, 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:07 executing program 4:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:07 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, 0x0, 0x0)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

[ 1958.453110][T21857]  loop3: p1 p2 < > p3 p4 < p5 >
[ 1958.458454][T21857] loop3: partition table partially beyond EOD, truncated
[ 1958.487690][T21857] loop3: p1 start 4718602 is beyond EOD, truncated
09:20:07 executing program 2:
syz_read_part_table(0x2600000000000000, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a000000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 1958.516353][T21857] loop3: p2 start 25 is beyond EOD, truncated
[ 1958.533734][T21857] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 1958.541257][T21857] loop3: p4 size 2 extends beyond EOD, truncated
[ 1958.558971][T21857] loop3: p5 start 4718602 is beyond EOD, truncated
09:20:07 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a024a00ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:07 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, 0x0, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:07 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, 0x0, 0x0)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:07 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:07 executing program 4:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:07 executing program 0:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff11c50d00ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:07 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, 0x0, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:07 executing program 2:
syz_read_part_table(0x2e05000000000000, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a000000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:07 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:07 executing program 4 (fault-call:14 fault-nth:0):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:07 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, 0x0, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:08 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

[ 1959.096083][T21909]  loop3: p1 p2 < > p3 p4 < p5 >
[ 1959.105464][T21909] loop3: partition table partially beyond EOD, truncated
[ 1959.140125][T21909] loop3: p1 start 4850186 is beyond EOD, truncated
[ 1959.160765][T21909] loop3: p2 start 25 is beyond EOD, truncated
[ 1959.176446][T21909] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 1959.197361][T21909] loop3: p4 size 2 extends beyond EOD, truncated
[ 1959.304782][T21909] loop3: p5 start 4850186 is beyond EOD, truncated
[ 1959.309396][T21961] FAULT_INJECTION: forcing a failure.
[ 1959.309396][T21961] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1959.325085][T21961] CPU: 1 PID: 21961 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 1959.335344][T21961] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1959.345385][T21961] Call Trace:
[ 1959.348707][T21961]  dump_stack+0x1b0/0x21e
[ 1959.353175][T21961]  ? devkmsg_release+0x11c/0x11c
[ 1959.358094][T21961]  ? show_regs_print_info+0x12/0x12
[ 1959.363359][T21961]  ? stack_trace_save+0x1e0/0x1e0
[ 1959.368385][T21961]  ? __kernel_text_address+0x93/0x110
[ 1959.373739][T21961]  should_fail+0x6fb/0x860
[ 1959.378141][T21961]  ? setup_fault_attr+0x2b0/0x2b0
[ 1959.383238][T21961]  __alloc_pages_nodemask+0x1ee/0x7c0
[ 1959.388594][T21961]  ? gfp_pfmemalloc_allowed+0x130/0x130
[ 1959.394121][T21961]  ? kstrtouint_from_user+0x1cb/0x230
[ 1959.399466][T21961]  ? kstrtol_from_user+0x180/0x180
[ 1959.404547][T21961]  ? __kasan_slab_free+0x1e2/0x220
[ 1959.409682][T21961]  ? slab_free_freelist_hook+0xd0/0x150
[ 1959.415208][T21961]  ? kmem_cache_free+0xac/0x5c0
[ 1959.420052][T21961]  ? do_sys_open+0x60f/0x7a0
[ 1959.424787][T21961]  ? __rcu_read_lock+0x50/0x50
[ 1959.430053][T21961]  kmalloc_order_trace+0x2a/0xf0
[ 1959.434961][T21961]  __kmalloc+0x268/0x2c0
[ 1959.439189][T21961]  kmalloc_array+0x2b/0x50
[ 1959.443577][T21961]  rw_copy_check_uvector+0x8a/0x310
[ 1959.448761][T21961]  import_iovec+0xd4/0x340
[ 1959.453147][T21961]  ? fget_many+0x20/0x20
[ 1959.457359][T21961]  ? dup_iter+0x110/0x110
[ 1959.461659][T21961]  ? __kernel_write+0x340/0x340
[ 1959.466581][T21961]  do_preadv+0x1ba/0x330
[ 1959.470793][T21961]  ? do_writev+0x560/0x560
[ 1959.477118][T21961]  ? security_file_permission+0x128/0x300
[ 1959.482806][T21961]  ? __sb_end_write+0xa4/0xf0
[ 1959.487456][T21961]  ? vfs_write+0x427/0x4f0
[ 1959.491889][T21961]  ? ksys_write+0x237/0x2a0
[ 1959.496474][T21961]  ? do_user_addr_fault+0x55c/0x9f0
[ 1959.501644][T21961]  do_syscall_64+0xcb/0x150
[ 1959.506131][T21961]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1959.512201][T21961] RIP: 0033:0x45d5b9
[ 1959.516071][T21961] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1959.535749][T21961] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 1959.544245][T21961] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 1959.552283][T21961] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 1959.560247][T21961] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 1959.568207][T21961] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1959.576359][T21961] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
09:20:08 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a004c00ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:08 executing program 5 (fault-call:12 fault-nth:0):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:08 executing program 2:
syz_read_part_table(0x3f00000000000000, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a000000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:08 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:08 executing program 0:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff11c50d00ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 1959.835076][T21980] FAULT_INJECTION: forcing a failure.
[ 1959.835076][T21980] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1959.898338][T21980] CPU: 0 PID: 21980 Comm: syz-executor.5 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 1959.908597][T21980] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1959.918851][T21980] Call Trace:
[ 1959.922129][T21980]  dump_stack+0x1b0/0x21e
[ 1959.926446][T21980]  ? devkmsg_release+0x11c/0x11c
[ 1959.931608][T21980]  ? show_regs_print_info+0x12/0x12
[ 1959.936814][T21980]  ? stack_trace_save+0x1e0/0x1e0
[ 1959.941923][T21980]  ? __kernel_text_address+0x93/0x110
[ 1959.947323][T21980]  should_fail+0x6fb/0x860
[ 1959.951835][T21980]  ? setup_fault_attr+0x2b0/0x2b0
[ 1959.956967][T21980]  __alloc_pages_nodemask+0x1ee/0x7c0
[ 1959.962372][T21980]  ? gfp_pfmemalloc_allowed+0x130/0x130
[ 1959.967918][T21980]  ? kstrtouint_from_user+0x1cb/0x230
[ 1959.973357][T21980]  ? kstrtol_from_user+0x180/0x180
[ 1959.978457][T21980]  ? __kasan_slab_free+0x1e2/0x220
[ 1959.983677][T21980]  ? slab_free_freelist_hook+0xd0/0x150
[ 1959.989461][T21980]  ? kmem_cache_free+0xac/0x5c0
[ 1959.994411][T21980]  ? do_sys_open+0x60f/0x7a0
[ 1959.999008][T21980]  ? __rcu_read_lock+0x50/0x50
[ 1960.003860][T21980]  kmalloc_order_trace+0x2a/0xf0
[ 1960.008823][T21980]  __kmalloc+0x268/0x2c0
[ 1960.013060][T21980]  kmalloc_array+0x2b/0x50
[ 1960.017736][T21980]  rw_copy_check_uvector+0x8a/0x310
[ 1960.022947][T21980]  import_iovec+0xd4/0x340
[ 1960.027460][T21980]  ? fget_many+0x20/0x20
[ 1960.031977][T21980]  ? dup_iter+0x110/0x110
[ 1960.036437][T21980]  ? __kernel_write+0x340/0x340
[ 1960.041655][T21980]  do_preadv+0x1ba/0x330
[ 1960.045935][T21980]  ? do_writev+0x560/0x560
[ 1960.050359][T21980]  ? security_file_permission+0x128/0x300
[ 1960.056114][T21980]  ? __sb_end_write+0xa4/0xf0
[ 1960.060815][T21980]  ? vfs_write+0x427/0x4f0
[ 1960.065224][T21980]  ? ksys_write+0x237/0x2a0
[ 1960.069721][T21980]  do_syscall_64+0xcb/0x150
[ 1960.074229][T21980]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1960.080122][T21980] RIP: 0033:0x45d5b9
[ 1960.084115][T21980] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1960.103864][T21980] RSP: 002b:00007fa6b28c3c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 1960.112440][T21980] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 1960.120405][T21980] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000005
[ 1960.128633][T21980] RBP: 00007fa6b28c3ca0 R08: 0000000000000000 R09: 0000000000000000
[ 1960.136752][T21980] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
09:20:09 executing program 4 (fault-call:14 fault-nth:1):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:09 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

[ 1960.144751][T21980] R13: 00007ffc0feb818f R14: 00007fa6b28c49c0 R15: 000000000118d08c
09:20:09 executing program 2:
syz_read_part_table(0x4000000000000000, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a000000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:09 executing program 0:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff11c50d00ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 1960.349283][T21998] FAULT_INJECTION: forcing a failure.
[ 1960.349283][T21998] name failslab, interval 1, probability 0, space 0, times 0
[ 1960.362960][T21998] CPU: 0 PID: 21998 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 1960.373397][T21998] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1960.383513][T21998] Call Trace:
[ 1960.386784][T21998]  dump_stack+0x1b0/0x21e
[ 1960.391085][T21998]  ? devkmsg_release+0x11c/0x11c
[ 1960.396013][T21998]  ? __schedule+0x8ae/0xe30
[ 1960.400676][T21998]  ? show_regs_print_info+0x12/0x12
[ 1960.405849][T21998]  ? preempt_schedule_irq+0xc7/0x110
[ 1960.411105][T21998]  ? preempt_schedule_notrace+0x110/0x110
[ 1960.416828][T21998]  should_fail+0x6fb/0x860
[ 1960.421228][T21998]  ? setup_fault_attr+0x2b0/0x2b0
[ 1960.426509][T21998]  ? kvmalloc_node+0xc2/0x120
[ 1960.431172][T21998]  should_failslab+0x5/0x20
[ 1960.435808][T21998]  __kmalloc+0x5f/0x2c0
[ 1960.440146][T21998]  kvmalloc_node+0xc2/0x120
[ 1960.444726][T21998]  seq_read+0x217/0xd30
[ 1960.448854][T21998]  ? selinux_file_permission+0x2d0/0x520
[ 1960.456719][T21998]  do_iter_read+0x43b/0x550
[ 1960.461195][T21998]  do_preadv+0x1f4/0x330
[ 1960.465412][T21998]  ? do_writev+0x560/0x560
[ 1960.470248][T21998]  ? security_file_permission+0x128/0x300
[ 1960.475937][T21998]  ? __sb_end_write+0xa4/0xf0
[ 1960.480585][T21998]  ? vfs_write+0x427/0x4f0
[ 1960.484977][T21998]  do_syscall_64+0xcb/0x150
[ 1960.489452][T21998]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1960.495410][T21998] RIP: 0033:0x45d5b9
[ 1960.499364][T21998] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1960.519112][T21998] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 1960.527582][T21998] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 1960.535527][T21998] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 1960.543475][T21998] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 1960.552463][T21998] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1960.560580][T21998] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
09:20:09 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a006000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:09 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:09 executing program 2:
syz_read_part_table(0x8000000000000000, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a000000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:09 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

[ 1961.013414][T22005]  loop3: p1 p2 < > p3 p4 < p5 >
[ 1961.026968][T22005] loop3: partition table partially beyond EOD, truncated
[ 1961.051939][T22005] loop3: p1 start 6291466 is beyond EOD, truncated
[ 1961.079629][T22005] loop3: p2 start 25 is beyond EOD, truncated
[ 1961.097923][T22005] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 1961.111557][T22005] loop3: p4 size 2 extends beyond EOD, truncated
[ 1961.126553][T22005] loop3: p5 start 6291466 is beyond EOD, truncated
09:20:10 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:10 executing program 4 (fault-call:14 fault-nth:2):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:10 executing program 0:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:10 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:10 executing program 2:
syz_read_part_table(0x8003000000000000, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a000000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:10 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a006800ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 1961.385473][T22047] FAULT_INJECTION: forcing a failure.
[ 1961.385473][T22047] name failslab, interval 1, probability 0, space 0, times 0
[ 1961.398229][T22047] CPU: 1 PID: 22047 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 1961.408365][T22047] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1961.418568][T22047] Call Trace:
[ 1961.421836][T22047]  dump_stack+0x1b0/0x21e
[ 1961.426461][T22047]  ? devkmsg_release+0x11c/0x11c
[ 1961.431373][T22047]  ? show_regs_print_info+0x12/0x12
[ 1961.436558][T22047]  ? cred_has_capability+0x18c/0x3f0
[ 1961.442003][T22047]  ? cred_has_capability+0x2b2/0x3f0
[ 1961.447366][T22047]  should_fail+0x6fb/0x860
[ 1961.451769][T22047]  ? setup_fault_attr+0x2b0/0x2b0
[ 1961.456789][T22047]  ? cap_capable+0x23f/0x280
[ 1961.461377][T22047]  ? proc_pid_stack+0x8e/0x1f0
[ 1961.467435][T22047]  should_failslab+0x5/0x20
[ 1961.472443][T22047]  kmem_cache_alloc_trace+0x39/0x270
[ 1961.477727][T22047]  proc_pid_stack+0x8e/0x1f0
[ 1961.482288][T22047]  proc_single_show+0xd3/0x130
[ 1961.487023][T22047]  seq_read+0x4aa/0xd30
[ 1961.491157][T22047]  ? retint_kernel+0x1b/0x1b
[ 1961.495731][T22047]  do_iter_read+0x43b/0x550
[ 1961.500291][T22047]  do_preadv+0x1f4/0x330
[ 1961.504503][T22047]  ? do_writev+0x560/0x560
[ 1961.508916][T22047]  ? kstrtoull+0x65/0x4e0
[ 1961.513305][T22047]  ? vfs_write+0x2b0/0x4f0
[ 1961.517699][T22047]  ? __sb_end_write+0xa4/0xf0
[ 1961.522346][T22047]  ? vfs_write+0x427/0x4f0
[ 1961.526738][T22047]  ? do_user_addr_fault+0x55c/0x9f0
[ 1961.531924][T22047]  do_syscall_64+0xcb/0x150
[ 1961.537005][T22047]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1961.542866][T22047] RIP: 0033:0x45d5b9
[ 1961.546745][T22047] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1961.566325][T22047] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 1961.574719][T22047] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 1961.582749][T22047] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 1961.590795][T22047] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 1961.598740][T22047] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1961.606773][T22047] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
09:20:10 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:10 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x8, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:10 executing program 0:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:10 executing program 2:
syz_read_part_table(0x8004000000000000, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a000000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:10 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

[ 1961.884112][T22027]  loop3: p1 p2 < > p3 p4 < p5 >
[ 1961.890873][T22027] loop3: partition table partially beyond EOD, truncated
[ 1961.910878][T22027] loop3: p1 start 6815754 is beyond EOD, truncated
[ 1961.917417][T22027] loop3: p2 start 25 is beyond EOD, truncated
09:20:10 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, 0x0, 0x400c040)

09:20:10 executing program 0:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:11 executing program 4 (fault-call:14 fault-nth:3):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

[ 1962.004376][T22027] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 1962.021192][T22027] loop3: p4 size 2 extends beyond EOD, truncated
[ 1962.030116][T22027] loop3: p5 start 6815754 is beyond EOD, truncated
[ 1962.044180][  T146]  loop3: p1 p2 < > p3 p4 < p5 >
[ 1962.057483][  T146] loop3: partition table partially beyond EOD, truncated
[ 1962.083554][  T146] loop3: p1 start 6815754 is beyond EOD, truncated
09:20:11 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x8, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:11 executing program 2:
syz_read_part_table(0xeffdffffffffffff, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a000000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:11 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, 0x0, 0x400c040)

[ 1962.121338][  T146] loop3: p2 start 25 is beyond EOD, truncated
[ 1962.157442][  T146] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 1962.172145][  T146] loop3: p4 size 2 extends beyond EOD, truncated
[ 1962.197454][  T146] loop3: p5 start 6815754 is beyond EOD, truncated
[ 1962.216229][T22104] FAULT_INJECTION: forcing a failure.
09:20:11 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a006c00ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:11 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x2, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

[ 1962.216229][T22104] name failslab, interval 1, probability 0, space 0, times 0
[ 1962.228948][T22104] CPU: 1 PID: 22104 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 1962.239532][T22104] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1962.249773][T22104] Call Trace:
[ 1962.253049][T22104]  dump_stack+0x1b0/0x21e
[ 1962.257431][T22104]  ? devkmsg_release+0x11c/0x11c
[ 1962.262360][T22104]  ? show_regs_print_info+0x12/0x12
[ 1962.267552][T22104]  ? cred_has_capability+0x18c/0x3f0
[ 1962.272825][T22104]  ? cred_has_capability+0x2b2/0x3f0
[ 1962.278106][T22104]  should_fail+0x6fb/0x860
[ 1962.282493][T22104]  ? setup_fault_attr+0x2b0/0x2b0
[ 1962.287500][T22104]  ? security_capable+0x75/0xd0
[ 1962.292333][T22104]  ? proc_pid_stack+0x8e/0x1f0
[ 1962.298901][T22104]  should_failslab+0x5/0x20
[ 1962.303388][T22104]  kmem_cache_alloc_trace+0x39/0x270
[ 1962.308674][T22104]  proc_pid_stack+0x8e/0x1f0
[ 1962.313953][T22104]  proc_single_show+0xd3/0x130
[ 1962.318688][T22104]  seq_read+0x4aa/0xd30
[ 1962.322905][T22104]  do_iter_read+0x43b/0x550
[ 1962.327379][T22104]  do_preadv+0x1f4/0x330
[ 1962.331608][T22104]  ? do_writev+0x560/0x560
[ 1962.336013][T22104]  ? security_file_permission+0x128/0x300
[ 1962.341716][T22104]  ? __sb_end_write+0xa4/0xf0
[ 1962.346367][T22104]  ? vfs_write+0x427/0x4f0
[ 1962.350843][T22104]  ? do_user_addr_fault+0x55c/0x9f0
[ 1962.356027][T22104]  do_syscall_64+0xcb/0x150
[ 1962.360526][T22104]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1962.366604][T22104] RIP: 0033:0x45d5b9
[ 1962.370472][T22104] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1962.390571][T22104] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 1962.398969][T22104] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 1962.406999][T22104] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 1962.414940][T22104] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 1962.423145][T22104] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003
[ 1962.431195][T22104] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
09:20:11 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x3, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:11 executing program 0:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:11 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, 0x0, 0x400c040)

09:20:11 executing program 2:
syz_read_part_table(0xfeffffff00000000, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a000000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 1962.758301][T22114]  loop3: p1 p2 < > p3 p4 < p5 >
[ 1962.764391][T22114] loop3: partition table partially beyond EOD, truncated
[ 1962.786271][T22114] loop3: p1 start 7077898 is beyond EOD, truncated
09:20:11 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x4, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:11 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

[ 1962.814569][T22114] loop3: p2 start 25 is beyond EOD, truncated
[ 1962.839629][T22114] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 1962.850041][T22114] loop3: p4 size 2 extends beyond EOD, truncated
[ 1962.857216][T22114] loop3: p5 start 7077898 is beyond EOD, truncated
09:20:11 executing program 4 (fault-call:14 fault-nth:4):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:11 executing program 0 (fault-call:13 fault-nth:0):
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:11 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a007400ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:11 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x5, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:11 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

