1566.386929] sk_stream_alloc_skb+0xc8/0x860 [ 1566.391334] tcp_sendmsg_locked+0xc9d/0x3290 [ 1566.395759] ? tcp_sendpage+0x60/0x60 [ 1566.399617] ? trace_hardirqs_on+0x67/0x220 [ 1566.403947] ? lock_sock_nested+0x9a/0x120 [ 1566.408184] ? __local_bh_enable_ip+0x15a/0x270 [ 1566.412860] tcp_sendmsg+0x30/0x50 [ 1566.416404] inet_sendmsg+0x141/0x5d0 [ 1566.420213] ? ipip_gro_receive+0x100/0x100 [ 1566.424535] sock_sendmsg+0xd7/0x130 [ 1566.428256] __sys_sendto+0x262/0x380 [ 1566.432059] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1566.436736] ? kasan_check_write+0x14/0x20 [ 1566.441106] ? __sb_end_write+0xd9/0x110 [ 1566.445170] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1566.450712] ? fput+0x128/0x1a0 [ 1566.453988] ? ksys_write+0x1f1/0x2d0 [ 1566.457786] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1566.462548] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1566.467301] ? do_syscall_64+0x26/0x620 [ 1566.471280] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1566.476794] __x64_sys_sendto+0xe1/0x1a0 [ 1566.480973] do_syscall_64+0xfd/0x620 [ 1566.484781] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1566.489974] RIP: 0033:0x45aff9 [ 1566.493176] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 18:21:15 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1566.512180] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1566.519884] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1566.527162] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1566.534486] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1566.541759] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1566.549031] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000054 [ 1566.903781] Bluetooth: hci1: command 0x1003 tx timeout [ 1566.909333] Bluetooth: hci1: sending frame failed (-49) [ 1567.783763] Bluetooth: hci3: command 0x1003 tx timeout [ 1567.789127] Bluetooth: hci2: command 0x1003 tx timeout [ 1567.789182] Bluetooth: hci3: sending frame failed (-49) [ 1567.800049] Bluetooth: hci2: sending frame failed (-49) [ 1568.343756] Bluetooth: hci0: command 0x1001 tx timeout [ 1568.349211] Bluetooth: hci0: sending frame failed (-49) [ 1568.983889] Bluetooth: hci1: command 0x1001 tx timeout [ 1568.989436] Bluetooth: hci1: sending frame failed (-49) [ 1569.863817] Bluetooth: hci2: command 0x1001 tx timeout [ 1569.869332] Bluetooth: hci3: command 0x1001 tx timeout [ 1569.869387] Bluetooth: hci2: sending frame failed (-49) [ 1569.875183] Bluetooth: hci3: sending frame failed (-49) [ 1570.423780] Bluetooth: hci0: command 0x1009 tx timeout [ 1571.063948] Bluetooth: hci1: command 0x1009 tx timeout [ 1571.943813] Bluetooth: hci3: command 0x1009 tx timeout [ 1571.943819] Bluetooth: hci2: command 0x1009 tx timeout 18:21:23 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5451, &(0x7f0000000080)=0xfffffdfd) 18:21:24 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:21:25 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5450, &(0x7f0000000080)=0xffffffdb) 18:21:25 executing program 3 (fault-call:8 fault-nth:85): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) 18:21:25 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:21:25 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = accept(0xffffffffffffffff, &(0x7f0000000100)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000000)=0x80) ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000640)={'vxcan1\x00', 0x0}) r3 = creat(&(0x7f0000000380)='./bus\x00', 0x0) ioctl$EXT4_IOC_SETFLAGS(r3, 0x40086602, &(0x7f0000000340)=0xe4) getsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f0000000680)={{{@in6=@empty, @in6=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@dev}, 0x0, @in6=@ipv4={[], [], @remote}}}, &(0x7f0000000780)=0xe8) setsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f00000007c0)={{{@in6=@initdev={0xfe, 0x88, [], 0x1, 0x0}, @in=@broadcast, 0x4e20, 0x0, 0x4e20, 0x4, 0x11, 0x80, 0x180, 0x6, r2, r4}, {0x8000, 0x46, 0x98, 0xc2e0, 0x1, 0x5, 0x3f, 0x9153}, {0x4, 0x7, 0x40, 0xfffffffffffffffd}, 0x3e0, 0x6e6bb2, 0x1, 0x0, 0x1, 0x1}, {{@in6=@mcast1, 0x4d6, 0x33}, 0x2, @in=@broadcast, 0x3507, 0x1cc69d5d120767a8, 0x1, 0x81, 0x3ff, 0xff, 0x9}}, 0xe8) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) [ 1576.410182] FAULT_INJECTION: forcing a failure. [ 1576.410182] name failslab, interval 1, probability 0, space 0, times 0 [ 1576.422113] CPU: 0 PID: 15285 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1576.430046] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1576.439481] Call Trace: [ 1576.442246] dump_stack+0x197/0x210 [ 1576.445906] should_fail.cold+0xa/0x1b [ 1576.449819] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1576.454935] ? lock_downgrade+0x880/0x880 [ 1576.459226] __should_failslab+0x121/0x190 [ 1576.463474] should_failslab+0x9/0x14 [ 1576.467298] kmem_cache_alloc_node_trace+0x274/0x720 [ 1576.472424] ? __alloc_skb+0xd5/0x5f0 [ 1576.476249] __kmalloc_node_track_caller+0x3d/0x80 [ 1576.481186] __kmalloc_reserve.isra.0+0x40/0xf0 [ 1576.485880] __alloc_skb+0x10b/0x5f0 [ 1576.489614] ? skb_trim+0x190/0x190 [ 1576.493246] ? copyin+0xb5/0x100 [ 1576.496629] sk_stream_alloc_skb+0xc8/0x860 [ 1576.500980] tcp_sendmsg_locked+0xc9d/0x3290 [ 1576.503844] Bluetooth: hci0: command 0x1003 tx timeout [ 1576.505418] ? tcp_sendpage+0x60/0x60 [ 1576.505436] ? trace_hardirqs_on+0x67/0x220 [ 1576.505455] ? lock_sock_nested+0x9a/0x120 [ 1576.510833] Bluetooth: hci0: sending frame failed (-49) [ 1576.514549] ? __local_bh_enable_ip+0x15a/0x270 [ 1576.514571] tcp_sendmsg+0x30/0x50 [ 1576.514588] inet_sendmsg+0x141/0x5d0 [ 1576.514603] ? ipip_gro_receive+0x100/0x100 [ 1576.514622] sock_sendmsg+0xd7/0x130 [ 1576.514637] __sys_sendto+0x262/0x380 [ 1576.514654] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1576.514673] ? kasan_check_write+0x14/0x20 [ 1576.561435] ? __sb_end_write+0xd9/0x110 [ 1576.565517] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1576.571067] ? fput+0x128/0x1a0 [ 1576.574366] ? ksys_write+0x1f1/0x2d0 [ 1576.578241] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1576.583129] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1576.587919] ? do_syscall_64+0x26/0x620 [ 1576.591960] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1576.597472] __x64_sys_sendto+0xe1/0x1a0 [ 1576.601536] do_syscall_64+0xfd/0x620 [ 1576.605352] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1576.610559] RIP: 0033:0x45aff9 [ 1576.613875] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1576.632825] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1576.640640] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1576.647924] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 18:21:25 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1576.655215] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1576.662493] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1576.669913] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000055 18:21:26 executing program 3 (fault-call:8 fault-nth:86): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1576.786049] FAULT_INJECTION: forcing a failure. [ 1576.786049] name failslab, interval 1, probability 0, space 0, times 0 [ 1576.797814] CPU: 1 PID: 15297 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1576.805641] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1576.814992] Call Trace: [ 1576.817588] dump_stack+0x197/0x210 [ 1576.821405] should_fail.cold+0xa/0x1b [ 1576.825316] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1576.830417] ? lock_downgrade+0x880/0x880 [ 1576.834570] __should_failslab+0x121/0x190 [ 1576.838938] should_failslab+0x9/0x14 [ 1576.842730] kmem_cache_alloc_node_trace+0x274/0x720 [ 1576.847835] ? __alloc_skb+0xd5/0x5f0 [ 1576.851655] __kmalloc_node_track_caller+0x3d/0x80 [ 1576.856590] __kmalloc_reserve.isra.0+0x40/0xf0 [ 1576.861283] __alloc_skb+0x10b/0x5f0 [ 1576.864998] ? skb_trim+0x190/0x190 [ 1576.868636] ? copyin+0xb5/0x100 [ 1576.872002] sk_stream_alloc_skb+0xc8/0x860 [ 1576.876341] tcp_sendmsg_locked+0xc9d/0x3290 [ 1576.880773] ? tcp_sendpage+0x60/0x60 [ 1576.884587] ? trace_hardirqs_on+0x67/0x220 [ 1576.888909] ? lock_sock_nested+0x9a/0x120 [ 1576.893155] ? __local_bh_enable_ip+0x15a/0x270 [ 1576.897851] tcp_sendmsg+0x30/0x50 [ 1576.901411] inet_sendmsg+0x141/0x5d0 [ 1576.905229] ? ipip_gro_receive+0x100/0x100 [ 1576.909555] sock_sendmsg+0xd7/0x130 [ 1576.913270] __sys_sendto+0x262/0x380 [ 1576.917086] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1576.921780] ? kasan_check_write+0x14/0x20 [ 1576.926033] ? __sb_end_write+0xd9/0x110 [ 1576.930139] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1576.935694] ? fput+0x128/0x1a0 [ 1576.938994] ? ksys_write+0x1f1/0x2d0 [ 1576.942998] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1576.947774] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1576.952819] ? do_syscall_64+0x26/0x620 [ 1576.956808] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1576.962202] __x64_sys_sendto+0xe1/0x1a0 [ 1576.966284] do_syscall_64+0xfd/0x620 [ 1576.970116] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1576.975326] RIP: 0033:0x45aff9 [ 1576.978518] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1576.997708] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1577.005411] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1577.012809] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1577.020083] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1577.027358] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 18:21:26 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1577.034742] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000056 18:21:26 executing program 3 (fault-call:8 fault-nth:87): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1577.143750] Bluetooth: hci1: command 0x1003 tx timeout [ 1577.149407] Bluetooth: hci1: sending frame failed (-49) [ 1577.181090] FAULT_INJECTION: forcing a failure. [ 1577.181090] name failslab, interval 1, probability 0, space 0, times 0 [ 1577.193002] CPU: 1 PID: 15303 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1577.201069] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1577.210603] Call Trace: [ 1577.213228] dump_stack+0x197/0x210 [ 1577.216901] should_fail.cold+0xa/0x1b [ 1577.220863] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1577.226084] ? lock_downgrade+0x880/0x880 [ 1577.230429] __should_failslab+0x121/0x190 [ 1577.234693] should_failslab+0x9/0x14 [ 1577.238560] kmem_cache_alloc_node_trace+0x274/0x720 [ 1577.243686] ? __alloc_skb+0xd5/0x5f0 [ 1577.247502] __kmalloc_node_track_caller+0x3d/0x80 [ 1577.252455] __kmalloc_reserve.isra.0+0x40/0xf0 [ 1577.257149] __alloc_skb+0x10b/0x5f0 [ 1577.260996] ? skb_trim+0x190/0x190 [ 1577.264808] ? copyin+0xb5/0x100 [ 1577.268197] sk_stream_alloc_skb+0xc8/0x860 [ 1577.272533] tcp_sendmsg_locked+0xc9d/0x3290 [ 1577.277017] ? tcp_sendpage+0x60/0x60 [ 1577.280835] ? trace_hardirqs_on+0x67/0x220 [ 1577.285321] ? lock_sock_nested+0x9a/0x120 [ 1577.289570] ? __local_bh_enable_ip+0x15a/0x270 [ 1577.294282] tcp_sendmsg+0x30/0x50 [ 1577.297883] inet_sendmsg+0x141/0x5d0 [ 1577.301780] ? ipip_gro_receive+0x100/0x100 [ 1577.306107] sock_sendmsg+0xd7/0x130 [ 1577.309823] __sys_sendto+0x262/0x380 [ 1577.313725] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1577.318403] ? kasan_check_write+0x14/0x20 [ 1577.322689] ? __sb_end_write+0xd9/0x110 [ 1577.326770] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1577.332387] ? fput+0x128/0x1a0 [ 1577.335671] ? ksys_write+0x1f1/0x2d0 [ 1577.339477] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1577.344236] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1577.349008] ? do_syscall_64+0x26/0x620 [ 1577.352995] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1577.358387] __x64_sys_sendto+0xe1/0x1a0 [ 1577.362462] do_syscall_64+0xfd/0x620 [ 1577.366317] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1577.371542] RIP: 0033:0x45aff9 [ 1577.374740] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1577.393745] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1577.401476] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1577.410272] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1577.417535] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1577.424796] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1577.432215] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000057 18:21:26 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:21:27 executing program 3 (fault-call:8 fault-nth:88): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1577.724822] FAULT_INJECTION: forcing a failure. [ 1577.724822] name failslab, interval 1, probability 0, space 0, times 0 [ 1577.736678] CPU: 1 PID: 15311 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1577.744500] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1577.754009] Call Trace: [ 1577.756626] dump_stack+0x197/0x210 [ 1577.760277] should_fail.cold+0xa/0x1b [ 1577.764181] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1577.769341] ? lock_downgrade+0x880/0x880 [ 1577.773608] __should_failslab+0x121/0x190 [ 1577.777869] should_failslab+0x9/0x14 [ 1577.781687] kmem_cache_alloc_node+0x26c/0x710 [ 1577.786273] ? __might_fault+0x12b/0x1e0 [ 1577.790430] __alloc_skb+0xd5/0x5f0 [ 1577.794088] ? skb_trim+0x190/0x190 [ 1577.797757] ? copyin+0xb5/0x100 [ 1577.801138] sk_stream_alloc_skb+0xc8/0x860 [ 1577.805486] tcp_sendmsg_locked+0xc9d/0x3290 [ 1577.809935] ? tcp_sendpage+0x60/0x60 [ 1577.813765] ? trace_hardirqs_on+0x67/0x220 [ 1577.818094] ? lock_sock_nested+0x9a/0x120 [ 1577.822459] ? __local_bh_enable_ip+0x15a/0x270 [ 1577.827161] tcp_sendmsg+0x30/0x50 [ 1577.830732] inet_sendmsg+0x141/0x5d0 [ 1577.834543] ? ipip_gro_receive+0x100/0x100 [ 1577.838872] sock_sendmsg+0xd7/0x130 [ 1577.842577] __sys_sendto+0x262/0x380 [ 1577.846379] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1577.851054] ? kasan_check_write+0x14/0x20 [ 1577.855310] ? __sb_end_write+0xd9/0x110 [ 1577.859382] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1577.865046] ? fput+0x128/0x1a0 [ 1577.868949] ? ksys_write+0x1f1/0x2d0 [ 1577.872756] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1577.877527] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1577.882295] ? do_syscall_64+0x26/0x620 [ 1577.886265] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1577.891655] __x64_sys_sendto+0xe1/0x1a0 [ 1577.895772] do_syscall_64+0xfd/0x620 [ 1577.899754] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1577.904951] RIP: 0033:0x45aff9 [ 1577.908191] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1577.927212] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1577.934930] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1577.942296] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1577.949567] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1577.957019] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1577.964326] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000058 [ 1578.423755] Bluetooth: hci2: command 0x1003 tx timeout [ 1578.429354] Bluetooth: hci2: sending frame failed (-49) [ 1578.503773] Bluetooth: hci3: command 0x1003 tx timeout [ 1578.509247] Bluetooth: hci3: sending frame failed (-49) [ 1578.583841] Bluetooth: hci0: command 0x1001 tx timeout [ 1578.589331] Bluetooth: hci0: sending frame failed (-49) [ 1579.223820] Bluetooth: hci1: command 0x1001 tx timeout [ 1579.229295] Bluetooth: hci1: sending frame failed (-49) [ 1580.503868] Bluetooth: hci2: command 0x1001 tx timeout [ 1580.509354] Bluetooth: hci2: sending frame failed (-49) [ 1580.583875] Bluetooth: hci3: command 0x1001 tx timeout [ 1580.589308] Bluetooth: hci3: sending frame failed (-49) [ 1580.663843] Bluetooth: hci0: command 0x1009 tx timeout [ 1581.303830] Bluetooth: hci1: command 0x1009 tx timeout [ 1582.583860] Bluetooth: hci2: command 0x1009 tx timeout [ 1582.663878] Bluetooth: hci3: command 0x1009 tx timeout 18:21:33 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5452, &(0x7f0000000080)=0xfffffdfd) 18:21:34 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:21:35 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5451, &(0x7f0000000080)=0xffffffdb) 18:21:35 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:21:35 executing program 3 (fault-call:8 fault-nth:89): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) 18:21:35 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0x100001b) [ 1586.662421] FAULT_INJECTION: forcing a failure. [ 1586.662421] name failslab, interval 1, probability 0, space 0, times 0 [ 1586.677543] CPU: 0 PID: 15324 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1586.685388] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1586.694757] Call Trace: [ 1586.697375] dump_stack+0x197/0x210 [ 1586.701034] should_fail.cold+0xa/0x1b [ 1586.704962] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1586.710100] ? lock_downgrade+0x880/0x880 [ 1586.714270] __should_failslab+0x121/0x190 [ 1586.718508] should_failslab+0x9/0x14 [ 1586.722298] kmem_cache_alloc_node_trace+0x274/0x720 [ 1586.727393] ? __alloc_skb+0xd5/0x5f0 [ 1586.731226] __kmalloc_node_track_caller+0x3d/0x80 [ 1586.736147] __kmalloc_reserve.isra.0+0x40/0xf0 [ 1586.740922] __alloc_skb+0x10b/0x5f0 [ 1586.744640] ? skb_trim+0x190/0x190 [ 1586.748256] ? copyin+0xb5/0x100 [ 1586.751617] sk_stream_alloc_skb+0xc8/0x860 [ 1586.755973] tcp_sendmsg_locked+0xc9d/0x3290 [ 1586.760406] ? tcp_sendpage+0x60/0x60 [ 1586.764236] ? trace_hardirqs_on+0x67/0x220 [ 1586.768580] ? lock_sock_nested+0x9a/0x120 [ 1586.772837] ? __local_bh_enable_ip+0x15a/0x270 [ 1586.777516] tcp_sendmsg+0x30/0x50 [ 1586.781057] inet_sendmsg+0x141/0x5d0 [ 1586.784850] ? ipip_gro_receive+0x100/0x100 [ 1586.789188] sock_sendmsg+0xd7/0x130 [ 1586.792891] __sys_sendto+0x262/0x380 [ 1586.796718] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1586.801382] ? kasan_check_write+0x14/0x20 [ 1586.805614] ? __sb_end_write+0xd9/0x110 [ 1586.809679] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1586.815219] ? fput+0x128/0x1a0 [ 1586.818487] ? ksys_write+0x1f1/0x2d0 [ 1586.822279] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1586.827039] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1586.831799] ? do_syscall_64+0x26/0x620 [ 1586.835912] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1586.841282] __x64_sys_sendto+0xe1/0x1a0 [ 1586.845349] do_syscall_64+0xfd/0x620 [ 1586.849165] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1586.854357] RIP: 0033:0x45aff9 [ 1586.857539] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1586.876547] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1586.884251] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1586.891570] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1586.898841] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1586.906147] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 18:21:36 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1586.913416] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000059 [ 1586.921377] Bluetooth: hci0: command 0x1003 tx timeout [ 1586.927138] Bluetooth: hci0: sending frame failed (-49) 18:21:36 executing program 3 (fault-call:8 fault-nth:90): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1587.124256] FAULT_INJECTION: forcing a failure. [ 1587.124256] name failslab, interval 1, probability 0, space 0, times 0 [ 1587.135772] CPU: 1 PID: 15338 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1587.143718] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1587.153223] Call Trace: [ 1587.155927] dump_stack+0x197/0x210 [ 1587.159567] should_fail.cold+0xa/0x1b [ 1587.163535] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1587.168655] ? lock_downgrade+0x880/0x880 [ 1587.172840] __should_failslab+0x121/0x190 [ 1587.177094] should_failslab+0x9/0x14 [ 1587.180916] kmem_cache_alloc_node+0x26c/0x710 [ 1587.185489] ? __might_fault+0x12b/0x1e0 [ 1587.189573] __alloc_skb+0xd5/0x5f0 [ 1587.193193] ? skb_trim+0x190/0x190 [ 1587.196831] ? copyin+0xb5/0x100 [ 1587.200200] sk_stream_alloc_skb+0xc8/0x860 [ 1587.204558] tcp_sendmsg_locked+0xc9d/0x3290 [ 1587.209010] ? tcp_sendpage+0x60/0x60 [ 1587.212894] ? trace_hardirqs_on+0x67/0x220 [ 1587.217235] ? lock_sock_nested+0x9a/0x120 [ 1587.221489] ? __local_bh_enable_ip+0x15a/0x270 [ 1587.226171] tcp_sendmsg+0x30/0x50 [ 1587.229711] inet_sendmsg+0x141/0x5d0 [ 1587.233506] ? ipip_gro_receive+0x100/0x100 [ 1587.237832] sock_sendmsg+0xd7/0x130 [ 1587.241540] __sys_sendto+0x262/0x380 [ 1587.245333] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1587.250023] ? kasan_check_write+0x14/0x20 [ 1587.254312] ? __sb_end_write+0xd9/0x110 [ 1587.258435] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1587.263992] ? fput+0x128/0x1a0 [ 1587.267276] ? ksys_write+0x1f1/0x2d0 [ 1587.271088] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1587.275875] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1587.280659] ? do_syscall_64+0x26/0x620 [ 1587.284643] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1587.290069] __x64_sys_sendto+0xe1/0x1a0 [ 1587.294136] do_syscall_64+0xfd/0x620 [ 1587.297932] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1587.303110] RIP: 0033:0x45aff9 [ 1587.306292] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1587.325185] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1587.332887] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1587.340147] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1587.347407] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1587.354684] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1587.361955] R13: 0000000000000992 R14: 00000000004cacca R15: 000000000000005a [ 1587.394082] Bluetooth: hci1: command 0x1003 tx timeout [ 1587.399715] Bluetooth: hci1: sending frame failed (-49) 18:21:36 executing program 3 (fault-call:8 fault-nth:91): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1587.548666] FAULT_INJECTION: forcing a failure. [ 1587.548666] name failslab, interval 1, probability 0, space 0, times 0 [ 1587.563357] CPU: 1 PID: 15341 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1587.571265] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1587.580636] Call Trace: [ 1587.583224] dump_stack+0x197/0x210 [ 1587.586853] should_fail.cold+0xa/0x1b [ 1587.590750] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1587.595856] ? lock_downgrade+0x880/0x880 [ 1587.600029] __should_failslab+0x121/0x190 [ 1587.604262] should_failslab+0x9/0x14 [ 1587.608059] kmem_cache_alloc_node+0x26c/0x710 [ 1587.612635] ? __might_fault+0x12b/0x1e0 [ 1587.616696] __alloc_skb+0xd5/0x5f0 [ 1587.620319] ? skb_trim+0x190/0x190 [ 1587.623936] ? copyin+0xb5/0x100 [ 1587.627297] sk_stream_alloc_skb+0xc8/0x860 [ 1587.631613] tcp_sendmsg_locked+0xc9d/0x3290 [ 1587.636253] ? tcp_sendpage+0x60/0x60 [ 1587.640164] ? trace_hardirqs_on+0x67/0x220 [ 1587.644491] ? lock_sock_nested+0x9a/0x120 [ 1587.648729] ? __local_bh_enable_ip+0x15a/0x270 [ 1587.653420] tcp_sendmsg+0x30/0x50 [ 1587.657000] inet_sendmsg+0x141/0x5d0 [ 1587.660796] ? ipip_gro_receive+0x100/0x100 [ 1587.665117] sock_sendmsg+0xd7/0x130 [ 1587.668825] __sys_sendto+0x262/0x380 [ 1587.672648] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1587.677332] ? kasan_check_write+0x14/0x20 [ 1587.681601] ? __sb_end_write+0xd9/0x110 [ 1587.685678] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1587.691216] ? fput+0x128/0x1a0 [ 1587.694516] ? ksys_write+0x1f1/0x2d0 [ 1587.698324] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1587.703097] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1587.707876] ? do_syscall_64+0x26/0x620 [ 1587.711974] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1587.717404] __x64_sys_sendto+0xe1/0x1a0 [ 1587.721516] do_syscall_64+0xfd/0x620 [ 1587.725330] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1587.730518] RIP: 0033:0x45aff9 18:21:37 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) [ 1587.733721] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1587.752635] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1587.760343] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1587.767618] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1587.774900] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1587.782179] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1587.789470] R13: 0000000000000992 R14: 00000000004cacca R15: 000000000000005b 18:21:37 executing program 3 (fault-call:8 fault-nth:92): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1587.899156] FAULT_INJECTION: forcing a failure. [ 1587.899156] name failslab, interval 1, probability 0, space 0, times 0 [ 1587.910987] CPU: 1 PID: 15346 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1587.919003] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1587.928514] Call Trace: [ 1587.931382] dump_stack+0x197/0x210 [ 1587.935384] should_fail.cold+0xa/0x1b [ 1587.941378] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1587.946572] ? lock_downgrade+0x880/0x880 [ 1587.950818] __should_failslab+0x121/0x190 [ 1587.955057] should_failslab+0x9/0x14 [ 1587.958860] kmem_cache_alloc_node_trace+0x274/0x720 [ 1587.963964] ? __alloc_skb+0xd5/0x5f0 [ 1587.967776] __kmalloc_node_track_caller+0x3d/0x80 [ 1587.972707] __kmalloc_reserve.isra.0+0x40/0xf0 [ 1587.977445] __alloc_skb+0x10b/0x5f0 [ 1587.981160] ? skb_trim+0x190/0x190 [ 1587.984784] ? copyin+0xb5/0x100 [ 1587.988209] sk_stream_alloc_skb+0xc8/0x860 [ 1587.992550] tcp_sendmsg_locked+0xc9d/0x3290 [ 1587.996991] ? tcp_sendpage+0x60/0x60 [ 1588.000850] ? trace_hardirqs_on+0x67/0x220 [ 1588.005235] ? lock_sock_nested+0x9a/0x120 [ 1588.009491] ? __local_bh_enable_ip+0x15a/0x270 [ 1588.014170] tcp_sendmsg+0x30/0x50 [ 1588.017719] inet_sendmsg+0x141/0x5d0 [ 1588.021523] ? ipip_gro_receive+0x100/0x100 [ 1588.025841] sock_sendmsg+0xd7/0x130 [ 1588.029614] __sys_sendto+0x262/0x380 [ 1588.033598] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1588.038267] ? kasan_check_write+0x14/0x20 [ 1588.042546] ? __sb_end_write+0xd9/0x110 [ 1588.046636] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1588.052207] ? fput+0x128/0x1a0 [ 1588.055510] ? ksys_write+0x1f1/0x2d0 [ 1588.059318] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1588.064068] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1588.068829] ? do_syscall_64+0x26/0x620 [ 1588.072805] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1588.078187] __x64_sys_sendto+0xe1/0x1a0 [ 1588.082256] do_syscall_64+0xfd/0x620 [ 1588.086072] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1588.091368] RIP: 0033:0x45aff9 [ 1588.094571] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1588.113692] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1588.121406] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1588.128717] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1588.135985] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1588.147007] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1588.154291] R13: 0000000000000992 R14: 00000000004cacca R15: 000000000000005c 18:21:37 executing program 3 (fault-call:8 fault-nth:93): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1588.249553] FAULT_INJECTION: forcing a failure. [ 1588.249553] name failslab, interval 1, probability 0, space 0, times 0 [ 1588.261216] CPU: 1 PID: 15351 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1588.269036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1588.278398] Call Trace: [ 1588.280987] dump_stack+0x197/0x210 [ 1588.284620] should_fail.cold+0xa/0x1b [ 1588.288540] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1588.293651] ? lock_downgrade+0x880/0x880 [ 1588.297828] __should_failslab+0x121/0x190 [ 1588.302276] should_failslab+0x9/0x14 [ 1588.306101] kmem_cache_alloc_node_trace+0x274/0x720 [ 1588.311256] ? __alloc_skb+0xd5/0x5f0 [ 1588.315447] __kmalloc_node_track_caller+0x3d/0x80 [ 1588.320416] __kmalloc_reserve.isra.0+0x40/0xf0 [ 1588.325205] __alloc_skb+0x10b/0x5f0 [ 1588.328936] ? skb_trim+0x190/0x190 [ 1588.333702] ? copyin+0xb5/0x100 [ 1588.337068] sk_stream_alloc_skb+0xc8/0x860 [ 1588.341397] tcp_sendmsg_locked+0xc9d/0x3290 [ 1588.345869] ? tcp_sendpage+0x60/0x60 [ 1588.349669] ? trace_hardirqs_on+0x67/0x220 [ 1588.353985] ? lock_sock_nested+0x9a/0x120 [ 1588.358219] ? __local_bh_enable_ip+0x15a/0x270 [ 1588.362884] tcp_sendmsg+0x30/0x50 [ 1588.366427] inet_sendmsg+0x141/0x5d0 [ 1588.370229] ? ipip_gro_receive+0x100/0x100 [ 1588.374550] sock_sendmsg+0xd7/0x130 [ 1588.378262] __sys_sendto+0x262/0x380 [ 1588.382062] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1588.386729] ? kasan_check_write+0x14/0x20 [ 1588.390992] ? __sb_end_write+0xd9/0x110 [ 1588.395076] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1588.400679] ? fput+0x128/0x1a0 [ 1588.404019] ? ksys_write+0x1f1/0x2d0 [ 1588.407824] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1588.412674] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1588.417439] ? do_syscall_64+0x26/0x620 [ 1588.421413] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1588.426869] __x64_sys_sendto+0xe1/0x1a0 [ 1588.430949] do_syscall_64+0xfd/0x620 [ 1588.434854] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1588.440050] RIP: 0033:0x45aff9 [ 1588.443257] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1588.462154] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1588.469951] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1588.477279] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1588.484587] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1588.491863] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1588.499131] R13: 0000000000000992 R14: 00000000004cacca R15: 000000000000005d [ 1588.743801] Bluetooth: hci3: command 0x1003 tx timeout [ 1588.749230] Bluetooth: hci2: command 0x1003 tx timeout [ 1588.749258] Bluetooth: hci3: sending frame failed (-49) [ 1588.755079] Bluetooth: hci2: sending frame failed (-49) [ 1588.983741] Bluetooth: hci0: command 0x1001 tx timeout [ 1588.989301] Bluetooth: hci0: sending frame failed (-49) [ 1589.464057] Bluetooth: hci1: command 0x1001 tx timeout [ 1589.469499] Bluetooth: hci1: sending frame failed (-49) [ 1590.823835] Bluetooth: hci3: command 0x1001 tx timeout [ 1590.823841] Bluetooth: hci2: command 0x1001 tx timeout [ 1590.823914] Bluetooth: hci2: sending frame failed (-49) [ 1590.829213] Bluetooth: hci3: sending frame failed (-49) [ 1591.063793] Bluetooth: hci0: command 0x1009 tx timeout [ 1591.543829] Bluetooth: hci1: command 0x1009 tx timeout [ 1592.903814] Bluetooth: hci3: command 0x1009 tx timeout [ 1592.903820] Bluetooth: hci2: command 0x1009 tx timeout 18:21:44 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x545d, &(0x7f0000000080)=0xfffffdfd) 18:21:44 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) socketpair$unix(0x1, 0x2, 0x0, 0x0) r1 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:21:46 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5452, &(0x7f0000000080)=0xffffffdb) 18:21:46 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:21:46 executing program 3 (fault-call:8 fault-nth:94): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) 18:21:46 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) r1 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/enforce\x00', 0x1, 0x0) r2 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/policy\x00', 0x0, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000140)='l2tp\x00') sendmsg$L2TP_CMD_TUNNEL_CREATE(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)={0x1c, r4, 0x917, 0x0, 0x0, {}, [@L2TP_ATTR_CONN_ID={0x8}]}, 0x1c}}, 0x0) sendmsg$L2TP_CMD_TUNNEL_MODIFY(r2, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0xe2194080}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x2c, r4, 0x2, 0x70bd28, 0x25dfdbff, {}, [@L2TP_ATTR_SEND_SEQ={0x5, 0x13, 0x40}, @L2TP_ATTR_DATA_SEQ={0x5, 0x4, 0x1f}, @L2TP_ATTR_PW_TYPE={0x6, 0x1, 0x7}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4048041}, 0x80) getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x24, &(0x7f0000000100)={@dev, @empty, 0x0}, &(0x7f0000000140)=0xc) setsockopt$inet6_mreq(r1, 0x29, 0x1c, &(0x7f0000000180)={@local, r5}, 0x14) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) [ 1596.910935] FAULT_INJECTION: forcing a failure. [ 1596.910935] name failslab, interval 1, probability 0, space 0, times 0 [ 1596.932045] CPU: 1 PID: 15360 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1596.939879] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1596.952272] Call Trace: [ 1596.954876] dump_stack+0x197/0x210 [ 1596.958608] should_fail.cold+0xa/0x1b [ 1596.963639] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1596.968749] ? lock_downgrade+0x880/0x880 [ 1596.972922] __should_failslab+0x121/0x190 [ 1596.977252] should_failslab+0x9/0x14 [ 1596.981049] kmem_cache_alloc_node+0x26c/0x710 [ 1596.985628] ? __might_fault+0x12b/0x1e0 [ 1596.989685] __alloc_skb+0xd5/0x5f0 [ 1596.993298] ? skb_trim+0x190/0x190 [ 1596.996926] ? copyin+0xb5/0x100 [ 1597.000315] sk_stream_alloc_skb+0xc8/0x860 [ 1597.004652] tcp_sendmsg_locked+0xc9d/0x3290 [ 1597.009079] ? tcp_sendpage+0x60/0x60 [ 1597.012932] ? trace_hardirqs_on+0x67/0x220 [ 1597.017262] ? lock_sock_nested+0x9a/0x120 [ 1597.021523] ? __local_bh_enable_ip+0x15a/0x270 [ 1597.026308] tcp_sendmsg+0x30/0x50 [ 1597.029881] inet_sendmsg+0x141/0x5d0 [ 1597.033693] ? ipip_gro_receive+0x100/0x100 [ 1597.038014] sock_sendmsg+0xd7/0x130 [ 1597.041730] __sys_sendto+0x262/0x380 [ 1597.045527] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1597.050193] ? kasan_check_write+0x14/0x20 [ 1597.054425] ? __sb_end_write+0xd9/0x110 [ 1597.058510] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1597.064055] ? fput+0x128/0x1a0 [ 1597.067459] ? ksys_write+0x1f1/0x2d0 [ 1597.071288] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1597.076073] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1597.080818] ? do_syscall_64+0x26/0x620 [ 1597.084785] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1597.090142] __x64_sys_sendto+0xe1/0x1a0 [ 1597.094289] do_syscall_64+0xfd/0x620 [ 1597.098084] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1597.103318] RIP: 0033:0x45aff9 [ 1597.106615] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1597.125564] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1597.133282] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1597.140595] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1597.147858] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1597.155123] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 18:21:46 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000002c0f}}}, 0x90) [ 1597.162392] R13: 0000000000000992 R14: 00000000004cacca R15: 000000000000005e [ 1597.170932] Bluetooth: hci0: command 0x1003 tx timeout [ 1597.181985] Bluetooth: hci0: sending frame failed (-49) 18:21:46 executing program 3 (fault-call:8 fault-nth:95): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) 18:21:46 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4068aea3, &(0x7f0000000240)={0x131}) [ 1597.376139] FAULT_INJECTION: forcing a failure. [ 1597.376139] name failslab, interval 1, probability 0, space 0, times 0 [ 1597.388490] CPU: 1 PID: 15377 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1597.396303] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1597.405651] Call Trace: [ 1597.408244] dump_stack+0x197/0x210 [ 1597.411867] should_fail.cold+0xa/0x1b [ 1597.415749] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1597.420846] ? lock_downgrade+0x880/0x880 [ 1597.425103] __should_failslab+0x121/0x190 [ 1597.429338] should_failslab+0x9/0x14 [ 1597.433129] kmem_cache_alloc_node_trace+0x274/0x720 [ 1597.438229] ? __alloc_skb+0xd5/0x5f0 [ 1597.442035] __kmalloc_node_track_caller+0x3d/0x80 [ 1597.446967] __kmalloc_reserve.isra.0+0x40/0xf0 [ 1597.451639] __alloc_skb+0x10b/0x5f0 [ 1597.455344] ? skb_trim+0x190/0x190 [ 1597.458964] ? copyin+0xb5/0x100 [ 1597.462326] sk_stream_alloc_skb+0xc8/0x860 [ 1597.466642] tcp_sendmsg_locked+0xc9d/0x3290 [ 1597.471063] ? tcp_sendpage+0x60/0x60 [ 1597.474855] ? trace_hardirqs_on+0x67/0x220 [ 1597.479275] ? lock_sock_nested+0x9a/0x120 [ 1597.483504] ? __local_bh_enable_ip+0x15a/0x270 [ 1597.488168] tcp_sendmsg+0x30/0x50 [ 1597.491700] inet_sendmsg+0x141/0x5d0 [ 1597.495492] ? ipip_gro_receive+0x100/0x100 [ 1597.499809] sock_sendmsg+0xd7/0x130 [ 1597.503512] __sys_sendto+0x262/0x380 [ 1597.507311] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1597.511972] ? kasan_check_write+0x14/0x20 [ 1597.516204] ? __sb_end_write+0xd9/0x110 [ 1597.520258] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1597.525810] ? fput+0x128/0x1a0 [ 1597.529078] ? ksys_write+0x1f1/0x2d0 [ 1597.532872] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1597.537617] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1597.542383] ? do_syscall_64+0x26/0x620 [ 1597.546358] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1597.551713] __x64_sys_sendto+0xe1/0x1a0 [ 1597.555768] do_syscall_64+0xfd/0x620 [ 1597.559571] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1597.564762] RIP: 0033:0x45aff9 [ 1597.567966] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1597.586883] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1597.594677] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1597.601934] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1597.609301] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1597.616562] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1597.623830] R13: 0000000000000992 R14: 00000000004cacca R15: 000000000000005f [ 1597.642678] Bluetooth: hci1: command 0x1003 tx timeout 18:21:46 executing program 0: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = syz_open_procfs(0x0, &(0x7f0000dec000)='smaps\x00') sendfile(r1, r2, 0x0, 0x320f) writev(0xffffffffffffffff, 0x0, 0x0) write$binfmt_misc(0xffffffffffffffff, 0x0, 0x0) [ 1597.667313] Bluetooth: hci1: sending frame failed (-49) 18:21:47 executing program 0: socket$pppl2tp(0x18, 0x1, 0x1) memfd_create(0x0, 0x0) syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0xca, 0x41a02) timer_create(0x7, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) perf_event_open(&(0x7f0000000000)={0x1, 0x70, 0x2, 0x1, 0x4, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0x0, 0xffffffffffffffff, 0x0) timer_settime(0x0, 0x0, 0x0, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x8) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6(0xa, 0x3, 0xa) truncate(&(0x7f0000000080)='./file0\x00', 0x800) r0 = syz_open_dev$video(&(0x7f0000000040)='/dev/video#\x00', 0x8447, 0x0) ioctl$VIDIOC_S_CTRL(0xffffffffffffffff, 0xc008561c, &(0x7f0000000140)={0x980913}) preadv(r0, &(0x7f0000000800)=[{&(0x7f0000000000)=""/31, 0x1f}, {&(0x7f0000000300)=""/79, 0x4f}, {0x0}, {0x0}], 0x4, 0x0) 18:21:47 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) pipe(0x0) pipe(0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x4a, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) [ 1597.781098] vivid-000: kernel_thread() failed [ 1598.983744] Bluetooth: hci3: command 0x1003 tx timeout [ 1598.989175] Bluetooth: hci3: sending frame failed (-49) [ 1598.994705] Bluetooth: hci2: command 0x1003 tx timeout [ 1599.000062] Bluetooth: hci2: sending frame failed (-49) [ 1599.223826] Bluetooth: hci0: command 0x1001 tx timeout [ 1599.229237] Bluetooth: hci0: sending frame failed (-49) [ 1599.703899] Bluetooth: hci1: command 0x1001 tx timeout [ 1599.709316] Bluetooth: hci1: sending frame failed (-49) [ 1601.063810] Bluetooth: hci2: command 0x1001 tx timeout [ 1601.069271] Bluetooth: hci2: sending frame failed (-49) [ 1601.074807] Bluetooth: hci3: command 0x1001 tx timeout [ 1601.080298] Bluetooth: hci3: sending frame failed (-49) [ 1601.304012] Bluetooth: hci0: command 0x1009 tx timeout [ 1601.783895] Bluetooth: hci1: command 0x1009 tx timeout [ 1603.143794] Bluetooth: hci3: command 0x1009 tx timeout [ 1603.143820] Bluetooth: hci2: command 0x1009 tx timeout 18:21:54 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5460, &(0x7f0000000080)=0xfffffdfd) 18:21:55 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) socketpair$unix(0x1, 0x2, 0x0, 0x0) r1 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:21:56 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x545d, &(0x7f0000000080)=0xffffffdb) 18:21:56 executing program 3 (fault-call:8 fault-nth:96): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) 18:21:56 executing program 0: r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000640)='/dev/ttyS3\x00', 0x0, 0x0) ioctl$TIOCSSOFTCAR(r0, 0xc0285443, 0x0) 18:21:56 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) r1 = add_key(&(0x7f0000000000)='id_legacy\x00', &(0x7f0000000040)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe) keyctl$search(0xa, r1, 0x0, 0x0, 0x0) r2 = request_key(&(0x7f0000000100)='ceph\x00', &(0x7f0000000140)={'syz', 0x3}, &(0x7f0000000180)='\x00', r1) r3 = add_key(&(0x7f00000001c0)='pkcs7_test\x00', &(0x7f0000000040)={'syz', 0x1}, 0x0, 0x0, r2) keyctl$search(0xa, r3, 0x0, 0x0, r3) keyctl$revoke(0x3, r3) [ 1607.147246] FAULT_INJECTION: forcing a failure. [ 1607.147246] name failslab, interval 1, probability 0, space 0, times 0 [ 1607.174620] CPU: 1 PID: 15407 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1607.182578] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1607.192057] Call Trace: 18:21:56 executing program 0: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x2a9, &(0x7f0000000000)={&(0x7f0000000080)=@newlink={0x48, 0x10, 0x705, 0x0, 0x0, {0x0, 0x0, 0x0, r4}, [@IFLA_LINKINFO={0x28, 0x12, @veth={{0x9, 0x1, 'veth\x00'}, {0x18, 0x2, @val=@VETH_INFO_PEER={0x14}}}}]}, 0x48}}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="38000000240007050000000000a2a30005000000", @ANYRES32=r4, @ANYBLOB="00000000ffffffff000000000900010068667363000000000800020000000000"], 0x38}}, 0x0) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000340)=ANY=[@ANYBLOB="3400000024000100"/20, @ANYRES32=r4, @ANYBLOB="00000080ffffffff140012df08000e006970697000000000040002009c6a5eb327508d380190e4dcb99533d89d74f4a82c60d118a1a303ed09f8644592b78963982d087b1582aff984bf7d9d"], 0x34}}, 0x0) 18:21:56 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) gettid() ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) [ 1607.194668] dump_stack+0x197/0x210 [ 1607.198321] should_fail.cold+0xa/0x1b [ 1607.202232] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1607.207458] ? lock_downgrade+0x880/0x880 [ 1607.211640] __should_failslab+0x121/0x190 [ 1607.215900] should_failslab+0x9/0x14 [ 1607.219721] kmem_cache_alloc_node+0x26c/0x710 [ 1607.224320] ? __might_fault+0x12b/0x1e0 [ 1607.228524] __alloc_skb+0xd5/0x5f0 [ 1607.232177] ? skb_trim+0x190/0x190 [ 1607.236032] ? copyin+0xb5/0x100 [ 1607.239432] sk_stream_alloc_skb+0xc8/0x860 [ 1607.243779] tcp_sendmsg_locked+0xc9d/0x3290 [ 1607.248239] ? tcp_sendpage+0x60/0x60 [ 1607.252373] ? trace_hardirqs_on+0x67/0x220 [ 1607.256717] ? lock_sock_nested+0x9a/0x120 [ 1607.260983] ? __local_bh_enable_ip+0x15a/0x270 [ 1607.265695] tcp_sendmsg+0x30/0x50 [ 1607.269272] inet_sendmsg+0x141/0x5d0 [ 1607.273100] ? ipip_gro_receive+0x100/0x100 [ 1607.277445] sock_sendmsg+0xd7/0x130 [ 1607.281181] __sys_sendto+0x262/0x380 [ 1607.285046] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1607.289756] ? kasan_check_write+0x14/0x20 [ 1607.294034] ? __sb_end_write+0xd9/0x110 [ 1607.298116] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1607.303681] ? fput+0x128/0x1a0 [ 1607.306987] ? ksys_write+0x1f1/0x2d0 [ 1607.310811] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1607.315595] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1607.318133] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 1607.320369] ? do_syscall_64+0x26/0x620 [ 1607.320388] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1607.320408] __x64_sys_sendto+0xe1/0x1a0 [ 1607.320429] do_syscall_64+0xfd/0x620 18:21:56 executing program 0: memfd_create(0x0, 0x0) syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0xca, 0x0) timer_create(0x7, 0x0, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) perf_event_open(&(0x7f0000000000)={0x1, 0x70, 0x2, 0x1, 0x4, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) getsockopt$CAN_RAW_LOOPBACK(0xffffffffffffffff, 0x65, 0x3, 0x0, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x8) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6(0xa, 0x3, 0xa) syz_open_procfs(0x0, 0x0) r0 = syz_open_dev$video(&(0x7f0000000040)='/dev/video#\x00', 0x8447, 0x0) ioctl$VIDIOC_S_CTRL(r0, 0xc008561c, &(0x7f0000000140)={0x980913}) preadv(r0, &(0x7f0000000800)=[{&(0x7f0000000000)=""/31, 0x1f}, {0x0}], 0x2, 0x0) [ 1607.341464] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 1607.342314] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1607.342327] RIP: 0033:0x45aff9 [ 1607.342351] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1607.382049] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1607.389774] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1607.397065] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1607.404440] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1607.411743] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1607.419149] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000060 [ 1607.426795] Bluetooth: hci0: command 0x1003 tx timeout [ 1607.432390] Bluetooth: hci0: sending frame failed (-49) 18:21:56 executing program 0: [ 1607.467885] vivid-000: kernel_thread() failed 18:21:56 executing program 0: 18:21:56 executing program 0: [ 1607.863773] Bluetooth: hci1: command 0x1003 tx timeout [ 1607.869182] Bluetooth: hci1: sending frame failed (-49) [ 1609.223764] Bluetooth: hci2: command 0x1003 tx timeout [ 1609.229235] Bluetooth: hci2: sending frame failed (-49) [ 1609.463752] Bluetooth: hci0: command 0x1001 tx timeout [ 1609.469220] Bluetooth: hci3: command 0x1003 tx timeout [ 1609.469267] Bluetooth: hci0: sending frame failed (-49) [ 1609.474930] Bluetooth: hci3: sending frame failed (-49) [ 1609.943760] Bluetooth: hci1: command 0x1001 tx timeout [ 1609.949166] Bluetooth: hci1: sending frame failed (-49) [ 1611.303780] Bluetooth: hci2: command 0x1001 tx timeout [ 1611.309365] Bluetooth: hci2: sending frame failed (-49) [ 1611.543837] Bluetooth: hci0: command 0x1009 tx timeout [ 1611.543853] Bluetooth: hci3: command 0x1001 tx timeout [ 1611.554567] Bluetooth: hci3: sending frame failed (-49) [ 1612.023773] Bluetooth: hci1: command 0x1009 tx timeout [ 1613.383805] Bluetooth: hci2: command 0x1009 tx timeout [ 1613.623789] Bluetooth: hci3: command 0x1009 tx timeout 18:22:04 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x40049409, &(0x7f0000000080)=0xfffffdfd) 18:22:05 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) socketpair$unix(0x1, 0x2, 0x0, 0x0) r1 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:22:06 executing program 0: 18:22:06 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5460, &(0x7f0000000080)=0xffffffdb) 18:22:06 executing program 3 (fault-call:8 fault-nth:97): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) 18:22:06 executing program 0: [ 1617.356633] FAULT_INJECTION: forcing a failure. [ 1617.356633] name failslab, interval 1, probability 0, space 0, times 0 [ 1617.370632] CPU: 1 PID: 15440 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1617.378466] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1617.387836] Call Trace: [ 1617.390453] dump_stack+0x197/0x210 [ 1617.394201] should_fail.cold+0xa/0x1b [ 1617.398125] ? fault_create_debugfs_attr+0x1e0/0x1e0 18:22:06 executing program 0: [ 1617.403257] ? lock_downgrade+0x880/0x880 [ 1617.407555] __should_failslab+0x121/0x190 [ 1617.411821] should_failslab+0x9/0x14 [ 1617.415650] kmem_cache_alloc_node_trace+0x274/0x720 [ 1617.420783] ? __alloc_skb+0xd5/0x5f0 [ 1617.424620] __kmalloc_node_track_caller+0x3d/0x80 [ 1617.429616] __kmalloc_reserve.isra.0+0x40/0xf0 [ 1617.434441] __alloc_skb+0x10b/0x5f0 [ 1617.438178] ? skb_trim+0x190/0x190 [ 1617.442010] ? copyin+0xb5/0x100 [ 1617.445406] sk_stream_alloc_skb+0xc8/0x860 [ 1617.450205] tcp_sendmsg_locked+0xc9d/0x3290 [ 1617.454644] ? tcp_sendpage+0x60/0x60 [ 1617.458456] ? trace_hardirqs_on+0x67/0x220 [ 1617.462786] ? lock_sock_nested+0x9a/0x120 [ 1617.467073] ? __local_bh_enable_ip+0x15a/0x270 [ 1617.471749] tcp_sendmsg+0x30/0x50 [ 1617.475298] inet_sendmsg+0x141/0x5d0 [ 1617.479225] ? ipip_gro_receive+0x100/0x100 [ 1617.483554] sock_sendmsg+0xd7/0x130 [ 1617.487275] __sys_sendto+0x262/0x380 [ 1617.491076] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1617.495741] ? kasan_check_write+0x14/0x20 [ 1617.500254] ? __sb_end_write+0xd9/0x110 [ 1617.504326] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1617.509869] ? fput+0x128/0x1a0 [ 1617.513171] ? ksys_write+0x1f1/0x2d0 [ 1617.516997] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1617.521758] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1617.526607] ? do_syscall_64+0x26/0x620 [ 1617.530623] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1617.535991] __x64_sys_sendto+0xe1/0x1a0 [ 1617.540208] do_syscall_64+0xfd/0x620 [ 1617.544149] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1617.549338] RIP: 0033:0x45aff9 [ 1617.552535] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1617.571551] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1617.579260] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1617.586532] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1617.593801] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1617.601063] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1617.608341] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000061 [ 1617.631959] Bluetooth: hci0: command 0x1003 tx timeout [ 1617.637407] Bluetooth: hci0: sending frame failed (-49) 18:22:07 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:22:07 executing program 0: r0 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) setregid(0x0, r1) r2 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, 0xfffffffffffffffb) keyctl$revoke(0x6, r2) 18:22:07 executing program 3 (fault-call:8 fault-nth:98): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) 18:22:07 executing program 0: bpf$MAP_CREATE(0x0, &(0x7f00004f9fe4)={0xe, 0x4, 0x4, 0x9}, 0x3c) fcntl$getown(0xffffffffffffffff, 0x9) socket$key(0xf, 0x3, 0x2) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$ppp(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ppp\x00', 0x0, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) setsockopt$inet6_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, 0x0, 0x0) ioperm(0x0, 0x0, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0x12, &(0x7f00000001c0)=0x1, 0x4) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x25, &(0x7f00000007c0)=0x2c0, 0x4) ftruncate(0xffffffffffffffff, 0x0) syz_genetlink_get_family_id$tipc2(0x0) r2 = socket(0x10, 0x80002, 0x0) ioctl(r2, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe8697071") r3 = socket(0x10, 0x80002, 0x0) ioctl(r3, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe8697071") sendmsg$TIPC_NL_MEDIA_GET(r3, 0x0, 0x80) ioctl$FS_IOC_GET_ENCRYPTION_POLICY(0xffffffffffffffff, 0x400c6615, 0x0) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) getsockopt$IP_VS_SO_GET_TIMEOUT(0xffffffffffffffff, 0x0, 0x486, 0x0, 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x141046, 0x0) lseek(0xffffffffffffffff, 0x0, 0x0) r5 = open(0x0, 0x841, 0x8) ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r5, 0x54a2) dup(r4) getsockopt$ARPT_SO_GET_ENTRIES(r1, 0x0, 0x61, 0x0, 0x0) ioctl$PPPIOCGFLAGS1(0xffffffffffffffff, 0x8004745a, 0x0) ftruncate(r4, 0x2007fff) sendfile(r1, r4, 0x0, 0x8000ffeffffe) [ 1618.001166] FAULT_INJECTION: forcing a failure. [ 1618.001166] name failslab, interval 1, probability 0, space 0, times 0 [ 1618.013757] CPU: 0 PID: 15450 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1618.021681] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1618.031048] Call Trace: [ 1618.033674] dump_stack+0x197/0x210 [ 1618.037335] should_fail.cold+0xa/0x1b [ 1618.041271] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1618.046397] ? lock_downgrade+0x880/0x880 [ 1618.050580] __should_failslab+0x121/0x190 [ 1618.054841] should_failslab+0x9/0x14 [ 1618.058656] kmem_cache_alloc_node+0x26c/0x710 [ 1618.063273] ? __might_fault+0x12b/0x1e0 [ 1618.067368] __alloc_skb+0xd5/0x5f0 [ 1618.071031] ? skb_trim+0x190/0x190 [ 1618.074689] ? copyin+0xb5/0x100 [ 1618.078090] sk_stream_alloc_skb+0xc8/0x860 [ 1618.082447] tcp_sendmsg_locked+0xc9d/0x3290 [ 1618.086903] ? tcp_sendpage+0x60/0x60 [ 1618.090730] ? trace_hardirqs_on+0x67/0x220 [ 1618.095081] ? lock_sock_nested+0x9a/0x120 [ 1618.099356] ? __local_bh_enable_ip+0x15a/0x270 [ 1618.104062] tcp_sendmsg+0x30/0x50 [ 1618.108072] inet_sendmsg+0x141/0x5d0 [ 1618.111913] ? ipip_gro_receive+0x100/0x100 [ 1618.116396] sock_sendmsg+0xd7/0x130 [ 1618.120134] __sys_sendto+0x262/0x380 [ 1618.123965] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1618.128663] ? kasan_check_write+0x14/0x20 [ 1618.133042] ? __sb_end_write+0xd9/0x110 [ 1618.137413] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1618.142989] ? fput+0x128/0x1a0 [ 1618.146316] ? ksys_write+0x1f1/0x2d0 [ 1618.150164] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1618.154942] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1618.159851] ? do_syscall_64+0x26/0x620 [ 1618.163939] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1618.169336] __x64_sys_sendto+0xe1/0x1a0 [ 1618.173605] do_syscall_64+0xfd/0x620 [ 1618.177445] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1618.182658] RIP: 0033:0x45aff9 [ 1618.185868] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1618.204786] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1618.212540] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1618.219952] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1618.227244] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1618.234533] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1618.241827] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000062 [ 1618.260374] Bluetooth: hci1: command 0x1003 tx timeout [ 1618.266715] Bluetooth: hci1: sending frame failed (-49) 18:22:07 executing program 3 (fault-call:8 fault-nth:99): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) [ 1618.402629] FAULT_INJECTION: forcing a failure. [ 1618.402629] name failslab, interval 1, probability 0, space 0, times 0 [ 1618.419671] CPU: 0 PID: 15460 Comm: syz-executor.3 Not tainted 4.19.97-syzkaller #0 [ 1618.427516] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1618.436891] Call Trace: [ 1618.439502] dump_stack+0x197/0x210 [ 1618.443165] should_fail.cold+0xa/0x1b [ 1618.447179] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1618.452304] ? lock_downgrade+0x880/0x880 [ 1618.456492] __should_failslab+0x121/0x190 [ 1618.460759] should_failslab+0x9/0x14 [ 1618.464581] kmem_cache_alloc_node_trace+0x274/0x720 [ 1618.469823] ? __alloc_skb+0xd5/0x5f0 [ 1618.474192] __kmalloc_node_track_caller+0x3d/0x80 [ 1618.479243] __kmalloc_reserve.isra.0+0x40/0xf0 [ 1618.483947] __alloc_skb+0x10b/0x5f0 [ 1618.487787] ? skb_trim+0x190/0x190 [ 1618.491445] ? copyin+0xb5/0x100 [ 1618.494855] sk_stream_alloc_skb+0xc8/0x860 [ 1618.499205] tcp_sendmsg_locked+0xc9d/0x3290 [ 1618.503658] ? tcp_sendpage+0x60/0x60 [ 1618.507481] ? trace_hardirqs_on+0x67/0x220 [ 1618.511833] ? lock_sock_nested+0x9a/0x120 [ 1618.516091] ? __local_bh_enable_ip+0x15a/0x270 [ 1618.520795] tcp_sendmsg+0x30/0x50 [ 1618.524366] inet_sendmsg+0x141/0x5d0 [ 1618.528297] ? ipip_gro_receive+0x100/0x100 [ 1618.532648] sock_sendmsg+0xd7/0x130 [ 1618.536388] __sys_sendto+0x262/0x380 [ 1618.540217] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1618.544910] ? kasan_check_write+0x14/0x20 [ 1618.549199] ? __sb_end_write+0xd9/0x110 [ 1618.553290] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1618.558855] ? fput+0x128/0x1a0 [ 1618.562164] ? ksys_write+0x1f1/0x2d0 [ 1618.565996] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1618.570796] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1618.575597] ? do_syscall_64+0x26/0x620 [ 1618.579594] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1618.584981] __x64_sys_sendto+0xe1/0x1a0 [ 1618.589172] do_syscall_64+0xfd/0x620 [ 1618.593013] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1618.598228] RIP: 0033:0x45aff9 [ 1618.601436] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1618.620465] RSP: 002b:00007f1765437c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1618.628281] RAX: ffffffffffffffda RBX: 00007f17654386d4 RCX: 000000000045aff9 [ 1618.635574] RDX: 000000000000c3f2 RSI: 0000000020000300 RDI: 0000000000000003 [ 1618.643656] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1618.650949] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000004 [ 1618.658240] R13: 0000000000000992 R14: 00000000004cacca R15: 0000000000000063 [ 1618.903103] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=15463 comm=syz-executor.0 [ 1618.918427] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=15463 comm=syz-executor.0 [ 1618.935939] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=15463 comm=syz-executor.0 [ 1618.951206] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=15463 comm=syz-executor.0 [ 1618.964891] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=15463 comm=syz-executor.0 [ 1618.978358] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=15463 comm=syz-executor.0 [ 1618.991739] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=15463 comm=syz-executor.0 [ 1619.004717] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=15463 comm=syz-executor.0 [ 1619.017444] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=15463 comm=syz-executor.0 [ 1619.030044] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=15463 comm=syz-executor.0 [ 1619.383738] Bluetooth: hci2: command 0x1003 tx timeout [ 1619.389349] Bluetooth: hci2: sending frame failed (-49) [ 1619.703802] Bluetooth: hci0: command 0x1001 tx timeout [ 1619.709277] Bluetooth: hci0: sending frame failed (-49) [ 1620.023921] Bluetooth: hci3: command 0x1003 tx timeout [ 1620.029413] Bluetooth: hci3: sending frame failed (-49) [ 1620.353812] Bluetooth: hci1: command 0x1001 tx timeout [ 1620.359225] Bluetooth: hci1: sending frame failed (-49) [ 1621.463797] Bluetooth: hci2: command 0x1001 tx timeout [ 1621.469281] Bluetooth: hci2: sending frame failed (-49) [ 1621.783924] Bluetooth: hci0: command 0x1009 tx timeout [ 1622.103796] Bluetooth: hci3: command 0x1001 tx timeout [ 1622.109200] Bluetooth: hci3: sending frame failed (-49) [ 1622.423832] Bluetooth: hci1: command 0x1009 tx timeout [ 1623.543848] Bluetooth: hci2: command 0x1009 tx timeout [ 1624.183983] Bluetooth: hci3: command 0x1009 tx timeout 18:22:14 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x40086602, &(0x7f0000000080)=0xfffffdfd) 18:22:15 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup3(0xffffffffffffffff, r1, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:22:15 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x0) 18:22:16 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x40049409, &(0x7f0000000080)=0xffffffdb) 18:22:16 executing program 0: bpf$MAP_CREATE(0x0, &(0x7f00004f9fe4)={0xe, 0x4, 0x4, 0x9}, 0x3c) fcntl$getown(0xffffffffffffffff, 0x9) socket$key(0xf, 0x3, 0x2) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$ppp(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ppp\x00', 0x0, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) setsockopt$inet6_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, 0x0, 0x0) ioperm(0x0, 0x0, 0x0) r1 = dup(r0) setsockopt$inet6_tcp_int(r0, 0x6, 0x12, &(0x7f00000001c0)=0x1, 0x4) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x25, &(0x7f00000007c0)=0x2c0, 0x4) ftruncate(0xffffffffffffffff, 0x0) syz_genetlink_get_family_id$tipc2(0x0) r2 = socket(0x10, 0x80002, 0x0) ioctl(r2, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe8697071") r3 = socket(0x10, 0x80002, 0x0) ioctl(r3, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe8697071") sendmsg$TIPC_NL_MEDIA_GET(r3, 0x0, 0x80) ioctl$FS_IOC_GET_ENCRYPTION_POLICY(0xffffffffffffffff, 0x400c6615, 0x0) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) getsockopt$IP_VS_SO_GET_TIMEOUT(0xffffffffffffffff, 0x0, 0x486, 0x0, 0x0) r4 = open(&(0x7f00000000c0)='./bus\x00', 0x141046, 0x0) lseek(0xffffffffffffffff, 0x0, 0x0) r5 = open(0x0, 0x841, 0x8) ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r5, 0x54a2) dup(r4) getsockopt$ARPT_SO_GET_ENTRIES(r1, 0x0, 0x61, 0x0, 0x0) ioctl$PPPIOCGFLAGS1(0xffffffffffffffff, 0x8004745a, 0x0) ftruncate(r4, 0x2007fff) sendfile(r1, r4, 0x0, 0x8000ffeffffe) 18:22:16 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\n', 0xc3f2, 0x11, 0x0, 0x0) [ 1627.703772] Bluetooth: hci0: command 0x1003 tx timeout [ 1627.715118] Bluetooth: hci0: sending frame failed (-49) 18:22:17 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\v', 0xc3f2, 0x11, 0x0, 0x0) 18:22:17 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0xb00, 0x0) ioctl$KDGKBSENT(r1, 0x4b48, &(0x7f0000000100)={0x1, "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"}) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:22:17 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)="11", 0xc3f2, 0x11, 0x0, 0x0) [ 1628.228717] QAT: Invalid ioctl 18:22:17 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)="12", 0xc3f2, 0x11, 0x0, 0x0) [ 1628.343827] Bluetooth: hci1: command 0x1003 tx timeout [ 1628.349236] Bluetooth: hci1: sending frame failed (-49) 18:22:17 executing program 0: perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x7e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0) gettid() timer_create(0x8, &(0x7f00000001c0)={0x0, 0x3e, 0x4}, &(0x7f0000000040)) open(0x0, 0x0, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$FUSE_LSEEK(0xffffffffffffffff, 0x0, 0x0) socket$nl_xfrm(0x10, 0x3, 0x6) socket$key(0xf, 0x3, 0x2) perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffa}, 0x0, 0x0, 0xffffffffffffffff, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f0000000640)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f00000006c0)=0x14) setsockopt$inet6_IPV6_PKTINFO(r0, 0x29, 0x32, 0x0, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000340)={{{@in=@dev={0xac, 0x14, 0x14, 0xb}, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x80000000000001}, {{@in6=@empty, 0x0, 0x3c}, 0x0, @in=@empty, 0x0, 0x4, 0x0, 0x1}}, 0xe8) sendmmsg(0xffffffffffffffff, &(0x7f0000008440), 0x0, 0x0) 18:22:17 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='L', 0xc3f2, 0x11, 0x0, 0x0) [ 1629.703749] Bluetooth: hci2: command 0x1003 tx timeout [ 1629.709230] Bluetooth: hci2: sending frame failed (-49) [ 1629.783730] Bluetooth: hci0: command 0x1001 tx timeout [ 1629.789218] Bluetooth: hci0: sending frame failed (-49) [ 1630.263773] Bluetooth: hci3: command 0x1003 tx timeout [ 1630.269332] Bluetooth: hci3: sending frame failed (-49) [ 1630.423813] Bluetooth: hci1: command 0x1001 tx timeout [ 1630.429313] Bluetooth: hci1: sending frame failed (-49) [ 1631.783784] Bluetooth: hci2: command 0x1001 tx timeout [ 1631.789340] Bluetooth: hci2: sending frame failed (-49) [ 1631.863838] Bluetooth: hci0: command 0x1009 tx timeout [ 1632.343800] Bluetooth: hci3: command 0x1001 tx timeout [ 1632.349329] Bluetooth: hci3: sending frame failed (-49) [ 1632.503799] Bluetooth: hci1: command 0x1009 tx timeout [ 1633.863838] Bluetooth: hci2: command 0x1009 tx timeout [ 1634.423856] Bluetooth: hci3: command 0x1009 tx timeout 18:22:25 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x40087602, &(0x7f0000000080)=0xfffffdfd) 18:22:25 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup3(0xffffffffffffffff, r1, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:22:25 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='Y', 0xc3f2, 0x11, 0x0, 0x0) 18:22:27 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x40086602, &(0x7f0000000080)=0xffffffdb) 18:22:27 executing program 0: r0 = socket$inet(0x2, 0x80803, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000380)={0xffffffffffffffff}) r2 = fcntl$dupfd(r1, 0x0, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) setsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f00006cdffb)="8907040000", 0x5) sendmmsg(r0, &(0x7f0000005c00)=[{{&(0x7f00000000c0)=@in={0x2, 0x0, @remote}, 0x80, 0x0}}], 0x1, 0x0) 18:22:27 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='e', 0xc3f2, 0x11, 0x0, 0x0) 18:22:27 executing program 0: ftruncate(0xffffffffffffffff, 0x0) bpf$MAP_CREATE(0x405a020000000000, &(0x7f0000000040)={0x20000000005, 0x1ff, 0x7880, 0xff, 0x0, 0xffffffffffffffff, 0x30, [0xa003000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x13, 0x0, 0x0, 0x8]}, 0x3c) [ 1637.943821] Bluetooth: hci0: command 0x1003 tx timeout [ 1637.949264] Bluetooth: hci0: sending frame failed (-49) 18:22:27 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vga_arbiter\x00', 0x101002, 0x0) r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080)='/dev/zero\x00', 0x20000, 0x0) sendmsg$inet(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000140)="d240340a9a0f7d125260a967ab41a195c32ccba746b2000af782b7befcf28483431eff5466d891e39a", 0x29}, {&(0x7f0000000180)="3d64c5bb4f0b38f9bb44f993a5", 0xd}], 0x2, &(0x7f0000000200)=[@ip_tos_u8={{0x11, 0x0, 0x1, 0x4}}, @ip_ttl={{0x14, 0x0, 0x2, 0xfff}}], 0x30}, 0x48000) ioctl$TIOCSETD(r1, 0x5412, &(0x7f0000000000)=0x1) 18:22:27 executing program 0: r0 = socket$can_raw(0x1d, 0x3, 0x1) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000040)={'vcan0\x00', 0x0}) bind$can_raw(r0, &(0x7f0000000080)={0x1d, r1}, 0x10) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = dup3(r2, r3, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) setsockopt$CAN_RAW_FILTER(r0, 0x65, 0x1, 0x0, 0x0) close(r0) 18:22:27 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0x65, 0x11, 0x0, 0x0) 18:22:27 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xca, 0x11, 0x0, 0x0) 18:22:27 executing program 0: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001}) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB="2800000010005fba00"/20, @ANYRES32=0x0, @ANYBLOB="030000000000000008001b0000000000b1449a889ab68a45a4293604854490413a3afd8314a01efdd3a06b872e9f20228b3a435d2653fc4f1d7f718aa923c6b802ae91d838e7358afa41b2c2d867d0faed8747e17171d1c7444b1a06cbd55e2335d9446a7439386ad8bfa9122d40c63149caf1258a7774ac54fcacd9d1abc42fc112c358be53f7a8a6d43dd64c925c7b0804600415f13336fcce81d6d6ab5b9dd4248fa177f6c17b6c5c978c577168bc3dd6"], 0x28}}, 0x0) write$tun(r0, &(0x7f0000000300)={@void, @val, @mpls={[], @ipv4=@gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x2f, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @broadcast}, {{0x0, 0x0, 0x1, 0x0, 0x4, 0x1, 0x0, 0x0}}}}}, 0x62) [ 1638.575156] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 1638.582207] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 1638.594561] Bluetooth: hci1: command 0x1003 tx timeout [ 1638.602803] Bluetooth: hci1: sending frame failed (-49) [ 1638.654275] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 1638.732508] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 1638.783923] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 1639.863943] Bluetooth: hci2: command 0x1003 tx timeout [ 1639.869379] Bluetooth: hci2: sending frame failed (-49) [ 1640.023776] Bluetooth: hci0: command 0x1001 tx timeout [ 1640.029316] Bluetooth: hci0: sending frame failed (-49) [ 1640.503869] Bluetooth: hci3: command 0x1003 tx timeout [ 1640.509384] Bluetooth: hci3: sending frame failed (-49) [ 1640.663717] Bluetooth: hci1: command 0x1001 tx timeout [ 1640.669135] Bluetooth: hci1: sending frame failed (-49) [ 1641.943779] Bluetooth: hci2: command 0x1001 tx timeout [ 1641.949217] Bluetooth: hci2: sending frame failed (-49) [ 1642.103799] Bluetooth: hci0: command 0x1009 tx timeout [ 1642.584137] Bluetooth: hci3: command 0x1001 tx timeout [ 1642.589555] Bluetooth: hci3: sending frame failed (-49) [ 1642.743819] Bluetooth: hci1: command 0x1009 tx timeout [ 1644.023793] Bluetooth: hci2: command 0x1009 tx timeout [ 1644.663882] Bluetooth: hci3: command 0x1009 tx timeout 18:22:35 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0x12f, 0x11, 0x0, 0x0) 18:22:36 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup3(0xffffffffffffffff, r1, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:22:36 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x4020940d, &(0x7f0000000080)=0xfffffdfd) 18:22:37 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x40087602, &(0x7f0000000080)=0xffffffdb) 18:22:37 executing program 0: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000380)={0xffffffffffffffff}) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = memfd_create(&(0x7f0000000680)='\xb3\x17MS\xdb\xe0\x91~\xd8\x10\xb3\xd4\x9b\xfa\xdc\x1c\xb2\xcd\xe9\x94B\xee\x9e\xa7\xe9\xe6\xa8\x82\xe9\xc7\xdcp<\xefB\x05J\xe4cE\xbe\xd1C\xb5J\x16\'\xfb~\xfa\xfd\a\x8b\x00\x00\x8dmm\x9d\x9d\x1cv\x91y\xca\xec\xc7\xa5\xfa\xdf\xdc\xa7&!^\xac\x89a\x8cd\xc4\xce\x7f\xb80\xd3\x03\x97\xea\x98\xfb.x\x1a3\x17\r\x00\xc8\xd0G\x1dq\x9c\x90g7$S8S\xcdJ\xbc\xcd\xa6\x83\x97+\xb2L\xf8\xf0<\n-\xe6\xb1\x0e&f\xec{YP%f\x02,M@a{\xe1\xeb*\x93\t;\xa8\xe8#\x05\xde}?\xb9h\xbf_K\x18<\xfc\xb1\xadR\x85\xc1A\xb4Gf$m?\x83\xec<\x18PO\xc931]\xed\xee$\xc5\xa6\xfa\xeb\xf2\xe4\xfb\x03\x1a\x19\xbc3\xf5\x9a\x01\x00\xc9m\xb7N\x12V\xc3\xe8S\xcbe\xfdy;\x9b\xdc@\xd6 \t\x04\xfewb\xfb\xff\xabo\xb4\xf7\xfaY\xa5:*\xb2\xa6\xfe\xcf\xfc\xe9\xe26\xfe\xf0ga\xdc\xe5\xe2\vXm\xd3\xf3\xb2l\x0ff\x8e&\x8fX\xe3\x0f\xa04\x03\x90PV\xe2\x8a3\xb9w`\xf6R\x92\x92\xc8\a\x00\x89\xbe \x9d\xaf\x94\xa9PG\x04\x11\xbfT\x1e\xf6\xf2ga\xa0\v\xca\x0f\xb3D\xc0\'\x0f/\x90\xb5\xd9\xd51!&\r5\x02\xcbW\x19\x7f\x878\x8f8\x9c\x00\x1cJ\xe7\xbf\xaa\x1cn|\x06\xdd\xbbZ\xbc\x89\x9e\x0f\x9f+\x10\xcaz \xf3\xeaH\xecC,+\x0f\xc8\xae\x1dt_fp3\xeea\x95', 0x0) write$FUSE_DIRENT(r2, &(0x7f0000000080)=ANY=[], 0xfffffe4a) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x11, r2, 0x0) ftruncate(r2, 0x3f00) 18:22:37 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0x194, 0x11, 0x0, 0x0) 18:22:37 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0x1f9, 0x11, 0x0, 0x0) 18:22:38 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0x25e, 0x11, 0x0, 0x0) 18:22:38 executing program 0: r0 = memfd_create(&(0x7f0000000180)='&.\\keyring\x00', 0x0) write$FUSE_NOTIFY_RETRIEVE(r0, &(0x7f0000000000)={0x30}, 0x30) r1 = syz_open_procfs(0x0, &(0x7f0000000300)='fd\x00') write$FUSE_DIRENT(r0, &(0x7f00000001c0)=ANY=[@ANYRESHEX=0x0], 0x12) fchdir(r1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1, 0x11, r0, 0x0) rename(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00') 18:22:38 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x1, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup3(r4, r5, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) dup3(r7, r8, 0x0) ioctl$EXT4_IOC_SWAP_BOOT(r7, 0x6611) ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000000)=0x1b) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:22:38 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0xb2100, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) syz_genetlink_get_family_id$team(&(0x7f0000000000)='team\x00') 18:22:38 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0x2c3, 0x11, 0x0, 0x0) 18:22:38 executing program 0: r0 = socket(0x10, 0x80002, 0x0) ioctl(r0, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe8697071") r1 = socket(0x10, 0x3, 0x0) ioctl$sock_ifreq(r1, 0x89f3, &(0x7f0000000080)={'sit0\x00', @ifru_flags}) [ 1648.824031] Bluetooth: hci1: command 0x1003 tx timeout [ 1648.824059] Bluetooth: hci0: command 0x1003 tx timeout [ 1648.835911] Bluetooth: hci1: sending frame failed (-49) [ 1648.861398] Bluetooth: hci0: sending frame failed (-49) [ 1650.103752] Bluetooth: hci2: command 0x1003 tx timeout [ 1650.109185] Bluetooth: hci2: sending frame failed (-49) [ 1650.903851] Bluetooth: hci0: command 0x1001 tx timeout [ 1650.909264] Bluetooth: hci0: sending frame failed (-49) [ 1650.914867] Bluetooth: hci1: command 0x1001 tx timeout [ 1650.920258] Bluetooth: hci1: sending frame failed (-49) [ 1652.183850] Bluetooth: hci2: command 0x1001 tx timeout [ 1652.189450] Bluetooth: hci2: sending frame failed (-49) [ 1652.983895] Bluetooth: hci1: command 0x1009 tx timeout [ 1652.989272] Bluetooth: hci0: command 0x1009 tx timeout [ 1654.263821] Bluetooth: hci2: command 0x1009 tx timeout 18:22:46 executing program 0: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x220007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) recvmmsg(r0, &(0x7f0000005540)=[{{0x0, 0x241, &(0x7f0000000240)=[{&(0x7f0000002340)=""/4068, 0x29daf6d5}], 0x1}}], 0x1430, 0x100, 0x0) sendto$inet(r0, &(0x7f00000012c0)='\f&', 0x2, 0x11, 0x0, 0x0) 18:22:46 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x80045432, &(0x7f0000000080)=0xfffffdfd) 18:22:47 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x4020940d, &(0x7f0000000080)=0xffffffdb) 18:22:47 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) rename(&(0x7f0000000000)='./file0\x00', &(0x7f0000000100)='./file0\x00') socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$DRM_IOCTL_GET_MAP(r3, 0xc0286404, &(0x7f0000000140)={&(0x7f0000ffd000/0x1000)=nil, 0x101, 0x4, 0x44, &(0x7f0000ffc000/0x4000)=nil, 0x7fff}) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:22:47 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) r2 = dup3(r1, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:22:47 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0x328, 0x11, 0x0, 0x0) 18:22:47 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cgroup.controllers\x00', 0x26e1, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) close(r0) close(r1) socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000040)) recvmsg(r0, &(0x7f0000000140)={0x0, 0x1d, &(0x7f0000000000)=[{&(0x7f00000000c0)=""/110, 0x2000012e}], 0x1, 0x0, 0x10f, 0x6201}, 0x0) write$cgroup_type(r1, 0x0, 0x0) 18:22:47 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0x38d, 0x11, 0x0, 0x0) 18:22:47 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0x3f2, 0x11, 0x0, 0x0) 18:22:47 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0x457, 0x11, 0x0, 0x0) 18:22:47 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0x4bc, 0x11, 0x0, 0x0) 18:22:47 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0x521, 0x11, 0x0, 0x0) 18:22:47 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0x586, 0x11, 0x0, 0x0) [ 1659.063766] Bluetooth: hci0: command 0x1003 tx timeout [ 1659.069335] Bluetooth: hci0: sending frame failed (-49) [ 1660.343728] Bluetooth: hci2: command 0x1003 tx timeout [ 1660.343733] Bluetooth: hci1: command 0x1003 tx timeout [ 1660.343804] Bluetooth: hci1: sending frame failed (-49) [ 1660.349099] Bluetooth: hci2: sending frame failed (-49) [ 1660.423758] Bluetooth: hci3: command 0x1003 tx timeout [ 1660.429206] Bluetooth: hci3: sending frame failed (-49) [ 1661.143824] Bluetooth: hci0: command 0x1001 tx timeout [ 1661.149288] Bluetooth: hci0: sending frame failed (-49) [ 1662.423817] Bluetooth: hci2: command 0x1001 tx timeout [ 1662.423823] Bluetooth: hci1: command 0x1001 tx timeout [ 1662.423899] Bluetooth: hci1: sending frame failed (-49) [ 1662.434675] Bluetooth: hci2: sending frame failed (-49) [ 1662.503816] Bluetooth: hci3: command 0x1001 tx timeout [ 1662.509220] Bluetooth: hci3: sending frame failed (-49) [ 1663.223787] Bluetooth: hci0: command 0x1009 tx timeout [ 1664.503810] Bluetooth: hci1: command 0x1009 tx timeout [ 1664.503830] Bluetooth: hci2: command 0x1009 tx timeout [ 1664.583922] Bluetooth: hci3: command 0x1009 tx timeout 18:22:56 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x80045440, &(0x7f0000000080)=0xfffffdfd) 18:22:57 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_NESTED_STATE(r2, 0xc008ae88, &(0x7f0000000100)={{0x2, 0x0, 0x80, {0x140}}, "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", "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"}) 18:22:57 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x80045432, &(0x7f0000000080)=0xffffffdb) 18:22:57 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) r2 = dup3(r1, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:22:57 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$TIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000000000)) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer2\x00', 0x9d9c661290e0c404, 0x0) r1 = creat(&(0x7f0000000380)='./bus\x00', 0x0) ioctl$EXT4_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000340)=0xe4) r2 = creat(&(0x7f0000000380)='./bus\x00', 0x0) ioctl$EXT4_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000340)=0xe4) ioctl$KVM_GET_EMULATED_CPUID(r2, 0xc008ae09, &(0x7f0000000140)=""/35) 18:22:57 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0x5eb, 0x11, 0x0, 0x0) 18:22:58 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_NESTED_STATE(r2, 0xc008ae88, &(0x7f0000000100)={{0x2, 0x0, 