[ 1963.083417][T22168] FAULT_INJECTION: forcing a failure.
[ 1963.083417][T22168] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1963.114453][T22171] FAULT_INJECTION: forcing a failure.
[ 1963.114453][T22171] name failslab, interval 1, probability 0, space 0, times 0
[ 1963.127743][T22171] CPU: 0 PID: 22171 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 1963.138437][T22171] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1963.148557][T22171] Call Trace:
[ 1963.151828][T22171]  dump_stack+0x1b0/0x21e
[ 1963.156133][T22171]  ? devkmsg_release+0x11c/0x11c
[ 1963.161043][T22171]  ? show_regs_print_info+0x12/0x12
[ 1963.166227][T22171]  ? cred_has_capability+0x18c/0x3f0
[ 1963.171569][T22171]  ? cred_has_capability+0x2b2/0x3f0
[ 1963.176843][T22171]  should_fail+0x6fb/0x860
[ 1963.181394][T22171]  ? setup_fault_attr+0x2b0/0x2b0
[ 1963.186487][T22171]  ? slab_free_freelist_hook+0xd0/0x150
[ 1963.192007][T22171]  ? cap_capable+0x23f/0x280
[ 1963.196680][T22171]  ? proc_pid_stack+0x1d5/0x1f0
[ 1963.201957][T22171]  ? proc_pid_stack+0x8e/0x1f0
[ 1963.206695][T22171]  should_failslab+0x5/0x20
[ 1963.211171][T22171]  kmem_cache_alloc_trace+0x39/0x270
[ 1963.217493][T22171]  proc_pid_stack+0x8e/0x1f0
[ 1963.222755][T22171]  proc_single_show+0xd3/0x130
[ 1963.227492][T22171]  seq_read+0x4aa/0xd30
[ 1963.231639][T22171]  do_iter_read+0x43b/0x550
[ 1963.236117][T22171]  do_preadv+0x1f4/0x330
[ 1963.240339][T22171]  ? do_writev+0x560/0x560
[ 1963.244730][T22171]  ? security_file_permission+0x128/0x300
[ 1963.250421][T22171]  ? __sb_end_write+0xa4/0xf0
[ 1963.255077][T22171]  ? vfs_write+0x427/0x4f0
[ 1963.259472][T22171]  do_syscall_64+0xcb/0x150
[ 1963.263985][T22171]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1963.269870][T22171] RIP: 0033:0x45d5b9
[ 1963.273739][T22171] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1963.293487][T22171] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 1963.302043][T22171] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 1963.310003][T22171] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 1963.318484][T22171] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 1963.326434][T22171] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[ 1963.334393][T22171] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
[ 1963.405868][T22168] CPU: 1 PID: 22168 Comm: syz-executor.0 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 1963.416683][T22168] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1963.426733][T22168] Call Trace:
[ 1963.430048][T22168]  dump_stack+0x1b0/0x21e
[ 1963.434519][T22168]  ? devkmsg_release+0x11c/0x11c
[ 1963.439471][T22168]  ? show_regs_print_info+0x12/0x12
[ 1963.445710][T22168]  ? stack_trace_save+0x1e0/0x1e0
[ 1963.450815][T22168]  ? __kernel_text_address+0x93/0x110
09:20:12 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

[ 1963.456202][T22168]  should_fail+0x6fb/0x860
[ 1963.460645][T22168]  ? setup_fault_attr+0x2b0/0x2b0
[ 1963.465787][T22168]  __alloc_pages_nodemask+0x1ee/0x7c0
[ 1963.471158][T22168]  ? gfp_pfmemalloc_allowed+0x130/0x130
[ 1963.476699][T22168]  ? kstrtouint_from_user+0x1cb/0x230
[ 1963.482090][T22168]  ? kstrtol_from_user+0x180/0x180
[ 1963.487546][T22168]  ? __kasan_slab_free+0x1e2/0x220
[ 1963.492747][T22168]  ? slab_free_freelist_hook+0xd0/0x150
[ 1963.498387][T22168]  ? kmem_cache_free+0xac/0x5c0
[ 1963.503227][T22168]  ? do_sys_open+0x60f/0x7a0
[ 1963.507805][T22168]  ? __rcu_read_lock+0x50/0x50
[ 1963.512555][T22168]  kmalloc_order_trace+0x2a/0xf0
[ 1963.517483][T22168]  __kmalloc+0x268/0x2c0
[ 1963.521847][T22168]  kmalloc_array+0x2b/0x50
[ 1963.526537][T22168]  rw_copy_check_uvector+0x8a/0x310
[ 1963.531998][T22168]  import_iovec+0xd4/0x340
[ 1963.536413][T22168]  ? fget_many+0x20/0x20
[ 1963.540745][T22168]  ? dup_iter+0x110/0x110
[ 1963.545073][T22168]  ? perf_pmu_sched_task+0x370/0x370
[ 1963.550364][T22168]  do_preadv+0x1ba/0x330
[ 1963.554608][T22168]  ? do_writev+0x560/0x560
[ 1963.559026][T22168]  ? __schedule+0x8ae/0xe30
[ 1963.563539][T22168]  ? __fpregs_load_activate+0x2d3/0x390
[ 1963.569087][T22168]  do_syscall_64+0xcb/0x150
[ 1963.573766][T22168]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1963.579827][T22168] RIP: 0033:0x45d5b9
[ 1963.583748][T22168] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
09:20:12 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140), 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

[ 1963.603453][T22168] RSP: 002b:00007fc344b05c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 1963.611865][T22168] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 1963.619913][T22168] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 1963.627881][T22168] RBP: 00007fc344b05ca0 R08: 0000000000000000 R09: 0000000000000000
[ 1963.635978][T22168] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1963.644821][T22168] R13: 00007ffd4130796f R14: 00007fc344b069c0 R15: 000000000118d12c
09:20:12 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x6, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:12 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:12 executing program 2:
syz_read_part_table(0xffffffff00000000, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a000000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:12 executing program 4 (fault-call:14 fault-nth:5):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:12 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140), 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

[ 1963.753799][T22157]  loop3: p1 p2 < > p3 p4 < p5 >
[ 1963.758937][T22157] loop3: partition table partially beyond EOD, truncated
[ 1963.788529][T22157] loop3: p1 start 7602186 is beyond EOD, truncated
09:20:12 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a007a00ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 1963.827767][T22157] loop3: p2 start 25 is beyond EOD, truncated
[ 1963.834436][T22157] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 1963.847672][T22157] loop3: p4 size 2 extends beyond EOD, truncated
[ 1963.868297][T22157] loop3: p5 start 7602186 is beyond EOD, truncated
[ 1963.952084][T22213] FAULT_INJECTION: forcing a failure.
[ 1963.952084][T22213] name failslab, interval 1, probability 0, space 0, times 0
[ 1963.964821][T22213] CPU: 1 PID: 22213 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 1963.975141][T22213] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1963.985174][T22213] Call Trace:
[ 1963.988462][T22213]  dump_stack+0x1b0/0x21e
[ 1963.992778][T22213]  ? devkmsg_release+0x11c/0x11c
[ 1963.997966][T22213]  ? __schedule+0x8ae/0xe30
[ 1964.002686][T22213]  ? show_regs_print_info+0x12/0x12
[ 1964.007877][T22213]  ? cred_has_capability+0x18c/0x3f0
[ 1964.013171][T22213]  ? cred_has_capability+0x2b2/0x3f0
[ 1964.018538][T22213]  should_fail+0x6fb/0x860
[ 1964.023018][T22213]  ? setup_fault_attr+0x2b0/0x2b0
[ 1964.028038][T22213]  ? cap_capable+0x23f/0x280
[ 1964.032692][T22213]  ? preempt_schedule_notrace+0x110/0x110
[ 1964.040991][T22213]  ? proc_pid_stack+0x8e/0x1f0
[ 1964.045747][T22213]  should_failslab+0x5/0x20
[ 1964.050260][T22213]  kmem_cache_alloc_trace+0x39/0x270
[ 1964.055527][T22213]  proc_pid_stack+0x8e/0x1f0
[ 1964.060091][T22213]  proc_single_show+0xd3/0x130
[ 1964.064913][T22213]  seq_read+0x4aa/0xd30
[ 1964.069058][T22213]  do_iter_read+0x43b/0x550
[ 1964.073535][T22213]  do_preadv+0x1f4/0x330
[ 1964.077838][T22213]  ? do_writev+0x560/0x560
[ 1964.082226][T22213]  ? security_file_permission+0x128/0x300
[ 1964.087936][T22213]  ? __sb_end_write+0xa4/0xf0
[ 1964.093194][T22213]  ? vfs_write+0x427/0x4f0
[ 1964.097596][T22213]  ? do_user_addr_fault+0x55c/0x9f0
[ 1964.102787][T22213]  do_syscall_64+0xcb/0x150
[ 1964.107274][T22213]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1964.113137][T22213] RIP: 0033:0x45d5b9
[ 1964.117004][T22213] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1964.136581][T22213] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 1964.145047][T22213] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
09:20:13 executing program 2:
syz_read_part_table(0xffffffffffff0700, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a000000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 1964.153003][T22213] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 1964.161038][T22213] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 1964.169101][T22213] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 1964.177056][T22213] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
09:20:13 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x8, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:13 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x7, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:13 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140), 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:13 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x8, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:13 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:13 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, 0x0}, 0x400c040)

09:20:13 executing program 4 (fault-call:14 fault-nth:6):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:13 executing program 2:
syz_read_part_table(0xfffffffffffffdef, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a000000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 1964.611412][T22227]  loop3: p1 p2 < > p3 p4 < p5 >
[ 1964.616703][T22227] loop3: partition table partially beyond EOD, truncated
[ 1964.645834][T22227] loop3: p1 start 7995402 is beyond EOD, truncated
09:20:13 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x9, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

[ 1964.668219][T22227] loop3: p2 start 25 is beyond EOD, truncated
[ 1964.690794][T22227] loop3: p3 start 4293001441 is beyond EOD, truncated
09:20:13 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, 0x0}, 0x400c040)

[ 1964.720968][T22227] loop3: p4 size 2 extends beyond EOD, truncated
[ 1964.761327][T22227] loop3: p5 start 7995402 is beyond EOD, truncated
[ 1964.801736][T22276] FAULT_INJECTION: forcing a failure.
[ 1964.801736][T22276] name failslab, interval 1, probability 0, space 0, times 0
[ 1964.814788][T22276] CPU: 0 PID: 22276 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 1964.825737][T22276] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1964.836650][T22276] Call Trace:
[ 1964.840016][T22276]  dump_stack+0x1b0/0x21e
[ 1964.844337][T22276]  ? devkmsg_release+0x11c/0x11c
[ 1964.849252][T22276]  ? show_regs_print_info+0x12/0x12
[ 1964.854419][T22276]  ? cred_has_capability+0x2b2/0x3f0
[ 1964.859681][T22276]  should_fail+0x6fb/0x860
[ 1964.864080][T22276]  ? setup_fault_attr+0x2b0/0x2b0
[ 1964.869078][T22276]  ? __should_failslab+0x2d/0x150
[ 1964.874240][T22276]  ? proc_pid_stack+0x8e/0x1f0
[ 1964.879006][T22276]  should_failslab+0x5/0x20
[ 1964.883502][T22276]  kmem_cache_alloc_trace+0x39/0x270
[ 1964.888857][T22276]  proc_pid_stack+0x8e/0x1f0
[ 1964.893437][T22276]  proc_single_show+0xd3/0x130
[ 1964.898305][T22276]  seq_read+0x4aa/0xd30
[ 1964.902522][T22276]  do_iter_read+0x43b/0x550
[ 1964.906993][T22276]  do_preadv+0x1f4/0x330
[ 1964.912436][T22276]  ? do_writev+0x560/0x560
[ 1964.916916][T22276]  ? security_file_permission+0x128/0x300
[ 1964.922728][T22276]  ? __sb_end_write+0xa4/0xf0
[ 1964.927398][T22276]  ? vfs_write+0x427/0x4f0
[ 1964.931787][T22276]  do_syscall_64+0xcb/0x150
[ 1964.936263][T22276]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1964.942142][T22276] RIP: 0033:0x45d5b9
[ 1964.946011][T22276] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1964.965847][T22276] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 1964.974229][T22276] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 1964.982538][T22276] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 1964.990484][T22276] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 1964.998437][T22276] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[ 1965.007075][T22276] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
09:20:14 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x2, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:14 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a048000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:14 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0xa, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:14 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, 0x0}, 0x400c040)

09:20:14 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0301bfffffff0a000000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:14 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0xb, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:14 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={0x0}}, 0x400c040)

09:20:14 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x3, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:14 executing program 4 (fault-call:14 fault-nth:7):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:14 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0xc, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:14 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0401bfffffff0a000000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 1965.514008][T22294]  loop3: p1 p2 < > p3 p4 < p5 >
[ 1965.519113][T22294] loop3: partition table partially beyond EOD, truncated
[ 1965.535714][T22294] loop3: p1 start 8389642 is beyond EOD, truncated
[ 1965.550670][T22294] loop3: p2 start 25 is beyond EOD, truncated
09:20:14 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={0x0}}, 0x400c040)

09:20:14 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x4, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

[ 1965.570544][T22294] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 1965.606550][T22294] loop3: p4 size 2 extends beyond EOD, truncated
[ 1965.627621][T22294] loop3: p5 start 8389642 is beyond EOD, truncated
[ 1965.675110][T22341] FAULT_INJECTION: forcing a failure.
[ 1965.675110][T22341] name failslab, interval 1, probability 0, space 0, times 0
[ 1965.687903][T22341] CPU: 0 PID: 22341 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 1965.698147][T22341] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1965.708211][T22341] Call Trace:
[ 1965.711502][T22341]  dump_stack+0x1b0/0x21e
[ 1965.715965][T22341]  ? devkmsg_release+0x11c/0x11c
[ 1965.720896][T22341]  ? show_regs_print_info+0x12/0x12
[ 1965.726086][T22341]  ? cred_has_capability+0x18c/0x3f0
[ 1965.731431][T22341]  ? cred_has_capability+0x2b2/0x3f0
[ 1965.736703][T22341]  should_fail+0x6fb/0x860
[ 1965.741789][T22341]  ? setup_fault_attr+0x2b0/0x2b0
[ 1965.746786][T22341]  ? slab_free_freelist_hook+0xd0/0x150
[ 1965.752301][T22341]  ? cap_capable+0x23f/0x280
[ 1965.756861][T22341]  ? proc_pid_stack+0x1d5/0x1f0
[ 1965.761686][T22341]  ? proc_pid_stack+0x8e/0x1f0
[ 1965.766514][T22341]  should_failslab+0x5/0x20
[ 1965.770993][T22341]  kmem_cache_alloc_trace+0x39/0x270
[ 1965.776554][T22341]  proc_pid_stack+0x8e/0x1f0
[ 1965.781114][T22341]  proc_single_show+0xd3/0x130
[ 1965.785850][T22341]  seq_read+0x4aa/0xd30
[ 1965.793579][T22341]  do_iter_read+0x43b/0x550
[ 1965.798144][T22341]  do_preadv+0x1f4/0x330
[ 1965.803231][T22341]  ? do_writev+0x560/0x560
[ 1965.807738][T22341]  ? security_file_permission+0x128/0x300
[ 1965.813606][T22341]  ? __sb_end_write+0xa4/0xf0
[ 1965.818278][T22341]  ? vfs_write+0x427/0x4f0
[ 1965.822669][T22341]  do_syscall_64+0xcb/0x150
[ 1965.827251][T22341]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1965.833181][T22341] RIP: 0033:0x45d5b9
[ 1965.837240][T22341] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1965.857648][T22341] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 1965.866145][T22341] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 1965.874282][T22341] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 1965.882225][T22341] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 1965.890168][T22341] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007
[ 1965.898315][T22341] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
09:20:15 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a009000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:15 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0xd, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:15 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x5, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:15 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={0x0}}, 0x400c040)

09:20:15 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0601bfffffff0a000000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:15 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0xe, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:15 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x0, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:15 executing program 4 (fault-call:14 fault-nth:8):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:15 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x6, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

[ 1966.324339][T22354]  loop3: p1 p2 < > p3 p4 < p5 >
[ 1966.335107][T22354] loop3: partition table partially beyond EOD, truncated
[ 1966.350971][T22354] loop3: p1 start 9437194 is beyond EOD, truncated
[ 1966.360287][T22354] loop3: p2 start 25 is beyond EOD, truncated
[ 1966.366911][T22354] loop3: p3 start 4293001441 is beyond EOD, truncated
09:20:15 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x10, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:15 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x0, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

[ 1966.376735][T22354] loop3: p4 size 2 extends beyond EOD, truncated
[ 1966.389492][T22354] loop3: p5 start 9437194 is beyond EOD, truncated
[ 1966.504726][T22399] FAULT_INJECTION: forcing a failure.
[ 1966.504726][T22399] name failslab, interval 1, probability 0, space 0, times 0
[ 1966.517574][T22399] CPU: 1 PID: 22399 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 1966.527726][T22399] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1966.537758][T22399] Call Trace:
[ 1966.541028][T22399]  dump_stack+0x1b0/0x21e
[ 1966.545339][T22399]  ? devkmsg_release+0x11c/0x11c
[ 1966.550248][T22399]  ? show_regs_print_info+0x12/0x12
[ 1966.555576][T22399]  ? cred_has_capability+0x18c/0x3f0
[ 1966.560831][T22399]  ? cred_has_capability+0x2b2/0x3f0
[ 1966.566090][T22399]  should_fail+0x6fb/0x860
[ 1966.570500][T22399]  ? setup_fault_attr+0x2b0/0x2b0
[ 1966.575513][T22399]  ? __sanitizer_cov_trace_const_cmp1+0x4/0x90
[ 1966.581648][T22399]  ? proc_pid_stack+0x8e/0x1f0
[ 1966.586483][T22399]  should_failslab+0x5/0x20
[ 1966.591135][T22399]  kmem_cache_alloc_trace+0x39/0x270
[ 1966.596403][T22399]  proc_pid_stack+0x8e/0x1f0
[ 1966.600984][T22399]  proc_single_show+0xd3/0x130
[ 1966.605805][T22399]  seq_read+0x4aa/0xd30
[ 1966.609932][T22399]  do_iter_read+0x43b/0x550
[ 1966.614493][T22399]  do_preadv+0x1f4/0x330
[ 1966.618720][T22399]  ? do_writev+0x560/0x560
[ 1966.623129][T22399]  ? __schedule+0x8ae/0xe30
[ 1966.627608][T22399]  do_syscall_64+0xcb/0x150
[ 1966.632522][T22399]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1966.638385][T22399] RIP: 0033:0x45d5b9
[ 1966.642271][T22399] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1966.661847][T22399] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 1966.670316][T22399] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 1966.678258][T22399] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 1966.686215][T22399] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 1966.694346][T22399] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000008
09:20:15 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a02a200ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 1966.702645][T22399] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
09:20:15 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0701bfffffff0a000000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:15 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x7, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:15 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x11, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:15 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x0, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:15 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x12, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:16 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x8, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

[ 1967.012190][T22410]  loop3: p1 p2 < > p3 p4 < p5 >
[ 1967.020986][T22410] loop3: partition table partially beyond EOD, truncated
[ 1967.046193][T22410] loop3: p1 start 10617354 is beyond EOD, truncated
09:20:16 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x0, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