0x80, {0x3b}}, "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", "4dd06bb39ae9b334a378240755fb14c77a8bd559bc8ce541b9e263d85ddd6b1a2f721449d31ba532090f85748c0c745ea80f442831851d63368a9a2d20f0ea29f49bcd45153cde73daebd7579a114174c637a449e4c1a9074222224866d87677c8cf822f6d1095a371e3f9ca5e34f856a1b685a60c71ff8c823b749e610bd97bb6f07655ea1d1cb1a8b5ee414b90f1a2b7e764c708005621a63fff1352c5dde6d7f9c05657cb5c5391e3c405c386b8677a9add1755fdb1dcf635323343a0262d4e330e0f70192edd7b26c9b53aa6fdde69cdd54ad6d028f696f08160e4574d3571c40b5b53d2a4ed60d43b533768b0cddd9caa395f04f7b021d579b8e16cf82d3418cd341e736f1da6b3e31c00de09550b4183a61714c64609992f90561e9c2ed010faee8e5273d7545fc0cdfd5687ae4c21798ebf454f7f4c0979461dbc974a70ca66ab7a23c40e8a94d8ac515ab7e4accd4ab544338b56e5933e5d090044399617301f640b1cd753b798f72cb59f3a6edd967dabf1fedf0706ff3273ebf3fcb360728ef7c142eabb089fc04424181b26df0519623d8d44a9b3e2dcba4213261d1be18e9fd2890a5272632edebdfc33f6e1e17e3b8d96c99549f976cef133b981fe903760900cf56460c220663fe1a0871e09cbc54418cabceab475e040acf93892cafd9a7d45b03c95612ca3d33eca15de58130f57e2f2c51207e86659afad096dcd9b5d5c213ee6fb9e62932da2adaa42560eda5f1da7dae5daa26308767824006813105bc2b1fb5dd8d99602c2c0fd15792b14c102f3c441869780f6c3bad7884230cfee61736d3535b36a5e3359f869b61bda9516070a8a77ab4d890104b41781e59ff8682ece0a9b94581dc8bec56c71ecab494dd6bab790f6d498d0cfad83276998502408ee8c7a8b3fe8499c0bf788a414152479755635bfb12e4d0db7f3241b5540b16730810b7ceefcb6da5dc264c54f49d9cc2d75bbca075534c50279114f8fd13107ac8f1457abc747d47007a49ca8601c8e30d9fe232b3fbb9890fe74f3e8e2f5c17faa2c0006d1e364e09c5ad3fef09febef3ba8b3f280ba16c3d634afde6caa74d58918cb6f1fc02a48e78423980e381873192ee103ba5af0e0b852c627083c99cda39b144960e6df46f94a3fe3395159a17dbebc31e43733850970cdfeb9af62c7ff95bd0031c4a15781c1a134c79e8349e7ed1620628c6772c59ed48e4ab2bdbaeea7778957de0d4637bd99f9653e71c8fd9af2b3f44c98cebf5b003f1f20a1367a858d4c5b461cf02611e6afe8cf711168d29848d732ba6672a302c7d824ae0d4e02861a6813fada02a9694ee19796fb6fde147c32354df18de2c9d06c202c84c56de87fa790a3a299f6bc408db0380dacc188439fc3fa35e2969c5eeb4ad897cf9a4247445be1789617d73076279e756187e7431af70080c22af9a588fbf25e536a8771eeb4b0f7a554703d753540becf00e6bda2d94228d81ee4b3a4049d7835399521e55ae20fe984170a40d3f98482197b54f5591e7111f7e4bd29e98dee03aa618f70ae4c12dd1d8024e0ab7474cfe8fb17afdecd0e241c1ffd5605857ee7498144c20f36aac8d37934acf18ca295900a80ffd0020dae4bcef4bc1739cea0d731f475b449ad48eb6fc14212e5e3bc12058410161ea53257e1d5115c3da6471c3cf67c302a231c8d7d98dedf2f3984f9500f1c6dc8115ce74861b61065a19604363244f1faba637a8e121e43dae414bb428050763d26ca038f0d64969fc4883801718c3bcef2be86aab18364bf2ecc8f4b71955113d59cb16d18e1dd572080dd76e3f9f455c3e5877a437e5428671a1d71dda5b4b72909f4e3426e7de2cfd227acae0477494acd75c645d0333477765965d5dc7debe184dd6dfa000152a3b0831f4c385a3abbcbe4f5d55c14d9c997b69ce24a867222468dfcedcf5581fd8d9b571bd8d926b49348b52e366e799eacc94d3b9fb3efeffc8ffb827146bf2f3eaad96a66de16fc57ee2f074516b9b78d5c09162ca93a531e16e92971a4dae5787a123648b16da067d48ba97394a524945e3d9f82e4a2f0c2f11cc84a9c9a1de0fc82a7ee29b300cff5e1ae9f28d8633c89b72b7eddc0ba1563baad33bf7a5569a2089ec76d676338b1b277dcd5a807972081d8a347a24196c04e82d631720e3153aab3848f2c157e05004eaf78d8c6fe955aa91847e6e3a5ae58e764abd8eed5039d196d4957501fc63571f2a78a8f905b6a4b71ffac2ce06ad4b28fa8ca0411b9a1aa30bdf581f95c0de3219f77b32b97c63a4438dafce6c5897dd04e732c331f288b97fa7e1877b7ca71220f1350fe7358faf41b02ffd278fb5932d4e7afd841ea329682c3d973149a3b556aca4148b9fecfc3854f27f33cab58f1d305bc61efec79c579bb17709f3bcad5e519a9cd7492c11415c092bd86d2e2aff9138d6e15a200afb98e6bc43b25c9b9d63e30aeea7c8177f037624b9ee99dc5d9f6793a6d7d2de0c88a09a58525fcc018a237676e2618b4e5139aba1a86c4d4197cef24d417fd09ce6abecf14582c62056af6078163c6214ca188fdc767b65e15196fca35c79e9a1301495e33c1762b3f8feda91784ed8faa6f2153afd39a08916c13c792ccf78740f26ab28b1c57174fd797935c2a37fc449292336674efc078bff791a17abf2e9afcc084600907d2f9b68e4aa5fccd3f4e24880d5bf939ee05dee577aa225d723e65cf7499bdcb8c674b5d093e17c6af816348b6e00e9a3da70d7ac46806372afd401b0ce911076dca9c9c73fed236ff389b02a46c8c0a1f56e3a645258f6a9b3bca53da72b509502897bf56bb5042b39fa88afabfbd960f79057dda8755e3608eed8f517aa52fb37e9183d54483aad71a1ba91f8eae96a19afe1ab179a56fca22867a6e46c3fa587a3e104e61739ae2acbf2db0ebdca3c8fd224bf3892851f0d54c717dde7606de367855f98260457b5bcd16ad19e1f436a594f98fb1b54b5bf70ea8d20626b070b0990334496a703e2982882b010df288895d09ea3e10aec62859119833b42368993fbd8deb4a9307157ea16edd486db3aae78b91e7be6916969e444e42ccece179956f41e1f6945c1f6a4539484b4d74576b5d17aae84784a5035da4c4c42f39b55a39128aa24b6f05fa27e09567e256e0f7d0bc9b8969317e5013ba6fddaf1a32a7e21a9d2084859d3a9dcbd6cce7dd37d7700141ede7c477781b9e94fb1300daba4e36d9571968b0b6e1cbfcd29702b83af272c2bd492393328b485a59847cba44cb8f443aba848bb54301412872f36b07ac25f161235370178369d5b59679072dd0366f0ba0422737980f677c3be0d5afb3c377b0400e0665729bd215a10dd8dcfc67b6ca6a316e91c9c258cafbc9ec9fbed84b47733ea9e8519c842e70f7f380658a4d0431fb68b157d9ffea123882090af2548ae5a7085edcd52f5373ad439791a215d54e1486b8f2f321dcd47e4d8c5d010dd87ed54f8a1dd0559f639c4ceeffb941e2e48b163836c318b484a8f8adecda8d4ad1e66cc57e87e99d39db0c6f4276b868c9b755065d6eb4a9ccb5f8181e8d3cfa93c3eb6caf3689a2594e2995e1ae18089d6828bf2ffcad2e39ba0e547fb63d108117a9cbc2cbdd043f629f55adf044f9bd81bf96d7f8d56578db5f6189f11fafd5f54fde8fb5b64a799a8b2b5e67763315c2fbfa1242276bc50f7f8508588b536c2e2fb68812b59630b9715985f74721875b29b084014a69b63c0cf38e750c25948cb8e900108552237508fded1f4be52920fdd6983d7927f76d193f73eeb39ef40648d92f364f06c849b1d8028c539a0641741e0cf6b6248a18413c274358613046232e8af81ad14d851751c0a66c7d16a857d8b51ede4728ecfa55d93dcaf0a80de528d06a783c1c1ee7b53ad7252051e6640d335bd05750e4c397002935227f605699549f3ba08a454a68590083d057b22d30a6f882d617b0ba86ad8b96608c426c8564f3c0dc68ef1547670a5988808611d0ab5732bf5a205a7011487aae2a3bd1d25046d6847fab82417b2712a4357330ecaa66829e28b172fb2da0555ef88d3a1799a63e3a6b9fcacdbbe1afa4bc1ce5118185e54c99e9f464cc47b590451a8db5f9df5acfe57181d882d2b0c7aa2041fbeb4139f7468e7cb423de816f389937813f6df30fa1fe9be975e3fa54e01b3ee0e896b28ae79ef9649b793c94a80da6e7bade0b583262f43da3dd0ec2939fd7edf0e3c3159b3924d6290beddfbcc091a8743a4c4e3f1c6c60e02642fcec11bf3d01d0548a759e28f1a88f610ac75a4541e263af4304937b553a16ff84370618498c767c101ed8d2a76966d902a6a73c4a01fc97e573639eba40ee6d7beca37aa3497da84585609c0122f4542a6eec4b8f5895f56b9b678f9ce6cab143657f412f4104f0a23a77c3a1ceb821a56720dfdf233308dbed514753a946a8f2c6204d6a1446d578f479f44984f9f131bb66e7a7dc5f8a25ae383fa1551140721204b064adce44d2ab44d20ac9a28186bcf9fed1b1a28bb392d1badb1c99129631349449c467d9b81e2083a3420036668210d2c7f39d2de34458f77e5ce39bc4efd1bd2ae80547c2943e5683b3b003a24f4b88d7fd7636e68ba43712f575f116ffba962ae6ed6243bc585ce04e93c5360234eaee7350d71dd427762b7efb29684b3c7951379888395c46cfa398927830ca5a35a341a748c9953629924dd5e4efabfd7ff269e044c0d26eb978f80adf1689d2cb4b0dc1bac4646c16d6d94715a610d3fa7feb29ec46505fff90c61cec31a3bc1996cf7ca47be884e01da152897957945186d7a5091f8ba8d7f4df40a6353433a6b15ed4233d670ac15b53dd8172b8cc3793ff0e1ee44609a950eacfbf6baee3d701ab8353c37e2d864e32dc46b6f9ede6a9373340b36405cce77b71f70a236c4c2df002a14558e8ee3f84f1a5f3826821544cd8eac6cc38bdc4c61173e0df7d87b60a42d52d331517d9556377adc391477319376e7c7507585af177e42ab0373bd698d9fd03425742d1c349e7a5524114d38526dabebbcd8c12a4bb8fd275f123333042f1bb9c51847381a6550ccfa148268705bce403ba0c529e3bb5a0af3ca6f42db52e83dd3ece999e3a06cb28480fcc1b624c30638c5ebf663b51dd005614dce29a6df1daccb439a7c5a02437bc05a60d4c8cc353ba2b49837b552f2094df52836f8b7d822a6317e34dbc93d9afd7f02e061aa89e030be350a807f05e035c8f28f57aba4cd6a5901b9b1325ebf01318069c268d3b41cf55075481add7d9cd09dd3f0e2e05ab59762e2463be2b71d66074c57a96bf4c327238762361596a0ffdb3d6fe99ff0bda12d5078486e48fe134854e1580720620e17bd7e934a7c262f816a5ea014e2fe375f4040d155e4481ff3d71911b24c6fb84d2fab06ab524080771b2091f16b34ce8f5407f7fa3331c0c39780585faf2d437248449a4585879469cbeeb47883acc01c79052b55a46668ce28ff8ebdc391f1d2d637009ff1237831df27f2057dab7dcba8fa39d1a79a74b756bd4c937aa6f4ccb20f66a7f6c60474d551622f97c4c791e686b002da0864833c8305deb3ca25b22c2644565a4fae5b2e9ca7e15b4dae52a664f18c3588347b9153bca194b666bac08cdb7e10486e294aa170e121b5e71a791cdd942285fa5aee75e9ad6dca039b6d45998f2d22234359803e1a080a8864fbae8db2e90fd0f0bd2bb44a2a85cc4e195723269bc918db8d91293aef85552bdc28ee2228d6b9a"}) 18:22:58 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0x650, 0x11, 0x0, 0x0) 18:22:58 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_NESTED_STATE(r2, 0xc008ae88, &(0x7f0000000100)={{0x2, 0x0, 0x80, {0x400000b0}}, "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", "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"}) 18:22:58 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0x6b5, 0x11, 0x0, 0x0) 18:22:58 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_NESTED_STATE(r2, 0xc008ae88, &(0x7f0000000100)={{0x2, 0x0, 0x80, {0x12}}, "2796b203d4985cec52982a27c52ccde33b394dc04d9358c72e4eef3777dca7347d16137f0713d6eee83c7be06e59c0baabe8a4cee7043037fc3172e6e7e345e28039370e2c7be9519ac686762bca00ca9364da4b34a8b8234d8317d369ff0b7fb244982a6ed3f5f0a60af3ada51ea4c611e8ed090a1463289dd0f9878ad1f80632c8239c8c7c0a16690cafc1527e09fc83da3c85c345b013d665740b98f386878f8e79de2d318487ef3ca8b19e67c7c77ba891d3edecb386b2c7a0a6e6bebffbed5b4d943def931d6beabace8ee8f95453eb66a8552ccd37ce88699651754e0bdf99bcb671ed02cbc8f5414c813f6e1c8ac55ea29445069dfcd7d865816ec886131a2930832f0f707493cd279eb07725d9efe723690158f583d4dd9ad054bf3f52daaad425df8f727cdcfd33f4c9c39f549dce3b0f67b208864180dd220cde5ceaa55655bf59d666c241d6ef461e57e191373d85aea1cc3965f2a026e7946a60bbc9928a7e578201d6fc1b3b48a50b1ccea8a61101685ec6ad16059392e0096000f464f7775da3b6c147a7c2e2a10d2a7e0133687a89d85c2ba45a57814ddef73fffd3d216afe3b31d1b0f1a907b34e6f49b1ee83e555356fc297915ccd2ba9f92659c34e0a0b4fafb2a95fa4b78814bee0433518fde1161dea1840ae31238401e29a8e68f57466bca4f6344cd423b1c2f2632d58b8a470c7e3c41f78fa626871d87519288171890b65ad1be1efeebe013a81cf5d37368e2ed86a9b2023543b74d64029da2411ae096090f6f563796a31a084b7e849cf74117179e442ff3a343f723d6b88b4481bd66ec2a7cdb36ca7cfed37df1e8b8ee83de478d9e5f4d667e77433a121d0a8e1fd28f1a6652b478a59a0889df1dd61fb050c5349317f0d98932e127ae24d857470328f773ec539ab448a5c34bfca8949fe7332e8ea628848d63b60f5fe364da7323b21b86218117725b1a4a087aced3313634ef791a9bfbe62b8cc68dbc3445f961efd71e337199cb887f6ea64843c851cbf4b220cb437fb41311a0c0cd99f47b6d8e63d789ec0ebc1a5aae6b2c3f6b1dd03f5bfb3854c9cbaaa9045f061011374927eddf5e566da12faf5a3e7f3b9dcb585701b77cdefad83c603d59e46791d4cca854379afb8a97a3b30c57c97078e96900a060e5a543753dd6bebc6c8767c036596420849d102e0856c56afe92e17e953e51aceba3bcde9628040120f8296317ab6f2c4ed7723f6e5f67a31375ff12f4b02aeaba11f4ca7f44dcaebeac499c8d4df9295cdb902e26011d3715d7e0dd8883061a7fcbaf845a9efa83a5d20e56e1bd2374adfe0915c4a13bbe00af9d3f65c4d8021b8ce2d23beda4c860fdd0a92e5270371e26b8c98fd29dc8f51bfaf21067826afe3dd199c0ec77e603ebf98a9972b795c2d96dfeb546791b49a6f6201fc8e5e52467e34dbcee2dc51b0ff38839e059eb776c3bbe66c89243b559670e60c23cbab118f60006cbe33bde333699f5ee514c30fe29e8dc70b2cd38f6c9707651b23749d33ba9c04b9a9baf10db4238cc456da320c1729b6fab4a46b493e6fd7850f3c6aa252db55ae94e81162298d866fc70aad684d087b21ed87489da16e9c15d7161928fc0a370fc09e42e56951b031f812150b50ed3cbc2604bb6ee61b32b92281c001e8852fcb9a87b979546cab300e1514a47ae58d790e33c9356ec9d6f5b82c2137d8159ffb359c88fce6fcf7f2a2ab793317cdac5ccc19f7fae206f62e58728f8afebaab681c2a04c62fe1b07db6fbd99f2193f8338738e978be0bdc7015ebd4666d1b4c5a65d7f24191ad23b4e07673cd93f6706f6a893ee4129bd285973877253674b2c564f77fa52c8fe37e1702c4ae47e7f75712b7ea785018ea80e1d8fafb33cfa7d3180672c7136fed9283b24589055046fb6c6db1a2dac8194c77dc26deb6b1ca0cfb25a58ebdd0eeb57af4a334b55dc1099688a1fe27af0d91d794fa5aec131c50c023f055da7be3ef8f86dec2a3273b0c8c6795d17bf96bb63042665c6f2e592872fe8b37725ba174b16c62d2e26df1767b73a5d152a851c60eb850d29ded75cd9b0db65f66e970c9baa593553ebe0c1a2c6cfc7a1c21ffa6ae53bab5eb1c0b7738b6de91c3b6d688c4162b826d5ecc8ee969a812aeb8122225b3b6d1e4cb83907de469ded6d9ee13cae5cc75c2b72f083a70c1c637edfaa3d6994490f142d0ccf57a564986f7c2d6077993f3ce239e9f54b6a71ed632f81a2e0adfde4a46bf65b741778321e74453dd0f6fcae698373987b265e4d91fee4bf4da208a64c433134d1d6cea3668cdb7f3feafd2b5234aee3840bc1664c9f4aa508c741345220bf4c779cc0b8d76941254d78798d8b31e39244f80975d3f8707642cca895ea7d0d4c77d655a0508bdb290625e7d8626191dccde37b9a749d0a0b11c0ec5ae481c866e9ce5df6ee90818d0bc209deb090f5344e3ab67ce02ff57efd3de9f5f65bddca87f4255dbdc63f7b8c36f1ba317c8318bf415c4acf67ff91a942814178d2a5706a2e2fc7f49e820373a5821c7624481c43719d8a8bddfa63fec2d948b52a25494c36db8c33fe0ad5f5fdc5c5e9dafacd6fd7548407d261b4886f482ae799baac9598cd70086b0af05f79a0172328a36aea0ca359efe675a4fa175ccd622e29d0179f3f7820cc4dec26897c470e533ad9c7c017f8608ee54e06b23e64777f8afd5a7e5e8a658480bad153acbfb3c892ebca1f21c14780775fb5fd2bb687086264fa716a3f73ad21ac9a9b5cfe995933d42792030122e45359ec741053f40231433726ce58a85ff4b956450c4137f51a31f009b0d8e6c7aefbdcb070ca0f759df77453975d3b1e27edebe9671b68a724a344e40ce5f3792a43a1f1fce39fc303b20072b88104e7b31658d671a820903a5dabc7445a4d11ff6e8881cf60f3d3fdf9f8a9680b229878a4bd3315c52976cdeb1913d79eac2d68ef10a05b7686a14d853b58f38ff2705ea31741961e17af88514716c3b9f12b8d652ccd97eccf5d2f81b188fa11f8d0222300c173884053b2d1dd3403be57cb0ab7806f9891751a23917f2c5886758eee5de845ee209e6074d668cc6cc1b9e6266168cf38502baa240703435140368cbd4855b1ab9439fba0dd8a58bffb3e586c6e4ea241a942cb8e05aaf635698dfd639243e99f6387a3e6b54ff88d1bf8f205fd8197795f61f74192cdb0c2884127edfc73563dfcfbf208e2f07ec96b56ac946aba937f519876f39c7a9a855c70cea2306989c95f4530a0d1957c0c2c1f0ef3c5d644315529e9f6242b08bd32ebce9e0a30925f7ff1e8084b33af26493a171675e2a6280c21064154e03e719565eba8f425025b8df309b90dc797a2c3f7f20208e699820ef1bc20f28076deb858742e010baee90e10177a73f34e1285eef23421e6da0a28b2659dff07b9c036bd61a0ffb44535826b6fe79269d3b06058d74276cd3170d6ba590d096f363c752dc4d786da08e65b79ce140f13a69d4126ab31b75fb27f0ec363ccb87dcad1dfc88b4492f7cbea4ffd7ca556c5c1ef96f8734c6a45824e17e312a04134ad83f29f79add7512d572d28f4e30cb1ef720908b986a2f99e0cc5045e5702545abd3d1878582f05179218abcc4a1b2e7d9ba741c4278fa479dcbd617774d7f764d4b48c13c8490be385684b431ae62ddce0a4fa99c97bbba15c6ef58fe07d9fcb0d61676205015f49c291b345aa8639ec23650e8f2f4ae522e6fa51f7bcb97f7f19a6abaa085ade5741a39f2b1acbbac4d12bc957e2b782da0fdde10e11721d5b59341d6797f254fba0339f7f51b613df586c632551b1a010bcbb23b9f523ea5c63a3d1b77b5ab8634f878542ab542032ef2ea0ba29035372f5b5b9a84fc6970eb8951249cf3279d33abf627634a9ec808929aad243c401905c606a200e24821e476424e6d135b033a2ed7857e8090da16f3dd9c6da15a6897e82d74cfce650032fa896c502dc54a53245c0a53ce15b1456fc9584e6a6d247c0d4e439d2f51164e729a5a4576b7844dd6461482dc3d08580cda791104ae18542e7608cd5e897ef6422cbe8953dd1f99e5861fe71d0fb6936630dfcccbf95de9b5a08a6e12420be499433b1c098d3ae822c2bf1c852358bac38b59e70de9e0fad6a8c954f45d378f7bcfa6762134ae25a01c5e959442243a5944b33dc79987d08c139e1d431f58475bd580b1977b3fb9dafc5dcc6bcba8c1f5a95d3bf61f33b724144a5342bcbfeea47a3cfbc35b23d8005cd331c4314a993a687466ab50d83fbed25ff753c63acb6468a4ad2f7093712c7cf52b278f7327ea03c675d9e6620095d468561583f4a169d01b04cb51e8de5f750ec5b0f8ded455653c77d628ed3b3f6a98c5db9ac2cf31f87d916de71bc97bd51898f97b601fbe09df10e9ceec75bc0760289617153771f475468627838b26adb439987d809f86ddb528a8fdbddbea2b7b801c62bb8a64fdb662bd2d627f7472753c110a1bb658a595b406512b06ce3a39fc8c0b60a40384b7ee87bc22478f8aea77c7d22b41cf155c4e31db5a7514f90a566f8102fa50cf651353cc35b0fbc06e3670d1e19e9834c8855ff9a99f6eea68196453cd333ca059d2e9eb835de116c5e70eeef9c29b39e86863e0fc11a6213dea6399e6ddeb10d1e39bfb1adb79b6d76b5881cbb19196bdcfc7208c5f23680c5759cd45bd54f57b7c21601b6a88f9ff1da818a2e79b6582bb4a02813429ea0a0b2f31e4583579f22f9f635c993156cde36493935569ef1cb9e186ece1c01de60ad11b5fe661fc66e27bfd090b5d3185e0b9602e09050e6226a0eebf6bb8ab7d729e98b07b18e32dd2fde340e237f48f39a5cda82b43cd3c20cfd1997fbdb80f948d37489e50a2fb0c7b9a9f014cd2cd062984536d8e7c95cc8c901040bd984848f136c86d6e8daeb01b41653ffb24d027561614693b309c310ca1a5eb51763e80887cb67ad1d340d2129ad1cc621e06fd3cbd1e90be869767cccae659f6aa7bca44466e759231b0099d1206ac3df4b6d23c87d430229e5ea98d23db96ef17c41a8ab0d917972258553af6da575b71247822f29f4b56b231618b55174f7ec34d31da58075761c85146066dda8190fd2bce3c79cb2eb0a9e0ad8067a31b7b815e11a9af6f07ce1e9c4c3a74f8195ec5390d8a544349ea287240c8ddfd9eefc5979b64be1197e910133d7889cd0ee0c7713e7b6d6d15d0556b03fbeb2e804cc0ca5ad4789cea13c16eaa17ebab0554d651091fed5706982fc3e4cb58105b08acfb532d4ecbd561f3b32be4001b36fe71c1e0c671d65f3b23b647adc92d4f6b76b4ec8a11a08956f193496e7f112a5dd6a25f8a94331f20679757233da1aff69c1a8308ad51121576651f13ef0275d4e11243ac6f982d9afe7ff1e4f7871b95385b26633f82250f87b1a275b2d4c7575d5e34fc7c4f714c6fa7b84ed4963941c39a98dbf035cbfbb0851b4d0ea2f85644ba5c20d42aa2914a20c527028f80b2cee78f682357a63f929d7ca89b431cc242fcb6a3756100ae8bde536cb6d42b716b2c82dad001a83f559493a0e4387698dee33fb417a5ad0d6bcb5d3ff9bde6f8eac2a0605fc5929fd284fa6758746fe70aa43efe67ddf6c9307b403104dd7b233ad132246fc3b8f30f024fd1d4636d9c9e9db4c35b57c0e3d41a541aa37bd3e27be4607976fcff426906a43aeebb5543eaa06aba323cf4569312632af7feded26d7b2f86d33283c21b7412f1b24eee82c3a244176c1adf9ebb42f1bf243fc00e2d2", "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"}) 18:22:58 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0x71a, 0x11, 0x0, 0x0) [ 1669.313831] Bluetooth: hci0: command 0x1003 tx timeout [ 1669.319351] Bluetooth: hci0: sending frame failed (-49) [ 1670.663901] Bluetooth: hci3: command 0x1003 tx timeout [ 1670.664128] Bluetooth: hci2: command 0x1003 tx timeout [ 1670.669379] Bluetooth: hci3: sending frame failed (-49) [ 1670.675092] Bluetooth: hci2: sending frame failed (-49) [ 1670.680173] Bluetooth: hci1: command 0x1003 tx timeout [ 1670.690986] Bluetooth: hci1: sending frame failed (-49) [ 1671.383796] Bluetooth: hci0: command 0x1001 tx timeout [ 1671.389324] Bluetooth: hci0: sending frame failed (-49) [ 1672.743852] Bluetooth: hci3: command 0x1001 tx timeout [ 1672.744246] Bluetooth: hci1: command 0x1001 tx timeout [ 1672.754579] Bluetooth: hci3: sending frame failed (-49) [ 1672.760003] Bluetooth: hci2: command 0x1001 tx timeout [ 1672.760053] Bluetooth: hci1: sending frame failed (-49) [ 1672.765790] Bluetooth: hci2: sending frame failed (-49) [ 1673.463817] Bluetooth: hci0: command 0x1009 tx timeout [ 1674.823969] Bluetooth: hci1: command 0x1009 tx timeout [ 1674.824191] Bluetooth: hci2: command 0x1009 tx timeout [ 1674.834697] Bluetooth: hci3: command 0x1009 tx timeout 18:23:06 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x80086601, &(0x7f0000000080)=0xfffffdfd) 18:23:06 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_NESTED_STATE(r2, 0xc008ae88, &(0x7f0000000100)={{0x2, 0x0, 0x80, {0xc001020a}}, "2796b203d4985cec52982a27c52ccde33b394dc04d9358c72e4eef3777dca7347d16137f0713d6eee83c7be06e59c0baabe8a4cee7043037fc3172e6e7e345e28039370e2c7be9519ac686762bca00ca9364da4b34a8b8234d8317d369ff0b7fb244982a6ed3f5f0a60af3ada51ea4c611e8ed090a1463289dd0f9878ad1f80632c8239c8c7c0a16690cafc1527e09fc83da3c85c345b013d665740b98f386878f8e79de2d318487ef3ca8b19e67c7c77ba891d3edecb386b2c7a0a6e6bebffbed5b4d943def931d6beabace8ee8f95453eb66a8552ccd37ce88699651754e0bdf99bcb671ed02cbc8f5414c813f6e1c8ac55ea29445069dfcd7d865816ec886131a2930832f0f707493cd279eb07725d9efe723690158f583d4dd9ad054bf3f52daaad425df8f727cdcfd33f4c9c39f549dce3b0f67b208864180dd220cde5ceaa55655bf59d666c241d6ef461e57e191373d85aea1cc3965f2a026e7946a60bbc9928a7e578201d6fc1b3b48a50b1ccea8a61101685ec6ad16059392e0096000f464f7775da3b6c147a7c2e2a10d2a7e0133687a89d85c2ba45a57814ddef73fffd3d216afe3b31d1b0f1a907b34e6f49b1ee83e555356fc297915ccd2ba9f92659c34e0a0b4fafb2a95fa4b78814bee0433518fde1161dea1840ae31238401e29a8e68f57466bca4f6344cd423b1c2f2632d58b8a470c7e3c41f78fa626871d87519288171890b65ad1be1efeebe013a81cf5d37368e2ed86a9b2023543b74d64029da2411ae096090f6f563796a31a084b7e849cf74117179e442ff3a343f723d6b88b4481bd66ec2a7cdb36ca7cfed37df1e8b8ee83de478d9e5f4d667e77433a121d0a8e1fd28f1a6652b478a59a0889df1dd61fb050c5349317f0d98932e127ae24d857470328f773ec539ab448a5c34bfca8949fe7332e8ea628848d63b60f5fe364da7323b21b86218117725b1a4a087aced3313634ef791a9bfbe62b8cc68dbc3445f961efd71e337199cb887f6ea64843c851cbf4b220cb437fb41311a0c0cd99f47b6d8e63d789ec0ebc1a5aae6b2c3f6b1dd03f5bfb3854c9cbaaa9045f061011374927eddf5e566da12faf5a3e7f3b9dcb585701b77cdefad83c603d59e46791d4cca854379afb8a97a3b30c57c97078e96900a060e5a543753dd6bebc6c8767c036596420849d102e0856c56afe92e17e953e51aceba3bcde9628040120f8296317ab6f2c4ed7723f6e5f67a31375ff12f4b02aeaba11f4ca7f44dcaebeac499c8d4df9295cdb902e26011d3715d7e0dd8883061a7fcbaf845a9efa83a5d20e56e1bd2374adfe0915c4a13bbe00af9d3f65c4d8021b8ce2d23beda4c860fdd0a92e5270371e26b8c98fd29dc8f51bfaf21067826afe3dd199c0ec77e603ebf98a9972b795c2d96dfeb546791b49a6f6201fc8e5e52467e34dbcee2dc51b0ff38839e059eb776c3bbe66c89243b559670e60c23cbab118f60006cbe33bde333699f5ee514c30fe29e8dc70b2cd38f6c9707651b23749d33ba9c04b9a9baf10db4238cc456da320c1729b6fab4a46b493e6fd7850f3c6aa252db55ae94e81162298d866fc70aad684d087b21ed87489da16e9c15d7161928fc0a370fc09e42e56951b031f812150b50ed3cbc2604bb6ee61b32b92281c001e8852fcb9a87b979546cab300e1514a47ae58d790e33c9356ec9d6f5b82c2137d8159ffb359c88fce6fcf7f2a2ab793317cdac5ccc19f7fae206f62e58728f8afebaab681c2a04c62fe1b07db6fbd99f2193f8338738e978be0bdc7015ebd4666d1b4c5a65d7f24191ad23b4e07673cd93f6706f6a893ee4129bd285973877253674b2c564f77fa52c8fe37e1702c4ae47e7f75712b7ea785018ea80e1d8fafb33cfa7d3180672c7136fed9283b24589055046fb6c6db1a2dac8194c77dc26deb6b1ca0cfb25a58ebdd0eeb57af4a334b55dc1099688a1fe27af0d91d794fa5aec131c50c023f055da7be3ef8f86dec2a3273b0c8c6795d17bf96bb63042665c6f2e592872fe8b37725ba174b16c62d2e26df1767b73a5d152a851c60eb850d29ded75cd9b0db65f66e970c9baa593553ebe0c1a2c6cfc7a1c21ffa6ae53bab5eb1c0b7738b6de91c3b6d688c4162b826d5ecc8ee969a812aeb8122225b3b6d1e4cb83907de469ded6d9ee13cae5cc75c2b72f083a70c1c637edfaa3d6994490f142d0ccf57a564986f7c2d6077993f3ce239e9f54b6a71ed632f81a2e0adfde4a46bf65b741778321e74453dd0f6fcae698373987b265e4d91fee4bf4da208a64c433134d1d6cea3668cdb7f3feafd2b5234aee3840bc1664c9f4aa508c741345220bf4c779cc0b8d76941254d78798d8b31e39244f80975d3f8707642cca895ea7d0d4c77d655a0508bdb290625e7d8626191dccde37b9a749d0a0b11c0ec5ae481c866e9ce5df6ee90818d0bc209deb090f5344e3ab67ce02ff57efd3de9f5f65bddca87f4255dbdc63f7b8c36f1ba317c8318bf415c4acf67ff91a942814178d2a5706a2e2fc7f49e820373a5821c7624481c43719d8a8bddfa63fec2d948b52a25494c36db8c33fe0ad5f5fdc5c5e9dafacd6fd7548407d261b4886f482ae799baac9598cd70086b0af05f79a0172328a36aea0ca359efe675a4fa175ccd622e29d0179f3f7820cc4dec26897c470e533ad9c7c017f8608ee54e06b23e64777f8afd5a7e5e8a658480bad153acbfb3c892ebca1f21c14780775fb5fd2bb687086264fa716a3f73ad21ac9a9b5cfe995933d42792030122e45359ec741053f40231433726ce58a85ff4b956450c4137f51a31f009b0d8e6c7aefbdcb070ca0f759df77453975d3b1e27edebe9671b68a724a344e40ce5f3792a43a1f1fce39fc303b20072b88104e7b31658d671a820903a5dabc7445a4d11ff6e8881cf60f3d3fdf9f8a9680b229878a4bd3315c52976cdeb1913d79eac2d68ef10a05b7686a14d853b58f38ff2705ea31741961e17af88514716c3b9f12b8d652ccd97eccf5d2f81b188fa11f8d0222300c173884053b2d1dd3403be57cb0ab7806f9891751a23917f2c5886758eee5de845ee209e6074d668cc6cc1b9e6266168cf38502baa240703435140368cbd4855b1ab9439fba0dd8a58bffb3e586c6e4ea241a942cb8e05aaf635698dfd639243e99f6387a3e6b54ff88d1bf8f205fd8197795f61f74192cdb0c2884127edfc73563dfcfbf208e2f07ec96b56ac946aba937f519876f39c7a9a855c70cea2306989c95f4530a0d1957c0c2c1f0ef3c5d644315529e9f6242b08bd32ebce9e0a30925f7ff1e8084b33af26493a171675e2a6280c21064154e03e719565eba8f425025b8df309b90dc797a2c3f7f20208e699820ef1bc20f28076deb858742e010baee90e10177a73f34e1285eef23421e6da0a28b2659dff07b9c036bd61a0ffb44535826b6fe79269d3b06058d74276cd3170d6ba590d096f363c752dc4d786da08e65b79ce140f13a69d4126ab31b75fb27f0ec363ccb87dcad1dfc88b4492f7cbea4ffd7ca556c5c1ef96f8734c6a45824e17e312a04134ad83f29f79add7512d572d28f4e30cb1ef720908b986a2f99e0cc5045e5702545abd3d1878582f05179218abcc4a1b2e7d9ba741c4278fa479dcbd617774d7f764d4b48c13c8490be385684b431ae62ddce0a4fa99c97bbba15c6ef58fe07d9fcb0d61676205015f49c291b345aa8639ec23650e8f2f4ae522e6fa51f7bcb97f7f19a6abaa085ade5741a39f2b1acbbac4d12bc957e2b782da0fdde10e11721d5b59341d6797f254fba0339f7f51b613df586c632551b1a010bcbb23b9f523ea5c63a3d1b77b5ab8634f878542ab542032ef2ea0ba29035372f5b5b9a84fc6970eb8951249cf3279d33abf627634a9ec808929aad243c401905c606a200e24821e476424e6d135b033a2ed7857e8090da16f3dd9c6da15a6897e82d74cfce650032fa896c502dc54a53245c0a53ce15b1456fc9584e6a6d247c0d4e439d2f51164e729a5a4576b7844dd6461482dc3d08580cda791104ae18542e7608cd5e897ef6422cbe8953dd1f99e5861fe71d0fb6936630dfcccbf95de9b5a08a6e12420be499433b1c098d3ae822c2bf1c852358bac38b59e70de9e0fad6a8c954f45d378f7bcfa6762134ae25a01c5e959442243a5944b33dc79987d08c139e1d431f58475bd580b1977b3fb9dafc5dcc6bcba8c1f5a95d3bf61f33b724144a5342bcbfeea47a3cfbc35b23d8005cd331c4314a993a687466ab50d83fbed25ff753c63acb6468a4ad2f7093712c7cf52b278f7327ea03c675d9e6620095d468561583f4a169d01b04cb51e8de5f750ec5b0f8ded455653c77d628ed3b3f6a98c5db9ac2cf31f87d916de71bc97bd51898f97b601fbe09df10e9ceec75bc0760289617153771f475468627838b26adb439987d809f86ddb528a8fdbddbea2b7b801c62bb8a64fdb662bd2d627f7472753c110a1bb658a595b406512b06ce3a39fc8c0b60a40384b7ee87bc22478f8aea77c7d22b41cf155c4e31db5a7514f90a566f8102fa50cf651353cc35b0fbc06e3670d1e19e9834c8855ff9a99f6eea68196453cd333ca059d2e9eb835de116c5e70eeef9c29b39e86863e0fc11a6213dea6399e6ddeb10d1e39bfb1adb79b6d76b5881cbb19196bdcfc7208c5f23680c5759cd45bd54f57b7c21601b6a88f9ff1da818a2e79b6582bb4a02813429ea0a0b2f31e4583579f22f9f635c993156cde36493935569ef1cb9e186ece1c01de60ad11b5fe661fc66e27bfd090b5d3185e0b9602e09050e6226a0eebf6bb8ab7d729e98b07b18e32dd2fde340e237f48f39a5cda82b43cd3c20cfd1997fbdb80f948d37489e50a2fb0c7b9a9f014cd2cd062984536d8e7c95cc8c901040bd984848f136c86d6e8daeb01b41653ffb24d027561614693b309c310ca1a5eb51763e80887cb67ad1d340d2129ad1cc621e06fd3cbd1e90be869767cccae659f6aa7bca44466e759231b0099d1206ac3df4b6d23c87d430229e5ea98d23db96ef17c41a8ab0d917972258553af6da575b71247822f29f4b56b231618b55174f7ec34d31da58075761c85146066dda8190fd2bce3c79cb2eb0a9e0ad8067a31b7b815e11a9af6f07ce1e9c4c3a74f8195ec5390d8a544349ea287240c8ddfd9eefc5979b64be1197e910133d7889cd0ee0c7713e7b6d6d15d0556b03fbeb2e804cc0ca5ad4789cea13c16eaa17ebab0554d651091fed5706982fc3e4cb58105b08acfb532d4ecbd561f3b32be4001b36fe71c1e0c671d65f3b23b647adc92d4f6b76b4ec8a11a08956f193496e7f112a5dd6a25f8a94331f20679757233da1aff69c1a8308ad51121576651f13ef0275d4e11243ac6f982d9afe7ff1e4f7871b95385b26633f82250f87b1a275b2d4c7575d5e34fc7c4f714c6fa7b84ed4963941c39a98dbf035cbfbb0851b4d0ea2f85644ba5c20d42aa2914a20c527028f80b2cee78f682357a63f929d7ca89b431cc242fcb6a3756100ae8bde536cb6d42b716b2c82dad001a83f559493a0e4387698dee33fb417a5ad0d6bcb5d3ff9bde6f8eac2a0605fc5929fd284fa6758746fe70aa43efe67ddf6c9307b403104dd7b233ad132246fc3b8f30f024fd1d4636d9c9e9db4c35b57c0e3d41a541aa37bd3e27be4607976fcff426906a43aeebb5543eaa06aba323cf4569312632af7feded26d7b2f86d33283c21b7412f1b24eee82c3a244176c1adf9ebb42f1bf243fc00e2d2", "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"}) 18:23:08 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x80045440, &(0x7f0000000080)=0xffffffdb) 18:23:08 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0x77f, 0x11, 0x0, 0x0) 18:23:08 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) socket$alg(0x26, 0x5, 0x0) r3 = creat(&(0x7f0000000380)='./bus\x00', 0x0) ioctl$EXT4_IOC_SETFLAGS(r3, 0x40086602, &(0x7f0000000340)=0xe4) r4 = syz_open_pts(r3, 0x840) readv(r4, &(0x7f0000000580)=[{&(0x7f0000000100)=""/120, 0x78}, {&(0x7f0000000180)=""/194, 0xffffffffffffff34}, {&(0x7f0000000280)=""/2, 0x2}, {&(0x7f00000002c0)=""/102, 0xf8}, {&(0x7f0000000340)=""/114, 0xab}, {&(0x7f00000003c0)=""/188, 0xbc}, {&(0x7f0000000480)=""/78, 0x4e}, {&(0x7f0000000500)=""/120, 0x78}], 0x8) r5 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) ioctl$EVIOCGKEYCODE_V2(r5, 0x80284504, &(0x7f0000000000)=""/40) 18:23:08 executing program 0: memfd_create(0x0, 0x0) getpid() ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, 0xffffffffffffffff) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x8) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$video(&(0x7f0000000040)='/dev/video#\x00', 0x8447, 0x0) preadv(r0, &(0x7f0000000800)=[{&(0x7f0000000000)=""/31, 0x1f}, {0x0}], 0x2, 0x0) syz_open_procfs(0x0, 0x0) 18:23:08 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) r2 = dup3(r1, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:23:08 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0x7e4, 0x11, 0x0, 0x0) 18:23:08 executing program 0: getpid() r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$nl_generic(0x10, 0x3, 0x10) setsockopt$TIPC_GROUP_JOIN(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000280)={0x41, 0x3}, 0x10) dup(0xffffffffffffffff) r1 = syz_open_dev$media(0x0, 0x0, 0x0) ioctl$RTC_EPOCH_READ(r1, 0xc0287c02, 0x0) open(0x0, 0x200, 0x1) getpid() sched_setscheduler(0x0, 0x5, 0x0) sched_setscheduler(0x0, 0x0, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$sock_inet_tcp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f00000017c0)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket(0xa, 0x3, 0x8) sendmsg$key(r2, 0x0, 0x0) r3 = gettid() kcmp(0x0, r3, 0x0, 0xffffffffffffffff, 0xffffffffffffffff) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000018c0)={0x0, 0xffffffffffffffff, 0x0, 0xd, &(0x7f0000000900)='queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00'}, 0x5) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000140), 0xffffff65) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0}, 0x30) bpf$BPF_PROG_GET_FD_BY_ID(0xd, 0x0, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000100)={r0, r1, 0x0, 0xe, &(0x7f00000000c0)='/dev/snapshot\x00'}, 0x30) r4 = openat$snapshot(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/snapshot\x00', 0x20601, 0x0) sendto$l2tp(0xffffffffffffffff, &(0x7f0000000000)="2b965da48b34ddd12ab8e0370875853f6fa29c", 0x13, 0x10, &(0x7f0000000080)={0x2, 0x0, @remote}, 0x10) close(r4) 18:23:08 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0x849, 0x11, 0x0, 0x0) 18:23:08 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0x8ae, 0x11, 0x0, 0x0) 18:23:08 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0x913, 0x11, 0x0, 0x0) [ 1679.543777] Bluetooth: hci0: command 0x1003 tx timeout [ 1679.549549] Bluetooth: hci0: sending frame failed (-49) [ 1680.903746] Bluetooth: hci1: command 0x1003 tx timeout [ 1680.909419] Bluetooth: hci1: sending frame failed (-49) [ 1680.983817] Bluetooth: hci3: command 0x1003 tx timeout [ 1680.983823] Bluetooth: hci2: command 0x1003 tx timeout [ 1680.983917] Bluetooth: hci2: sending frame failed (-49) [ 1680.989346] Bluetooth: hci3: sending frame failed (-49) [ 1681.623754] Bluetooth: hci0: command 0x1001 tx timeout [ 1681.629731] Bluetooth: hci0: sending frame failed (-49) [ 1682.993918] Bluetooth: hci1: command 0x1001 tx timeout [ 1682.999422] Bluetooth: hci1: sending frame failed (-49) [ 1683.063814] Bluetooth: hci3: command 0x1001 tx timeout [ 1683.063820] Bluetooth: hci2: command 0x1001 tx timeout [ 1683.063903] Bluetooth: hci2: sending frame failed (-49) [ 1683.069289] Bluetooth: hci3: sending frame failed (-49) [ 1683.703838] Bluetooth: hci0: command 0x1009 tx timeout [ 1685.063868] Bluetooth: hci1: command 0x1009 tx timeout [ 1685.143840] Bluetooth: hci2: command 0x1009 tx timeout [ 1685.153848] Bluetooth: hci3: command 0x1009 tx timeout 18:23:17 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x80087601, &(0x7f0000000080)=0xfffffdfd) 18:23:17 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0x978, 0x11, 0x0, 0x0) 18:23:18 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x80086601, &(0x7f0000000080)=0xffffffdb) 18:23:18 executing program 0: getpid() r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$nl_generic(0x10, 0x3, 0x10) setsockopt$TIPC_GROUP_JOIN(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000280)={0x41, 0x3}, 0x10) dup(0xffffffffffffffff) r1 = syz_open_dev$media(0x0, 0x0, 0x0) ioctl$RTC_EPOCH_READ(r1, 0xc0287c02, 0x0) open(0x0, 0x200, 0x1) getpid() sched_setscheduler(0x0, 0x5, 0x0) sched_setscheduler(0x0, 0x0, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$sock_inet_tcp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f00000017c0)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket(0xa, 0x3, 0x8) sendmsg$key(r2, 0x0, 0x0) r3 = gettid() kcmp(0x0, r3, 0x0, 0xffffffffffffffff, 0xffffffffffffffff) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000018c0)={0x0, 0xffffffffffffffff, 0x0, 0xd, &(0x7f0000000900)='queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00'}, 0x5) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000140), 0xffffff65) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0}, 0x30) bpf$BPF_PROG_GET_FD_BY_ID(0xd, 0x0, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000100)={r0, r1, 0x0, 0xe, &(0x7f00000000c0)='/dev/snapshot\x00'}, 0x30) r4 = openat$snapshot(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/snapshot\x00', 0x20601, 0x0) sendto$l2tp(0xffffffffffffffff, &(0x7f0000000000)="2b965da48b34ddd12ab8e0370875853f6fa29c", 0x13, 0x10, &(0x7f0000000080)={0x2, 0x0, @remote}, 0x10) close(r4) 18:23:18 executing program 5: r0 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x0, 0x4002011, r0, 0x0) ioctl$UFFDIO_WAKE(r0, 0x8010aa02, &(0x7f00000002c0)={&(0x7f0000ffd000/0x3000)=nil, 0x3000}) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0xc24180, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r1, 0x400455c8, 0x1) ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, &(0x7f0000000100)={0xa10000, 0x444, 0x8000, r1, 0x0, &(0x7f0000000000)={0x9b0a23, 0x1ff, [], @ptr=0x1}}) getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(0xffffffffffffffff, 0x84, 0x70, &(0x7f0000000140)={0x0, @in={{0x2, 0x4e24, @loopback}}, [0x5b1d, 0x8, 0x81, 0x3, 0x8000, 0x6, 0x73, 0x80000, 0x101, 0x3, 0xcfbb, 0x4, 0x8000, 0x20a, 0x8000]}, &(0x7f0000000240)=0x100) setsockopt$inet_sctp_SCTP_AUTH_DEACTIVATE_KEY(r2, 0x84, 0x23, &(0x7f0000000280)={r3, 0xfff}, 0x8) ioctl$TIOCSETD(r1, 0x5412, &(0x7f0000000080)) 18:23:18 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0x9dd, 0x11, 0x0, 0x0) 18:23:18 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:23:18 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xa42, 0x11, 0x0, 0x0) 18:23:18 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="4800000010000507000000001000000000000040", @ANYRES32, @ANYBLOB="0000000000000000280012000c0001007665746800000000180002001400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00'], 0x5}}, 0x1235582cb9914e14) sendmsg$nl_route_sched(r1, &(0x7f0000000240)={0x0, 0x113, &(0x7f0000000280)={&(0x7f0000000340)=ANY=[@ANYBLOB="740000002400070500"/20, @ANYRES32, @ANYBLOB="00000000ffffffff00000000080001007166710048000229c6090032d0ed64f3c3545aaf6e000085a4e4ebb5ef670000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a010c3"], 0x74}}, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:23:18 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xaa7, 0x11, 0x0, 0x0) 18:23:18 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xb0c, 0x11, 0x0, 0x0) 18:23:18 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xb71, 0x11, 0x0, 0x0) [ 1689.783753] Bluetooth: hci0: command 0x1003 tx timeout [ 1689.789272] Bluetooth: hci0: sending frame failed (-49) [ 1691.143735] Bluetooth: hci1: command 0x1003 tx timeout [ 1691.149137] Bluetooth: hci1: sending frame failed (-49) [ 1691.223707] Bluetooth: hci2: command 0x1003 tx timeout [ 1691.229288] Bluetooth: hci2: sending frame failed (-49) [ 1691.303776] Bluetooth: hci3: command 0x1003 tx timeout [ 1691.309240] Bluetooth: hci3: sending frame failed (-49) [ 1691.863799] Bluetooth: hci0: command 0x1001 tx timeout [ 1691.869308] Bluetooth: hci0: sending frame failed (-49) [ 1693.223810] Bluetooth: hci1: command 0x1001 tx timeout [ 1693.229225] Bluetooth: hci1: sending frame failed (-49) [ 1693.303796] Bluetooth: hci2: command 0x1001 tx timeout [ 1693.309193] Bluetooth: hci2: sending frame failed (-49) [ 1693.383799] Bluetooth: hci3: command 0x1001 tx timeout [ 1693.389241] Bluetooth: hci3: sending frame failed (-49) [ 1693.943797] Bluetooth: hci0: command 0x1009 tx timeout [ 1695.303852] Bluetooth: hci1: command 0x1009 tx timeout [ 1695.383811] Bluetooth: hci2: command 0x1009 tx timeout [ 1695.463798] Bluetooth: hci3: command 0x1009 tx timeout 18:23:27 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0xc0045878, &(0x7f0000000080)=0xfffffdfd) 18:23:27 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_NESTED_STATE(r2, 0xc008ae88, &(0x7f0000000100)={{0x2, 0x0, 0x80, {0x199}}, "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", "4dd06bb39ae9b334a378240755fb14c77a8bd559bc8ce541b9e263d85ddd6b1a2f721449d31ba532090f85748c0c745ea80f442831851d63368a9a2d20f0ea29f49bcd45153cde73daebd7579a114174c637a449e4c1a9074222224866d87677c8cf822f6d1095a371e3f9ca5e34f856a1b685a60c71ff8c823b749e610bd97bb6f07655ea1d1cb1a8b5ee414b90f1a2b7e764c708005621a63fff1352c5dde6d7f9c05657cb5c5391e3c405c386b8677a9add1755fdb1dcf635323343a0262d4e330e0f70192edd7b26c9b53aa6fdde69cdd54ad6d028f696f08160e4574d3571c40b5b53d2a4ed60d43b533768b0cddd9caa395f04f7b021d579b8e16cf82d3418cd341e736f1da6b3e31c00de09550b4183a61714c64609992f90561e9c2ed010faee8e5273d7545fc0cdfd5687ae4c21798ebf454f7f4c0979461dbc974a70ca66ab7a23c40e8a94d8ac515ab7e4accd4ab544338b56e5933e5d090044399617301f640b1cd753b798f72cb59f3a6edd967dabf1fedf0706ff3273ebf3fcb360728ef7c142eabb089fc04424181b26df0519623d8d44a9b3e2dcba4213261d1be18e9fd2890a5272632edebdfc33f6e1e17e3b8d96c99549f976cef133b981fe903760900cf56460c220663fe1a0871e09cbc54418cabceab475e040acf93892cafd9a7d45b03c95612ca3d33eca15de58130f57e2f2c51207e86659afad096dcd9b5d5c213ee6fb9e62932da2adaa42560eda5f1da7dae5daa26308767824006813105bc2b1fb5dd8d99602c2c0fd15792b14c102f3c441869780f6c3bad7884230cfee61736d3535b36a5e3359f869b61bda9516070a8a77ab4d890104b41781e59ff8682ece0a9b94581dc8bec56c71ecab494dd6bab790f6d498d0cfad83276998502408ee8c7a8b3fe8499c0bf788a414152479755635bfb12e4d0db7f3241b5540b16730810b7ceefcb6da5dc264c54f49d9cc2d75bbca075534c50279114f8fd13107ac8f1457abc747d47007a49ca8601c8e30d9fe232b3fbb9890fe74f3e8e2f5c17faa2c0006d1e364e09c5ad3fef09febef3ba8b3f280ba16c3d634afde6caa74d58918cb6f1fc02a48e78423980e381873192ee103ba5af0e0b852c627083c99cda39b144960e6df46f94a3fe3395159a17dbebc31e43733850970cdfeb9af62c7ff95bd0031c4a15781c1a134c79e8349e7ed1620628c6772c59ed48e4ab2bdbaeea7778957de0d4637bd99f9653e71c8fd9af2b3f44c98cebf5b003f1f20a1367a858d4c5b461cf02611e6afe8cf711168d29848d732ba6672a302c7d824ae0d4e02861a6813fada02a9694ee19796fb6fde147c32354df18de2c9d06c202c84c56de87fa790a3a299f6bc408db0380dacc188439fc3fa35e2969c5eeb4ad897cf9a4247445be1789617d73076279e756187e7431af70080c22af9a588fbf25e536a8771eeb4b0f7a554703d753540becf00e6bda2d94228d81ee4b3a4049d7835399521e55ae20fe984170a40d3f98482197b54f5591e7111f7e4bd29e98dee03aa618f70ae4c12dd1d8024e0ab7474cfe8fb17afdecd0e241c1ffd5605857ee7498144c20f36aac8d37934acf18ca295900a80ffd0020dae4bcef4bc1739cea0d731f475b449ad48eb6fc14212e5e3bc12058410161ea53257e1d5115c3da6471c3cf67c302a231c8d7d98dedf2f3984f9500f1c6dc8115ce74861b61065a19604363244f1faba637a8e121e43dae414bb428050763d26ca038f0d64969fc4883801718c3bcef2be86aab18364bf2ecc8f4b71955113d59cb16d18e1dd572080dd76e3f9f455c3e5877a437e5428671a1d71dda5b4b72909f4e3426e7de2cfd227acae0477494acd75c645d0333477765965d5dc7debe184dd6dfa000152a3b0831f4c385a3abbcbe4f5d55c14d9c997b69ce24a867222468dfcedcf5581fd8d9b571bd8d926b49348b52e366e799eacc94d3b9fb3efeffc8ffb827146bf2f3eaad96a66de16fc57ee2f074516b9b78d5c09162ca93a531e16e92971a4dae5787a123648b16da067d48ba97394a524945e3d9f82e4a2f0c2f11cc84a9c9a1de0fc82a7ee29b300cff5e1ae9f28d8633c89b72b7eddc0ba1563baad33bf7a5569a2089ec76d676338b1b277dcd5a807972081d8a347a24196c04e82d631720e3153aab3848f2c157e05004eaf78d8c6fe955aa91847e6e3a5ae58e764abd8eed5039d196d4957501fc63571f2a78a8f905b6a4b71ffac2ce06ad4b28fa8ca0411b9a1aa30bdf581f95c0de3219f77b32b97c63a4438dafce6c5897dd04e732c331f288b97fa7e1877b7ca71220f1350fe7358faf41b02ffd278fb5932d4e7afd841ea329682c3d973149a3b556aca4148b9fecfc3854f27f33cab58f1d305bc61efec79c579bb17709f3bcad5e519a9cd7492c11415c092bd86d2e2aff9138d6e15a200afb98e6bc43b25c9b9d63e30aeea7c8177f037624b9ee99dc5d9f6793a6d7d2de0c88a09a58525fcc018a237676e2618b4e5139aba1a86c4d4197cef24d417fd09ce6abecf14582c62056af6078163c6214ca188fdc767b65e15196fca35c79e9a1301495e33c1762b3f8feda91784ed8faa6f2153afd39a08916c13c792ccf78740f26ab28b1c57174fd797935c2a37fc449292336674efc078bff791a17abf2e9afcc084600907d2f9b68e4aa5fccd3f4e24880d5bf939ee05dee577aa225d723e65cf7499bdcb8c674b5d093e17c6af816348b6e00e9a3da70d7ac46806372afd401b0ce911076dca9c9c73fed236ff389b02a46c8c0a1f56e3a645258f6a9b3bca53da72b509502897bf56bb5042b39fa88afabfbd960f79057dda8755e3608eed8f517aa52fb37e9183d54483aad71a1ba91f8eae96a19afe1ab179a56fca22867a6e46c3fa587a3e104e61739ae2acbf2db0ebdca3c8fd224bf3892851f0d54c717dde7606de367855f98260457b5bcd16ad19e1f436a594f98fb1b54b5bf70ea8d20626b070b0990334496a703e2982882b010df288895d09ea3e10aec62859119833b42368993fbd8deb4a9307157ea16edd486db3aae78b91e7be6916969e444e42ccece179956f41e1f6945c1f6a4539484b4d74576b5d17aae84784a5035da4c4c42f39b55a39128aa24b6f05fa27e09567e256e0f7d0bc9b8969317e5013ba6fddaf1a32a7e21a9d2084859d3a9dcbd6cce7dd37d7700141ede7c477781b9e94fb1300daba4e36d9571968b0b6e1cbfcd29702b83af272c2bd492393328b485a59847cba44cb8f443aba848bb54301412872f36b07ac25f161235370178369d5b59679072dd0366f0ba0422737980f677c3be0d5afb3c377b0400e0665729bd215a10dd8dcfc67b6ca6a316e91c9c258cafbc9ec9fbed84b47733ea9e8519c842e70f7f380658a4d0431fb68b157d9ffea123882090af2548ae5a7085edcd52f5373ad439791a215d54e1486b8f2f321dcd47e4d8c5d010dd87ed54f8a1dd0559f639c4ceeffb941e2e48b163836c318b484a8f8adecda8d4ad1e66cc57e87e99d39db0c6f4276b868c9b755065d6eb4a9ccb5f8181e8d3cfa93c3eb6caf3689a2594e2995e1ae18089d6828bf2ffcad2e39ba0e547fb63d108117a9cbc2cbdd043f629f55adf044f9bd81bf96d7f8d56578db5f6189f11fafd5f54fde8fb5b64a799a8b2b5e67763315c2fbfa1242276bc50f7f8508588b536c2e2fb68812b59630b9715985f74721875b29b084014a69b63c0cf38e750c25948cb8e900108552237508fded1f4be52920fdd6983d7927f76d193f73eeb39ef40648d92f364f06c849b1d8028c539a0641741e0cf6b6248a18413c274358613046232e8af81ad14d851751c0a66c7d16a857d8b51ede4728ecfa55d93dcaf0a80de528d06a783c1c1ee7b53ad7252051e6640d335bd05750e4c397002935227f605699549f3ba08a454a68590083d057b22d30a6f882d617b0ba86ad8b96608c426c8564f3c0dc68ef1547670a5988808611d0ab5732bf5a205a7011487aae2a3bd1d25046d6847fab82417b2712a4357330ecaa66829e28b172fb2da0555ef88d3a1799a63e3a6b9fcacdbbe1afa4bc1ce5118185e54c99e9f464cc47b590451a8db5f9df5acfe57181d882d2b0c7aa2041fbeb4139f7468e7cb423de816f389937813f6df30fa1fe9be975e3fa54e01b3ee0e896b28ae79ef9649b793c94a80da6e7bade0b583262f43da3dd0ec2939fd7edf0e3c3159b3924d6290beddfbcc091a8743a4c4e3f1c6c60e02642fcec11bf3d01d0548a759e28f1a88f610ac75a4541e263af4304937b553a16ff84370618498c767c101ed8d2a76966d902a6a73c4a01fc97e573639eba40ee6d7beca37aa3497da84585609c0122f4542a6eec4b8f5895f56b9b678f9ce6cab143657f412f4104f0a23a77c3a1ceb821a56720dfdf233308dbed514753a946a8f2c6204d6a1446d578f479f44984f9f131bb66e7a7dc5f8a25ae383fa1551140721204b064adce44d2ab44d20ac9a28186bcf9fed1b1a28bb392d1badb1c99129631349449c467d9b81e2083a3420036668210d2c7f39d2de34458f77e5ce39bc4efd1bd2ae80547c2943e5683b3b003a24f4b88d7fd7636e68ba43712f575f116ffba962ae6ed6243bc585ce04e93c5360234eaee7350d71dd427762b7efb29684b3c7951379888395c46cfa398927830ca5a35a341a748c9953629924dd5e4efabfd7ff269e044c0d26eb978f80adf1689d2cb4b0dc1bac4646c16d6d94715a610d3fa7feb29ec46505fff90c61cec31a3bc1996cf7ca47be884e01da152897957945186d7a5091f8ba8d7f4df40a6353433a6b15ed4233d670ac15b53dd8172b8cc3793ff0e1ee44609a950eacfbf6baee3d701ab8353c37e2d864e32dc46b6f9ede6a9373340b36405cce77b71f70a236c4c2df002a14558e8ee3f84f1a5f3826821544cd8eac6cc38bdc4c61173e0df7d87b60a42d52d331517d9556377adc391477319376e7c7507585af177e42ab0373bd698d9fd03425742d1c349e7a5524114d38526dabebbcd8c12a4bb8fd275f123333042f1bb9c51847381a6550ccfa148268705bce403ba0c529e3bb5a0af3ca6f42db52e83dd3ece999e3a06cb28480fcc1b624c30638c5ebf663b51dd005614dce29a6df1daccb439a7c5a02437bc05a60d4c8cc353ba2b49837b552f2094df52836f8b7d822a6317e34dbc93d9afd7f02e061aa89e030be350a807f05e035c8f28f57aba4cd6a5901b9b1325ebf01318069c268d3b41cf55075481add7d9cd09dd3f0e2e05ab59762e2463be2b71d66074c57a96bf4c327238762361596a0ffdb3d6fe99ff0bda12d5078486e48fe134854e1580720620e17bd7e934a7c262f816a5ea014e2fe375f4040d155e4481ff3d71911b24c6fb84d2fab06ab524080771b2091f16b34ce8f5407f7fa3331c0c39780585faf2d437248449a4585879469cbeeb47883acc01c79052b55a46668ce28ff8ebdc391f1d2d637009ff1237831df27f2057dab7dcba8fa39d1a79a74b756bd4c937aa6f4ccb20f66a7f6c60474d551622f97c4c791e686b002da0864833c8305deb3ca25b22c2644565a4fae5b2e9ca7e15b4dae52a664f18c3588347b9153bca194b666bac08cdb7e10486e294aa170e121b5e71a791cdd942285fa5aee75e9ad6dca039b6d45998f2d22234359803e1a080a8864fbae8db2e90fd0f0bd2bb44a2a85cc4e195723269bc918db8d91293aef85552bdc28ee2228d6b9a"}) 18:23:28 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x80087601, &(0x7f0000000080)=0xffffffdb) 18:23:28 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xbd6, 0x11, 0x0, 0x0) 18:23:28 executing program 0: socket$pppl2tp(0x18, 0x1, 0x1) dup2(0xffffffffffffffff, 0xffffffffffffffff) perf_event_open(&(0x7f0000000000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$video(&(0x7f0000000040)='/dev/video#\x00', 0x8447, 0x0) preadv(r0, &(0x7f0000000800)=[{&(0x7f0000000000)=""/31, 0x1f}], 0x1, 0x0) syz_open_procfs(0x0, 0x0) 18:23:28 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:23:28 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3b, 0x11, 0x0, 0x0) 18:23:28 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xca0, 0x11, 0x0, 0x0) 18:23:29 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xd05, 0x11, 0x0, 0x0) 18:23:29 executing program 0: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) fcntl$getown(0xffffffffffffffff, 0x9) get_robust_list(0x0, 0x0, 0x0) open(0x0, 0x0, 0x0) time(0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000cf6fe4)=[@in6={0xa, 0x0, 0x0, @loopback}], 0x1c) socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000140)=@assoc_value={0x0, 0x839}, 0x8) r2 = syz_open_dev$loop(&(0x7f0000000100)='/dev/loop#\x00', 0x0, 0x0) r3 = memfd_create(0x0, 0x0) connect$packet(r3, &(0x7f0000001440)={0x11, 0x2, 0x0, 0x1, 0x0, 0x6, @random="a038badc52e5"}, 0x14) r4 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000001240)='/proc/self/net/pfkey\x00', 0x2000, 0x0) ioctl$LOOP_CHANGE_FD(r2, 0x4c00, 0xffffffffffffffff) ioctl$LOOP_CHANGE_FD(r2, 0x4c06, r4) socket$inet_tcp(0x2, 0x1, 0x0) 18:23:29 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xd6a, 0x11, 0x0, 0x0) 18:23:29 executing program 0: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/drop_packet\x00', 0x2, 0x0) r1 = socket$vsock_stream(0x28, 0x1, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setresuid(0xffffffffffffffff, r2, 0x0) write$FUSE_DIRENTPLUS(r0, 0x0, 0x0) [ 1700.033892] Bluetooth: hci0: command 0x1003 tx timeout [ 1700.039296] Bluetooth: hci0: sending frame failed (-49) [ 1701.303729] Bluetooth: hci1: command 0x1003 tx timeout [ 1701.309168] Bluetooth: hci1: sending frame failed (-49) [ 1701.393800] Bluetooth: hci2: command 0x1003 tx timeout [ 1701.399293] Bluetooth: hci2: sending frame failed (-49) [ 1702.103773] Bluetooth: hci0: command 0x1001 tx timeout [ 1702.109215] Bluetooth: hci0: sending frame failed (-49) [ 1703.383806] Bluetooth: hci1: command 0x1001 tx timeout [ 1703.389394] Bluetooth: hci1: sending frame failed (-49) [ 1703.463866] Bluetooth: hci2: command 0x1001 tx timeout [ 1703.469290] Bluetooth: hci2: sending frame failed (-49) [ 1704.183835] Bluetooth: hci0: command 0x1009 tx timeout [ 1705.463791] Bluetooth: hci1: command 0x1009 tx timeout [ 1705.543824] Bluetooth: hci2: command 0x1009 tx timeout 18:23:37 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0xc0045878, &(0x7f0000000080)=0xfffffdfd) 18:23:37 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000100)={0x0, 0x0}) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x2400, 0x0) kcmp(r1, 0xffffffffffffffff, 0x5, r2, r0) r3 = creat(&(0x7f0000000380)='./bus\x00', 0x0) ioctl$EXT4_IOC_SETFLAGS(r3, 0x40086602, &(0x7f0000000340)=0xe4) r4 = openat(0xffffffffffffffff, 0x0, 0x3120, 0x93) r5 = openat$zero(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f00000001c0)={0x1, [0x0]}, &(0x7f00000000c0)=0x8) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r5, 0x84, 0x9, &(0x7f0000000000)={r6, @in={{0x2, 0x0, @empty}}}, 0x98) getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r4, 0x84, 0x76, &(0x7f0000000200)={r6, 0xffffffff}, &(0x7f0000000280)=0x8) setsockopt$inet_sctp_SCTP_AUTH_KEY(r3, 0x84, 0x17, &(0x7f0000000180)={r6, 0x3, 0xf6, "59328a5ada344ace481f69a1dbf34c6c6f4cf360a335bad88879d43cb97e0c2cf51e62bbaf25058e6e8bbd25a37a5d4d34d0c93b3a23742c460a28321a28e3fe64ca137678f0730feedc3b226839b63017add610e0ca895c768ffea6c25ab70d5c39196273eac90b1c0e57a8af80b97a18f75b1c8f0455376f64da2ef620a4619a3e7e8aeda6dc37ccbe30fb53d9de7e9ae651f2ee4ed93bf6c4ee7dc1c7405d5363833dedf261688728288c4369d597f72b1d726535be9712cca21e0f26dad3e82b983f14347cfe4076597c5ed33b2733b6b401c8083df504a690d8bf3c143062f847219a5f5998d58960e62ab43e41562eb42d5e5b"}, 0xfe) 18:23:38 executing program 0: r0 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video36\x00', 0x2, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video36\x00', 0x2, 0x0) dup2(r0, r1) 18:23:38 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xdcf, 0x11, 0x0, 0x0) 18:23:38 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0xc0045878, &(0x7f0000000080)=0xffffffdb) 18:23:38 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:23:38 executing program 0: 18:23:38 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xe34, 0x11, 0x0, 0x0) 18:23:38 executing program 0: 18:23:38 executing program 0: 18:23:39 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xe99, 0x11, 0x0, 0x0) 18:23:39 executing program 0: [ 1710.263743] Bluetooth: hci3: command 0x1003 tx timeout [ 1710.269260] Bluetooth: hci3: sending frame failed (-49) [ 1710.274879] Bluetooth: hci0: command 0x1003 tx timeout [ 1710.280266] Bluetooth: hci0: sending frame failed (-49) [ 1711.623814] Bluetooth: hci2: command 0x1003 tx timeout [ 1711.629197] Bluetooth: hci1: command 0x1003 tx timeout [ 1711.629230] Bluetooth: hci2: sending frame failed (-49) [ 1711.635107] Bluetooth: hci1: sending frame failed (-49) [ 1712.343765] Bluetooth: hci0: command 0x1001 tx timeout [ 1712.349200] Bluetooth: hci3: command 0x1001 tx timeout [ 1712.349236] Bluetooth: hci0: sending frame failed (-49) [ 1712.354882] Bluetooth: hci3: sending frame failed (-49) [ 1713.703804] Bluetooth: hci1: command 0x1001 tx timeout [ 1713.703845] Bluetooth: hci2: command 0x1001 tx timeout [ 1713.714504] Bluetooth: hci1: sending frame failed (-49) [ 1713.720138] Bluetooth: hci2: sending frame failed (-49) [ 1714.423805] Bluetooth: hci3: command 0x1009 tx timeout [ 1714.423811] Bluetooth: hci0: command 0x1009 tx timeout [ 1715.783819] Bluetooth: hci1: command 0x1009 tx timeout [ 1715.783825] Bluetooth: hci2: command 0x1009 tx timeout 18:23:47 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0xc0189436, &(0x7f0000000080)=0xfffffdfd) 18:23:47 executing program 0: 18:23:47 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xefe, 0x11, 0x0, 0x0) 18:23:47 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000001500)='/dev/vga_arbiter\x00', 0x200000, 0x0) r2 = socket(0x11, 0x800000003, 0x0) bind(r2, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2ac5000000012e0b3836005404b0e0301a060075f2e3ff5f163ee340b700000080000000000000fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c65400"}, 0x80) pipe2(&(0x7f0000000100)={0xffffffffffffffff}, 0x0) setsockopt$inet6_tcp_TCP_QUEUE_SEQ(r3, 0x6, 0x15, &(0x7f0000000180)=0x1, 0x4) getsockname$packet(r2, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000140)=0x14) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000000)=@setlink={0x34, 0x13, 0x501, 0x0, 0x0, {0x0, 0x0, 0x0, r4}, [@IFLA_IFNAME={0x14, 0x3, 'netdevsim0\x00'}]}, 0x34}}, 0x0) setsockopt$packet_drop_memb(r1, 0x107, 0x2, &(0x7f0000001540)={r4, 0x1, 0x6, @remote}, 0x10) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:23:49 executing program 0: 18:23:49 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x0) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:23:49 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0xc0045878, &(0x7f0000000080)=0xffffffdb) 18:23:49 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xf63, 0x11, 0x0, 0x0) 18:23:49 executing program 0: perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = add_key$user(&(0x7f00000000c0)='user\x00', &(0x7f0000000040)={'syz', 0x3}, &(0x7f0000000340)="585ccbe4ed83b836c1a6474914dc55e72206297b6895b66147b3c7218a9169a85ea0bdc9e1587a050000000000000042e33089754c8107c3cd3923dd4a71c2ff06007b6b4816122d2550829eaa9435c99926022b8753a188748c569f435fb3bae96efb74b50ec93c152f5e8e198a29e5c0d0c60000ce0637ce003d661ff5ff70e48884ca000018cea71fcfacf40d32e4b58a8d2725561f6110fd7b06f90b5274cc5c1e298a16324fe27da2a9d5ba9ff3c009d308bd73f4772539", 0x2b2, 0xfffffffffffffffe) r1 = add_key$user(&(0x7f0000000280)='user\x00', &(0x7f0000000180)={'syz'}, &(0x7f0000000000)="03", 0x1, 0xfffffffffffffffd) r2 = add_key$user(&(0x7f00000000c0)='user\x00', &(0x7f0000000000)={'syz'}, &(0x7f0000000380)='X', 0x1, 0xfffffffffffffffe) keyctl$dh_compute(0x17, &(0x7f0000000140)={r1, r0, r2}, &(0x7f0000000440)=""/243, 0x23d, &(0x7f0000000240)={&(0x7f0000000080)={'tgr128-generic\x00'}}) 18:23:49 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xfc8, 0x11, 0x0, 0x0) 18:23:49 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4068aea3, &(0x7f0000000240)={0x94}) 18:23:49 executing program 0: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) sendto$inet6(r0, 0x0, 0x0, 0x8000, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @mcast2}, 0x1c) sendto(r0, 0x0, 0xffffffffffffff0b, 0x200a09a, 0x0, 0xfffffffffffffd9d) [ 1720.503776] Bluetooth: hci0: command 0x1003 tx timeout [ 1720.509374] Bluetooth: hci0: sending frame failed (-49) [ 1720.584282] Bluetooth: hci3: command 0x1003 tx