[ 1967.079262][T22410] loop3: p2 start 25 is beyond EOD, truncated
[ 1967.087090][T22410] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 1967.096354][T22410] loop3: p4 size 2 extends beyond EOD, truncated
[ 1967.109959][T22410] loop3: p5 start 10617354 is beyond EOD, truncated
09:20:16 executing program 4 (fault-call:14 fault-nth:9):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:16 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0801bfffffff0a000000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:16 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a02b200ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:16 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x1b, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:16 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x0, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:16 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x9, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

[ 1967.344940][T22470] FAULT_INJECTION: forcing a failure.
[ 1967.344940][T22470] name failslab, interval 1, probability 0, space 0, times 0
[ 1967.357661][T22470] CPU: 1 PID: 22470 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 1967.367808][T22470] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1967.377857][T22470] Call Trace:
[ 1967.381141][T22470]  dump_stack+0x1b0/0x21e
[ 1967.385478][T22470]  ? devkmsg_release+0x11c/0x11c
[ 1967.390395][T22470]  ? show_regs_print_info+0x12/0x12
[ 1967.395564][T22470]  ? cred_has_capability+0x18c/0x3f0
[ 1967.400829][T22470]  ? cred_has_capability+0x2b2/0x3f0
[ 1967.406097][T22470]  should_fail+0x6fb/0x860
[ 1967.410486][T22470]  ? setup_fault_attr+0x2b0/0x2b0
[ 1967.415482][T22470]  ? slab_free_freelist_hook+0xd0/0x150
[ 1967.420996][T22470]  ? cap_capable+0x23f/0x280
[ 1967.425569][T22470]  ? proc_pid_stack+0x1d5/0x1f0
[ 1967.430592][T22470]  ? proc_pid_stack+0x8e/0x1f0
[ 1967.435350][T22470]  should_failslab+0x5/0x20
[ 1967.439929][T22470]  kmem_cache_alloc_trace+0x39/0x270
[ 1967.445192][T22470]  proc_pid_stack+0x8e/0x1f0
[ 1967.449807][T22470]  proc_single_show+0xd3/0x130
[ 1967.454560][T22470]  seq_read+0x4aa/0xd30
[ 1967.458708][T22470]  do_iter_read+0x43b/0x550
[ 1967.463186][T22470]  do_preadv+0x1f4/0x330
[ 1967.467402][T22470]  ? do_writev+0x560/0x560
[ 1967.474216][T22470]  ? security_file_permission+0x128/0x300
[ 1967.480098][T22470]  ? __sb_end_write+0xa4/0xf0
[ 1967.484783][T22470]  ? vfs_write+0x427/0x4f0
[ 1967.489279][T22470]  do_syscall_64+0xcb/0x150
[ 1967.493775][T22470]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1967.499665][T22470] RIP: 0033:0x45d5b9
[ 1967.503641][T22470] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1967.523220][T22470] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 1967.531704][T22470] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
09:20:16 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x25, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

[ 1967.539652][T22470] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 1967.547730][T22470] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 1967.555714][T22470] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000009
[ 1967.563663][T22470] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
09:20:16 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0xa, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:16 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0a01bfffffff0a000000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:16 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x0, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:16 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0xcf, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

[ 1967.837659][T22453]  loop3: p1 p2 < > p3 p4 < p5 >
[ 1967.850586][T22453] loop3: partition table partially beyond EOD, truncated
[ 1967.885701][T22453] loop3: p1 start 11665930 is beyond EOD, truncated
[ 1967.915351][T22453] loop3: p2 start 25 is beyond EOD, truncated
09:20:16 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x0, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:16 executing program 4 (fault-call:14 fault-nth:10):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:16 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0f01bfffffff0a000000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 1967.934915][T22453] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 1967.945234][T22453] loop3: p4 size 2 extends beyond EOD, truncated
[ 1967.956440][T22453] loop3: p5 start 11665930 is beyond EOD, truncated
09:20:17 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a01b400ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:17 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0xb, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:17 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x300, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:17 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x0, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

[ 1968.180953][T22533] FAULT_INJECTION: forcing a failure.
[ 1968.180953][T22533] name failslab, interval 1, probability 0, space 0, times 0
[ 1968.194006][T22533] CPU: 0 PID: 22533 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 1968.204304][T22533] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1968.214499][T22533] Call Trace:
[ 1968.217924][T22533]  dump_stack+0x1b0/0x21e
[ 1968.222227][T22533]  ? devkmsg_release+0x11c/0x11c
[ 1968.228527][T22533]  ? show_regs_print_info+0x12/0x12
[ 1968.233698][T22533]  ? cred_has_capability+0x18c/0x3f0
[ 1968.239164][T22533]  ? cred_has_capability+0x2b2/0x3f0
[ 1968.244438][T22533]  should_fail+0x6fb/0x860
[ 1968.248841][T22533]  ? setup_fault_attr+0x2b0/0x2b0
[ 1968.254706][T22533]  ? slab_free_freelist_hook+0xd0/0x150
[ 1968.260240][T22533]  ? cap_capable+0x23f/0x280
[ 1968.264802][T22533]  ? proc_pid_stack+0x1d5/0x1f0
[ 1968.269641][T22533]  ? proc_pid_stack+0x8e/0x1f0
[ 1968.274376][T22533]  should_failslab+0x5/0x20
[ 1968.278852][T22533]  kmem_cache_alloc_trace+0x39/0x270
[ 1968.284108][T22533]  proc_pid_stack+0x8e/0x1f0
[ 1968.288974][T22533]  proc_single_show+0xd3/0x130
[ 1968.293797][T22533]  seq_read+0x4aa/0xd30
[ 1968.297957][T22533]  do_iter_read+0x43b/0x550
[ 1968.302432][T22533]  do_preadv+0x1f4/0x330
[ 1968.306652][T22533]  ? do_writev+0x560/0x560
[ 1968.312100][T22533]  ? security_file_permission+0x128/0x300
[ 1968.317876][T22533]  ? __sb_end_write+0xa4/0xf0
[ 1968.322887][T22533]  ? vfs_write+0x427/0x4f0
[ 1968.327448][T22533]  do_syscall_64+0xcb/0x150
[ 1968.331923][T22533]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1968.337963][T22533] RIP: 0033:0x45d5b9
[ 1968.342351][T22533] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1968.362041][T22533] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 1968.370441][T22533] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 1968.378387][T22533] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 1968.386333][T22533] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 1968.394277][T22533] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000000a
[ 1968.402422][T22533] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
09:20:17 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0xc, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:17 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x500, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:17 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x0, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:17 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0202bfffffff0a000000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:17 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x600, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

[ 1968.690887][T22526]  loop3: p1 p2 < > p3 p4 < p5 >
[ 1968.703119][T22526] loop3: partition table partially beyond EOD, truncated
09:20:17 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x1c, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}]}, 0x1c}}, 0x400c040)

[ 1968.742014][T22526] loop3: p1 start 11796746 is beyond EOD, truncated
[ 1968.780090][T22526] loop3: p2 start 25 is beyond EOD, truncated
09:20:17 executing program 4 (fault-call:14 fault-nth:11):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:17 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0xd, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

[ 1968.786503][T22526] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 1968.807210][T22526] loop3: p4 size 2 extends beyond EOD, truncated
[ 1968.817509][T22526] loop3: p5 start 11796746 is beyond EOD, truncated
09:20:17 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a00c000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:17 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x1c, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}]}, 0x1c}}, 0x400c040)

09:20:17 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x700, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:17 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0204bfffffff0a000000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 1969.039851][T22598] FAULT_INJECTION: forcing a failure.
[ 1969.039851][T22598] name failslab, interval 1, probability 0, space 0, times 0
[ 1969.052672][T22598] CPU: 0 PID: 22598 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 1969.062928][T22598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1969.073223][T22598] Call Trace:
[ 1969.076510][T22598]  dump_stack+0x1b0/0x21e
[ 1969.080920][T22598]  ? devkmsg_release+0x11c/0x11c
[ 1969.085850][T22598]  ? show_regs_print_info+0x12/0x12
[ 1969.091028][T22598]  ? cred_has_capability+0x18c/0x3f0
[ 1969.097077][T22598]  ? cred_has_capability+0x2b2/0x3f0
[ 1969.102452][T22598]  should_fail+0x6fb/0x860
[ 1969.106947][T22598]  ? setup_fault_attr+0x2b0/0x2b0
[ 1969.111945][T22598]  ? slab_free_freelist_hook+0xd0/0x150
[ 1969.117722][T22598]  ? cap_capable+0x23f/0x280
[ 1969.122283][T22598]  ? proc_pid_stack+0x1d5/0x1f0
[ 1969.127372][T22598]  ? proc_pid_stack+0x8e/0x1f0
[ 1969.132132][T22598]  should_failslab+0x5/0x20
[ 1969.136622][T22598]  kmem_cache_alloc_trace+0x39/0x270
[ 1969.141977][T22598]  proc_pid_stack+0x8e/0x1f0
[ 1969.147072][T22598]  proc_single_show+0xd3/0x130
[ 1969.151811][T22598]  seq_read+0x4aa/0xd30
[ 1969.155945][T22598]  do_iter_read+0x43b/0x550
[ 1969.160418][T22598]  do_preadv+0x1f4/0x330
[ 1969.164719][T22598]  ? do_writev+0x560/0x560
[ 1969.169640][T22598]  ? security_file_permission+0x128/0x300
[ 1969.175415][T22598]  ? __sb_end_write+0xa4/0xf0
[ 1969.180063][T22598]  ? vfs_write+0x427/0x4f0
[ 1969.184455][T22598]  do_syscall_64+0xcb/0x150
[ 1969.188982][T22598]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1969.194935][T22598] RIP: 0033:0x45d5b9
[ 1969.198805][T22598] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1969.218479][T22598] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 1969.226969][T22598] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 1969.235052][T22598] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 1969.242995][T22598] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 1969.250949][T22598] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000000b
[ 1969.258910][T22598] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
09:20:18 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0xe, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:18 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x1c, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}]}, 0x1c}}, 0x400c040)

09:20:18 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x900, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:18 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0206bfffffff0a000000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:18 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:18 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0xa00, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

[ 1969.567389][T22591]  loop3: p1 p2 < > p3 p4 < p5 >
[ 1969.573057][T22591] loop3: partition table partially beyond EOD, truncated
[ 1969.598885][T22591] loop3: p1 start 12582922 is beyond EOD, truncated
[ 1969.605508][T22591] loop3: p2 start 25 is beyond EOD, truncated
09:20:18 executing program 4 (fault-call:14 fault-nth:12):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:18 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x10, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

[ 1969.626790][T22591] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 1969.637196][T22591] loop3: p4 size 2 extends beyond EOD, truncated
[ 1969.647247][T22591] loop3: p5 start 12582922 is beyond EOD, truncated
09:20:18 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0affe000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:18 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0xb00, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:18 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:18 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0208bfffffff0a000000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:18 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x11, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

[ 1969.936329][T22664] FAULT_INJECTION: forcing a failure.
[ 1969.936329][T22664] name failslab, interval 1, probability 0, space 0, times 0
[ 1969.954717][T22664] CPU: 0 PID: 22664 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 1969.965918][T22664] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1969.976071][T22664] Call Trace:
[ 1969.979551][T22664]  dump_stack+0x1b0/0x21e
[ 1969.984143][T22664]  ? devkmsg_release+0x11c/0x11c
[ 1969.989200][T22664]  ? show_regs_print_info+0x12/0x12
[ 1969.994951][T22664]  ? cred_has_capability+0x18c/0x3f0
[ 1970.000222][T22664]  ? cred_has_capability+0x2b2/0x3f0
[ 1970.005501][T22664]  should_fail+0x6fb/0x860
[ 1970.010397][T22664]  ? setup_fault_attr+0x2b0/0x2b0
[ 1970.015719][T22664]  ? slab_free_freelist_hook+0xd0/0x150
[ 1970.021355][T22664]  ? cap_capable+0x23f/0x280
[ 1970.026154][T22664]  ? proc_pid_stack+0x1d5/0x1f0
[ 1970.030995][T22664]  ? proc_pid_stack+0x8e/0x1f0
[ 1970.035853][T22664]  should_failslab+0x5/0x20
[ 1970.040679][T22664]  kmem_cache_alloc_trace+0x39/0x270
[ 1970.045999][T22664]  proc_pid_stack+0x8e/0x1f0
[ 1970.050636][T22664]  proc_single_show+0xd3/0x130
[ 1970.055487][T22664]  seq_read+0x4aa/0xd30
[ 1970.059625][T22664]  do_iter_read+0x43b/0x550
[ 1970.064132][T22664]  do_preadv+0x1f4/0x330
[ 1970.068368][T22664]  ? do_writev+0x560/0x560
[ 1970.072867][T22664]  ? security_file_permission+0x128/0x300
[ 1970.078579][T22664]  ? __sb_end_write+0xa4/0xf0
[ 1970.083270][T22664]  ? vfs_write+0x427/0x4f0
[ 1970.087683][T22664]  do_syscall_64+0xcb/0x150
[ 1970.092183][T22664]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1970.098330][T22664] RIP: 0033:0x45d5b9
[ 1970.102326][T22664] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1970.122043][T22664] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
09:20:19 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x12, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

[ 1970.130643][T22664] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 1970.138609][T22664] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 1970.146747][T22664] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 1970.154704][T22664] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000000c
[ 1970.162855][T22664] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
09:20:19 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0xc00, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

[ 1970.310360][T22645]  loop3: p1 p2 < > p3 p4 < p5 >
[ 1970.317730][T22645] loop3: partition table partially beyond EOD, truncated
[ 1970.338627][T22645] loop3: p1 start 14745354 is beyond EOD, truncated
09:20:19 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x1e, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:19 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:19 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="020ebfffffff0a000000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 1970.359566][T22645] loop3: p2 start 25 is beyond EOD, truncated
[ 1970.373450][T22645] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 1970.380976][T22645] loop3: p4 size 2 extends beyond EOD, truncated
[ 1970.399531][T22645] loop3: p5 start 14745354 is beyond EOD, truncated
09:20:19 executing program 4 (fault-call:14 fault-nth:13):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:19 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0xd00, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:19 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a27e700ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:19 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8}]}]}, 0x30}}, 0x400c040)

09:20:19 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x25, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:19 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="020fbfffffff0a000000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 1970.744466][T22727] FAULT_INJECTION: forcing a failure.
[ 1970.744466][T22727] name failslab, interval 1, probability 0, space 0, times 0
[ 1970.757352][T22727] CPU: 1 PID: 22727 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 1970.767493][T22727] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1970.777520][T22727] Call Trace:
[ 1970.780788][T22727]  dump_stack+0x1b0/0x21e
[ 1970.785103][T22727]  ? devkmsg_release+0x11c/0x11c
[ 1970.790041][T22727]  ? __schedule+0x8ae/0xe30
[ 1970.794695][T22727]  ? show_regs_print_info+0x12/0x12
[ 1970.799903][T22727]  ? cred_has_capability+0x18c/0x3f0
[ 1970.805252][T22727]  ? cred_has_capability+0x2b2/0x3f0
[ 1970.810517][T22727]  should_fail+0x6fb/0x860
[ 1970.814903][T22727]  ? setup_fault_attr+0x2b0/0x2b0
[ 1970.819987][T22727]  ? cap_capable+0x23f/0x280
[ 1970.824637][T22727]  ? preempt_schedule_notrace+0x110/0x110
[ 1970.830325][T22727]  ? proc_pid_stack+0x8e/0x1f0
[ 1970.835327][T22727]  should_failslab+0x5/0x20
[ 1970.839817][T22727]  kmem_cache_alloc_trace+0x39/0x270
[ 1970.845161][T22727]  proc_pid_stack+0x8e/0x1f0
[ 1970.849809][T22727]  proc_single_show+0xd3/0x130
[ 1970.854544][T22727]  seq_read+0x4aa/0xd30
[ 1970.858674][T22727]  do_iter_read+0x43b/0x550
[ 1970.863256][T22727]  do_preadv+0x1f4/0x330
[ 1970.867555][T22727]  ? do_writev+0x560/0x560
[ 1970.871947][T22727]  ? security_file_permission+0x128/0x300
[ 1970.877637][T22727]  ? __sb_end_write+0xa4/0xf0
[ 1970.882306][T22727]  ? vfs_write+0x427/0x4f0
[ 1970.886711][T22727]  do_syscall_64+0xcb/0x150
[ 1970.891205][T22727]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1970.897329][T22727] RIP: 0033:0x45d5b9
[ 1970.901195][T22727] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1970.920768][T22727] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 1970.929149][T22727] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 1970.937097][T22727] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 1970.945039][T22727] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 1970.952982][T22727] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000000d
[ 1970.960925][T22727] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
09:20:20 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8}]}]}, 0x30}}, 0x400c040)

09:20:20 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0xe00, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:20 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0xcf, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:20 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="021bbfffffff0a000000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 1971.190643][T22714]  loop3: p1 p2 < > p3 p4 < p5 >
[ 1971.195791][T22714] loop3: partition table partially beyond EOD, truncated
[ 1971.209255][T22714] loop3: p1 start 15148810 is beyond EOD, truncated
[ 1971.216045][T22714] loop3: p2 start 25 is beyond EOD, truncated
09:20:20 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8}]}]}, 0x30}}, 0x400c040)

09:20:20 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x1100, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

[ 1971.238817][T22714] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 1971.249950][T22714] loop3: p4 size 2 extends beyond EOD, truncated
[ 1971.266161][T22714] loop3: p5 start 15148810 is beyond EOD, truncated
09:20:20 executing program 4 (fault-call:14 fault-nth:14):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:20 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x300, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:20 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a04f500ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:20 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x1200, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:20 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x28}}, 0x400c040)

09:20:20 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0f000000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 1971.586964][T22787] FAULT_INJECTION: forcing a failure.
[ 1971.586964][T22787] name failslab, interval 1, probability 0, space 0, times 0
[ 1971.600025][T22787] CPU: 0 PID: 22787 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 1971.610253][T22787] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1971.620284][T22787] Call Trace:
[ 1971.625213][T22787]  dump_stack+0x1b0/0x21e
[ 1971.629650][T22787]  ? devkmsg_release+0x11c/0x11c
[ 1971.634646][T22787]  ? show_regs_print_info+0x12/0x12
[ 1971.639924][T22787]  ? cred_has_capability+0x18c/0x3f0
[ 1971.645511][T22787]  ? cred_has_capability+0x2b2/0x3f0
[ 1971.650778][T22787]  should_fail+0x6fb/0x860
[ 1971.655198][T22787]  ? setup_fault_attr+0x2b0/0x2b0
[ 1971.660203][T22787]  ? slab_free_freelist_hook+0xd0/0x150
[ 1971.665717][T22787]  ? cap_capable+0x23f/0x280
[ 1971.670276][T22787]  ? proc_pid_stack+0x1d5/0x1f0
[ 1971.675093][T22787]  ? proc_pid_stack+0x8e/0x1f0
[ 1971.679827][T22787]  should_failslab+0x5/0x20
[ 1971.684298][T22787]  kmem_cache_alloc_trace+0x39/0x270
[ 1971.689551][T22787]  proc_pid_stack+0x8e/0x1f0
[ 1971.694222][T22787]  proc_single_show+0xd3/0x130
[ 1971.698957][T22787]  seq_read+0x4aa/0xd30
[ 1971.703084][T22787]  do_iter_read+0x43b/0x550
[ 1971.707558][T22787]  do_preadv+0x1f4/0x330
[ 1971.711771][T22787]  ? do_writev+0x560/0x560
[ 1971.716247][T22787]  ? security_file_permission+0x128/0x300
[ 1971.721936][T22787]  ? __sb_end_write+0xa4/0xf0
[ 1971.726670][T22787]  ? vfs_write+0x427/0x4f0
[ 1971.731072][T22787]  ? do_user_addr_fault+0x55c/0x9f0
[ 1971.736271][T22787]  do_syscall_64+0xcb/0x150
[ 1971.740748][T22787]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1971.746612][T22787] RIP: 0033:0x45d5b9
[ 1971.750491][T22787] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1971.770248][T22787] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 1971.778641][T22787] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 1971.786590][T22787] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 1971.794538][T22787] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 1971.802576][T22787] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000000e
[ 1971.810802][T22787] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
09:20:20 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x28}}, 0x400c040)