timeout [ 1720.589701] Bluetooth: hci3: sending frame failed (-49) [ 1721.863729] Bluetooth: hci2: command 0x1003 tx timeout [ 1721.869146] Bluetooth: hci2: sending frame failed (-49) [ 1721.874906] Bluetooth: hci1: command 0x1003 tx timeout [ 1721.880268] Bluetooth: hci1: sending frame failed (-49) [ 1722.583812] Bluetooth: hci0: command 0x1001 tx timeout [ 1722.589236] Bluetooth: hci0: sending frame failed (-49) [ 1722.664158] Bluetooth: hci3: command 0x1001 tx timeout [ 1722.669579] Bluetooth: hci3: sending frame failed (-49) [ 1723.943816] Bluetooth: hci2: command 0x1001 tx timeout [ 1723.943833] Bluetooth: hci1: command 0x1001 tx timeout [ 1723.954597] Bluetooth: hci2: sending frame failed (-49) [ 1723.960121] Bluetooth: hci1: sending frame failed (-49) [ 1724.663786] Bluetooth: hci0: command 0x1009 tx timeout [ 1724.743910] Bluetooth: hci3: command 0x1009 tx timeout [ 1726.023795] Bluetooth: hci2: command 0x1009 tx timeout [ 1726.023801] Bluetooth: hci1: command 0x1009 tx timeout 18:23:57 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0x102d, 0x11, 0x0, 0x0) 18:23:58 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0xc020660b, &(0x7f0000000080)=0xfffffdfd) 18:23:58 executing program 0: r0 = socket$inet6(0x10, 0x3, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="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"], 0x28}}, 0x0) recvfrom$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0) 18:23:58 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) syz_open_pts(r0, 0x80000) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:23:58 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4068aea3, &(0x7f0000000240)={0x141}) 18:23:59 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x0) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:23:59 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0xc0189436, &(0x7f0000000080)=0xffffffdb) 18:23:59 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0x1092, 0x11, 0x0, 0x0) 18:23:59 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x7, 0x0, 0x40000002c0f, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90) 18:23:59 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0x10f7, 0x11, 0x0, 0x0) 18:23:59 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0x115c, 0x11, 0x0, 0x0) 18:23:59 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0x11c1, 0x11, 0x0, 0x0) 18:23:59 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0x1226, 0x11, 0x0, 0x0) [ 1730.743741] Bluetooth: hci0: command 0x1003 tx timeout [ 1730.749279] Bluetooth: hci0: sending frame failed (-49) [ 1730.823755] Bluetooth: hci3: command 0x1003 tx timeout [ 1730.829166] Bluetooth: hci3: sending frame failed (-49) [ 1732.103799] Bluetooth: hci2: command 0x1003 tx timeout [ 1732.109214] Bluetooth: hci1: command 0x1003 tx timeout [ 1732.109298] Bluetooth: hci2: sending frame failed (-49) [ 1732.114968] Bluetooth: hci1: sending frame failed (-49) [ 1732.823767] Bluetooth: hci0: command 0x1001 tx timeout [ 1732.829208] Bluetooth: hci0: sending frame failed (-49) [ 1732.903759] Bluetooth: hci3: command 0x1001 tx timeout [ 1732.909182] Bluetooth: hci3: sending frame failed (-49) [ 1734.183800] Bluetooth: hci1: command 0x1001 tx timeout [ 1734.183806] Bluetooth: hci2: command 0x1001 tx timeout [ 1734.194609] Bluetooth: hci2: sending frame failed (-49) [ 1734.200102] Bluetooth: hci1: sending frame failed (-49) [ 1734.903824] Bluetooth: hci0: command 0x1009 tx timeout [ 1734.983818] Bluetooth: hci3: command 0x1009 tx timeout [ 1736.263876] Bluetooth: hci2: command 0x1009 tx timeout [ 1736.263882] Bluetooth: hci1: command 0x1009 tx timeout 18:24:08 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xfffffdfd) 18:24:08 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0x2000c6f2, 0x11, 0x0, 0x0) 18:24:08 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$VIDIOC_DQBUF(0xffffffffffffffff, 0xc0585611, &(0x7f0000000180)={0x1, 0x4, 0x4, 0x4000, 0x5b, {0x0, 0x7530}, {0x3, 0x0, 0x2, 0xdd, 0x33, 0x1, "bdbe9990"}, 0xffff6c40, 0x4, @userptr=0x8, 0x34f3, 0x0, 0xffffffffffffffff}) ioctl$TCSETSF(r1, 0x5404, &(0x7f0000000040)={0x3f, 0x7, 0x80000000, 0x9, 0x5, "f9140485e53c59e50c1b789c0c3d9b00be3a10"}) r2 = creat(&(0x7f0000000380)='./bus\x00', 0x0) r3 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-monitor\x00', 0x0, 0x0) ioctl$TIOCCBRK(r3, 0x5428) ioctl$EXT4_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000340)=0xe4) r4 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000140)='/dev/btrfs-control\x00', 0xc200, 0x0) ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000100)=0x19) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:24:08 executing program 0: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0x10f7, 0x11, 0x0, 0x0) 18:24:09 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x0) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:24:09 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0xc020660b, &(0x7f0000000080)=0xffffffdb) 18:24:09 executing program 1: r0 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x2, 0x200) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) dup3(r4, r5, 0x0) write$binfmt_elf64(r5, &(0x7f0000000500)={{0x7f, 0x45, 0x4c, 0x46, 0x9, 0x80, 0x92, 0x3f, 0x5, 0x2, 0x6, 0x0, 0x3b, 0x40, 0x28b, 0x10001, 0x2, 0x38, 0x2, 0xcb, 0x7fff, 0x4}, [{0x1, 0x0, 0x2, 0x72b, 0x0, 0x2, 0x401, 0x9f}], "17d373bf7a3eaafff951111651ee11a1f6746756b8e37357b1a505163968000f7c13c28453b48c76c5a6022cc58517edf9816f88f2204973fbad60e7139d7229acc428", [[]]}, 0x1bb) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) setsockopt$pppl2tp_PPPOL2TP_SO_RECVSEQ(r3, 0x111, 0x2, 0x0, 0x4) setsockopt$bt_BT_RCVMTU(r0, 0x112, 0xd, &(0x7f0000000100)=0x8, 0x2) r6 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x0, 0x4002011, r6, 0x0) ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, &(0x7f0000000440)={[{0x2, 0x0, 0x3, 0x1, 0x1f, 0x9, 0x7f, 0x1, 0x86, 0x40, 0x65, 0xff, 0x9}, {0xd1500000, 0x2, 0x2, 0xff, 0x1f, 0x9, 0x3, 0xdd, 0x2, 0x0, 0x1, 0x6, 0x3}, {0x7f, 0x3000, 0x5, 0x0, 0xfe, 0x7b, 0x40, 0x7, 0x18, 0xb9, 0x9, 0x6a, 0x800}], 0x6}) ioctl$sock_bt_bnep_BNEPCONNDEL(r6, 0x400442c9, &(0x7f0000000400)={0x6, @broadcast}) ioctl$FS_IOC_FIEMAP(0xffffffffffffffff, 0xc020660b, &(0x7f0000000140)=ANY=[@ANYBLOB="050000000000000004000000000000000c0000003b7400000500000000000000eb000000000000004d00000000000000fffeffffffffffff0000000000000000000000000000000008000000000000000000000000000000ffff0000000000000000000000000000050000000000000000000000000000000000000000000000040100000000000000000000000000000080000000000000f800000000000000f92600000000000000000000000000000000000066000000000000000000000000000005000000000000000000000000000000030000000000000000000000000000000000000000000000c00000000000000000000000000000000000000000000000160e0000000000000100000001000000000000000000000000000000000000000200"/307]) r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r7, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r7, 0x400455c8, 0x1) ioctl$TIOCSETD(r7, 0x5412, &(0x7f0000000080)=0xfffffdfd) r8 = creat(&(0x7f0000000380)='./bus\x00', 0x0) ioctl$EXT4_IOC_SETFLAGS(r8, 0x40086602, &(0x7f0000000340)=0xe4) clock_gettime(0x0, &(0x7f0000000300)={0x0, 0x0}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r13 = dup3(r11, r12, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r13, 0x8912, 0x400200) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r16 = dup3(r14, r15, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r16, 0x8912, 0x400200) ioctl$VIDIOC_QBUF(r8, 0xc058560f, &(0x7f0000000740)={0x0, 0x6, 0x4, 0x10, 0x400, {r9, r10/1000+30000}, {0x3bf12eeedc6560a3, 0x2, 0x0, 0x27, 0x1, 0x2, "f9650fea"}, 0x7, 0x2, @fd=r13, 0x0, 0x0, r16}) r18 = socket$inet_smc(0x2b, 0x1, 0x0) ioctl$FICLONERANGE(r17, 0x4020940d, &(0x7f0000000340)={{r18}, 0xcc2, 0x5, 0x4}) r19 = syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0)='nl80211\x00') openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f00000004c0)='/selinux/avc/cache_stats\x00', 0x0, 0x0) sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000380)={&(0x7f00000006c0)={0x58, r19, 0x800, 0x70bd25, 0x25dfdbfe, {}, [@NL80211_ATTR_WIPHY={0x8, 0x1, 0x1}, @NL80211_ATTR_IFNAME={0x14, 0x4, 'ip6tnl0\x00'}, @NL80211_ATTR_IFNAME={0x14, 0x4, 'bond0\x00'}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x2}, @NL80211_ATTR_WDEV={0xc, 0x99, {0x8000, 0xffffffffffffffff}}]}, 0x58}, 0x1, 0x0, 0x0, 0x4000000}, 0x1) 18:24:09 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) r1 = openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/avc/cache_stats\x00', 0x0, 0x0) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140)='nl80211\x00') r3 = socket(0x11, 0x800000003, 0x0) bind(r3, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2ac5000000012e0b3836005404b0e0301a060075f2e3ff5f163ee340b700000080000000000000fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c65400"}, 0x80) getsockname$packet(r3, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000140)=0x14) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000240)=ANY=[@ANYBLOB="3400000013000105000000000080000000000000a0be628736b76ec246402aafdd3f5413b423a2267e5d6a4040c462e81a9278855613ad55e320327a0f8295e85c33aca4de0aca962190b266b25ee7289f9b86b6f1c24e1e5573905d3a62464513c0744e5caea2ab75c602b9712355162ee51244696820d06a60e777ea2baab03639003fc9201c399d8dc4ee9393c3a08a2f74875b327895efee10ca1ed4898288688579748a50cc1bae596a42fa63c8fe83fd6bd3161b6de20cc9c81c972786", @ANYRES32=r4, @ANYBLOB="0000000000000000140003006e657464657673696d30000000000000"], 0x34}}, 0x0) sendmsg$NL80211_CMD_DEL_MPATH(r1, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4808420}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x34, r2, 0x1a, 0x70bd2c, 0x25dfdbfd, {}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_IFINDEX={0x8, 0x3, r4}, @NL80211_ATTR_MAC={0xa, 0x6, @random="dcdf31b5d229"}]}, 0x34}, 0x1, 0x0, 0x0, 0x40000}, 0x4000000) 18:24:09 executing program 0: io_setup(0x1529, &(0x7f00000000c0)=0x0) r1 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x0, 0x4002011, r1, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) io_cancel(r0, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x3, 0x0, r1, &(0x7f0000000100)="91ad5bb66c65ee1fb059e1b9fe53a8f2887e62a2a66e9f49424dd0e9e7a39d792da3aae58c125bf2428e360e8cd8dc2ee91126848383ca6b9ba6d9dcf48221969e995f1cbed1c066b43739861afdcd3444dcb682595a25b3bc83d7bc6cc9d5509c2dd75553b3ab9be2efde085a92038f70459b1ce4dc675917d31740befecbbff1cf397ae8cbc0fd424bb4fde7bb298756213c538a567f9675072b8558b9bfa190a8c2fab66ac3915205ffa4b49dbf74e65b747c0a41d64efe95624228c3c892e40c7c101d9a786b8df4357d75c6810f", 0xd0, 0x7fff, 0x0, 0x2, r3}, &(0x7f0000000240)) setsockopt$netlink_NETLINK_PKTINFO(r1, 0x10e, 0x3, &(0x7f0000000280)=0x9, 0x4) r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x101100, 0x0) ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r4, 0x400455c8, 0x1) ioctl$TIOCSETD(r4, 0x5412, &(0x7f0000000080)) clock_gettime(0x6, &(0x7f00000002c0)) 18:24:09 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x2) 18:24:09 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x3) 18:24:09 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x4) 18:24:10 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x5) 18:24:10 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x6) 18:24:10 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x7) 18:24:10 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x8) [ 1742.343790] Bluetooth: hci1: command 0x1003 tx timeout [ 1742.343797] Bluetooth: hci4: command 0x1003 tx timeout [ 1742.343838] Bluetooth: hci3: command 0x1003 tx timeout [ 1742.349144] Bluetooth: hci0: command 0x1003 tx timeout [ 1742.354572] Bluetooth: hci4: sending frame failed (-49) [ 1742.360006] Bluetooth: hci1: sending frame failed (-49) [ 1742.370598] Bluetooth: hci3: sending frame failed (-49) [ 1742.377386] Bluetooth: hci0: sending frame failed (-49) [ 1742.381402] Bluetooth: hci2: command 0x1003 tx timeout [ 1742.392156] Bluetooth: hci2: sending frame failed (-49) [ 1744.423802] Bluetooth: hci3: command 0x1001 tx timeout [ 1744.423818] Bluetooth: hci2: command 0x1001 tx timeout [ 1744.429188] Bluetooth: hci4: command 0x1001 tx timeout [ 1744.434554] Bluetooth: hci3: sending frame failed (-49) [ 1744.445365] Bluetooth: hci2: sending frame failed (-49) [ 1744.446103] Bluetooth: hci4: sending frame failed (-49) [ 1744.450805] Bluetooth: hci0: command 0x1001 tx timeout [ 1744.461558] Bluetooth: hci1: command 0x1001 tx timeout [ 1744.461620] Bluetooth: hci0: sending frame failed (-49) [ 1744.467296] Bluetooth: hci1: sending frame failed (-49) [ 1746.503831] Bluetooth: hci0: command 0x1009 tx timeout [ 1746.503837] Bluetooth: hci1: command 0x1009 tx timeout [ 1746.503866] Bluetooth: hci2: command 0x1009 tx timeout [ 1746.509299] Bluetooth: hci4: command 0x1009 tx timeout [ 1746.520160] Bluetooth: hci3: command 0x1009 tx timeout 18:24:19 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000080)) 18:24:19 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0) 18:24:19 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x9) 18:24:19 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TCSETAF(r0, 0x5408, &(0x7f0000000000)={0x7ff, 0x81, 0x0, 0xfffc, 0x8, "755f142697035a1b"}) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) 18:24:19 executing program 0 (fault-call:3 fault-nth:0): mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000002c0f}}}, 0x90) 18:24:19 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xfffffdfd) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) r4 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x0, 0x4002011, r4, 0x0) r5 = getpid() r6 = getpgid(0x0) rt_tgsigqueueinfo(r5, r6, 0x1f, &(0x7f0000000100)={0x10, 0x2, 0x8}) ioctl$TIOCSPGRP(r4, 0x5410, &(0x7f0000000200)=r6) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r7 = accept4$llc(r3, 0x0, &(0x7f0000000000)=0xd8, 0x80000) ioctl$sock_FIOGETOWN(r7, 0x8903, &(0x7f0000000100)) r8 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000140)='/selinux/enforce\x00', 0x20100, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_POOL(r8, 0xc058534b, &(0x7f0000000180)={0x6, 0x3, 0x10001, 0x1, 0x6, 0xb3b}) [ 1750.629191] FAULT_INJECTION: forcing a failure. [ 1750.629191] name failslab, interval 1, probability 0, space 0, times 0 [ 1750.646804] CPU: 1 PID: 16023 Comm: syz-executor.0 Not tainted 4.19.97-syzkaller #0 [ 1750.654647] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1750.664028] Call Trace: [ 1750.666648] dump_stack+0x197/0x210 [ 1750.670302] should_fail.cold+0xa/0x1b [ 1750.674202] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1750.679332] ? lock_downgrade+0x880/0x880 [ 1750.683494] __should_failslab+0x121/0x190 [ 1750.687736] should_failslab+0x9/0x14 [ 1750.691538] kmem_cache_alloc+0x2ae/0x700 [ 1750.695690] ? kasan_check_write+0x14/0x20 [ 1750.699934] ? __mutex_unlock_slowpath+0xf8/0x6b0 [ 1750.704781] ? check_preemption_disabled+0x48/0x290 [ 1750.709801] getname_flags+0xd6/0x5b0 [ 1750.713601] getname+0x1a/0x20 [ 1750.716910] do_sys_open+0x2c9/0x550 [ 1750.720628] ? filp_open+0x80/0x80 [ 1750.724174] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1750.729019] ? do_syscall_64+0x26/0x620 [ 1750.732993] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1750.738411] ? do_syscall_64+0x26/0x620 [ 1750.742424] __x64_sys_open+0x7e/0xc0 [ 1750.746234] do_syscall_64+0xfd/0x620 [ 1750.750048] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1750.755247] RIP: 0033:0x45aff9 [ 1750.758448] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1750.777358] RSP: 002b:00007f2eb1980c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 1750.785070] RAX: ffffffffffffffda RBX: 00007f2eb19816d4 RCX: 000000000045aff9 [ 1750.792344] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000000 [ 1750.799618] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1750.807001] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 1750.814271] R13: 000000000000074b R14: 00000000005009df R15: 0000000000000000 18:24:20 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0xa) 18:24:20 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0xc) 18:24:20 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0xe) 18:24:20 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0xf) 18:24:20 executing program 0 (fault-call:3 fault-nth:1): mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000002c0f}}}, 0x90) 18:24:20 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x10) [ 1751.525025] FAULT_INJECTION: forcing a failure. [ 1751.525025] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1751.536893] CPU: 1 PID: 16046 Comm: syz-executor.0 Not tainted 4.19.97-syzkaller #0 [ 1751.544701] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1751.554072] Call Trace: [ 1751.556673] dump_stack+0x197/0x210 [ 1751.560328] should_fail.cold+0xa/0x1b [ 1751.564227] ? __lock_is_held+0xb6/0x140 [ 1751.568315] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1751.573431] ? mark_held_locks+0x100/0x100 [ 1751.577686] ? kasan_check_read+0x11/0x20 [ 1751.581842] __alloc_pages_nodemask+0x1ee/0x750 [ 1751.586636] ? __alloc_pages_slowpath+0x2870/0x2870 [ 1751.591665] ? find_held_lock+0x35/0x130 [ 1751.595756] cache_grow_begin+0x91/0x8c0 [ 1751.599891] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1751.605445] ? check_preemption_disabled+0x48/0x290 [ 1751.610472] kmem_cache_alloc+0x63b/0x700 [ 1751.614737] ? kasan_check_write+0x14/0x20 [ 1751.619102] ? __mutex_unlock_slowpath+0xf8/0x6b0 [ 1751.623961] getname_flags+0xd6/0x5b0 [ 1751.627770] getname+0x1a/0x20 [ 1751.630979] do_sys_open+0x2c9/0x550 [ 1751.634694] ? filp_open+0x80/0x80 [ 1751.638372] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1751.643148] ? do_syscall_64+0x26/0x620 [ 1751.647136] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1751.652500] ? do_syscall_64+0x26/0x620 [ 1751.656500] __x64_sys_open+0x7e/0xc0 [ 1751.660322] do_syscall_64+0xfd/0x620 [ 1751.664128] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1751.669332] RIP: 0033:0x45aff9 [ 1751.672539] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1751.691581] RSP: 002b:00007f2eb1980c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 1751.699298] RAX: ffffffffffffffda RBX: 00007f2eb19816d4 RCX: 000000000045aff9 [ 1751.706580] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000000 [ 1751.713855] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1751.721221] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 1751.728498] R13: 000000000000074b R14: 00000000005009df R15: 0000000000000001 [ 1752.583785] Bluetooth: hci0: command 0x1003 tx timeout [ 1752.589341] Bluetooth: hci0: sending frame failed (-49) [ 1752.663775] Bluetooth: hci3: command 0x1003 tx timeout [ 1752.663799] Bluetooth: hci1: command 0x1003 tx timeout [ 1752.669323] Bluetooth: hci3: sending frame failed (-49) [ 1752.680056] Bluetooth: hci2: command 0x1003 tx timeout [ 1752.680841] Bluetooth: hci1: sending frame failed (-49) [ 1752.686876] Bluetooth: hci2: sending frame failed (-49) [ 1754.663801] Bluetooth: hci0: command 0x1001 tx timeout [ 1754.669258] Bluetooth: hci0: sending frame failed (-49) [ 1754.743833] Bluetooth: hci2: command 0x1001 tx timeout [ 1754.743839] Bluetooth: hci1: command 0x1001 tx timeout [ 1754.743922] Bluetooth: hci1: sending frame failed (-49) [ 1754.749236] Bluetooth: hci3: command 0x1001 tx timeout [ 1754.754618] Bluetooth: hci2: sending frame failed (-49) [ 1754.767732] Bluetooth: hci3: sending frame failed (-49) [ 1756.743852] Bluetooth: hci0: command 0x1009 tx timeout [ 1756.823818] Bluetooth: hci1: command 0x1009 tx timeout [ 1756.823838] Bluetooth: hci3: command 0x1009 tx timeout [ 1756.829189] Bluetooth: hci2: command 0x1009 tx timeout 18:24:30 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000080)) 18:24:30 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x0, 0x4002011, r1, 0x0) getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(0xffffffffffffffff, 0x84, 0x75, &(0x7f0000000600)={0x0, 0x8}, &(0x7f0000000640)=0x8) setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f0000000680)={r2, @in={{0x2, 0x4e24, @local}}, 0x6}, 0x90) ioctl$KDADDIO(r0, 0x400455c8, 0x1) delete_module(&(0x7f0000000000)='/dev/ptmx\x00', 0xb00) open_by_handle_at(r0, &(0x7f0000000140)={0x9a, 0x2, "8b55d00e975a9a0d0484740c47a6dc9fab8c81134f149636fb566cf5ee19498c144a3780502fc45625e219027f7c5b16007a894dbadb69ac9980643edfde606dacea9e28d322aa838955c774e4026056127c67d895e076d018f9aa433a69ec38efd1b5c51b7fafd5611e0069c4973c752458242d23378425ca9bc3150f9715c090306efadba20b7476959bd4a7b09ad0e15f"}, 0x44e000) sendmmsg$nfc_llcp(r1, &(0x7f0000000e40)=[{&(0x7f0000000740)={0x27, 0x0, 0x0, 0x7, 0x8, 0xfa, "3ff84e971d82c7fcfd35e2cbb5353f17f02b321a54c1038aba0915a3ad67a9736400d13a8274ead090cd82c50f6062483c5deda4f000179012a4d0b46936a3", 0x15}, 0x60, &(0x7f0000000a40)=[{&(0x7f00000007c0)="ffb73ecf8eddb1a3df", 0x9}, {&(0x7f0000000800)="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", 0xfd}, {&(0x7f0000000900)="e8d6ccb2196f97385beb954f5b59a15827369902e341d95da80f077753be9a75801b30a15bb8b19eafa66dc90bac7ce16a576300db160d69f1f0a977", 0x3c}, {&(0x7f0000000940)="c3000286ce78670dcc", 0x9}, {&(0x7f0000000980)="7b098ad1cb6664762c01b8dcd0f08cf5a813c838ddd9330585edf7f093893c443aa442e3e1f618621a9c1084b0a214ede9b1fa74c37baff68f14cdec8c09c5017ad1902e28488f5c0a1763fd510e8a4e3e190b39fdf6395839a75b94a463d646c3d49c3ee98bcb6a0ea6f6ca5374a500f5477d4e3d48c948971fe20581ec9e91e627789f9139769ba39b4c48e463010f478ab60929776fdc7329b9c34ad6e229be403651be2cbc281cd1", 0xaa}], 0x5, &(0x7f0000000ac0)={0x28, 0x10c, 0x60000, "f73c062dd5ff64ba5a50d7e17271caa281e759"}, 0x28, 0x4000}, {&(0x7f0000000b00)={0x27, 0x0, 0x2, 0x0, 0x5, 0x8, "5dc9233c8f853b0ccd377f52b5838aa3be886b63bfde350c8586b6369baa6ab089130b885ebc32acb86ab56041403aa5fa5a9a68c970864a36532cb7c42d7e", 0x1b}, 0x60, &(0x7f0000000cc0)=[{&(0x7f0000000b80)="43a523a20d4100890e4ae966fdac11cad70d7aa84453b1d8784b292aff9548c0147275e301dcb5b25849b8fe94eec3187db93e2041a4e01afc5f2b08e69501b24af37ed5c668536c0bbd0a93bbe610f4a003ed297c1d490208ca33bd02839d046eda32074e0cd7caff3e8e28351e93b1f026f32c398d69674ca14d3c8c430a00a2960d9228d4d74938905c6e4d4d6a984e37635e20e1451c3db3878d54", 0x9d}, {&(0x7f0000000c40)="096dbf984bccad24041d4a6582d7f235223c08f0bcbf5274659006e3a2513183e92e63caa5513b1131ba0d06cd8768d9bf59b3a4fca74b96aae7", 0x3a}, {&(0x7f0000000c80)="ef92873fb90be3b564b09555358ff94313085148b2f8b8f410e8e4a028a5", 0x1e}], 0x3, &(0x7f0000000d00)={0x110, 0x84, 0xff, "a3a9fba173dcb747bbe3a1abd141030fdcc35174ca641e755217057a10b9154fa44de107cf86d4b6bc863d1bdeb5e9b8dd37b0ef2778ff5db75d8103229af97d16fb3c8c9637169f34a479498ae303639ad2d77f47efd5f61bd57d58a466d95f12e296bb54922753adf33d414b02112339e5e9bcd9826af8b3fb8f6b231935d25a474407e0b8af0098dd8ae1661da191d0b03f74ce39082a345edbfeb11abbb7e04ed3d639ead14951f775a175431c0178470328cdadd55ee17d3e417aec0f9d8161edadc7cd9d4df790d08c7281662529f71333a387cd9319aa8a866e1915382bcf7f7ca653218e29cb6ac710c5ed6e9c9e1bae8172829bd19e37481f"}, 0x110, 0x8041}], 0x2, 0x20054) r3 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000f40)='/selinux/status\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000ec0)={0x6, 0x70, 0x8, 0xe8, 0xd7, 0x1, 0x0, 0x4, 0x323dd1a2d2c1ae34, 0xcb0d29c67f21b4e9, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x4, @perf_config_ext={0x0, 0x6}, 0x10, 0x2, 0x401, 0x9, 0x6, 0x0, 0xb0a}, 0xffffffffffffffff, 0x4, r3, 0x3) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup3(r4, r5, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r9 = dup3(r7, r8, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r9, 0x8912, 0x400200) ioctl$GIO_FONTX(r9, 0x4b6b, &(0x7f0000000080)={0x185, 0x1c, &(0x7f0000000200)}) ioctl$sock_inet6_tcp_SIOCOUTQNSD(0xffffffffffffffff, 0x894b, &(0x7f0000000f80)) ioctl$TIOCSETD(r6, 0x5412, &(0x7f0000000100)) 18:24:30 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) r1 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x0, 0x4012117, r1, 0x1000000) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000100)={0x0, 0x0, 0x5, 0x0, [], [{0x0, 0x770, 0x3, 0x6, 0x368, 0x1}, {0x2, 0x4, 0x10001, 0x1f, 0x100000001}], [[], [], [], [], []]}) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xfffffdfd) 18:24:30 executing program 0 (fault-call:3 fault-nth:2): mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000002c0f}}}, 0x90) 18:24:30 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x11) 18:24:30 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x5) r1 = creat(&(0x7f0000000380)='./bus\x00', 0x0) ioctl$EXT4_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000340)=0xe4) ioctl$PPPIOCGNPMODE(r1, 0xc008744c, &(0x7f0000000000)={0x2b, 0x1}) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffdb) r2 = creat(&(0x7f0000000380)='./bus\x00', 0x0) ioctl$EXT4_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000340)=0xe4) ioctl$VIDIOC_S_JPEGCOMP(r2, 0x408c563e, &(0x7f0000000100)={0x9, 0xb, 0x2c, "0c6c3f7ebb4119de302afafa2c7448eaddcc1f48b804a634f7f25e7bda4e64713d1357477c3d9e9ef7c608b812cd0a3cc482966cfbebde9ba3593cac", 0x9, "10790e5201435fff914c0c7235325d562acbc148aa23d6ff13fbe9b7a75fe314c56c1a2509f687c57f291715d57da2dc0bf3ab252ad57c5b964b1878", 0x20}) [ 1760.861783] FAULT_INJECTION: forcing a failure. [ 1760.861783] name failslab, interval 1, probability 0, space 0, times 0 [ 1760.921546] CPU: 1 PID: 16063 Comm: syz-executor.0 Not tainted 4.19.97-syzkaller #0 [ 1760.929519] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1760.938888] Call Trace: [ 1760.941504] dump_stack+0x197/0x210 [ 1760.945165] should_fail.cold+0xa/0x1b [ 1760.949092] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1760.954229] ? lock_downgrade+0x880/0x880 [ 1760.958533] __should_failslab+0x121/0x190 [ 1760.962930] should_failslab+0x9/0x14 [ 1760.966777] kmem_cache_alloc+0x2ae/0x700 [ 1760.970980] ? __save_stack_trace+0x99/0x100 [ 1760.975536] __alloc_file+0x27/0x330 [ 1760.979281] alloc_empty_file+0x72/0x170 [ 1760.983366] path_openat+0xef/0x45e0 [ 1760.987113] ? __lock_acquire+0x6ee/0x49c0 [ 1760.991372] ? getname+0x1a/0x20 [ 1760.994758] ? do_sys_open+0x2c9/0x550 [ 1760.998666] ? __x64_sys_open+0x7e/0xc0 [ 1761.002669] ? do_syscall_64+0xfd/0x620 [ 