09:20:20 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x500, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:20 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x1b00, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:21 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffffe0000000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 1972.068968][T22770]  loop3: p1 p2 < > p3 p4 < p5 >
[ 1972.073977][T22770] loop3: partition table partially beyond EOD, truncated
[ 1972.096221][T22770] loop3: p1 start 16057354 is beyond EOD, truncated
09:20:21 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x2500, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:21 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x600, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

[ 1972.130452][T22770] loop3: p2 start 25 is beyond EOD, truncated
[ 1972.152721][T22770] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 1972.160346][T22770] loop3: p4 size 2 extends beyond EOD, truncated
[ 1972.178352][T22770] loop3: p5 start 16057354 is beyond EOD, truncated
09:20:21 executing program 4 (fault-call:14 fault-nth:15):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:21 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x28}}, 0x400c040)

09:20:21 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a0fff00ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:21 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x4000, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:21 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x700, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

[ 1972.443481][T22851] FAULT_INJECTION: forcing a failure.
[ 1972.443481][T22851] name failslab, interval 1, probability 0, space 0, times 0
[ 1972.457699][T22851] CPU: 0 PID: 22851 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 1972.468277][T22851] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1972.479518][T22851] Call Trace:
[ 1972.482795][T22851]  dump_stack+0x1b0/0x21e
[ 1972.487099][T22851]  ? devkmsg_release+0x11c/0x11c
[ 1972.492151][T22851]  ? show_regs_print_info+0x12/0x12
[ 1972.497331][T22851]  ? cred_has_capability+0x18c/0x3f0
[ 1972.502636][T22851]  ? cred_has_capability+0x2b2/0x3f0
[ 1972.508075][T22851]  should_fail+0x6fb/0x860
[ 1972.512478][T22851]  ? setup_fault_attr+0x2b0/0x2b0
[ 1972.517473][T22851]  ? slab_free_freelist_hook+0xd0/0x150
[ 1972.522988][T22851]  ? cap_capable+0x23f/0x280
[ 1972.527549][T22851]  ? proc_pid_stack+0x1d5/0x1f0
[ 1972.532380][T22851]  ? proc_pid_stack+0x8e/0x1f0
[ 1972.537564][T22851]  should_failslab+0x5/0x20
[ 1972.542056][T22851]  kmem_cache_alloc_trace+0x39/0x270
[ 1972.547314][T22851]  proc_pid_stack+0x8e/0x1f0
[ 1972.551875][T22851]  proc_single_show+0xd3/0x130
[ 1972.556612][T22851]  seq_read+0x4aa/0xd30
[ 1972.560774][T22851]  do_iter_read+0x43b/0x550
[ 1972.565277][T22851]  do_preadv+0x1f4/0x330
[ 1972.569669][T22851]  ? do_writev+0x560/0x560
[ 1972.574070][T22851]  ? security_file_permission+0x128/0x300
[ 1972.579759][T22851]  ? __sb_end_write+0xa4/0xf0
[ 1972.584407][T22851]  ? vfs_write+0x427/0x4f0
[ 1972.588794][T22851]  do_syscall_64+0xcb/0x150
[ 1972.593269][T22851]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1972.599217][T22851] RIP: 0033:0x45d5b9
[ 1972.603099][T22851] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1972.622862][T22851] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 1972.631461][T22851] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 1972.639416][T22851] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 1972.647455][T22851] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 1972.655412][T22851] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000000f
[ 1972.664319][T22851] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
09:20:21 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bffffffffa000000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:21 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x28}}, 0x400c040)

09:20:21 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0xcf00, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:21 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x900, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:21 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x100000, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:21 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x28}}, 0x400c040)

09:20:21 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0xa00, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

[ 1973.000977][T22834]  loop3: p1 p2 < > p3 p4 < p5 >
[ 1973.006060][T22834] loop3: partition table partially beyond EOD, truncated
[ 1973.023216][T22834] loop3: p1 start 16715530 is beyond EOD, truncated
[ 1973.032076][T22834] loop3: p2 start 25 is beyond EOD, truncated
[ 1973.040162][T22834] loop3: p3 start 4293001441 is beyond EOD, truncated
09:20:22 executing program 4 (fault-call:14 fault-nth:16):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:22 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffffe0ff0000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 1973.047748][T22834] loop3: p4 size 2 extends beyond EOD, truncated
[ 1973.055310][T22834] loop3: p5 start 16715530 is beyond EOD, truncated
09:20:22 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0ae0ff00ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:22 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x28}}, 0x400c040)

09:20:22 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0xf0ff7f, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:22 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0xb00, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

[ 1973.318250][T22919] FAULT_INJECTION: forcing a failure.
[ 1973.318250][T22919] name failslab, interval 1, probability 0, space 0, times 0
[ 1973.331360][T22919] CPU: 1 PID: 22919 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 1973.341514][T22919] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1973.351654][T22919] Call Trace:
[ 1973.354945][T22919]  dump_stack+0x1b0/0x21e
[ 1973.359269][T22919]  ? devkmsg_release+0x11c/0x11c
[ 1973.364194][T22919]  ? show_regs_print_info+0x12/0x12
[ 1973.369366][T22919]  ? cred_has_capability+0x18c/0x3f0
[ 1973.374810][T22919]  ? cred_has_capability+0x2b2/0x3f0
[ 1973.380067][T22919]  should_fail+0x6fb/0x860
[ 1973.384467][T22919]  ? setup_fault_attr+0x2b0/0x2b0
[ 1973.389461][T22919]  ? slab_free_freelist_hook+0xd0/0x150
[ 1973.394976][T22919]  ? cap_capable+0x23f/0x280
[ 1973.399634][T22919]  ? proc_pid_stack+0x1d5/0x1f0
[ 1973.404465][T22919]  ? proc_pid_stack+0x8e/0x1f0
[ 1973.409316][T22919]  should_failslab+0x5/0x20
[ 1973.413813][T22919]  kmem_cache_alloc_trace+0x39/0x270
[ 1973.419074][T22919]  proc_pid_stack+0x8e/0x1f0
[ 1973.423636][T22919]  proc_single_show+0xd3/0x130
[ 1973.428412][T22919]  seq_read+0x4aa/0xd30
[ 1973.432576][T22919]  do_iter_read+0x43b/0x550
[ 1973.437051][T22919]  do_preadv+0x1f4/0x330
[ 1973.441264][T22919]  ? do_writev+0x560/0x560
[ 1973.445998][T22919]  ? security_file_permission+0x128/0x300
[ 1973.451683][T22919]  ? __sb_end_write+0xa4/0xf0
[ 1973.456332][T22919]  ? vfs_write+0x427/0x4f0
[ 1973.460756][T22919]  do_syscall_64+0xcb/0x150
[ 1973.465235][T22919]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1973.471108][T22919] RIP: 0033:0x45d5b9
[ 1973.474984][T22919] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1973.494827][T22919] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 1973.503211][T22919] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 1973.511160][T22919] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 1973.519104][T22919] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 1973.527167][T22919] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000010
[ 1973.535296][T22919] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
09:20:22 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x1000000, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:22 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x20, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x20}}, 0x400c040)

09:20:22 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0xc00, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:22 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff4d204c00ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:22 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x2000000, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

[ 1973.780974][T22901]  loop3: p1 p2 < > p3 p4 < p5 >
[ 1973.788416][T22901] loop3: partition table partially beyond EOD, truncated
[ 1973.814678][T22901] loop3: p1 start 16769034 is beyond EOD, truncated
09:20:22 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x20, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x20}}, 0x400c040)

[ 1973.843344][T22901] loop3: p2 start 25 is beyond EOD, truncated
[ 1973.866073][T22901] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 1973.889894][T22901] loop3: p4 size 2 extends beyond EOD, truncated
[ 1973.911842][T22901] loop3: p5 start 16769034 is beyond EOD, truncated
09:20:22 executing program 4 (fault-call:14 fault-nth:17):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:22 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0xd00, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:22 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a000200ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:22 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffffe0ffffffff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:22 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x3000000, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:22 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x20, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x20}}, 0x400c040)

[ 1974.132298][T22979] FAULT_INJECTION: forcing a failure.
[ 1974.132298][T22979] name failslab, interval 1, probability 0, space 0, times 0
[ 1974.145096][T22979] CPU: 0 PID: 22979 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 1974.155335][T22979] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1974.165390][T22979] Call Trace:
[ 1974.168679][T22979]  dump_stack+0x1b0/0x21e
[ 1974.173207][T22979]  ? devkmsg_release+0x11c/0x11c
[ 1974.178376][T22979]  ? show_regs_print_info+0x12/0x12
[ 1974.183639][T22979]  ? cred_has_capability+0x18c/0x3f0
[ 1974.188891][T22979]  ? cred_has_capability+0x2b2/0x3f0
[ 1974.194232][T22979]  should_fail+0x6fb/0x860
[ 1974.198793][T22979]  ? setup_fault_attr+0x2b0/0x2b0
[ 1974.203803][T22979]  ? slab_free_freelist_hook+0xd0/0x150
[ 1974.209602][T22979]  ? cap_capable+0x23f/0x280
[ 1974.214178][T22979]  ? proc_pid_stack+0x1d5/0x1f0
[ 1974.219006][T22979]  ? proc_pid_stack+0x8e/0x1f0
[ 1974.223744][T22979]  should_failslab+0x5/0x20
[ 1974.228220][T22979]  kmem_cache_alloc_trace+0x39/0x270
[ 1974.233574][T22979]  proc_pid_stack+0x8e/0x1f0
[ 1974.238136][T22979]  proc_single_show+0xd3/0x130
[ 1974.242871][T22979]  seq_read+0x4aa/0xd30
[ 1974.247004][T22979]  do_iter_read+0x43b/0x550
[ 1974.251487][T22979]  do_preadv+0x1f4/0x330
[ 1974.255699][T22979]  ? do_writev+0x560/0x560
[ 1974.260104][T22979]  ? security_file_permission+0x128/0x300
[ 1974.265968][T22979]  ? __sb_end_write+0xa4/0xf0
[ 1974.272624][T22979]  ? vfs_write+0x427/0x4f0
[ 1974.277025][T22979]  ? do_user_addr_fault+0x55c/0x9f0
[ 1974.282193][T22979]  do_syscall_64+0xcb/0x150
[ 1974.286676][T22979]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1974.292537][T22979] RIP: 0033:0x45d5b9
[ 1974.296403][T22979] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1974.316170][T22979] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 1974.324644][T22979] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 1974.332589][T22979] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 1974.340546][T22979] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 1974.348591][T22979] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000011
[ 1974.356890][T22979] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
09:20:23 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x18, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0x4}]}, 0x18}}, 0x400c040)

09:20:23 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0xe00, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:23 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x4000000, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:23 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x5000000, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:23 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a020000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:23 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x18, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0x4}]}, 0x18}}, 0x400c040)

[ 1974.649768][T22971]  loop3: p1 p2 < > p3 p4 < p5 >
[ 1974.669380][T22971] loop3: partition table partially beyond EOD, truncated
[ 1974.684403][T22971] loop3: p1 start 131082 is beyond EOD, truncated
[ 1974.692880][T22971] loop3: p2 start 25 is beyond EOD, truncated
[ 1974.700122][T22971] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 1974.708760][T22971] loop3: p4 size 2 extends beyond EOD, truncated
[ 1974.720051][T22971] loop3: p5 start 131082 is beyond EOD, truncated
09:20:23 executing program 4 (fault-call:14 fault-nth:18):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:23 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x1100, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:23 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x6000000, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:23 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a000300ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:23 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x18, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0x4}]}, 0x18}}, 0x400c040)

09:20:23 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a030000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 1974.976152][T23043] FAULT_INJECTION: forcing a failure.
[ 1974.976152][T23043] name failslab, interval 1, probability 0, space 0, times 0
[ 1974.988954][T23043] CPU: 0 PID: 23043 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 1974.999278][T23043] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1975.009322][T23043] Call Trace:
[ 1975.012600][T23043]  dump_stack+0x1b0/0x21e
[ 1975.016921][T23043]  ? devkmsg_release+0x11c/0x11c
[ 1975.021857][T23043]  ? show_regs_print_info+0x12/0x12
[ 1975.027058][T23043]  ? cred_has_capability+0x18c/0x3f0
[ 1975.032425][T23043]  ? cred_has_capability+0x2b2/0x3f0
[ 1975.037706][T23043]  should_fail+0x6fb/0x860
[ 1975.042293][T23043]  ? setup_fault_attr+0x2b0/0x2b0
[ 1975.047474][T23043]  ? slab_free_freelist_hook+0xd0/0x150
[ 1975.053035][T23043]  ? cap_capable+0x23f/0x280
[ 1975.057611][T23043]  ? proc_pid_stack+0x1d5/0x1f0
[ 1975.062466][T23043]  ? proc_pid_stack+0x8e/0x1f0
[ 1975.067206][T23043]  should_failslab+0x5/0x20
[ 1975.071784][T23043]  kmem_cache_alloc_trace+0x39/0x270
[ 1975.077056][T23043]  proc_pid_stack+0x8e/0x1f0
[ 1975.081615][T23043]  proc_single_show+0xd3/0x130
[ 1975.086349][T23043]  seq_read+0x4aa/0xd30
[ 1975.090477][T23043]  do_iter_read+0x43b/0x550
[ 1975.094948][T23043]  do_preadv+0x1f4/0x330
[ 1975.099606][T23043]  ? do_writev+0x560/0x560
[ 1975.104361][T23043]  ? security_file_permission+0x128/0x300
[ 1975.110051][T23043]  ? __sb_end_write+0xa4/0xf0
[ 1975.114698][T23043]  ? vfs_write+0x427/0x4f0
[ 1975.119183][T23043]  do_syscall_64+0xcb/0x150
[ 1975.123660][T23043]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1975.129611][T23043] RIP: 0033:0x45d5b9
[ 1975.133583][T23043] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1975.153381][T23043] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 1975.161884][T23043] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 1975.169945][T23043] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 1975.177977][T23043] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 1975.186221][T23043] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000012
[ 1975.194314][T23043] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
09:20:24 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x7000000, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:24 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x20, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x20}}, 0x0)

09:20:24 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x1200, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

[ 1975.397260][T23029]  loop3: p1 p2 < > p3 p4 < p5 >
[ 1975.406919][T23029] loop3: partition table partially beyond EOD, truncated
[ 1975.427646][T23029] loop3: p1 start 196618 is beyond EOD, truncated
[ 1975.440683][T23029] loop3: p2 start 25 is beyond EOD, truncated
09:20:24 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a040000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:24 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x8000000, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

[ 1975.453098][T23029] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 1975.462609][T23029] loop3: p4 size 2 extends beyond EOD, truncated
[ 1975.478450][T23029] loop3: p5 start 196618 is beyond EOD, truncated
09:20:24 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x20, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x20}}, 0x0)

09:20:24 executing program 4 (fault-call:14 fault-nth:19):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:24 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a000400ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:24 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x1e00, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:24 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x9000000, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:24 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x20, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x20}}, 0x0)

09:20:24 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a050000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 1975.818821][T23105] FAULT_INJECTION: forcing a failure.
[ 1975.818821][T23105] name failslab, interval 1, probability 0, space 0, times 0
[ 1975.832505][T23105] CPU: 1 PID: 23105 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 1975.842649][T23105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1975.852769][T23105] Call Trace:
[ 1975.856037][T23105]  dump_stack+0x1b0/0x21e
[ 1975.860339][T23105]  ? devkmsg_release+0x11c/0x11c
[ 1975.865508][T23105]  ? show_regs_print_info+0x12/0x12
[ 1975.870766][T23105]  ? cred_has_capability+0x18c/0x3f0
[ 1975.876022][T23105]  ? cred_has_capability+0x2b2/0x3f0
[ 1975.881301][T23105]  should_fail+0x6fb/0x860
[ 1975.885690][T23105]  ? setup_fault_attr+0x2b0/0x2b0
[ 1975.890784][T23105]  ? slab_free_freelist_hook+0xd0/0x150
[ 1975.896400][T23105]  ? cap_capable+0x23f/0x280
[ 1975.900983][T23105]  ? proc_pid_stack+0x1d5/0x1f0
[ 1975.905889][T23105]  ? proc_pid_stack+0x8e/0x1f0
[ 1975.910624][T23105]  should_failslab+0x5/0x20
[ 1975.915114][T23105]  kmem_cache_alloc_trace+0x39/0x270
[ 1975.920371][T23105]  proc_pid_stack+0x8e/0x1f0
[ 1975.924933][T23105]  proc_single_show+0xd3/0x130
[ 1975.929760][T23105]  seq_read+0x4aa/0xd30
[ 1975.933893][T23105]  do_iter_read+0x43b/0x550
[ 1975.938386][T23105]  do_preadv+0x1f4/0x330
[ 1975.942599][T23105]  ? do_writev+0x560/0x560
[ 1975.947006][T23105]  ? security_file_permission+0x128/0x300
[ 1975.952715][T23105]  ? __sb_end_write+0xa4/0xf0
[ 1975.957557][T23105]  ? vfs_write+0x427/0x4f0
[ 1975.961948][T23105]  do_syscall_64+0xcb/0x150
[ 1975.966424][T23105]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1975.972291][T23105] RIP: 0033:0x45d5b9
[ 1975.976176][T23105] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1975.995753][T23105] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 1976.004224][T23105] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 1976.012341][T23105] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 1976.020289][T23105] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 1976.029053][T23105] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000013
[ 1976.037162][T23105] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
09:20:25 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0xa000000, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:25 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x2500, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:25 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x20, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x20}}, 0x0)

09:20:25 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0xb000000, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:25 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a060000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 1976.297725][T23088]  loop3: p1 p2 < > p3 p4 < p5 >
[ 1976.303721][T23088] loop3: partition table partially beyond EOD, truncated
[ 1976.333992][T23088] loop3: p1 start 262154 is beyond EOD, truncated
09:20:25 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x4000, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

[ 1976.376551][T23088] loop3: p2 start 25 is beyond EOD, truncated
[ 1976.394404][T23088] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 1976.401732][T23088] loop3: p4 size 2 extends beyond EOD, truncated
[ 1976.409805][T23088] loop3: p5 start 262154 is beyond EOD, truncated
09:20:25 executing program 4 (fault-call:14 fault-nth:20):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:25 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a000500ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:25 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x20, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x20}}, 0x400c040)

09:20:25 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0xc000000, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:25 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0xcf00, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:25 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a070000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 1976.655355][T23164] FAULT_INJECTION: forcing a failure.
[ 1976.655355][T23164] name failslab, interval 1, probability 0, space 0, times 0
[ 1976.668415][T23164] CPU: 1 PID: 23164 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 1976.678658][T23164] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1976.688690][T23164] Call Trace:
[ 1976.691974][T23164]  dump_stack+0x1b0/0x21e
[ 1976.696278][T23164]  ? devkmsg_release+0x11c/0x11c
[ 1976.701302][T23164]  ? show_regs_print_info+0x12/0x12
[ 1976.706580][T23164]  ? cred_has_capability+0x18c/0x3f0
[ 1976.711846][T23164]  ? cred_has_capability+0x2b2/0x3f0
[ 1976.717129][T23164]  should_fail+0x6fb/0x860
[ 1976.721957][T23164]  ? setup_fault_attr+0x2b0/0x2b0
[ 1976.726958][T23164]  ? slab_free_freelist_hook+0xd0/0x150
[ 1976.732492][T23164]  ? cap_capable+0x23f/0x280
[ 1976.737109][T23164]  ? proc_pid_stack+0x1d5/0x1f0
[ 1976.741932][T23164]  ? proc_pid_stack+0x8e/0x1f0
[ 1976.746672][T23164]  should_failslab+0x5/0x20
[ 1976.751256][T23164]  kmem_cache_alloc_trace+0x39/0x270
[ 1976.756518][T23164]  proc_pid_stack+0x8e/0x1f0
[ 1976.761169][T23164]  proc_single_show+0xd3/0x130
[ 1976.765938][T23164]  seq_read+0x4aa/0xd30
[ 1976.770113][T23164]  do_iter_read+0x43b/0x550
[ 1976.774618][T23164]  do_preadv+0x1f4/0x330
[ 1976.778847][T23164]  ? do_writev+0x560/0x560
[ 1976.783246][T23164]  ? security_file_permission+0x128/0x300
[ 1976.788939][T23164]  ? __sb_end_write+0xa4/0xf0
[ 1976.793588][T23164]  ? vfs_write+0x427/0x4f0
[ 1976.797999][T23164]  do_syscall_64+0xcb/0x150
[ 1976.802564][T23164]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1976.808536][T23164] RIP: 0033:0x45d5b9
[ 1976.812406][T23164] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1976.831994][T23164] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 1976.840387][T23164] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 1976.848356][T23164] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 1976.856303][T23164] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 1976.864252][T23164] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000014
[ 1976.872894][T23164] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
09:20:25 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0xd000000, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:26 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x20, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x20}}, 0x400c040)

09:20:26 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x100000, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:26 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0xe000000, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

[ 1977.126747][T23149]  loop3: p1 p2 < > p3 p4 < p5 >
[ 1977.132286][T23149] loop3: partition table partially beyond EOD, truncated
[ 1977.151784][T23149] loop3: p1 start 327690 is beyond EOD, truncated
[ 1977.163737][T23149] loop3: p2 start 25 is beyond EOD, truncated
09:20:26 executing program 1:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x300, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:26 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a080000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 1977.193713][T23149] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 1977.222579][T23149] loop3: p4 size 2 extends beyond EOD, truncated
[ 1977.231576][T23149] loop3: p5 start 327690 is beyond EOD, truncated
09:20:26 executing program 4 (fault-call:14 fault-nth:21):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:26 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x1e0000, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:26 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a000600ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:26 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x10000000, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:26 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x0, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

[ 1977.504602][T23231] FAULT_INJECTION: forcing a failure.
[ 1977.504602][T23231] name failslab, interval 1, probability 0, space 0, times 0
[ 1977.517326][T23231] CPU: 0 PID: 23231 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 1977.527479][T23231] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1977.537733][T23231] Call Trace:
[ 1977.541033][T23231]  dump_stack+0x1b0/0x21e
[ 1977.545442][T23231]  ? devkmsg_release+0x11c/0x11c
[ 1977.550357][T23231]  ? show_regs_print_info+0x12/0x12
[ 1977.555526][T23231]  ? cred_has_capability+0x18c/0x3f0
[ 1977.560823][T23231]  ? cred_has_capability+0x2b2/0x3f0
[ 1977.566112][T23231]  should_fail+0x6fb/0x860
[ 1977.570617][T23231]  ? setup_fault_attr+0x2b0/0x2b0
[ 1977.575618][T23231]  ? slab_free_freelist_hook+0xd0/0x150
[ 1977.581890][T23231]  ? cap_capable+0x23f/0x280
[ 1977.586452][T23231]  ? proc_pid_stack+0x1d5/0x1f0
[ 1977.591272][T23231]  ? proc_pid_stack+0x8e/0x1f0
[ 1977.596009][T23231]  should_failslab+0x5/0x20
[ 1977.600496][T23231]  kmem_cache_alloc_trace+0x39/0x270
[ 1977.605925][T23231]  proc_pid_stack+0x8e/0x1f0
[ 1977.610487][T23231]  proc_single_show+0xd3/0x130
[ 1977.615241][T23231]  seq_read+0x4aa/0xd30
[ 1977.619516][T23231]  do_iter_read+0x43b/0x550
[ 1977.623993][T23231]  do_preadv+0x1f4/0x330
[ 1977.628208][T23231]  ? do_writev+0x560/0x560
[ 1977.632596][T23231]  ? __schedule+0x8ae/0xe30
[ 1977.637077][T23231]  do_syscall_64+0xcb/0x150
[ 1977.641554][T23231]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1977.647615][T23231] RIP: 0033:0x45d5b9
[ 1977.651484][T23231] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1977.671348][T23231] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 1977.679738][T23231] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 1977.687689][T23231] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 1977.695746][T23231] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
09:20:26 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x11000000, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

[ 1977.703695][T23231] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000015
[ 1977.711638][T23231] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
09:20:26 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0xd2ff7f, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:26 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x0, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:26 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a090000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:26 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x12000000, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

[ 1977.889642][T23213]  loop3: p1 p2 < > p3 p4 < p5 >
[ 1977.895223][T23213] loop3: partition table partially beyond EOD, truncated
[ 1977.908813][T23213] loop3: p1 start 393226 is beyond EOD, truncated
[ 1977.924618][T23213] loop3: p2 start 25 is beyond EOD, truncated
[ 1977.937615][T23213] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 1977.944853][T23213] loop3: p4 size 2 extends beyond EOD, truncated
[ 1977.954405][T23213] loop3: p5 start 393226 is beyond EOD, truncated
09:20:26 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a000700ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:27 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0xf0ff7f, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:27 executing program 4 (fault-call:14 fault-nth:22):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:27 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x0, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:27 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x1b000000, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:27 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a0a0000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 1978.250023][T23268]  loop3: p1 p2 < > p3 p4 < p5 >
[ 1978.255090][T23268] loop3: partition table partially beyond EOD, truncated
[ 1978.317970][T23294] FAULT_INJECTION: forcing a failure.
[ 1978.317970][T23294] name failslab, interval 1, probability 0, space 0, times 0
[ 1978.329477][T23268] loop3: p1 start 458762 is beyond EOD, truncated
[ 1978.337197][T23294] CPU: 0 PID: 23294 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 1978.347454][T23294] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1978.357616][T23294] Call Trace:
[ 1978.360897][T23294]  dump_stack+0x1b0/0x21e
[ 1978.365209][T23294]  ? devkmsg_release+0x11c/0x11c
[ 1978.370405][T23294]  ? show_regs_print_info+0x12/0x12
[ 1978.376355][T23294]  ? cred_has_capability+0x18c/0x3f0
[ 1978.381622][T23294]  ? cred_has_capability+0x2b2/0x3f0
[ 1978.386877][T23294]  should_fail+0x6fb/0x860
[ 1978.391263][T23294]  ? setup_fault_attr+0x2b0/0x2b0
[ 1978.396362][T23294]  ? slab_free_freelist_hook+0xd0/0x150
[ 1978.401879][T23294]  ? cap_capable+0x23f/0x280
[ 1978.406537][T23294]  ? proc_pid_stack+0x1d5/0x1f0
[ 1978.411356][T23294]  ? proc_pid_stack+0x8e/0x1f0
[ 1978.416178][T23294]  should_failslab+0x5/0x20
[ 1978.420656][T23294]  kmem_cache_alloc_trace+0x39/0x270
[ 1978.425925][T23294]  proc_pid_stack+0x8e/0x1f0
[ 1978.430487][T23294]  proc_single_show+0xd3/0x130
[ 1978.435397][T23294]  seq_read+0x4aa/0xd30
[ 1978.439616][T23294]  do_iter_read+0x43b/0x550
[ 1978.444099][T23294]  do_preadv+0x1f4/0x330
[ 1978.448405][T23294]  ? do_writev+0x560/0x560
[ 1978.452795][T23294]  ? security_file_permission+0x128/0x300
[ 1978.458486][T23294]  ? __sb_end_write+0xa4/0xf0
[ 1978.463139][T23294]  ? vfs_write+0x427/0x4f0
[ 1978.467534][T23294]  ? do_user_addr_fault+0x55c/0x9f0
[ 1978.472704][T23294]  do_syscall_64+0xcb/0x150
[ 1978.477199][T23294]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1978.483073][T23294] RIP: 0033:0x45d5b9
[ 1978.486948][T23294] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1978.506984][T23294] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
09:20:27 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x1000000, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

[ 1978.515369][T23294] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 1978.525137][T23294] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 1978.533095][T23294] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 1978.541061][T23294] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016
[ 1978.549038][T23294] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
09:20:27 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x0, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

[ 1978.590441][T23268] loop3: p2 start 25 is beyond EOD, truncated
[ 1978.611889][T23268] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 1978.621363][T23268] loop3: p4 size 2 extends beyond EOD, truncated
09:20:27 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x25000000, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

[ 1978.652776][T23268] loop3: p5 start 458762 is beyond EOD, truncated
09:20:27 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a000800ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:27 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x2000000, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:27 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a0b0000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:27 executing program 1:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a048000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:27 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x40000000, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:27 executing program 4 (fault-call:14 fault-nth:23):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:27 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x3000000, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:27 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x7fffefe5, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

[ 1979.070323][T23315]  loop3: p1 p2 < > p3 p4 < p5 >
[ 1979.077245][T23315] loop3: partition table partially beyond EOD, truncated
[ 1979.098907][T23315] loop3: p1 start 524298 is beyond EOD, truncated
09:20:28 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a0c0000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 1979.160292][T23350] FAULT_INJECTION: forcing a failure.
[ 1979.160292][T23350] name failslab, interval 1, probability 0, space 0, times 0
[ 1979.173164][T23350] CPU: 1 PID: 23350 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 1979.183317][T23350] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1979.193672][T23350] Call Trace:
[ 1979.196285][T23315] loop3: p2 start 25 is beyond EOD, truncated
[ 1979.196971][T23350]  dump_stack+0x1b0/0x21e
[ 1979.207421][T23350]  ? devkmsg_release+0x11c/0x11c
[ 1979.212334][T23350]  ? show_regs_print_info+0x12/0x12
[ 1979.217597][T23350]  ? cred_has_capability+0x18c/0x3f0
[ 1979.222867][T23350]  ? cred_has_capability+0x2b2/0x3f0
[ 1979.228322][T23350]  should_fail+0x6fb/0x860
[ 1979.232978][T23350]  ? setup_fault_attr+0x2b0/0x2b0
[ 1979.237985][T23350]  ? slab_free_freelist_hook+0xd0/0x150
[ 1979.243673][T23350]  ? cap_capable+0x23f/0x280
[ 1979.248241][T23350]  ? proc_pid_stack+0x1d5/0x1f0
[ 1979.253062][T23350]  ? proc_pid_stack+0x8e/0x1f0
[ 1979.257820][T23350]  should_failslab+0x5/0x20
[ 1979.262295][T23350]  kmem_cache_alloc_trace+0x39/0x270
[ 1979.267551][T23350]  proc_pid_stack+0x8e/0x1f0
[ 1979.272135][T23350]  proc_single_show+0xd3/0x130
[ 1979.277062][T23350]  seq_read+0x4aa/0xd30
[ 1979.281194][T23350]  do_iter_read+0x43b/0x550
[ 1979.285668][T23350]  do_preadv+0x1f4/0x330
[ 1979.289889][T23350]  ? do_writev+0x560/0x560
[ 1979.294302][T23350]  ? security_file_permission+0x128/0x300
[ 1979.300180][T23350]  ? __sb_end_write+0xa4/0xf0
[ 1979.304928][T23350]  ? vfs_write+0x427/0x4f0
[ 1979.309422][T23350]  ? do_syscall_64+0x80/0x150
[ 1979.314774][T23350]  do_syscall_64+0xcb/0x150
[ 1979.319266][T23350]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1979.325128][T23350] RIP: 0033:0x45d5b9
[ 1979.328994][T23350] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1979.349538][T23350] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
09:20:28 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x4000000, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

[ 1979.357921][T23350] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 1979.365867][T23350] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 1979.377894][T23350] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 1979.385841][T23350] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000017
[ 1979.393785][T23350] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
[ 1979.409684][T23315] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 1979.417303][T23315] loop3: p4 size 2 extends beyond EOD, truncated
[ 1979.429500][T23315] loop3: p5 start 524298 is beyond EOD, truncated
09:20:28 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x7ffff000, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:28 executing program 1:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a048000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:28 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a000900ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:28 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x5000000, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:28 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0xcf000000, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:28 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a0d0000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:28 executing program 4 (fault-call:14 fault-nth:24):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:28 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0xe5efff7f, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:28 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x6000000, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

[ 1979.816787][T23368]  loop3: p1 p2 < > p3 p4 < p5 >
[ 1979.822536][T23368] loop3: partition table partially beyond EOD, truncated
09:20:28 executing program 1:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a048000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 1979.858186][T23368] loop3: p1 start 589834 is beyond EOD, truncated
[ 1979.886584][T23368] loop3: p2 start 25 is beyond EOD, truncated
[ 1979.892726][T23368] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 1979.916129][T23368] loop3: p4 size 2 extends beyond EOD, truncated
[ 1979.923650][T23368] loop3: p5 start 589834 is beyond EOD, truncated
[ 1980.032832][T23412] FAULT_INJECTION: forcing a failure.
[ 1980.032832][T23412] name failslab, interval 1, probability 0, space 0, times 0
[ 1980.046294][T23412] CPU: 1 PID: 23412 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 1980.056642][T23412] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1980.066960][T23412] Call Trace:
[ 1980.070261][T23412]  dump_stack+0x1b0/0x21e
[ 1980.074677][T23412]  ? devkmsg_release+0x11c/0x11c
[ 1980.079621][T23412]  ? __schedule+0x8ae/0xe30
[ 1980.084121][T23412]  ? show_regs_print_info+0x12/0x12
[ 1980.089407][T23412]  ? cred_has_capability+0x18c/0x3f0
[ 1980.094697][T23412]  ? cred_has_capability+0x2b2/0x3f0
[ 1980.099990][T23412]  should_fail+0x6fb/0x860
[ 1980.104401][T23412]  ? setup_fault_attr+0x2b0/0x2b0
[ 1980.109512][T23412]  ? cap_capable+0x23f/0x280
[ 1980.114092][T23412]  ? preempt_schedule_notrace+0x110/0x110
[ 1980.120069][T23412]  ? proc_pid_stack+0x8e/0x1f0
[ 1980.124828][T23412]  should_failslab+0x5/0x20
09:20:29 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a000a00ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:29 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a0e0000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:29 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x7000000, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:29 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0xffffff7f, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

[ 1980.129327][T23412]  kmem_cache_alloc_trace+0x39/0x270
[ 1980.134697][T23412]  proc_pid_stack+0x8e/0x1f0
[ 1980.139332][T23412]  proc_single_show+0xd3/0x130
[ 1980.144198][T23412]  seq_read+0x4aa/0xd30
[ 1980.148361][T23412]  do_iter_read+0x43b/0x550
[ 1980.152861][T23412]  do_preadv+0x1f4/0x330
[ 1980.157130][T23412]  ? do_writev+0x560/0x560
[ 1980.161584][T23412]  ? security_file_permission+0x128/0x300
[ 1980.167300][T23412]  ? __sb_end_write+0xa4/0xf0
[ 1980.171976][T23412]  ? vfs_write+0x427/0x4f0
[ 1980.176415][T23412]  do_syscall_64+0xcb/0x150
[ 1980.180951][T23412]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1980.186842][T23412] RIP: 0033:0x45d5b9
[ 1980.190820][T23412] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1980.210593][T23412] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 1980.219003][T23412] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 1980.227067][T23412] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 1980.235034][T23412] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 1980.243004][T23412] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000018
[ 1980.251010][T23412] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
09:20:29 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, 0x0}, 0x400c040)

09:20:29 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x8000000, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:29 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

[ 1980.437486][T23419]  loop3: p1 p2 < > p3 p4 < p5 >
[ 1980.446811][T23419] loop3: partition table partially beyond EOD, truncated
[ 1980.470453][T23419] loop3: p1 start 655370 is beyond EOD, truncated
09:20:29 executing program 1:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x5, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

[ 1980.484115][T23419] loop3: p2 start 25 is beyond EOD, truncated
[ 1980.501766][T23419] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 1980.515212][T23419] loop3: p4 size 2 extends beyond EOD, truncated
[ 1980.527506][T23419] loop3: p5 start 655370 is beyond EOD, truncated
09:20:29 executing program 4 (fault-call:14 fault-nth:25):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:29 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a100000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:29 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a000b00ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:29 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x2)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:29 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x9000000, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:29 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

[ 1980.817938][T23478] FAULT_INJECTION: forcing a failure.
[ 1980.817938][T23478] name failslab, interval 1, probability 0, space 0, times 0
[ 1980.830987][T23478] CPU: 0 PID: 23478 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 1980.841219][T23478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1980.851347][T23478] Call Trace:
[ 1980.854674][T23478]  dump_stack+0x1b0/0x21e
[ 1980.858978][T23478]  ? devkmsg_release+0x11c/0x11c
[ 1980.863888][T23478]  ? show_regs_print_info+0x12/0x12
[ 1980.869070][T23478]  ? cred_has_capability+0x18c/0x3f0
[ 1980.874437][T23478]  ? cred_has_capability+0x2b2/0x3f0
[ 1980.880500][T23478]  should_fail+0x6fb/0x860
[ 1980.884903][T23478]  ? setup_fault_attr+0x2b0/0x2b0
[ 1980.889898][T23478]  ? slab_free_freelist_hook+0xd0/0x150
[ 1980.895413][T23478]  ? cap_capable+0x23f/0x280
[ 1980.899976][T23478]  ? proc_pid_stack+0x1d5/0x1f0
[ 1980.904798][T23478]  ? proc_pid_stack+0x8e/0x1f0
[ 1980.909534][T23478]  should_failslab+0x5/0x20
[ 1980.914026][T23478]  kmem_cache_alloc_trace+0x39/0x270
[ 1980.920759][T23478]  proc_pid_stack+0x8e/0x1f0
[ 1980.925321][T23478]  proc_single_show+0xd3/0x130
[ 1980.930058][T23478]  seq_read+0x4aa/0xd30
[ 1980.934190][T23478]  do_iter_read+0x43b/0x550
[ 1980.938674][T23478]  do_preadv+0x1f4/0x330
[ 1980.942890][T23478]  ? do_writev+0x560/0x560
[ 1980.947279][T23478]  ? security_file_permission+0x128/0x300
[ 1980.952970][T23478]  ? __sb_end_write+0xa4/0xf0
[ 1980.957964][T23478]  ? vfs_write+0x427/0x4f0
[ 1980.962355][T23478]  do_syscall_64+0xcb/0x150
[ 1980.966855][T23478]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1980.972822][T23478] RIP: 0033:0x45d5b9
[ 1980.976691][T23478] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1980.996450][T23478] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 1981.005147][T23478] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 1981.013210][T23478] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 1981.021182][T23478] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 1981.029137][T23478] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000019
[ 1981.038222][T23478] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
09:20:30 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0xa000000, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:30 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x3)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:30 executing program 1 (fault-call:11 fault-nth:0):
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x20, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x20}}, 0x0)