1761.006661] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1761.012066] ? path_lookupat.isra.0+0x8d0/0x8d0 [ 1761.016773] ? __lock_is_held+0xb6/0x140 [ 1761.020930] ? __alloc_fd+0x44d/0x560 [ 1761.024757] do_filp_open+0x1a1/0x280 [ 1761.028589] ? may_open_dev+0x100/0x100 [ 1761.032597] ? lock_downgrade+0x880/0x880 [ 1761.036774] ? do_raw_spin_unlock+0x181/0x270 [ 1761.041304] ? _raw_spin_unlock+0x2d/0x50 [ 1761.045574] ? __alloc_fd+0x44d/0x560 [ 1761.049404] do_sys_open+0x3fe/0x550 [ 1761.053270] ? filp_open+0x80/0x80 [ 1761.056841] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1761.061619] ? do_syscall_64+0x26/0x620 [ 1761.065703] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1761.071096] ? do_syscall_64+0x26/0x620 [ 1761.075094] __x64_sys_open+0x7e/0xc0 [ 1761.079026] do_syscall_64+0xfd/0x620 [ 1761.082846] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1761.088048] RIP: 0033:0x45aff9 [ 1761.091253] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1761.110279] RSP: 002b:00007f2eb1980c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 1761.118012] RAX: ffffffffffffffda RBX: 00007f2eb19816d4 RCX: 000000000045aff9 [ 1761.125301] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000000 [ 1761.132656] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1761.139958] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 1761.147240] R13: 000000000000074b R14: 00000000005009df R15: 0000000000000002 18:24:30 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$SNDRV_PCM_IOCTL_STATUS_EXT64(0xffffffffffffffff, 0xc0984124, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, &(0x7f0000000140)={0x30006, 0xffffffff, 0x8, 0xffffffffffffffff, 0x0, &(0x7f0000000100)={0x9909d6, 0x1, [], @p_u32=&(0x7f0000000000)=0x14b}}) getsockname$unix(r1, &(0x7f0000000180)=@abs, &(0x7f0000000200)=0x6e) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffdb) 18:24:30 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x2c) 18:24:30 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x46) 18:24:30 executing program 0 (fault-call:3 fault-nth:3): mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000002c0f}}}, 0x90) [ 1761.751008] FAULT_INJECTION: forcing a failure. [ 1761.751008] name failslab, interval 1, probability 0, space 0, times 0 [ 1761.763724] CPU: 1 PID: 16086 Comm: syz-executor.0 Not tainted 4.19.97-syzkaller #0 [ 1761.771565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1761.780944] Call Trace: [ 1761.783563] dump_stack+0x197/0x210 [ 1761.787229] should_fail.cold+0xa/0x1b [ 1761.791161] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1761.796295] ? lock_downgrade+0x880/0x880 [ 1761.800482] __should_failslab+0x121/0x190 [ 1761.804718] should_failslab+0x9/0x14 [ 1761.808639] kmem_cache_alloc+0x2ae/0x700 [ 1761.812808] ? rcu_read_lock_sched_held+0x110/0x130 [ 1761.817924] selinux_file_alloc_security+0xb4/0x190 [ 1761.823083] security_file_alloc+0x63/0xa0 [ 1761.827338] __alloc_file+0xcf/0x330 [ 1761.831050] alloc_empty_file+0x72/0x170 [ 1761.835110] path_openat+0xef/0x45e0 [ 1761.838826] ? __lock_acquire+0x6ee/0x49c0 [ 1761.843057] ? getname+0x1a/0x20 [ 1761.846416] ? do_sys_open+0x2c9/0x550 [ 1761.850292] ? __x64_sys_open+0x7e/0xc0 [ 1761.854260] ? do_syscall_64+0xfd/0x620 [ 1761.858246] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1761.863733] ? path_lookupat.isra.0+0x8d0/0x8d0 [ 1761.868421] ? __lock_is_held+0xb6/0x140 [ 1761.872504] ? __alloc_fd+0x44d/0x560 [ 1761.876314] do_filp_open+0x1a1/0x280 [ 1761.880138] ? may_open_dev+0x100/0x100 [ 1761.884122] ? lock_downgrade+0x880/0x880 [ 1761.888284] ? do_raw_spin_unlock+0x181/0x270 [ 1761.892792] ? _raw_spin_unlock+0x2d/0x50 [ 1761.896945] ? __alloc_fd+0x44d/0x560 [ 1761.900769] do_sys_open+0x3fe/0x550 [ 1761.904482] ? filp_open+0x80/0x80 [ 1761.908089] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1761.912855] ? do_syscall_64+0x26/0x620 [ 1761.916847] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1761.922337] ? do_syscall_64+0x26/0x620 [ 1761.926318] __x64_sys_open+0x7e/0xc0 [ 1761.930130] do_syscall_64+0xfd/0x620 [ 1761.933939] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1761.939137] RIP: 0033:0x45aff9 [ 1761.942336] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1761.961253] RSP: 002b:00007f2eb1980c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 1761.968957] RAX: ffffffffffffffda RBX: 00007f2eb19816d4 RCX: 000000000045aff9 [ 1761.976221] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000000 [ 1761.983481] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1761.990738] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 1761.997998] R13: 000000000000074b R14: 00000000005009df R15: 0000000000000003 18:24:31 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x59) 18:24:31 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x65) [ 1762.823740] Bluetooth: hci0: command 0x1003 tx timeout [ 1762.829231] Bluetooth: hci0: sending frame failed (-49) [ 1762.903765] Bluetooth: hci2: command 0x1003 tx timeout [ 1762.909214] Bluetooth: hci1: command 0x1003 tx timeout [ 1762.909247] Bluetooth: hci2: sending frame failed (-49) [ 1762.915182] Bluetooth: hci1: sending frame failed (-49) [ 1763.313941] Bluetooth: hci3: command 0x1003 tx timeout [ 1763.319555] Bluetooth: hci3: sending frame failed (-49) [ 1764.903836] Bluetooth: hci0: command 0x1001 tx timeout [ 1764.909255] Bluetooth: hci0: sending frame failed (-49) [ 1764.983806] Bluetooth: hci2: command 0x1001 tx timeout [ 1764.983827] Bluetooth: hci1: command 0x1001 tx timeout [ 1764.983945] Bluetooth: hci1: sending frame failed (-49) [ 1764.989210] Bluetooth: hci2: sending frame failed (-49) [ 1765.383924] Bluetooth: hci3: command 0x1001 tx timeout [ 1765.389339] Bluetooth: hci3: sending frame failed (-49) [ 1766.983814] Bluetooth: hci0: command 0x1009 tx timeout [ 1767.063843] Bluetooth: hci1: command 0x1009 tx timeout [ 1767.063852] Bluetooth: hci2: command 0x1009 tx timeout [ 1767.463873] Bluetooth: hci3: command 0x1009 tx timeout 18:24:40 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000080)) 18:24:40 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000080)) 18:24:40 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x12f) 18:24:40 executing program 0 (fault-call:3 fault-nth:4): mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000002c0f}}}, 0x90) 18:24:40 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$PIO_UNISCRNMAP(0xffffffffffffffff, 0x4b6a, &(0x7f0000000100)="43f38fc11a2360cb92874fb4d0be530f40a4832c590e85da2fdef978b22a00d30bcb0c7f65d466900311938e8cfdd337d70554b48d23eace741a3535c36056f61ac83b3eb3a9612e5232a848c477c9800a80f45b67c9ca9cbbc915110def8019c83d71bb198f06c8b3") ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xfffffdfd) [ 1771.022917] FAULT_INJECTION: forcing a failure. [ 1771.022917] name failslab, interval 1, probability 0, space 0, times 0 [ 1771.050147] CPU: 0 PID: 16103 Comm: syz-executor.0 Not tainted 4.19.97-syzkaller #0 [ 1771.057993] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1771.067357] Call Trace: [ 1771.069952] dump_stack+0x197/0x210 [ 1771.073725] should_fail.cold+0xa/0x1b [ 1771.077664] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1771.082794] ? lock_downgrade+0x880/0x880 [ 1771.086971] __should_failslab+0x121/0x190 [ 1771.091210] should_failslab+0x9/0x14 [ 1771.095032] kmem_cache_alloc+0x2ae/0x700 [ 1771.099210] ? mark_held_locks+0x100/0x100 [ 1771.103568] __d_alloc+0x2e/0x9c0 [ 1771.107042] d_alloc+0x4d/0x280 [ 1771.110323] ? find_held_lock+0x35/0x130 [ 1771.114396] d_alloc_parallel+0xf4/0x1bb0 [ 1771.118585] ? kasan_check_read+0x11/0x20 [ 1771.122756] ? __d_lookup_rcu+0x6b0/0x6b0 [ 1771.126917] ? __d_lookup+0x433/0x760 [ 1771.130722] ? lookup_open+0x2c2/0x1ad0 [ 1771.134702] ? d_lookup+0xf9/0x260 [ 1771.138255] ? lockdep_hardirqs_on+0x415/0x5d0 [ 1771.142905] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 1771.147941] ? d_lookup+0x19e/0x260 [ 1771.151591] lookup_open+0x525/0x1ad0 [ 1771.155414] ? vfs_link+0xb60/0xb60 [ 1771.159074] path_openat+0x1e75/0x45e0 [ 1771.162981] ? __lock_acquire+0x6ee/0x49c0 [ 1771.167223] ? getname+0x1a/0x20 [ 1771.170584] ? do_sys_open+0x2c9/0x550 [ 1771.174492] ? path_lookupat.isra.0+0x8d0/0x8d0 [ 1771.179162] ? __lock_is_held+0xb6/0x140 [ 1771.183252] ? __alloc_fd+0x44d/0x560 [ 1771.187082] do_filp_open+0x1a1/0x280 [ 1771.190896] ? may_open_dev+0x100/0x100 [ 1771.194892] ? do_raw_spin_unlock+0x181/0x270 [ 1771.199390] ? _raw_spin_unlock+0x2d/0x50 [ 1771.203556] ? __alloc_fd+0x44d/0x560 [ 1771.207368] do_sys_open+0x3fe/0x550 [ 1771.211108] ? filp_open+0x80/0x80 [ 1771.214667] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1771.219436] ? do_syscall_64+0x26/0x620 [ 1771.223407] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1771.228787] ? do_syscall_64+0x26/0x620 [ 1771.232785] __x64_sys_open+0x7e/0xc0 [ 1771.236599] do_syscall_64+0xfd/0x620 [ 1771.240403] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1771.245601] RIP: 0033:0x45aff9 [ 1771.248791] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1771.267802] RSP: 002b:00007f2eb1980c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 1771.275522] RAX: ffffffffffffffda RBX: 00007f2eb19816d4 RCX: 000000000045aff9 [ 1771.282806] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000000 [ 1771.290088] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1771.297371] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 1771.304649] R13: 000000000000074b R14: 00000000005009df R15: 0000000000000004 18:24:40 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x1f4) 18:24:40 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm_plock\x00', 0x102, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup3(r2, r3, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) r5 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x0, 0x4002011, r5, 0x0) ioctl$TIOCL_UNBLANKSCREEN(r5, 0x541c, &(0x7f0000000140)) ioctl$KDADDIO(r1, 0x400455c8, 0xffffffffffffa2f5) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffdb) 18:24:40 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x240) 18:24:40 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) r1 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0) syz_open_dev$dmmidi(&(0x7f0000000100)='/dev/dmmidi#\x00', 0x3521, 0x74000) r2 = creat(&(0x7f0000000380)='./bus\x00', 0x0) ioctl$EXT4_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000340)=0xe4) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x0, 0x10, r2, 0xd5471000) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000000)=0xc) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffdb) 18:24:41 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x300) 18:24:41 executing program 0 (fault-call:3 fault-nth:5): mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000002c0f}}}, 0x90) [ 1771.861225] FAULT_INJECTION: forcing a failure. [ 1771.861225] name failslab, interval 1, probability 0, space 0, times 0 [ 1771.874075] CPU: 0 PID: 16134 Comm: syz-executor.0 Not tainted 4.19.97-syzkaller #0 [ 1771.882042] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1771.891414] Call Trace: [ 1771.894033] dump_stack+0x197/0x210 [ 1771.897692] should_fail.cold+0xa/0x1b [ 1771.901599] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1771.906707] ? lock_downgrade+0x880/0x880 [ 1771.910913] __should_failslab+0x121/0x190 [ 1771.915161] should_failslab+0x9/0x14 [ 1771.919073] kmem_cache_alloc_trace+0x2cc/0x760 [ 1771.923746] ? rcu_read_lock_sched_held+0x110/0x130 [ 1771.928784] ? __lockdep_init_map+0x10c/0x5b0 [ 1771.933290] fuse_dentry_init+0x44/0xb0 [ 1771.937283] ? fuse_rename2+0x260/0x260 [ 1771.941274] __d_alloc+0x5b4/0x9c0 [ 1771.944809] d_alloc+0x4d/0x280 [ 1771.948102] ? find_held_lock+0x35/0x130 [ 1771.952346] d_alloc_parallel+0xf4/0x1bb0 [ 1771.956529] ? kasan_check_read+0x11/0x20 [ 1771.960690] ? __d_lookup_rcu+0x6b0/0x6b0 [ 1771.964828] ? __d_lookup+0x433/0x760 [ 1771.968622] ? lookup_open+0x2c2/0x1ad0 [ 1771.972584] ? d_lookup+0xf9/0x260 [ 1771.976129] ? lockdep_hardirqs_on+0x415/0x5d0 [ 1771.980712] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 1771.985713] ? d_lookup+0x19e/0x260 [ 1771.989408] lookup_open+0x525/0x1ad0 [ 1771.993203] ? vfs_link+0xb60/0xb60 [ 1771.996875] path_openat+0x1e75/0x45e0 [ 1772.000778] ? __lock_acquire+0x6ee/0x49c0 [ 1772.005006] ? getname+0x1a/0x20 [ 1772.008358] ? do_sys_open+0x2c9/0x550 [ 1772.012242] ? path_lookupat.isra.0+0x8d0/0x8d0 [ 1772.016987] ? __lock_is_held+0xb6/0x140 [ 1772.021130] ? __alloc_fd+0x44d/0x560 [ 1772.025765] do_filp_open+0x1a1/0x280 [ 1772.029556] ? may_open_dev+0x100/0x100 [ 1772.033548] ? do_raw_spin_unlock+0x181/0x270 [ 1772.038070] ? _raw_spin_unlock+0x2d/0x50 [ 1772.042230] ? __alloc_fd+0x44d/0x560 [ 1772.046048] do_sys_open+0x3fe/0x550 [ 1772.049848] ? filp_open+0x80/0x80 [ 1772.053399] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1772.058175] ? do_syscall_64+0x26/0x620 [ 1772.062211] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1772.067587] ? do_syscall_64+0x26/0x620 [ 1772.071572] __x64_sys_open+0x7e/0xc0 [ 1772.075410] do_syscall_64+0xfd/0x620 [ 1772.079228] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1772.084433] RIP: 0033:0x45aff9 [ 1772.087622] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1772.106524] RSP: 002b:00007f2eb1980c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 1772.114243] RAX: ffffffffffffffda RBX: 00007f2eb19816d4 RCX: 000000000045aff9 [ 1772.121525] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000000 [ 1772.128855] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1772.136134] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 1772.143437] R13: 000000000000074b R14: 00000000005009df R15: 0000000000000005 18:24:41 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x328) [ 1773.063762] Bluetooth: hci1: command 0x1003 tx timeout [ 1773.069256] Bluetooth: hci0: command 0x1003 tx timeout [ 1773.069297] Bluetooth: hci1: sending frame failed (-49) [ 1773.080242] Bluetooth: hci0: sending frame failed (-49) [ 1773.383856] Bluetooth: hci2: command 0x1003 tx timeout [ 1773.389340] Bluetooth: hci2: sending frame failed (-49) [ 1773.783726] Bluetooth: hci3: command 0x1003 tx timeout [ 1773.789196] Bluetooth: hci3: sending frame failed (-49) [ 1775.143805] Bluetooth: hci0: command 0x1001 tx timeout [ 1775.149188] Bluetooth: hci1: command 0x1001 tx timeout [ 1775.149263] Bluetooth: hci0: sending frame failed (-49) [ 1775.154643] Bluetooth: hci1: sending frame failed (-49) [ 1775.463809] Bluetooth: hci2: command 0x1001 tx timeout [ 1775.469220] Bluetooth: hci2: sending frame failed (-49) [ 1775.863850] Bluetooth: hci3: command 0x1001 tx timeout [ 1775.869283] Bluetooth: hci3: sending frame failed (-49) [ 1777.223822] Bluetooth: hci0: command 0x1009 tx timeout [ 1777.223828] Bluetooth: hci1: command 0x1009 tx timeout [ 1777.543858] Bluetooth: hci2: command 0x1009 tx timeout [ 1777.943874] Bluetooth: hci3: command 0x1009 tx timeout 18:24:50 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, 0x0) 18:24:51 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x38d) 18:24:51 executing program 0 (fault-call:3 fault-nth:6): mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000002c0f}}}, 0x90) 18:24:51 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0xa) 18:24:51 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x1b) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xfffffdfd) r1 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x0, 0x4002011, r1, 0xf2316000) r2 = creat(&(0x7f0000000380)='./bus\x00', 0x0) ioctl$EXT4_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000340)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) dup3(r3, r4, 0x0) fcntl$dupfd(r2, 0x0, r3) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000100), 0x106, 0xa}}, 0x1e) r5 = syz_open_dev$media(&(0x7f0000000000)='/dev/media#\x00', 0x7, 0x3540fcc11464063a) ioctl$KDENABIO(r5, 0x4b36) 18:24:51 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x18) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffdb) [ 1781.863560] FAULT_INJECTION: forcing a failure. [ 1781.863560] name failslab, interval 1, probability 0, space 0, times 0 [ 1781.879003] audit: type=1804 audit(1579371891.183:88): pid=16153 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op=invalid_pcr cause=ToMToU comm="syz-executor.1" name="/root/syzkaller-testdir104954761/syzkaller.XVhDbH/260/bus" dev="sda1" ino=16772 res=1 [ 1781.920074] CPU: 1 PID: 16150 Comm: syz-executor.0 Not tainted 4.19.97-syzkaller #0 [ 1781.927934] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1781.937309] Call Trace: [ 1781.939930] dump_stack+0x197/0x210 [ 1781.943593] should_fail.cold+0xa/0x1b [ 1781.947514] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1781.952650] ? lock_downgrade+0x880/0x880 [ 1781.956830] __should_failslab+0x121/0x190 [ 1781.961089] should_failslab+0x9/0x14 [ 1781.964904] kmem_cache_alloc_trace+0x2cc/0x760 [ 1781.969595] ? __mutex_lock+0x3cd/0x1300 [ 1781.973683] ? mark_held_locks+0x100/0x100 [ 1781.977936] ? fuse_dentry_init+0x44/0xb0 [ 1781.982288] fuse_alloc_forget+0x3a/0x50 [ 1781.986367] fuse_lookup_name+0x168/0x5b0 [ 1781.990529] ? mutex_trylock+0x1e0/0x1e0 [ 1781.994598] ? fuse_create+0x30/0x30 [ 1781.998324] ? d_alloc_parallel+0x7b0/0x1bb0 [ 1782.002748] ? mutex_lock_nested+0x16/0x20 [ 1782.006995] fuse_lookup+0xeb/0x3e0 [ 1782.010634] ? fuse_lookup_name+0x5b0/0x5b0 [ 1782.014965] ? kasan_check_read+0x11/0x20 [ 1782.019127] ? __d_lookup_rcu+0x6b0/0x6b0 [ 1782.023281] ? __d_lookup+0x433/0x760 [ 1782.027078] ? lookup_open+0x2c2/0x1ad0 [ 1782.031049] ? d_lookup+0xf9/0x260 [ 1782.034596] ? lockdep_hardirqs_on+0x415/0x5d0 [ 1782.039183] fuse_atomic_open+0x219/0x340 [ 1782.043412] ? fuse_lookup+0x3e0/0x3e0 [ 1782.047309] lookup_open+0xd4f/0x1ad0 [ 1782.051124] ? vfs_link+0xb60/0xb60 [ 1782.054763] path_openat+0x1e75/0x45e0 [ 1782.058652] ? __lock_acquire+0x6ee/0x49c0 [ 1782.062893] ? getname+0x1a/0x20 [ 1782.066256] ? do_sys_open+0x2c9/0x550 [ 1782.070166] ? path_lookupat.isra.0+0x8d0/0x8d0 [ 1782.074838] ? __lock_is_held+0xb6/0x140 [ 1782.078913] ? __alloc_fd+0x44d/0x560 [ 1782.082716] do_filp_open+0x1a1/0x280 [ 1782.086588] ? may_open_dev+0x100/0x100 [ 1782.090580] ? do_raw_spin_unlock+0x181/0x270 [ 1782.095078] ? _raw_spin_unlock+0x2d/0x50 [ 1782.099345] ? __alloc_fd+0x44d/0x560 [ 1782.103173] do_sys_open+0x3fe/0x550 [ 1782.106902] ? filp_open+0x80/0x80 [ 1782.110453] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1782.115216] ? do_syscall_64+0x26/0x620 [ 1782.119201] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1782.124570] ? do_syscall_64+0x26/0x620 [ 1782.128563] __x64_sys_open+0x7e/0xc0 [ 1782.132377] do_syscall_64+0xfd/0x620 [ 1782.136192] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1782.141397] RIP: 0033:0x45aff9 [ 1782.144592] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1782.163499] RSP: 002b:00007f2eb1980c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 18:24:51 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xfffffdfd) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) dup3(r1, r2, 0x0) readv(r1, &(0x7f00000014c0)=[{&(0x7f0000000000)=""/43, 0x2b}, {&(0x7f0000000100)=""/141, 0x8d}, {&(0x7f00000001c0)=""/4096, 0x1000}, {&(0x7f00000011c0)=""/113, 0x71}, {&(0x7f0000001240)=""/252, 0xfc}, {&(0x7f0000001340)=""/215, 0xd7}, {&(0x7f0000001440)=""/90, 0x5a}], 0x7) [ 1782.171221] RAX: ffffffffffffffda RBX: 00007f2eb19816d4 RCX: 000000000045aff9 [ 1782.178498] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000000 [ 1782.185768] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1782.193126] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 1782.200400] R13: 000000000000074b R14: 00000000005009df R15: 0000000000000006 18:24:51 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) r1 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x0, 0x4002011, r1, 0x0) ioctl$VIDIOC_G_EXT_CTRLS(0xffffffffffffffff, 0xc0205647, &(0x7f0000000140)={0xe84181bc3e9a515f, 0x0, 0x8, 0xffffffffffffffff, 0x0, &(0x7f0000000100)={0x990a7e, 0x2, [], @p_u32=&(0x7f0000000000)=0x1}}) write$vhost_msg_v2(r2, &(0x7f0000000280)={0x2, 0x0, {&(0x7f0000000180)=""/139, 0x8b, &(0x7f0000000240)=""/19, 0x2, 0x4}}, 0x48) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0xb) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffdb) 18:24:51 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x3e8) 18:24:51 executing program 4: syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDGKBENT(r0, 0x4b46, &(0x7f0000000000)={0x5, 0x9, 0x80}) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffdb) 18:24:51 executing program 5 (fault-call:5 fault-nth:0): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup3(r1, r0, 0x0) r3 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_rx_ring(r3, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x6000000, 0x100000001, 0x6000000, 0x1}, 0x1c) ioctl$int_in(r3, 0x5452, &(0x7f0000000040)=0x1) ioctl$int_in(r3, 0x5452, &(0x7f0000000080)=0xfff) dup2(r1, r3) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) bind(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) 18:24:51 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x4bc) [ 1782.570446] Bluetooth: Error in BCSP hdr checksum [ 1782.824018] Bluetooth: Error in BCSP hdr checksum [ 1782.854471] FAULT_INJECTION: forcing a failure. [ 1782.854471] name failslab, interval 1, probability 0, space 0, times 0 [ 1782.867582] CPU: 0 PID: 16183 Comm: syz-executor.5 Not tainted 4.19.97-syzkaller #0 [ 1782.875412] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1782.884780] Call Trace: [ 1782.887377] dump_stack+0x197/0x210 [ 1782.891025] should_fail.cold+0xa/0x1b [ 1782.895032] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1782.900135] ? lock_downgrade+0x880/0x880 [ 1782.904291] __should_failslab+0x121/0x190 [ 1782.908533] should_failslab+0x9/0x14 [ 1782.912344] kmem_cache_alloc+0x2ae/0x700 [ 1782.916496] ? trace_hardirqs_on+0x67/0x220 [ 1782.920835] ? lock_sock_nested+0x9a/0x120 [ 1782.925140] fasync_helper+0x40/0xb2 [ 1782.928859] sock_fasync+0xc1/0x160 [ 1782.932531] ? copy_overflow+0x30/0x30 [ 1782.936420] do_vfs_ioctl+0xb82/0x1380 [ 1782.940458] ? selinux_file_ioctl+0x125/0x5e0 [ 1782.944949] ? ioctl_preallocate+0x210/0x210 [ 1782.949360] ? selinux_file_mprotect+0x620/0x620 [ 1782.954114] ? __fget+0x367/0x540 [ 1782.957568] ? iterate_fd+0x360/0x360 [ 1782.961415] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1782.966948] ? fput+0x128/0x1a0 [ 1782.970225] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1782.975770] ? security_file_ioctl+0x8d/0xc0 [ 1782.980300] ksys_ioctl+0xab/0xd0 [ 1782.983764] __x64_sys_ioctl+0x73/0xb0 [ 1782.987651] do_syscall_64+0xfd/0x620 [ 1782.991466] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1782.996660] RIP: 0033:0x45aff9 [ 1782.999845] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1783.018747] RSP: 002b:00007fc23ad55c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1783.026470] RAX: ffffffffffffffda RBX: 00007fc23ad566d4 RCX: 000000000045aff9 [ 1783.033753] RDX: 0000000020000080 RSI: 0000000000005452 RDI: 0000000000000005 [ 1783.041025] RBP: 000000000075c070 R08: 0000000000000000 R09: 0000000000000000 [ 1783.048290] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006 [ 1783.055558] R13: 000000000000064c R14: 00000000004c7967 R15: 0000000000000000 [ 1783.094018] Bluetooth: Error in BCSP hdr checksum [ 1783.223790] Bluetooth: hci0: command 0x1003 tx timeout [ 1783.229320] Bluetooth: hci0: sending frame failed (-49) [ 1784.344048] Bluetooth: hci1: command 0x1003 tx timeout [ 1784.349567] Bluetooth: hci1: sending frame failed (-49) [ 1784.503840] Bluetooth: hci2: command 0x1003 tx timeout [ 1784.509309] Bluetooth: hci2: sending frame failed (-49) [ 1785.303887] Bluetooth: hci0: command 0x1001 tx timeout [ 1785.309300] Bluetooth: hci0: sending frame failed (-49) [ 1786.424028] Bluetooth: hci1: command 0x1001 tx timeout [ 1786.429471] Bluetooth: hci1: sending frame failed (-49) [ 1786.583804] Bluetooth: hci2: command 0x1001 tx timeout [ 1786.589304] Bluetooth: hci2: sending frame failed (-49) [ 1787.383801] Bluetooth: hci0: command 0x1009 tx timeout [ 1788.503871] Bluetooth: hci1: command 0x1009 tx timeout [ 1788.663811] Bluetooth: hci2: command 0x1009 tx timeout 18:25:00 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, 0x0) 18:25:00 executing program 0 (fault-call:3 fault-nth:7): mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000002c0f}}}, 0x90) 18:25:00 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x500) 18:25:00 executing program 5 (fault-call:5 fault-nth:1): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup3(r1, r0, 0x0) r3 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_rx_ring(r3, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x6000000, 0x100000001, 0x6000000, 0x1}, 0x1c) ioctl$int_in(r3, 0x5452, &(0x7f0000000040)=0x1) ioctl$int_in(r3, 0x5452, &(0x7f0000000080)=0xfff) dup2(r1, r3) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) bind(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) [ 1791.534022] FAULT_INJECTION: forcing a failure. [ 1791.534022] name failslab, interval 1, probability 0, space 0, times 0 [ 1791.558884] CPU: 0 PID: 16194 Comm: syz-executor.0 Not tainted 4.19.97-syzkaller #0 [ 1791.566742] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1791.576114] Call Trace: [ 1791.578732] dump_stack+0x197/0x210 [ 1791.582503] should_fail.cold+0xa/0x1b [ 1791.586430] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1791.591565] ? lock_downgrade+0x880/0x880 [ 1791.595763] __should_failslab+0x121/0x190 [ 1791.600031] should_failslab+0x9/0x14 [ 1791.603851] kmem_cache_alloc+0x2ae/0x700 [ 1791.608022] ? trace_hardirqs_on+0x67/0x220 [ 1791.612377] __fuse_request_alloc+0x2a/0x100 [ 1791.616806] __fuse_get_req+0x4ac/0x9c0 [ 1791.620810] ? fuse_put_request+0x350/0x350 [ 1791.625261] ? fuse_lookup_name+0x1bf/0x5b0 [ 1791.629616] ? finish_wait+0x260/0x260 [ 1791.633525] ? lock_downgrade+0x880/0x880 [ 1791.637695] fuse_simple_request+0x28/0x720 [ 1791.642044] fuse_lookup_name+0x275/0x5b0 [ 1791.646249] ? fuse_create+0x30/0x30 [ 1791.649992] ? d_alloc_parallel+0x7b0/0x1bb0 [ 1791.654425] ? mutex_lock_nested+0x16/0x20 [ 1791.658675] fuse_lookup+0xeb/0x3e0 [ 1791.662320] ? fuse_lookup_name+0x5b0/0x5b0 [ 1791.666656] ? lockdep_hardirqs_on+0x415/0x5d0 [ 1791.671253] fuse_atomic_open+0x219/0x340 [ 1791.675416] ? fuse_lookup+0x3e0/0x3e0 [ 1791.679307] lookup_open+0xd4f/0x1ad0 [ 1791.683124] ? vfs_link+0xb60/0xb60 [ 1791.686887] path_openat+0x1e75/0x45e0 [ 1791.690781] ? __lock_acquire+0x6ee/0x49c0 [ 1791.695011] ? getname+0x1a/0x20 [ 1791.698386] ? do_sys_open+0x2c9/0x550 [ 1791.702294] ? path_lookupat.isra.0+0x8d0/0x8d0 [ 1791.706975] ? __lock_is_held+0xb6/0x140 [ 1791.711051] ? __alloc_fd+0x44d/0x560 [ 1791.714864] do_filp_open+0x1a1/0x280 [ 1791.718669] ? may_open_dev+0x100/0x100 [ 1791.722661] ? do_raw_spin_unlock+0x181/0x270 [ 1791.727175] ? _raw_spin_unlock+0x2d/0x50 [ 1791.731358] ? __alloc_fd+0x44d/0x560 [ 1791.735169] do_sys_open+0x3fe/0x550 [ 1791.738901] ? filp_open+0x80/0x80 [ 1791.742446] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1791.747219] ? do_syscall_64+0x26/0x620 [ 1791.751192] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1791.756562] ? do_syscall_64+0x26/0x620 [ 1791.760548] __x64_sys_open+0x7e/0xc0 [ 1791.764352] do_syscall_64+0xfd/0x620 [ 1791.768167] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1791.773361] RIP: 0033:0x45aff9 [ 1791.776561] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1791.795571] RSP: 002b:00007f2eb1980c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 1791.803294] RAX: ffffffffffffffda RBX: 00007f2eb19816d4 RCX: 000000000045aff9 [ 1791.810662] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000000 [ 1791.817956] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1791.825231] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 18:25:01 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x521) [ 1791.832506] R13: 000000000000074b R14: 00000000005009df R15: 0000000000000007 18:25:01 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x600) 18:25:02 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280)='/dev/ptmx\x00', 0x58501, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x1b) ioctl$KDADDIO(r0, 0x400455c8, 0x1) r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/qat_adf_ctl\x00', 0x101000, 0x0) setsockopt$inet6_dccp_buf(r1, 0x21, 0xf, &(0x7f0000000140)="d289d84071902fab31a8a946defc08b37fc0dfc29796e2a10e9133c5f88767f77fca32705ad9a56a18232d732d3987eb68fc0ef7a767bcf30f0fc3335ecf366395a69f2d01541a53e8145eb952fbdb3bfd65f250a960eba38cdaee3668488e50133fec871433b490", 0x68) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xfffffdfd) pipe2(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x800) connect$unix(r1, &(0x7f0000000200)=@file={0x1, './file0\x00'}, 0x6e) ioctl$BLKRRPART(r3, 0x125f, 0x0) r4 = socket$isdn_base(0x22, 0x3, 0x0) close(r4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = dup3(r5, r6, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) r8 = syz_genetlink_get_family_id$tipc(&(0x7f00000002c0)='TIPC\x00') sendmsg$TIPC_CMD_GET_MAX_PORTS(r7, &(0x7f0000000380)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x1c, r8, 0x1, 0x70bd2c, 0x25dfdbfe, {}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x20000050) setsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r2, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x82, 0x30}, 0xc) 18:25:02 executing program 5: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup3(r1, r0, 0x0) r3 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_rx_ring(r3, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x6000000, 0x100000001, 0x6000000, 0x1}, 0x1c) ioctl$int_in(r3, 0x5452, &(0x7f0000000040)=0x1) ioctl$int_in(r3, 0x5452, &(0x7f0000000080)=0xfff) dup2(r1, r3) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) bind(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) 18:25:02 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x650) 18:25:02 executing program 0 (fault-call:3 fault-nth:8): mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000002c0f}}}, 0x90) 18:25:02 executing program 4: r0 = creat(&(0x7f0000000380)='./bus\x00', 0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000340)=0xe4) write$selinux_validatetrans(r0, &(0x7f0000000180)={'system_u:object_r:netutils_exec_t:s0', 0x20, 'system_u:object_r:chkpwd_exec_t:s0', 0x20, 0xfff, 0x20, '/usr/sbin/ntpd\x00'}, 0x6c) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0xf) r2 = syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x10000) setsockopt$inet6_opts(r2, 0x29, 0x1c, &(0x7f0000000100)=@srh={0x3a, 0xa, 0x4, 0x5, 0x3f, 0x0, 0x1, [@mcast1, @empty, @ipv4={[], [], @local}, @remote, @remote]}, 0x58) ioctl$KDADDIO(r1, 0x400455c8, 0x1) ioctl$TIOCSETD(r1, 0x5412, &(0x7f0000000080)=0xffffffdb) [ 1792.855288] FAULT_INJECTION: forcing a failure. [ 1792.855288] name failslab, interval 1, probability 0, space 0, times 0 [ 1792.877275] CPU: 1 PID: 16221 Comm: syz-executor.0 Not tainted 4.19.97-syzkaller #0 [ 1792.885132] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1792.894502] Call Trace: [ 1792.897121] dump_stack+0x197/0x210 [ 1792.900784] should_fail.cold+0xa/0x1b 18:25:02 executing program 1: r0 = creat(&(0x7f0000000380)='./bus\x00', 0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000340)=0xe4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) statx(r3, &(0x7f0000000200)='./file0\x00', 0x13277b1ea56ec7ed, 0x1, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) setfsgid(r5) r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) r7 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r7, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) r10 = add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe) keyctl$setperm(0x5, r10, 0x202002) r11 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x0, 0x4002011, r11, 0x0) ioctl$EVIOCGKEYCODE_V2(r11, 0x80284504, &(0x7f0000000500)=""/244) keyctl$chown(0x4, r10, r8, r9) mount$9p_unix(&(0x7f0000000000)='./bus\x00', &(0x7f0000000100)='./bus\x00', &(0x7f0000000140)='9p\x00', 0x10000, &(0x7f00000003c0)={'trans=unix,', {[{@version_u='version=9p2000.u'}, {@access_user='access=user'}, {@dfltgid={'dfltgid', 0x3d, r9}}, {@cachetag={'cachetag', 0x3d, '/dev/ptmx\x00'}}, {@mmap='mmap'}, {@fscache='fscache'}], [{@mask={'mask', 0x3d, 'MAY_EXEC'}}, {@fowner_gt={'fowner>', 0xee00}}, {@smackfshat={'smackfshat'}}, {@func={'func', 0x3d, 'POLICY_CHECK'}}, {@fscontext={'fscontext', 0x3d, 'staff_u'}}, {@fowner_gt={'fowner>', r4}}, {@obj_role={'obj_role', 0x3d, '/dev/ptmx\x00'}}, {@smackfsfloor={'smackfsfloor', 0x3d, '/dev/ptmx\x00'}}, {@dont_measure='dont_measure'}, {@fsname={'fsname'}}]}}) ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r6, 0x400455c8, 0x1) ioctl$TIOCSETD(r6, 0x5412, &(0x7f0000000080)=0xfffffdfd) [ 1792.904705] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1792.909847] ? lock_downgrade+0x880/0x880 [ 1792.914035] __should_failslab+0x121/0x190 [ 1792.918308] should_failslab+0x9/0x14 [ 1792.922134] kmem_cache_alloc+0x2ae/0x700 [ 1792.926313] ? _raw_spin_unlock+0x2d/0x50 [ 1792.930489] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1792.936054] ? ilookup5_nowait+0xaa/0xc0 [ 1792.940145] ? fuse_dev_alloc+0x330/0x330 [ 1792.944316] ? fuse_writepages_fill.cold+0x49/0x49 [ 1792.949281] fuse_alloc_inode+0x21/0x3f0 [ 1792.953372] alloc_inode+0x64/0x190 [ 1792.957023] iget5_locked+0x63/0xe0 [ 1792.960675] ? fuse_inode_eq+0x80/0x80 [ 1792.964586] fuse_iget+0x1dc/0x8c0 [ 1792.968176] ? fuse_change_attributes+0x5c0/0x5c0 [ 1792.973043] ? fuse_dir_ioctl+0x150/0x150 [ 1792.977326] ? fuse_simple_request+0x40e/0x720 [ 1792.981933] fuse_lookup_name+0x3c9/0x5b0 [ 1792.986117] ? fuse_create+0x30/0x30 [ 1792.989854] ? d_alloc_parallel+0x7b0/0x1bb0 [ 1792.994308] ? mutex_lock_nested+0x16/0x20 [ 1792.998568] fuse_lookup+0xeb/0x3e0 [ 1793.002225] ? fuse_lookup_name+0x5b0/0x5b0 [ 1793.006589] ? lockdep_hardirqs_on+0x415/0x5d0 [ 1793.011215] fuse_atomic_open+0x219/0x340 [ 1793.015392] ? fuse_lookup+0x3e0/0x3e0 [ 1793.019301] lookup_open+0xd4f/0x1ad0 [ 1793.023132] ? vfs_link+0xb60/0xb60 [ 1793.026810] path_openat+0x1e75/0x45e0 [ 1793.030720] ? __lock_acquire+0x6ee/0x49c0 [ 1793.034965] ? getname+0x1a/0x20 [ 1793.038326] ? do_sys_open+0x2c9/0x550 [ 1793.042231] ? path_lookupat.isra.0+0x8d0/0x8d0 [ 1793.046903] ? __lock_is_held+0xb6/0x140 [ 1793.050968] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1793.055724] ? __alloc_fd+0x44d/0x560 [ 1793.059537] do_filp_open+0x1a1/0x280 [ 1793.063329] ? may_open_dev+0x100/0x100 [ 1793.067302] ? do_raw_spin_unlock+0x181/0x270 [ 1793.071789] ? _raw_spin_unlock+0x2d/0x50 [ 1793.075947] ? __alloc_fd+0x44d/0x560 [ 1793.079778] do_sys_open+0x3fe/0x550 [ 1793.083512] ? filp_open+0x80/0x80 [ 1793.087077] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1793.091831] ? do_syscall_64+0x26/0x620 [ 1793.095815] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1793.101285] ? do_syscall_64+0x26/0x620 [ 1793.105261] __x64_sys_open+0x7e/0xc0 [ 1793.109066] do_syscall_64+0xfd/0x620 [ 1793.112887] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1793.118104] RIP: 0033:0x45aff9 [ 1793.121301] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1793.140216] RSP: 002b:00007f2eb1980c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 1793.147937] RAX: ffffffffffffffda RBX: 00007f2eb19816d4 RCX: 000000000045aff9 [ 1793.155215] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000000 [ 1793.162500] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1793.169785] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 1793.177067] R13: 000000000000074b R14: 00000000005009df R15: 0000000000000008 [ 1793.218151] audit: type=1804 audit(1579371902.523:89): pid=16234 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir104954761/syzkaller.XVhDbH/263/bus" dev="sda1" ino=16849 res=1 [ 1793.463925] Bluetooth: hci0: command 0x1003 tx timeout [ 1793.469459] Bluetooth: hci0: sending frame failed (-49) [ 1794.823815] Bluetooth: hci1: command 0x1003 tx timeout [ 1794.829249] Bluetooth: hci1: sending frame failed (-49) [ 1795.543944] Bluetooth: hci0: command 0x1001 tx timeout [ 1795.549505] Bluetooth: hci0: sending frame failed (-49) [ 1796.903792] Bluetooth: hci1: command 0x1001 tx timeout [ 1796.909201] Bluetooth: hci1: sending frame failed (-49) [ 1797.623789] Bluetooth: hci0: command 0x1009 tx timeout [ 1798.983828] Bluetooth: hci1: command 0x1009 tx timeout 18:25:10 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x6bb) 18:25:10 executing program 0 (fault-call:3 fault-nth:9): mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000002c0f}}}, 0x90) 18:25:10 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xfffffdfd) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) dup3(r1, r2, 0x0) connect$nfc_llcp(0xffffffffffffffff, &(0x7f0000000100)={0x27, 0x1, 0x2, 0x6, 0x1, 0x3, "4acf2b707265670876d934c6b8c3b71694927765f50dbf5fd29b38907cacc883a6c4e1962b36bd8612b50145bb892fc52b29ca053e306b072d486dc9277057", 0xe}, 0x60) fcntl$dupfd(0xffffffffffffffff, 0x0, r1) 18:25:10 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, 0x0) 18:25:10 executing program 5: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup3(r1, r0, 0x0) r3 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_rx_ring(r3, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x6000000, 0x100000001, 0x6000000, 0x1}, 0x1c) ioctl$int_in(r3, 0x5452, &(0x7f0000000040)=0x1) ioctl$int_in(r3, 0x2, &(0x7f0000000080)=0xfff) dup2(r1, r3) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) bind(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) [ 1801.773319] FAULT_INJECTION: forcing a failure. [ 1801.773319] name failslab, interval 1, probability 0, space 0, times 0 [ 1801.790350] CPU: 0 PID: 16246 Comm: syz-executor.0 Not tainted 4.19.97-syzkaller #0 [ 1801.798180] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1801.807571] Call Trace: [ 1801.810200] dump_stack+0x197/0x210 [ 1801.813863] should_fail.cold+0xa/0x1b [ 1801.817778] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1801.822904] ? lock_downgrade+0x880/0x880 [ 1801.827081] ? fuse_writepages_fill.cold+0x49/0x49 [ 1801.832031] __should_failslab+0x121/0x190 [ 1801.836282] should_failslab+0x9/0x14 [ 1801.840079] kmem_cache_alloc_trace+0x2cc/0x760 [ 1801.844751] ? lockdep_init_map+0x9/0x10 [ 1801.848812] ? debug_mutex_init+0x2d/0x60 [ 1801.852961] ? fuse_dev_alloc+0x330/0x330 [ 1801.857105] ? fuse_writepages_fill.cold+0x49/0x49 [ 1801.862115] fuse_alloc_inode+0x2ee/0x3f0 [ 1801.866258] alloc_inode+0x64/0x190 [ 1801.869878] iget5_locked+0x63/0xe0 [ 1801.873494] ? fuse_inode_eq+0x80/0x80 [ 1801.877402] fuse_iget+0x1dc/0x8c0 [ 1801.880945] ? fuse_change_attributes+0x5c0/0x5c0 [ 1801.885791] ? fuse_dir_ioctl+0x150/0x150 [ 1801.889942] fuse_lookup_name+0x3c9/0x5b0 [ 1801.894087] ? fuse_create+0x30/0x30 [ 1801.897809] ? d_alloc_parallel+0x7b0/0x1bb0 [ 1801.902231] ? mutex_lock_nested+0x16/0x20 [ 1801.906469] fuse_lookup+0xeb/0x3e0 [ 1801.910097] ? fuse_lookup_name+0x5b0/0x5b0 [ 1801.914431] ? lockdep_hardirqs_on+0x415/0x5d0 [ 1801.919011] fuse_atomic_open+0x219/0x340 [ 1801.923178] ? fuse_lookup+0x3e0/0x3e0 [ 1801.927059] lookup_open+0xd4f/0x1ad0 [ 1801.930859] ? vfs_link+0xb60/0xb60 [ 1801.934492] path_openat+0x1e75/0x45e0 [ 1801.938383] ? __lock_acquire+0x6ee/0x49c0 [ 1801.942607] ? getname+0x1a/0x20 [ 1801.945962] ? do_sys_open+0x2c9/0x550 [ 1801.949846] ? path_lookupat.isra.0+0x8d0/0x8d0 [ 1801.954504] ? __lock_is_held+0xb6/0x140 [ 1801.958578] ? __alloc_fd+0x44d/0x560 [ 1801.962368] do_filp_open+0x1a1/0x280 [ 1801.966158] ? may_open_dev+0x100/0x100 [ 1801.970130] ? do_raw_spin_unlock+0x181/0x270 [ 1801.974615] ? _raw_spin_unlock+0x2d/0x50 [ 1801.978753] ? __alloc_fd+0x44d/0x560 [ 1801.982549] do_sys_open+0x3fe/0x550 [ 1801.986258] ? filp_open+0x80/0x80 [ 1801.989789] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1801.994536] ? do_syscall_64+0x26/0x620 [ 1801.998501] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1802.003855] ? do_syscall_64+0x26/0x620 [ 1802.007823] __x64_sys_open+0x7e/0xc0 [ 1802.011613] do_syscall_64+0xfd/0x620 [ 1802.015411] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1802.020586] RIP: 0033:0x45aff9 [ 1802.023782] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1802.042706] RSP: 002b:00007f2eb1980c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 1802.050423] RAX: ffffffffffffffda RBX: 00007f2eb19816d4 RCX: 000000000045aff9 [ 1802.057698] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000000 [ 1802.064970] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1802.072234] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 1802.079497] R13: 000000000000074b R14: 00000000005009df R15: 0000000000000009 18:25:11 executing program 0 (fault-call:3 fault-nth:10): mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000002c0f}}}, 0x90) 18:25:11 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x700) 18:25:11 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0x900) 18:25:11 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0xa00) 18:25:12 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0xc00) 18:25:12 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0xe00) 18:25:12 executing program 4: r0 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ocfs2_control\x00', 0x200, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000280)={0xffffffffffffffff}, 0x106, 0x3}}, 0x20) write$RDMA_USER_CM_CMD_DISCONNECT(r0, &(0x7f0000000300)={0xa, 0x4, 0xfa00, {r1}}, 0xc) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$SIOCAX25OPTRT(0xffffffffffffffff, 0x89e7, &(0x7f0000000000)={@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, 0x2, 0x56}) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000040)=0x10) ioctl$KDADDIO(r2, 0x400455c8, 0x1) r3 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0) openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000000340)='/selinux/avc/cache_threshold\x00', 0x2, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x0, 0x4002011, r3, 0x0) fstat(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) write$P9_RGETATTR(r3, &(0x7f0000000180)={0xa0, 0x19, 0x2, {0x4040, {0x85, 0x3, 0x4}, 0xa, 0xee00, r4, 0x8, 0x8, 0x7, 0x4cdc, 0x9, 0x3, 0x400, 0xee8, 0xff, 0x3, 0x949, 0x2e, 0xba, 0x1ff, 0x2}}, 0xa0) ioctl$TIOCSETD(r2, 0x5412, &(0x7f0000000080)=0xffffffdb) 18:25:12 executing program 5: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup3(r1, r0, 0x0) r3 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_rx_ring(r3, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x6000000, 0x100000001, 0x6000000, 0x1}, 0x1c) ioctl$int_in(r3, 0x5452, &(0x7f0000000040)=0x1) ioctl$int_in(r3, 0x4b47, &(0x7f0000000080)=0xfff) dup2(r1, r3) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) bind(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) [ 1802.998961] FAULT_INJECTION: forcing a failure. [ 1802.998961] name fail_futex, interval 1, probability 0, space 0, times 1 [ 1803.036381] CPU: 1 PID: 16261 Comm: syz-executor.0 Not tainted 4.19.97-syzkaller #0 [ 1803.044224] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1803.053600] Call Trace: [ 1803.056217] dump_stack+0x197/0x210 [ 1803.059878] should_fail.cold+0xa/0x1b [ 1803.063792] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1803.068919] ? is_bpf_text_address+0xd3/0x170 [ 1803.073514] ? kernel_text_address+0x73/0xf0 [ 1803.078029] get_futex_key+0xccc/0x1af0 [ 1803.082031] ? futex_lock_pi_atomic+0x2e0/0x2e0 [ 1803.086729] futex_wake+0xf9/0x4d0 [ 1803.090298] ? get_futex_key+0x1af0/0x1af0 [ 1803.094562] ? __lock_acquire+0x6ee/0x49c0 [ 1803.098824] do_futex+0x358/0x1d70 [ 1803.102398] ? mark_held_locks+0x100/0x100 [ 1803.106653] ? __might_fault+0x12b/0x1e0 [ 1803.110739] ? exit_robust_list+0x2d0/0x2d0 [ 1803.115080] ? __might_fault+0x12b/0x1e0 [ 1803.119166] ? find_held_lock+0x35/0x130 [ 1803.123242] ? __might_fault+0x12b/0x1e0 [ 1803.127336] ? lock_downgrade+0x880/0x880 [ 1803.131575] mm_release+0x33d/0x490 [ 1803.135224] do_exit+0x715/0x30d0 [ 1803.138760] ? get_signal+0x384/0x1fc0 [ 1803.142673] ? find_held_lock+0x35/0x130 [ 1803.146756] ? mm_update_next_owner+0x660/0x660 [ 1803.151475] ? pv_hash+0xf0/0xf0 [ 1803.154868] ? _raw_spin_unlock_irq+0x28/0x90 [ 1803.159415] ? get_signal+0x384/0x1fc0 [ 1803.163337] ? _raw_spin_unlock_irq+0x28/0x90 [ 1803.167859] do_group_exit+0x135/0x370 [ 1803.171769] get_signal+0x3ec/0x1fc0 [ 1803.175502] ? do_raw_spin_unlock+0x181/0x270 [ 1803.180017] ? _raw_spin_unlock+0x2d/0x50 [ 1803.184267] do_signal+0x95/0x1960 [ 1803.187833] ? find_held_lock+0x35/0x130 [ 1803.191973] ? __do_page_fault+0x676/0xe90 [ 1803.196343] ? setup_sigcontext+0x7d0/0x7d0 [ 1803.200689] ? lock_downgrade+0x880/0x880 [ 1803.204855] ? count_memcg_event_mm+0x2b1/0x4d0 [ 1803.209551] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1803.215118] ? up_read+0x1a/0x110 [ 1803.218590] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1803.224148] ? __do_page_fault+0x484/0xe90 [ 1803.228403] ? ksys_read+0x1f1/0x2d0 [ 1803.232142] ? exit_to_usermode_loop+0x43/0x2c0 [ 1803.236832] ? prepare_exit_to_usermode+0x293/0x2f0 [ 1803.241870] ? exit_to_usermode_loop+0x43/0x2c0 18:25:12 executing program 4: r0 = creat(&(0x7f0000000380)='./bus\x00', 0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000340)=0x505a003737b6e8ed) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='veno\x00', 0x5) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r1, 0x400455c8, 0x1) signalfd4(0xffffffffffffffff, &(0x7f0000000000)={0x800}, 0x8, 0x15075d34b9686ff9) ioctl$TIOCSETD(r1, 0x5412, &(0x7f0000000080)=0xffffffdb) [ 1803.246561] ? lockdep_hardirqs_on+0x415/0x5d0 [ 1803.251277] ? trace_hardirqs_on+0x67/0x220 [ 1803.255622] exit_to_usermode_loop+0x244/0x2c0 [ 1803.260335] prepare_exit_to_usermode+0x293/0x2f0 [ 1803.265200] ? page_fault+0x8/0x30 [ 1803.268752] retint_user+0x8/0x18 [ 1803.272196] RIP: 0033:0x475d0d [ 1803.275397] Code: 54 55 53 48 81 ec 28 21 00 00 8b 8f c0 00 00 00 85 c9 0f 85 4d 01 00 00 c7 87 c0 00 00 00 ff ff ff ff 48 8d 84 24 20 01 00 00 <48> 89 bc 24 00 01 00 00 48 89 fb 41 bd 00 00 00 00 c7 84 24 e0 00 [ 1803.294314] RSP: 002b:00007f2eb197e4d0 EFLAGS: 00010246 [ 1803.299796] RAX: 00007f2eb197e5f0 RBX: 000000000071cf20 RCX: 00000000ffffffff [ 1803.307086] RDX: 00007f2eb1980ba0 RSI: 00000000004cdbf8 RDI: 000000000071cf20 [ 1803.314379] RBP: 00007f2eb1980b70 R08: 0000000000a770d0 R09: 00000000004cdbf8 [ 1803.321672] R10: 00007f2eb1981700 R11: 0000000000000000 R12: 00000000004cdbf8 [ 1803.328960] R13: 00007f2eb1980ba0 R14: 00000000005009df R15: 000000000000000a [ 1803.703736] Bluetooth: hci0: command 0x1003 tx timeout [ 1803.709248] Bluetooth: hci0: sending frame failed (-49) [ 1803.784063] Bluetooth: hci2: command 0x1003 tx timeout [ 1803.789731] Bluetooth: hci2: sending frame failed (-49) [ 1805.383781] Bluetooth: hci1: command 0x1003 tx timeout [ 1805.389280] Bluetooth: hci1: sending frame failed (-49) [ 1805.783743] Bluetooth: hci0: command 0x1001 tx timeout [ 1805.789217] Bluetooth: hci0: sending frame failed (-49) [ 1805.874118] Bluetooth: hci2: command 0x1001 tx timeout [ 1805.879530] Bluetooth: hci2: sending frame failed (-49) [ 1807.463809] Bluetooth: hci1: command 0x1001 tx timeout [ 1807.469235] Bluetooth: hci1: sending frame failed (-49) [ 1807.863773] Bluetooth: hci0: command 0x1009 tx timeout [ 1807.953856] Bluetooth: hci2: command 0x1009 tx timeout [ 1809.544004] Bluetooth: hci1: command 0x1009 tx timeout 18:25:21 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) r1 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm_plock\x00', 0x270339e9ffa87c9, 0x0) setsockopt$inet_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f0000000100)={@in={{0x2, 0x4e21, @rand_addr=0x4}}, 0x0, 0x0, 0x2d, 0x0, "b7aff631593fdc6a21c6c5a0f2b21ae1da13ecfe01706cda16dc47eb6fd32da29b4d14477554c2f3c6f31aaf6cf8f0986a29f6ef6e8c942c92411ed1d2498e33b5ae9259545e54f899ed1b1dc87a7cc5"}, 0xd8) ioctl$KDADDIO(r0, 0x400455c8, 0x1) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xfffffdfd) 18:25:21 executing program 0: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001480)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000003540), 0x1000) read$FUSE(r0, &(0x7f0000002540), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, 0x1}, 0x50) write$FUSE_ENTRY(r0, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000002c0f}}}, 0x90) 18:25:21 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000071, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x30000739, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_script(r0, &(0x7f0000000880)=ANY=[], 0xce) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='yeah\x00', 0x5) readv(r0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/255, 0xff}], 0x1) sendto$inet(r0, &(0x7f0000000300)='\f', 0xc3f2, 0x11, 0x0, 0xf00) 18:25:21 executing program 5: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup3(r1, r0, 0x0) r3 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_rx_ring(r3, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x6000000, 0x100000001, 0x6000000, 0x1}, 0x1c) ioctl$int_in(r3, 0x5452, &(0x7f0000000040)=0x1) ioctl$int_in(r3, 0x4b49, &(0x7f0000000080)=0xfff) dup2(r1, r3) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) bind(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) 18:25:21 executing program 2 (fault-call:6 fault-nth:0): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf) ioctl$KDADDIO(r0, 0x400455c8, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r1, r2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)) [ 1811.970794] FAULT_INJECTION: forcing a failure. [ 1811.970794] name failslab, interval 1, probability 0, space 0, times 0 [ 1811.982365] CPU: 0 PID: 16308 Comm: syz-executor.2 Not tainted 4.19.97-syzkaller #0 [ 1811.990336] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1811.999707] Call Trace: [ 1812.002329] dump_stack+0x197/0x210 [ 1812.005992] should_fail.cold+0xa/0x1b [ 1812.009913] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 1812.015041] ? __lock_acquire+0x6ee/0x49c0 [ 1812.019393] ? __lock_acquire+0x6ee/0x49c0 [ 1812.023652] ? avc_has_extended_perms+0x10f0/0x10f0 [ 1812.028697] __should_failslab+0x121/0x190 [ 1812.032951] should_failslab+0x9/0x14 [ 1812.036768] kmem_cache_alloc_node+0x56/0x710 [ 1812.041285] ? mark_held_locks+0x100/0x100 [ 1812.045551] __alloc_skb+0xd5/0x5f0 [ 1812.049199] ? skb_trim+0x190/0x190 [ 1812.052957] ? ldsem_wake+0x40/0x40 [ 1812.056670] bcsp_recv+0x925/0x1430 [ 1812.060333] hci_uart_tty_receive+0x225/0x530 [ 1812.064994] ? hci_uart_write_work+0x710/0x710 [ 1812.069595] tty_ioctl+0xe91/0x1510 [ 1812.073219] ? tty_vhangup+0x30/0x30 [ 1812.076938] ? mark_held_locks+0x100/0x100 [ 1812.081343] ? proc_cwd_link+0x100/0x1d0 [ 1812.085418] ? __fget+0x340/0x540 [ 1812.088945] ? __might_sleep+0x95/0x190 [ 1812.093037] ? tty_vhangup+0x30/0x30 [ 1812.096750] do_vfs_ioctl+0xd5f/0x1380 [ 1812.100642] ? selinux_file_ioctl+0x46f/0x5e0 [ 1812.105129] ? selinux_file_ioctl+0x125/0x5e0 [ 1812.109637] ? ioctl_preallocate+0x210/0x210 [ 1812.114047] ? selinux_file_mprotect+0x620/0x620 [ 1812.118814] ? iterate_fd+0x360/0x360 [ 1812.122658] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1812.128199] ? fput+0x128/0x1a0 [ 1812.131505] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1812.137047] ? security_file_ioctl+0x8d/0xc0 [ 1812.141462] ksys_ioctl+0xab/0xd0 [ 1812.144926] __x64_sys_ioctl+0x73/0xb0 [ 1812.148858] do_syscall_64+0xfd/0x620 [ 1812.152665] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1812.157855] RIP: 0033:0x45aff9 [ 1812.161043] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1812.179951] RSP: 002b:00007f81b2d85c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1812.187666] RAX: ffffffffffffffda RBX: 00007f81b2d866d4 RCX: 000000000045aff9 [ 1812.194937] RDX: 0000000020000080 RSI: 0000000000005412 RDI: 0000000000000003 [ 1812.202330] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1812.209607] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006 [ 1812.216886] R13: 000000000000055f R14: 00000000004c6686 R15: 0000000000000000 [ 1812.233610] Bluetooth: Can't allocate mem for new packet [ 1812.239583] kasan: CONFIG_KASAN_INLINE enabled [ 1812.249357] kasan: GPF could be caused by NULL-ptr deref or user memory access