09:20:30 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a110000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 1981.287817][T23464]  loop3: p1 p2 < > p3 p4 < p5 >
[ 1981.294084][T23464] loop3: partition table partially beyond EOD, truncated
[ 1981.326618][T23464] loop3: p1 start 720906 is beyond EOD, truncated
[ 1981.340957][T23502] FAULT_INJECTION: forcing a failure.
[ 1981.340957][T23502] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1981.367611][T23464] loop3: p2 start 25 is beyond EOD, truncated
09:20:30 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0xb000000, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:30 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x4)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

[ 1981.390239][T23464] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 1981.407230][T23464] loop3: p4 size 2 extends beyond EOD, truncated
[ 1981.411480][T23502] CPU: 0 PID: 23502 Comm: syz-executor.1 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 1981.423995][T23502] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1981.434183][T23502] Call Trace:
[ 1981.437468][T23502]  dump_stack+0x1b0/0x21e
[ 1981.441968][T23502]  ? devkmsg_release+0x11c/0x11c
[ 1981.446949][T23502]  ? show_regs_print_info+0x12/0x12
[ 1981.452137][T23502]  ? stack_trace_save+0x1e0/0x1e0
[ 1981.457148][T23502]  ? __kernel_text_address+0x93/0x110
[ 1981.462513][T23502]  should_fail+0x6fb/0x860
[ 1981.466923][T23502]  ? setup_fault_attr+0x2b0/0x2b0
[ 1981.471955][T23502]  __alloc_pages_nodemask+0x1ee/0x7c0
[ 1981.477338][T23502]  ? gfp_pfmemalloc_allowed+0x130/0x130
[ 1981.482887][T23502]  ? kstrtouint_from_user+0x1cb/0x230
[ 1981.488381][T23502]  ? kstrtol_from_user+0x180/0x180
[ 1981.493495][T23502]  ? __kasan_slab_free+0x1e2/0x220
[ 1981.498618][T23502]  ? slab_free_freelist_hook+0xd0/0x150
[ 1981.504165][T23502]  ? kmem_cache_free+0xac/0x5c0
[ 1981.509016][T23502]  ? do_sys_open+0x60f/0x7a0
[ 1981.513865][T23502]  ? __rcu_read_lock+0x50/0x50
[ 1981.519409][T23502]  kmalloc_order_trace+0x2a/0xf0
[ 1981.524350][T23502]  __kmalloc+0x268/0x2c0
[ 1981.528599][T23502]  kmalloc_array+0x2b/0x50
[ 1981.533024][T23502]  rw_copy_check_uvector+0x8a/0x310
[ 1981.538242][T23502]  import_iovec+0xd4/0x340
[ 1981.542660][T23502]  ? fget_many+0x20/0x20
[ 1981.546900][T23502]  ? dup_iter+0x110/0x110
[ 1981.551485][T23502]  ? __kernel_write+0x340/0x340
[ 1981.556335][T23502]  do_preadv+0x1ba/0x330
[ 1981.561355][T23502]  ? do_writev+0x560/0x560
[ 1981.565900][T23502]  ? security_file_permission+0x128/0x300
[ 1981.571648][T23502]  ? __sb_end_write+0xa4/0xf0
[ 1981.576316][T23502]  ? vfs_write+0x427/0x4f0
[ 1981.580762][T23502]  ? ksys_write+0x237/0x2a0
[ 1981.585517][T23502]  do_syscall_64+0xcb/0x150
[ 1981.590011][T23502]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1981.595896][T23502] RIP: 0033:0x45d5b9
[ 1981.599781][T23502] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1981.620970][T23502] RSP: 002b:00007f91d3e54c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 1981.629458][T23502] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
09:20:30 executing program 4 (fault-call:14 fault-nth:26):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:30 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0xc000000, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:30 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a000c00ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:30 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x5)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:30 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x20, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x20}}, 0x0)

[ 1981.638659][T23502] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000005
[ 1981.647021][T23502] RBP: 00007f91d3e54ca0 R08: 0000000000000000 R09: 0000000000000000
[ 1981.655527][T23502] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1981.663495][T23502] R13: 00007ffdf5874a7f R14: 00007f91d3e559c0 R15: 000000000118d08c
[ 1981.682589][T23464] loop3: p5 start 720906 is beyond EOD, truncated
[ 1981.864213][T23541] FAULT_INJECTION: forcing a failure.
[ 1981.864213][T23541] name failslab, interval 1, probability 0, space 0, times 0
[ 1981.876919][T23541] CPU: 1 PID: 23541 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 1981.887670][T23541] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1981.897803][T23541] Call Trace:
[ 1981.901082][T23541]  dump_stack+0x1b0/0x21e
[ 1981.906257][T23541]  ? devkmsg_release+0x11c/0x11c
[ 1981.911167][T23541]  ? show_regs_print_info+0x12/0x12
[ 1981.916345][T23541]  ? cred_has_capability+0x18c/0x3f0
[ 1981.921596][T23541]  ? cred_has_capability+0x2b2/0x3f0
[ 1981.926955][T23541]  should_fail+0x6fb/0x860
[ 1981.931350][T23541]  ? setup_fault_attr+0x2b0/0x2b0
[ 1981.936343][T23541]  ? slab_free_freelist_hook+0xd0/0x150
[ 1981.941947][T23541]  ? cap_capable+0x23f/0x280
[ 1981.946514][T23541]  ? proc_pid_stack+0x1d5/0x1f0
[ 1981.951440][T23541]  ? proc_pid_stack+0x8e/0x1f0
[ 1981.956172][T23541]  should_failslab+0x5/0x20
[ 1981.960645][T23541]  kmem_cache_alloc_trace+0x39/0x270
[ 1981.965907][T23541]  proc_pid_stack+0x8e/0x1f0
[ 1981.970478][T23541]  proc_single_show+0xd3/0x130
[ 1981.975215][T23541]  seq_read+0x4aa/0xd30
[ 1981.979359][T23541]  do_iter_read+0x43b/0x550
[ 1981.983830][T23541]  do_preadv+0x1f4/0x330
[ 1981.988042][T23541]  ? do_writev+0x560/0x560
[ 1981.992432][T23541]  ? security_file_permission+0x128/0x300
[ 1981.998120][T23541]  ? __sb_end_write+0xa4/0xf0
[ 1982.002766][T23541]  ? vfs_write+0x427/0x4f0
[ 1982.007154][T23541]  do_syscall_64+0xcb/0x150
[ 1982.012585][T23541]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1982.018545][T23541] RIP: 0033:0x45d5b9
[ 1982.022426][T23541] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1982.042025][T23541] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 1982.050408][T23541] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
09:20:31 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a120000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 1982.058437][T23541] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 1982.066396][T23541] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 1982.074341][T23541] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000001a
[ 1982.082282][T23541] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
09:20:31 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0)
ioctl$UI_SET_PROPBIT(r1, 0x4004556e, 0xe)
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x20, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x20}}, 0x0)

09:20:31 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x6)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:31 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0xd000000, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:31 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
munlockall()
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$addseals(r1, 0x409, 0x80000000a)
socketpair(0xb, 0x1, 0x3, &(0x7f0000000080)={<r2=>0xffffffffffffffff})
dup2(r1, r2)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
pipe(&(0x7f0000000100)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
write(r4, &(0x7f0000000340), 0x41395527)
vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r5 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r5, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x20, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e23}]}]}, 0x20}}, 0x0)

09:20:31 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:31 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0xe000000, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

[ 1982.449247][T23548]  loop3: p1 p2 < > p3 p4 < p5 >
[ 1982.458322][T23548] loop3: partition table partially beyond EOD, truncated
[ 1982.472421][T23548] loop3: p1 start 786442 is beyond EOD, truncated
[ 1982.484525][T23548] loop3: p2 start 25 is beyond EOD, truncated
[ 1982.491426][T23548] loop3: p3 start 4293001441 is beyond EOD, truncated
09:20:31 executing program 4 (fault-call:14 fault-nth:27):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:31 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a1c0000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 1982.498728][T23548] loop3: p4 size 2 extends beyond EOD, truncated
[ 1982.506698][T23548] loop3: p5 start 786442 is beyond EOD, truncated
09:20:31 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a000d00ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:31 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x8)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

[ 1982.694129][T23598] FAULT_INJECTION: forcing a failure.
[ 1982.694129][T23598] name failslab, interval 1, probability 0, space 0, times 0
[ 1982.706885][T23598] CPU: 0 PID: 23598 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 1982.717036][T23598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1982.727082][T23598] Call Trace:
[ 1982.730370][T23598]  dump_stack+0x1b0/0x21e
[ 1982.734693][T23598]  ? devkmsg_release+0x11c/0x11c
[ 1982.739611][T23598]  ? show_regs_print_info+0x12/0x12
[ 1982.744877][T23598]  ? cred_has_capability+0x18c/0x3f0
[ 1982.750154][T23598]  ? cred_has_capability+0x2b2/0x3f0
[ 1982.755419][T23598]  should_fail+0x6fb/0x860
[ 1982.759808][T23598]  ? setup_fault_attr+0x2b0/0x2b0
[ 1982.764801][T23598]  ? cap_capable+0x23f/0x280
[ 1982.769361][T23598]  ? proc_pid_stack+0x8e/0x1f0
[ 1982.774110][T23598]  should_failslab+0x5/0x20
[ 1982.778775][T23598]  kmem_cache_alloc_trace+0x39/0x270
[ 1982.784129][T23598]  proc_pid_stack+0x8e/0x1f0
[ 1982.788861][T23598]  proc_single_show+0xd3/0x130
[ 1982.793612][T23598]  seq_read+0x4aa/0xd30
[ 1982.797747][T23598]  do_iter_read+0x43b/0x550
[ 1982.802221][T23598]  do_preadv+0x1f4/0x330
[ 1982.806457][T23598]  ? do_writev+0x560/0x560
[ 1982.810842][T23598]  ? security_file_permission+0x128/0x300
[ 1982.816700][T23598]  ? __sb_end_write+0xa4/0xf0
[ 1982.821362][T23598]  ? vfs_write+0x427/0x4f0
[ 1982.825749][T23598]  do_syscall_64+0xcb/0x150
[ 1982.830224][T23598]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1982.836088][T23598] RIP: 0033:0x45d5b9
[ 1982.839954][T23598] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1982.859548][T23598] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 1982.868014][T23598] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 1982.876054][T23598] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 1982.884004][T23598] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
09:20:31 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x10000000, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

[ 1982.892118][T23598] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000001b
[ 1982.900078][T23598] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
09:20:32 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x9)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:32 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x80000000a)
r1 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$addseals(r1, 0x409, 0x80000000a)
r2 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$addseals(r2, 0x409, 0x80000000a)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000006f00)=[{&(0x7f00000002c0)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000680)=[{&(0x7f0000000340)="b4719b715e3903b7df67e7149ded810d5473d039fe7353d16858a511cfa94b03852ebfe17634cac2d6b780fe883c2a8c8d4c7d42186a583b33cefbf3686d88247fdc0c8f51aacb8be61daba6d6fdd863b94a1dfd3d04615642dc23300d2e3e16e1742962984970c3fe179a31cda11bd555e04239f1674e90903db9553a53bd32f26f756b583c40b89aee6b361b3a914afc117e91ebb3a0d833c34ad537f178c2ccc752833a920751d0320fb423be6e39dc108f3c4686898c5da5e0938060ccf433d1472080546c21d421a207b74776645b9ad62e468590ab53", 0xd9}, {&(0x7f0000000440)="66702045f361f5366ca4542736e059d6f7cf6d341d501a0f65e3559e09d4c0d586a9d678000ae33a597f17e38d3ab8649b58a85a76e698b57d7f459cb25e3286918e245a2a45c88eb65824ea52528c9a94b9f106dcec", 0x56}, {&(0x7f00000004c0)="fa63b0533567692f81ca64db71ed67967a543b5f09705c5465fbbe6d299fce3632e1916f3e9246ef87aa760af9339b9e21f76cd3e8ff12b3a637f935e48a2119d948ee6a0b7ab9cc816a0a072bfb7728b6311ffdcd2f9ccd1d48bfa10d7e7b043873680cc2d1f33d48deac94860a3d6977a8bd7c6c02539586f4ca494e515676cec5f8378a3464991bb0fb98290af2b8033397b3a5cac2c01377602f6e1721a39c9c6db47e31f327dc115cdc1f097d5623bfb8a3247b02e617b22f7660707dd871b139862b75ace2965d0a0399d29643d91f287e68edaec86d8998d7", 0xdc}, {&(0x7f0000000080)="06ba907d1e", 0x5}, {&(0x7f00000005c0)="b5ce8f10a6b7c724e876a5d5b90cc45bbbacad19a59f5ee7528a442013e6bf0d952eae62ea60e2e913f01d643a1b3f477ceba0238c8b0d1919791c0124de7903a8963faf2f089bfe0839e9c1f9575230347094ffeadb33310ef2f260c479f9cfbcffa9bc28f4c50155e49b1ea5eb0903f5f70df757846e14e180f164eef8c1980a5541c79bae9dd026d0c35a86b868a8f115ac97f6b1834742caceea9aa09c1082d49cd63e73b0eaa0e692c30fd1bc0106b4f105dcda62fc590693c3d4", 0xbd}], 0x5, &(0x7f00000001c0)=[@cred={{0x1c, 0x1, 0x2, {r0, 0x0, 0xee00}}}, @rights={{0x10}}], 0x30, 0x8000}, {&(0x7f0000000700)=@abs={0x1, 0x0, 0x4e23}, 0x6e, &(0x7f0000001c00)=[{&(0x7f0000000780)="76b035b694fbefa5061c5a819b8e66bea6d4303e72221b2ce66f478559c835a63f42a2e81ce0d3a331403c4259d8f224d2f3bfad098bd9331b825276f6e3256275f5aed4cc6e0294f3aa0061618e771c591046dda8a118a8e6dd96cf761e5c5f5558980a49637db3a879da58f05d96ef49cc728e685a47a5faf603f622283dafcd71f55f1fe60ad4f626728630f39bf09951eb7006f77e0748bdf2de3e416adf2e3c37934ae78de8d84b375279", 0xad}, {&(0x7f0000000840)="68e3f633180ba68bc98392081ec781b76339a4dae970a8db8c4194939ad29431fdbdf66eac27544ed2b3f717aedbed562cd9d80b5b2e3566e998e9f75af1ac462bb27d2bf1368ee4a0115293bc9208742272f255e7a05c339b1525ce67e80371a0cd983cd73ccdf03669adafb13b904dd96e46527bc703b5e01091237c9c", 0x7e}, {&(0x7f00000008c0)="46809138a81f5e65be1716e4ae6383a12bdd20d402537588f957d41ef583d1d3f1136d851dbf1a212ae907eed11c23033d777d786a67e32ba60e624bca489de0d49601e07e8fa8e12addf3ae6fde1fa659f68907da", 0x55}, {&(0x7f0000000940)="744fdac3a5e341902cab92f7606a613ec33c4e9e40e88306252d6865d88fdb3173ecbf4b8a6ae23deffae5f284d1021005f72a7ea1f62a0d2bbae1a6fb6e386bb1e818aa14d255c494376811138f21dcb49f2038796af93b698f381a208544439e552c95c09dee45d147a125819a6aab5989a75b", 0x74}, {&(0x7f00000009c0)="ac06ee204610add34b89e213941e545bd792", 0x12}, {&(0x7f0000000a00)="a5ba82e443d9ffa939414ca22a7e9d9afb00d12b6898baff3893344667acbfb126adce807934922b42e281256f8b87c00b97399a5592592e8bf59f4fefcc75c910cd45e155788cfdb9a3fa8109a8a76975c3c6377bab84965490c2f8337cea9f94974d53722b672b817188e083bcb2e2b321c0e91d6c36cba193b01266060014e10dfbd2c6eb46bde80759363e007800faf55e0b3e249ddc155c42934c03d5097e8176b8c84362dda7eac03bd6f943486f37797cea5de88814913ff780ba223ceda1682f6ea70a40e8c4a0c7baf4574f1be786484f3acf13d469044b27d996309828cd0236", 0xe5}, {&(0x7f0000000b00)="00a0cb2b7d649188b36973b6e2ab0298fe9bc6f6a33a062cec9b7657de9200da15d5b8957b6c2af98e8047c378d774d23d6b3e0a98982bc5ef49d28422804695ec8fc00d1f7208ede78c96676a718f83d8890e34a39a7cbd4eef374bede94feb36ff18114244b4162544685a07", 0x6d}, {&(0x7f0000000b80)="012a43c81a467fe43665f930e42b5dc026a26a313e86f7b1a349775ee495a8033689c6ce6014f55b0112867f003350e42e2435dbf086da02685695f52a9b093b41badb4b4aab8695c0151689f446136ff839607f0bc97c407161ad1cc62a8e2d2645cb94d1d8dac2d81818a359de0b5766343798ed", 0x75}, {&(0x7f0000000c00)="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", 0x1000}, {&(0x7f0000002c00)="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", 0x1000}], 0xa, &(0x7f0000001d00)=[@cred={{0x1c, 0x1, 0x2, {r0, 0xffffffffffffffff, 0xee01}}}, @rights={{0x14, 0x1, 0x1, [r2]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x70, 0x4080}, {&(0x7f0000001d80)=@abs={0x0, 0x0, 0x4e23}, 0x6e, &(0x7f0000002100)=[{&(0x7f0000001e00)="d31021093338fffa57a1e9e72aae2915cf4d80314cc0adf9643315a111e7022927080136523f7504197ca25fa2e90541e042d2ae48aeabbfe1b288a464e9853256988a31760b94c3b8823840e6662a3c0762c4636e2a32903f2bd34acfc5b7a39061a4cee2ff41eb6f22388a5b88e100e480267f9956a14bb9762d1fd7e5085c", 0x80}, {&(0x7f0000001e80)="88dc7d2af44acaaa3b28c963933b062bfbde44dcab52b269695faa5d3bbf179474b28eb04c679dfc1da84a643afd70091ecdd0c853b099b6349e70144602eefa447a7cfab581", 0x46}, {&(0x7f0000001f00)="9a622836d4c9f652137d3142198d2ae21bc415250f4c5dabc51fdb4953b062f3244cf3b37c7b180614fe7964684f138f44fe4c842102d43e8ca6ce79484e29c679f57a6830f7778d4d1d9c5071d789a6c07f6180a6e40ea5a78cf601593fce2bb276393b26f30335c8dae8a88ecffcc0f1c953a8dfc1b3f355a797e025b9756f31f13164838ab07bd2c4310a69ed62b3ff79250686946186e9d03184d9c25aa4050bfa3eec912f2273479f436e695b711bd69497cf2578aa026665a2419501abe50033fb264192f48386c19fee7886ee69a447bb80b7e88071a6592545907afcbe6c9c25", 0xe4}, {&(0x7f0000002000)="f4e99e135750a53a98d05d56532f6b31c364fbdc3ac9d3ee7bc53ceee724e569f50a308bc1b3f780a6885f3fe0d0fa73e2002525f54d16ab2bbf643ccf7418e0afe69a2aaa020341ac8a0eccaf90d837d30ceecd56c3b7342cd769f56bc59c302acb11502b844a0d45d0991586ceede8413678b408418771afaca09c51a346c6558ca9defab9527c59b2751a83c0aa06d4cdd89faecc47a4a66923cece521385513d9fee0d15c6df8fe460710575a593e4b3d1bf88ac52d48d61298ff45307c5ad4697c996b7ef646c8c08352146eec78261e94cb8c010c9fd5b211775daa2d3c058ad264754c93966946b338993b1720800174a", 0xf4}], 0x4, &(0x7f0000002140)=[@rights={{0x20, 0x1, 0x1, [r1, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x20, 0x4008041}, {&(0x7f0000002180)=@file={0xf6fee33bcaf961b8, './file0\x00'}, 0x6e, &(0x7f0000002300)=[{&(0x7f0000002200)="28075db2b8f976c6ea874d1b53d6cbc6a652df83418ef0b17efb2bf0e44d7cd767e332567e9f50bee285c7ba2f537591b456a10860a4fe8bc7ce236e92c887825fa9c87bd387eb7b81af388424ca23d86f49aacacc18bfd9f8b27d3a60c57ff85b3dc7e38735d201d98ee26b75a1ce888185a038487ee0b167567eac9c663795fe9d445bf424dde0fc52fea8b1e46878834342393e8d221b7bee5b1a9ff70fc9b01f5650869c86c8be22bfcc24cb28f18d849e9f2babea4d8367d9f3239f281719c580df17797210801b5f590a6cb3582d8910036292d5c131bdaf22a14d82e9d579", 0xe2}], 0x1, &(0x7f0000002780)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {r0, 0x0, 0xee01}}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x110, 0x80}, {&(0x7f00000028c0)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000004d80)=[{&(0x7f0000002940)="53bf4cfcf415a90e64f13486ea973150f1e833a7c97e5d1cfbc58526bb5ae65abd9c5482aac1e662ea6753a3", 0x2c}, {&(0x7f0000002980)="8f1bce2a28181c1ba90ff2f37b6022345a8c668feb751fae054f36542840ed0cb350323a3071c35399f8570303a2aeffd6ebec20e55a133466facd6692516de35a6ae598b2ea65aebef2bf2e885c2276e2fa058b7075e66b7268e8c35b6f0573fb017451124a2a2a1229b1031fd347a8960231965a804dcded7191ffb1417e3cd3fa7bc1cf001d80dd9dcc2794e3909f780c1048ee977dbbc04d719a1c84566307009d2fb9516dacabc0d410210fa2380c6421eff714bfaeefa43dd2c9c70d7dedbe", 0xc2}, {&(0x7f0000002a80)="9056684f2fac6dff", 0x8}, {&(0x7f0000002ac0)="78e97b319969ea17540972d152b8f2398937c1a7a20d8f2c19d58f4e36a3b09dd39b92f636c54d582da08236c11e03e5457481ef552fd02d3c4fb41d42389f7371defa5e0f4a671d935563903fa3c3aeb68846df649a3e651aad42c608ab58b9feb2146c21e3929edaa1996a7936ed7034dd502d9837abcb3ce7e43f8fb386e2ccf62eca69f84d177b4880cd877359547307", 0x92}, {&(0x7f00000070c0)="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", 0x1000}, {&(0x7f0000002b80)}, {&(0x7f0000004c00)="ed6475755cd9eecfc4c3bc0e1bc75b659c4d4c6e32abf65fe2c965dc38cda82c662159e1a129198badfd3cb1171f571938bcb4fae1cce3f0ace1905707610ac231b04c7ed8efa31ead3d3e8ab31d5a7d2c2ab19d5be1a8db431015105aeaad", 0x5f}, {&(0x7f0000004c80)="6716aca411a5572bd864c933699a5712886f5ab3133be006136b0e00976953cf76acfadecbeca5623899ce455d4724f42db1693814dc63cdd504912a5baecd2a300b97a9e412979a45f9619a7bae7dbbb9f1e46407f48e7767ac6e8a0e339e9933a10739b393d444778f9b7b88118dd6f52639aee80ed4ae3cb5d59fceabcdf8090c830d411a0798257c61fbcb5655d6b0eaa446839cd6469e7b961e15fd29a50a552bfbc4c79295a8bf5bafe924e2ac6fe1c26db582a127df924314fc3d469edfe7d91663c6421b7c9a88c728ac4aa76842f00d04340fdc3a7facb2ea85459b5f3639988e927544daa283", 0xeb}], 0x8, 0x0, 0x0, 0x20000000}, {&(0x7f0000004e00)=@abs={0x0, 0x0, 0x4e21}, 0x6e, &(0x7f0000005100)=[{&(0x7f0000004e80)="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", 0xfb}, {&(0x7f0000004f80)="451a952cb58f", 0x6}, {&(0x7f0000004fc0)="ff413601f5f6c55daaf2845c53337b1ed938287c23d5fb87cf980fd5207b5fb0da8556bd05b8deec4b44f1de70c991", 0x2f}, {&(0x7f0000005000)="8f888e77add3b7308c12f17bf12858b5f825db150ea9eadf45eb331aa0d3b53ca6ee82fce916f5a4c0f84cb40a88b386e9d6b0a332d1eb5d41b0036d27c5557bd1144703cde93988ee20caba2a3df992c4dfec1fd875851cb57d9a274019dc164088eeaecd51dfc373f5c7e50b2ab7ab2ff41c492896e9cc7d614a5fb46315eedca8583acfa538afc4474174ad9048dfe01f862afbd122073211740717d9415fabbd854dc3d71408695f909b4715f439a5c84f5df92fa31aad3f27425c853f68f2f625c1dd7b21", 0xc7}], 0x4, &(0x7f0000005580)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee00, 0xffffffffffffffff}}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee01, 0xee00}}}, @cred={{0x1c}}], 0xd0, 0x40}, {&(0x7f0000005680)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000006900)=[{&(0x7f0000005700)="962e064227006ef8d8ae8007f9070e8eba5de7cc999a1e2be4a19db814834fba345b8c255b25c16e0b305622f1446fd63b725bbae5f2a9be35fc0956ceff5512f09135674e029e696d49ec78baa96b76cd09633f3cf715d0d32d83eacd4a6f00c6300b28f8fcae5304c3715573d82fae048b24083a574015f315520370ed26845f179e324fc2a6b313f2a11241d216952f6b3bd9", 0x94}, {&(0x7f00000057c0)="6e42191fedef9fa59641f3506d0ca6c39858ce9127b737116e6959f1ac2de824939e3422602c955f73c752e510e943825440ef97d894d6dac13c9007b6f8a51207a12e490257ba399f32177b4bded915f30d8fc5a3268a7810a46d0565e76504abed7da96cfd1a6fff9b907d7e6d981defef38a445b9f6160dd9f387011f8dc83b1d1fcad544ca3d22452cc44626a6e03e824debd45b53a16b9db80f2a62cca653b749ed932b6347a6575086f00dbfb47a3b97a24b5a95dcdda20177ffdaad", 0xbf}, {&(0x7f0000005880)="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", 0x1000}, {&(0x7f0000006880)="a9bd0759681663602df82089a8fb674af8e9d7cef74aec0278fbc76fd45619d8f96a5012fc0da4d9c7f1deef370d354da197db4a4aa24c9d8137da2be74f8ada05e51ded20af78c4a090abe09b86d687983f9b98ba7985bfe8e8b528310fb08235ba9a30e1299d532f5903", 0x6b}], 0x4, 0x0, 0x0, 0x4000}, {&(0x7f0000006940)=@abs={0x0, 0x0, 0x4e20}, 0x6e, &(0x7f0000006e00)=[{&(0x7f00000069c0)="1f83dc01a7bd58c9999e34c3620347bcccca76f8dfafec3f39039593736b8aa235a0758c45a30e31654c770ec5dbcbc52bc9e83140006e76fe9634c0", 0x3c}, {&(0x7f0000006a00)="594c3e120a389f42af26f50afa34689946a4caf025b2bd9c9b1e4d0c273141100e539cac27f62cfc8230ad8122ae778d6aac438d3800e5712946e30b62799f6384f002e423bd05683da2ac5badf02fd5b3b6d6565da3b9a27bfd7e7a4d9269a38c01432f3bacf351940331ee30ff6eeebddb8c65abec17af5ead646e93b296aa0a655517ff19b7cf1d1a8f021da2ad00412dbb6952f22ecaf5273478504f360b96758a467c26ad82bee8e3f199789a9db67b7c7ded393d4940e8ee2d091909697a50a8921183c15b1ed1a2f297ec2f9ca50624369c10d2e65bbb2c96da26dc7599b371ab6a9114db3ce3ab3cb1f73df1918b2c454ad35d220c", 0xf9}, {&(0x7f0000006b00)="11c4e7877e56657b6daa62a13accfbfe9f7ad8e6ec57b92471668b9223d66900ce2bb9ec31996fdec23c736d0546f5210a8378cc", 0x34}, {&(0x7f0000006b40)="4b3e7b81a50006f794ba40c48937d0ec877dc68324283bc2fee07dd62405b66c10ac05e47cae40fad313aa522d8fcaaf549fa54778bc139cad894bdeb68c2042c18ff75c8a4ad5dffa33b813040e84785d235ae1fb86f49a7c8c99ee7dbf3659cb747547580692075b6ec75fb45aa9431ec980ea4f539e239bc249390dda8ec07649f42174f1923efdc993e3ebb0b2882057b42a1b3978f5237aaab0e4b3c4f3f53093ba9b8706202dcd9dd14d8ac5b69dfa3da17ec7f742031d7266770d532df66b5379c9036ef35bbfe6b2d82173b4ca99792c61038c9d215c2d12c697543f0484005b", 0xe4}, {&(0x7f0000006c40)="886f683b4914067034bacb2fbe542bc20a2d62d17376b8fc0f67be7129b3a6", 0x1f}, {&(0x7f0000006c80)="95750e1a02281d7091e28ab20a4d7e0559950c8ab401b91dc87d35f923bf6f833f7d76307044c877494c4893a3a34af4077b4399d25abad5075d42e3960a1fc4dfca5bec0a29cc6ab8bcf3dfbbf85702a9ab457db05211b05e08cc0b426900fcf62cfc736ec21a7d897add84fbb3eeb54c9e9d136a3000a1c18323664cd218702e2cedc50f1dbdfb23", 0x89}, {&(0x7f0000006d40)="7723816ffc3882a1c73c18340d6e6489c99ee689d51155bb4a09dbf20ee862d7b616083ecf7a9d127b452e098f290797a6fb6f9252537efcec979aa91d18d537b2e75f8dd3598469539ef1a103d7c36c49f2baa73a65978c173fe75187455b7afce1111f5b98d8ee1b2aa7d0ca9d151a105758e4543e470c2a2aa779f8d24c669651458c81d267a0a52e6e6843ee049751d38190ca411d8be01a7d27c82a1e70c61fbd0ffd17646387296839ddd4de6c6a0ca31920", 0xb5}], 0x7, &(0x7f0000006e80)=[@rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r1, 0xffffffffffffffff, r2]}}], 0x58, 0x24008044}], 0x8, 0x4004090)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0), 0x0, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r3=>0xffffffffffffffff})
vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x20, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x20}}, 0x0)

09:20:32 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x11000000, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:32 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
creat(&(0x7f0000000300)='./file0\x00', 0x0)
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
ioctl$BTRFS_IOC_LOGICAL_INO_V2(r2, 0xc038943b, &(0x7f00000001c0)={0x1, 0x40, [], 0x1, &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
setsockopt$packet_rx_ring(r2, 0x107, 0x5, &(0x7f00000002c0)=@req3={0xffffffff, 0x80, 0x7f, 0xfffffffd, 0x4, 0x8, 0xe2}, 0x1c)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x20, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x20}}, 0x0)

09:20:32 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a260000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:32 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0xa)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

[ 1983.287815][T23594]  loop3: p1 p2 < > p3 p4 < p5 >
[ 1983.295413][T23594] loop3: partition table partially beyond EOD, truncated
[ 1983.323498][T23594] loop3: p1 start 851978 is beyond EOD, truncated
09:20:32 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="8c1182df0142d5a97cd3b0a66593", @ANYRES16=0x0, @ANYBLOB="000227bd7000ffdbdf250b0000000c0003800600040000000000"], 0x20}}, 0x0)

09:20:32 executing program 4 (fault-call:14 fault-nth:28):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:32 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a040200ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 1983.339673][T23594] loop3: p2 start 25 is beyond EOD, truncated
[ 1983.386328][T23594] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 1983.412808][T23594] loop3: p4 size 2 extends beyond EOD, truncated
09:20:32 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a000e00ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:32 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x12000000, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:32 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0xb)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

[ 1983.437519][T23594] loop3: p5 start 851978 is beyond EOD, truncated
[ 1983.544709][T23662] FAULT_INJECTION: forcing a failure.
[ 1983.544709][T23662] name failslab, interval 1, probability 0, space 0, times 0
[ 1983.557421][T23662] CPU: 0 PID: 23662 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 1983.567577][T23662] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1983.577788][T23662] Call Trace:
[ 1983.581061][T23662]  dump_stack+0x1b0/0x21e
[ 1983.585364][T23662]  ? devkmsg_release+0x11c/0x11c
[ 1983.590456][T23662]  ? show_regs_print_info+0x12/0x12
[ 1983.595626][T23662]  ? cred_has_capability+0x18c/0x3f0
[ 1983.600976][T23662]  ? cred_has_capability+0x2b2/0x3f0
[ 1983.606255][T23662]  should_fail+0x6fb/0x860
[ 1983.610738][T23662]  ? setup_fault_attr+0x2b0/0x2b0
[ 1983.615734][T23662]  ? slab_free_freelist_hook+0xd0/0x150
[ 1983.621249][T23662]  ? cap_capable+0x23f/0x280
[ 1983.625811][T23662]  ? proc_pid_stack+0x1d5/0x1f0
[ 1983.630658][T23662]  ? proc_pid_stack+0x8e/0x1f0
[ 1983.635392][T23662]  should_failslab+0x5/0x20
[ 1983.639888][T23662]  kmem_cache_alloc_trace+0x39/0x270
[ 1983.645144][T23662]  proc_pid_stack+0x8e/0x1f0
[ 1983.649705][T23662]  proc_single_show+0xd3/0x130
[ 1983.654440][T23662]  seq_read+0x4aa/0xd30
[ 1983.658586][T23662]  do_iter_read+0x43b/0x550
[ 1983.663080][T23662]  do_preadv+0x1f4/0x330
[ 1983.667307][T23662]  ? do_writev+0x560/0x560
[ 1983.671701][T23662]  ? security_file_permission+0x128/0x300
[ 1983.677393][T23662]  ? __sb_end_write+0xa4/0xf0
[ 1983.682138][T23662]  ? vfs_write+0x427/0x4f0
[ 1983.686528][T23662]  ? do_user_addr_fault+0x55c/0x9f0
[ 1983.691696][T23662]  do_syscall_64+0xcb/0x150
[ 1983.696179][T23662]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1983.702043][T23662] RIP: 0033:0x45d5b9
[ 1983.706005][T23662] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1983.725769][T23662] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 1983.734187][T23662] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 1983.742129][T23662] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 1983.750069][T23662] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 1983.758131][T23662] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000001c
[ 1983.766073][T23662] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
09:20:32 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
sendmsg$NFT_MSG_GETRULE(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x81290008}, 0xc, &(0x7f00000002c0)={&(0x7f00000001c0)={0x14, 0x7, 0xa, 0x201, 0x0, 0x0, {0x5, 0x0, 0x5}}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x8011)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
r1 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$addseals(r1, 0x409, 0x80000000a)
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f0000000480)='stack\x00', 0x0, r1)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000340)='/sys/kernel/debug/binder/state\x00', 0x0, 0x0)
r6 = syz_io_uring_setup(0x36d6, &(0x7f0000000380)={0x0, 0x18a6, 0x0, 0x1, 0x34b, 0x0, r5}, &(0x7f0000002000/0x1000)=nil, &(0x7f0000000000/0x4000)=nil, &(0x7f0000000400), &(0x7f0000000440))
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYRESDEC=r6], 0x20}, 0x1, 0x0, 0x0, 0x24040800}, 0x0)

09:20:32 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x25000000, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:32 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0xc)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:33 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a000300ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:33 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
r4 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0)
r5 = syz_genetlink_get_family_id$batadv(&(0x7f00000002c0)='batadv\x00')
sendmsg$BATADV_CMD_TP_METER(r4, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x2c, r5, 0x2, 0x70bd25, 0x25dfdbff, {}, [@BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x1}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x7}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}]}, 0x2c}, 0x1, 0x0, 0x0, 0x24000804}, 0x4008000)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x20, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x20}}, 0x0)

09:20:33 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x40000000, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:33 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0xd)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

[ 1984.086164][T23669]  loop3: p1 p2 < > p3 p4 < p5 >
[ 1984.091597][T23669] loop3: partition table partially beyond EOD, truncated
[ 1984.118780][T23669] loop3: p1 start 917514 is beyond EOD, truncated
09:20:33 executing program 4 (fault-call:14 fault-nth:29):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

[ 1984.133090][T23669] loop3: p2 start 25 is beyond EOD, truncated
[ 1984.146777][T23669] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 1984.170295][T23669] loop3: p4 size 2 extends beyond EOD, truncated
[ 1984.178778][T23669] loop3: p5 start 917514 is beyond EOD, truncated
09:20:33 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x3}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
ioctl$UI_SET_ABSBIT(r2, 0x40045567, 0x3)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x20, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x20}}, 0x0)

09:20:33 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a001000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:33 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x7fffd200, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:33 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0xe)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:33 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a800300ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 1984.397025][T23725] FAULT_INJECTION: forcing a failure.
[ 1984.397025][T23725] name failslab, interval 1, probability 0, space 0, times 0
[ 1984.409888][T23725] CPU: 1 PID: 23725 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 1984.420121][T23725] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1984.430152][T23725] Call Trace:
[ 1984.433423][T23725]  dump_stack+0x1b0/0x21e
[ 1984.437739][T23725]  ? devkmsg_release+0x11c/0x11c
[ 1984.442680][T23725]  ? show_regs_print_info+0x12/0x12
[ 1984.448042][T23725]  ? cred_has_capability+0x18c/0x3f0
[ 1984.453434][T23725]  ? cred_has_capability+0x2b2/0x3f0
[ 1984.458696][T23725]  should_fail+0x6fb/0x860
[ 1984.463099][T23725]  ? setup_fault_attr+0x2b0/0x2b0
[ 1984.468225][T23725]  ? slab_free_freelist_hook+0xd0/0x150
[ 1984.473770][T23725]  ? cap_capable+0x23f/0x280
[ 1984.478345][T23725]  ? proc_pid_stack+0x1d5/0x1f0
[ 1984.483242][T23725]  ? proc_pid_stack+0x8e/0x1f0
[ 1984.487986][T23725]  should_failslab+0x5/0x20
[ 1984.492475][T23725]  kmem_cache_alloc_trace+0x39/0x270
[ 1984.498179][T23725]  proc_pid_stack+0x8e/0x1f0
[ 1984.502739][T23725]  proc_single_show+0xd3/0x130
[ 1984.507473][T23725]  seq_read+0x4aa/0xd30
[ 1984.511603][T23725]  do_iter_read+0x43b/0x550
[ 1984.516076][T23725]  do_preadv+0x1f4/0x330
[ 1984.520289][T23725]  ? do_writev+0x560/0x560
[ 1984.524675][T23725]  ? security_file_permission+0x128/0x300
[ 1984.530365][T23725]  ? __sb_end_write+0xa4/0xf0
[ 1984.535014][T23725]  ? vfs_write+0x427/0x4f0
[ 1984.539510][T23725]  ? do_syscall_64+0x80/0x150
[ 1984.544155][T23725]  do_syscall_64+0xcb/0x150
[ 1984.548643][T23725]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1984.554508][T23725] RIP: 0033:0x45d5b9
[ 1984.558373][T23725] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1984.577948][T23725] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 1984.586326][T23725] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 1984.594276][T23725] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 1984.602225][T23725] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 1984.610169][T23725] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000001d
[ 1984.618109][T23725] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
09:20:33 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x7ffff000, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:33 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00020000810000000000000000000000002cafbc91953dde5a195d658b11f2da2c756dc981ffffffffffffff2708207c2fde3e902df3e3f58fcf8165a676af849871390000000006efa0e9a804596c5a5744040b32b84b91b61206da7cfa203dddef74c7bbf6cc3401edb46f6ea358ee7883f61523541316ae4490b553e7475ca949876ffc40a12080d402000000090b8bd14cd9daf23b461a72f6f9f9ca"], 0x20}}, 0x0)

09:20:33 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x10)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:33 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x11)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

[ 1984.947180][T23719]  loop3: p1 p2 < > p3 p4 < p5 >
[ 1984.952963][T23719] loop3: partition table partially beyond EOD, truncated
09:20:33 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0xcf000000, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:33 executing program 1:
prlimit64(0x0, 0xb, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x20, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x20}}, 0x0)

09:20:33 executing program 4 (fault-call:14 fault-nth:30):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:33 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a020400ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 1984.998031][T23719] loop3: p1 start 1048586 is beyond EOD, truncated
[ 1985.019503][T23719] loop3: p2 start 25 is beyond EOD, truncated
[ 1985.029073][T23719] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 1985.049019][T23719] loop3: p4 size 2 extends beyond EOD, truncated
[ 1985.066200][T23719] loop3: p5 start 1048586 is beyond EOD, truncated
09:20:34 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a001100ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 1985.207549][T23781] FAULT_INJECTION: forcing a failure.
[ 1985.207549][T23781] name failslab, interval 1, probability 0, space 0, times 0
[ 1985.220264][T23781] CPU: 1 PID: 23781 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 1985.230401][T23781] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1985.240441][T23781] Call Trace:
[ 1985.243712][T23781]  dump_stack+0x1b0/0x21e
[ 1985.248014][T23781]  ? devkmsg_release+0x11c/0x11c
[ 1985.253009][T23781]  ? show_regs_print_info+0x12/0x12
[ 1985.258179][T23781]  ? cred_has_capability+0x18c/0x3f0
[ 1985.263432][T23781]  ? cred_has_capability+0x2b2/0x3f0
[ 1985.268690][T23781]  should_fail+0x6fb/0x860
[ 1985.273076][T23781]  ? setup_fault_attr+0x2b0/0x2b0
[ 1985.278070][T23781]  ? __sanitizer_cov_trace_pc+0x45/0x50
[ 1985.283593][T23781]  ? proc_pid_stack+0x8e/0x1f0
[ 1985.288337][T23781]  should_failslab+0x5/0x20
[ 1985.292807][T23781]  kmem_cache_alloc_trace+0x39/0x270
[ 1985.298070][T23781]  proc_pid_stack+0x8e/0x1f0
[ 1985.302644][T23781]  proc_single_show+0xd3/0x130
[ 1985.307391][T23781]  seq_read+0x4aa/0xd30
[ 1985.311524][T23781]  do_iter_read+0x43b/0x550
[ 1985.316170][T23781]  do_preadv+0x1f4/0x330
[ 1985.320381][T23781]  ? do_writev+0x560/0x560
[ 1985.324779][T23781]  ? __schedule+0x8ae/0xe30
[ 1985.329258][T23781]  do_syscall_64+0xcb/0x150
[ 1985.333744][T23781]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1985.339605][T23781] RIP: 0033:0x45d5b9
[ 1985.343483][T23781] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1985.363148][T23781] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 1985.371526][T23781] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 1985.379567][T23781] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 1985.387639][T23781] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 1985.397322][T23781] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000001e
09:20:34 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
setsockopt$XDP_RX_RING(r1, 0x11b, 0x2, &(0x7f0000000080)=0x1000002, 0x4)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="0a72658f", @ANYRES16=0x0, @ANYBLOB="000227bd7000ffdbdf250b0000000c0003800600040000000000"], 0x20}}, 0x0)

[ 1985.405264][T23781] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
09:20:34 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x12)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:34 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0xffffff7f, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:34 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a060400ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:34 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000080)='/dev/urandom\x00', 0x420000, 0x0)
fchdir(r3)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = getpid()
sched_setattr(r5, &(0x7f0000000280)={0x38, 0x2, 0x0, 0x0, 0x8}, 0x0)
tkill(r5, 0x2a)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' wA\x00', @ANYRES16=0x0, @ANYBLOB="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"], 0x20}}, 0x0)

09:20:34 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x1b)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:34 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

[ 1985.696112][T23787]  loop3: p1 p2 < > p3 p4 < p5 >
[ 1985.702330][T23787] loop3: partition table partially beyond EOD, truncated
[ 1985.727671][T23787] loop3: p1 start 1114122 is beyond EOD, truncated
[ 1985.738358][T23787] loop3: p2 start 25 is beyond EOD, truncated
[ 1985.754561][T23787] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 1985.763093][T23787] loop3: p4 size 2 extends beyond EOD, truncated
[ 1985.771181][T23787] loop3: p5 start 1114122 is beyond EOD, truncated
09:20:34 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a001200ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:34 executing program 4 (fault-call:14 fault-nth:31):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:34 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x25)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:34 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a800400ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:34 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x2)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:34 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00020000000c0003800700040000000000000000c5b7bc6c0000"], 0x20}}, 0x0)

[ 1986.057782][T23839] FAULT_INJECTION: forcing a failure.
[ 1986.057782][T23839] name failslab, interval 1, probability 0, space 0, times 0
[ 1986.070544][T23839] CPU: 0 PID: 23839 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 1986.080698][T23839] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1986.090744][T23839] Call Trace:
[ 1986.094031][T23839]  dump_stack+0x1b0/0x21e
[ 1986.098376][T23839]  ? devkmsg_release+0x11c/0x11c
[ 1986.103295][T23839]  ? show_regs_print_info+0x12/0x12
[ 1986.108498][T23839]  ? cred_has_capability+0x18c/0x3f0
[ 1986.113750][T23839]  ? cred_has_capability+0x2b2/0x3f0
[ 1986.119005][T23839]  should_fail+0x6fb/0x860
[ 1986.123418][T23839]  ? setup_fault_attr+0x2b0/0x2b0
[ 1986.128424][T23839]  ? slab_free_freelist_hook+0xd0/0x150
[ 1986.134032][T23839]  ? cap_capable+0x23f/0x280
[ 1986.138592][T23839]  ? proc_pid_stack+0x1d5/0x1f0
[ 1986.143411][T23839]  ? proc_pid_stack+0x8e/0x1f0
[ 1986.149099][T23839]  should_failslab+0x5/0x20
[ 1986.153607][T23839]  kmem_cache_alloc_trace+0x39/0x270
[ 1986.158877][T23839]  proc_pid_stack+0x8e/0x1f0
[ 1986.163448][T23839]  proc_single_show+0xd3/0x130
[ 1986.168543][T23839]  seq_read+0x4aa/0xd30
[ 1986.172683][T23839]  do_iter_read+0x43b/0x550
[ 1986.177241][T23839]  do_preadv+0x1f4/0x330
[ 1986.181464][T23839]  ? do_writev+0x560/0x560
[ 1986.185861][T23839]  ? security_file_permission+0x128/0x300
[ 1986.191559][T23839]  ? __sb_end_write+0xa4/0xf0
[ 1986.196208][T23839]  ? vfs_write+0x427/0x4f0
[ 1986.200686][T23839]  ? do_user_addr_fault+0x55c/0x9f0
[ 1986.206334][T23839]  do_syscall_64+0xcb/0x150
[ 1986.210908][T23839]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1986.216803][T23839] RIP: 0033:0x45d5b9
[ 1986.220677][T23839] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1986.240265][T23839] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 1986.248785][T23839] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 1986.256726][T23839] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 1986.264948][T23839] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 1986.273150][T23839] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000001f
[ 1986.285095][T23839] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
09:20:35 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
r3 = syz_open_dev$mouse(&(0x7f0000000080)='/dev/input/mouse#\x00', 0x10000, 0x0)
ioctl$TCFLSH(r3, 0x540b, 0x1)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="20000001", @ANYRES16=0x0, @ANYBLOB="000227bd7000ffdbdf250b0000000c0003800600040000000000"], 0x20}}, 0x0)

09:20:35 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0xcf)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

[ 1986.536895][T23824]  loop3: p1 p2 < > p3 p4 < p5 >
[ 1986.542809][T23824] loop3: partition table partially beyond EOD, truncated
[ 1986.575359][T23824] loop3: p1 start 1179658 is beyond EOD, truncated
09:20:35 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x3)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:35 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x106)
setsockopt$inet_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x4e22, @empty}}, 0x0, 0x0, 0x19, 0x0, "bd2fe5b1f28291525d0d839a09204f0208ea041dd41576c7b02883afb6f13b2ba4cf6ad9530c904f48e8125f7042aaf2bfd5e2be8cbc1924e4ac3703732bdfe6165d022c7481a14a348bde470597838a"}, 0xd8)
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff})
r3 = accept4(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f00000004c0), 0x80800)
write(r3, &(0x7f00000003c0)="1a2aeeeb900140bc5daf19a7c701ccc981ccc03f0200897777c8b0856f8aa204706c949397df0a11993689e22bec95dc7c55994e859dc0eff68d8476efde53e0faeb1cc2046181a84f12c518daa77120e83423278550c5f9d94410054900000000000000000000000000000000e4cccab2fcf877284372baf5d0e6084b1e058a3e157437672ee6910d6703bf4e76484fcd2041173473350d641bfd394facce349906cc1d9d", 0xa5)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x20, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x20}}, 0x0)

09:20:35 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x300)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:35 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a000500ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 1986.610713][T23824] loop3: p2 start 25 is beyond EOD, truncated
[ 1986.619340][T23824] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 1986.632177][T23824] loop3: p4 size 2 extends beyond EOD, truncated
[ 1986.642361][T23824] loop3: p5 start 1179658 is beyond EOD, truncated
09:20:35 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a001300ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:35 executing program 4 (fault-call:14 fault-nth:32):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:35 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
r1 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000180)='/dev/bsg\x00', 0x20800, 0x0)
ioctl$SNDRV_TIMER_IOCTL_STOP(r1, 0x54a1)
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080)='nl80211\x00')
socket$inet6(0xa, 0x2, 0x94f7)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000380)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000227bd7000ffdbdf250bf9cbd85770fb680400000c000380000000008531346d6685cdf9491a8e6c7ef79295fe5b0b8ceec87ff9b12710c40ca3a08953ca93284dce7d2eb9a683d5047b645d3f58160a8ddd25f781f249f528e3938ed7b6f74991dec35e3c483971259730ca8a7cdd2a9d650d83f68eeae9f5e689f866d05dc23e0000"], 0x20}}, 0x0)

09:20:35 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x4)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:35 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x500)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

[ 1986.913034][T23899] FAULT_INJECTION: forcing a failure.
[ 1986.913034][T23899] name failslab, interval 1, probability 0, space 0, times 0
[ 1986.925884][T23899] CPU: 1 PID: 23899 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 1986.937434][T23899] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1986.947833][T23899] Call Trace:
[ 1986.951234][T23899]  dump_stack+0x1b0/0x21e
[ 1986.955640][T23899]  ? devkmsg_release+0x11c/0x11c
[ 1986.960615][T23899]  ? show_regs_print_info+0x12/0x12
[ 1986.965782][T23899]  ? cred_has_capability+0x18c/0x3f0
[ 1986.971036][T23899]  ? cred_has_capability+0x2b2/0x3f0
[ 1986.976301][T23899]  should_fail+0x6fb/0x860
[ 1986.980698][T23899]  ? setup_fault_attr+0x2b0/0x2b0
[ 1986.985691][T23899]  ? slab_free_freelist_hook+0xd0/0x150
[ 1986.991207][T23899]  ? cap_capable+0x23f/0x280
[ 1986.995855][T23899]  ? proc_pid_stack+0x1d5/0x1f0
[ 1987.000689][T23899]  ? proc_pid_stack+0x8e/0x1f0
[ 1987.005423][T23899]  should_failslab+0x5/0x20
[ 1987.009982][T23899]  kmem_cache_alloc_trace+0x39/0x270
[ 1987.015238][T23899]  proc_pid_stack+0x8e/0x1f0
[ 1987.019886][T23899]  proc_single_show+0xd3/0x130
[ 1987.024622][T23899]  seq_read+0x4aa/0xd30
[ 1987.028749][T23899]  do_iter_read+0x43b/0x550
[ 1987.033240][T23899]  do_preadv+0x1f4/0x330
[ 1987.037464][T23899]  ? do_writev+0x560/0x560
[ 1987.041862][T23899]  ? security_file_permission+0x128/0x300
[ 1987.047565][T23899]  ? __sb_end_write+0xa4/0xf0
[ 1987.052227][T23899]  ? vfs_write+0x427/0x4f0
[ 1987.056739][T23899]  ? do_user_addr_fault+0x55c/0x9f0
[ 1987.061907][T23899]  do_syscall_64+0xcb/0x150
[ 1987.066383][T23899]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1987.072249][T23899] RIP: 0033:0x45d5b9
[ 1987.076116][T23899] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1987.095691][T23899] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 1987.104176][T23899] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 1987.112120][T23899] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 1987.121275][T23899] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 1987.129227][T23899] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000020
[ 1987.137169][T23899] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
09:20:36 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:36 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x5)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:36 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a2e0500ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 1987.456148][T23883]  loop3: p1 p2 < > p3 p4 < p5 >
[ 1987.461996][T23883] loop3: partition table partially beyond EOD, truncated
[ 1987.479688][T23883] loop3: p1 start 1245194 is beyond EOD, truncated
[ 1987.511969][T23883] loop3: p2 start 25 is beyond EOD, truncated
[ 1987.549740][T23883] loop3: p3 start 4293001441 is beyond EOD, truncated
09:20:36 executing program 4 (fault-call:14 fault-nth:33):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:36 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x700)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:36 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x6)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:36 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a001400ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 1987.606153][T23883] loop3: p4 size 2 extends beyond EOD, truncated
[ 1987.625862][T23883] loop3: p5 start 1245194 is beyond EOD, truncated
[ 1987.790549][T23944] FAULT_INJECTION: forcing a failure.
[ 1987.790549][T23944] name failslab, interval 1, probability 0, space 0, times 0
[ 1987.803240][T23944] CPU: 0 PID: 23944 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 1987.813386][T23944] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1987.823436][T23944] Call Trace:
[ 1987.826721][T23944]  dump_stack+0x1b0/0x21e
[ 1987.831129][T23944]  ? devkmsg_release+0x11c/0x11c
[ 1987.836058][T23944]  ? __schedule+0x8ae/0xe30
[ 1987.840626][T23944]  ? show_regs_print_info+0x12/0x12
[ 1987.846139][T23944]  ? cred_has_capability+0x18c/0x3f0
[ 1987.851693][T23944]  ? cred_has_capability+0x2b2/0x3f0
[ 1987.857138][T23944]  should_fail+0x6fb/0x860
[ 1987.861535][T23944]  ? setup_fault_attr+0x2b0/0x2b0
[ 1987.866536][T23944]  ? cap_capable+0x23f/0x280
[ 1987.871099][T23944]  ? preempt_schedule_notrace+0x110/0x110
[ 1987.876787][T23944]  ? proc_pid_stack+0x8e/0x1f0
[ 1987.881629][T23944]  should_failslab+0x5/0x20
[ 1987.886129][T23944]  kmem_cache_alloc_trace+0x39/0x270
[ 1987.891384][T23944]  proc_pid_stack+0x8e/0x1f0
[ 1987.895979][T23944]  proc_single_show+0xd3/0x130
[ 1987.901068][T23944]  seq_read+0x4aa/0xd30
[ 1987.905205][T23944]  do_iter_read+0x43b/0x550
[ 1987.910220][T23944]  do_preadv+0x1f4/0x330
[ 1987.914435][T23944]  ? do_writev+0x560/0x560
[ 1987.918832][T23944]  ? security_file_permission+0x128/0x300
[ 1987.925216][T23944]  ? __sb_end_write+0xa4/0xf0
[ 1987.929864][T23944]  ? vfs_write+0x427/0x4f0
[ 1987.934252][T23944]  ? do_user_addr_fault+0x55c/0x9f0
[ 1987.939450][T23944]  do_syscall_64+0xcb/0x150
[ 1987.944012][T23944]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1987.949877][T23944] RIP: 0033:0x45d5b9
[ 1987.954005][T23944] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1987.973951][T23944] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 1987.982427][T23944] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
09:20:36 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a000600ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 1987.990382][T23944] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 1987.998325][T23944] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 1988.006291][T23944] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000021
[ 1988.014426][T23944] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
09:20:37 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x7)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:37 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x900)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:37 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0xa00)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:37 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x8)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:37 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a040600ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:37 executing program 4 (fault-call:14 fault-nth:34):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

[ 1988.416636][T23951]  loop3: p1 p2 < > p3 p4 < p5 >
[ 1988.422630][T23951] loop3: partition table partially beyond EOD, truncated
[ 1988.437284][T23951] loop3: p1 start 1310730 is beyond EOD, truncated
[ 1988.465597][T23951] loop3: p2 start 25 is beyond EOD, truncated
[ 1988.487000][T23951] loop3: p3 start 4293001441 is beyond EOD, truncated
09:20:37 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0xb00)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

[ 1988.519028][T23951] loop3: p4 size 2 extends beyond EOD, truncated
[ 1988.551717][T23951] loop3: p5 start 1310730 is beyond EOD, truncated
[ 1988.651307][T23987] FAULT_INJECTION: forcing a failure.
[ 1988.651307][T23987] name failslab, interval 1, probability 0, space 0, times 0
[ 1988.664145][T23987] CPU: 1 PID: 23987 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 1988.674986][T23987] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1988.685124][T23987] Call Trace:
[ 1988.688410][T23987]  dump_stack+0x1b0/0x21e
[ 1988.692731][T23987]  ? devkmsg_release+0x11c/0x11c
09:20:37 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x9)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

[ 1988.697658][T23987]  ? show_regs_print_info+0x12/0x12
[ 1988.703198][T23987]  ? cred_has_capability+0x18c/0x3f0
[ 1988.708485][T23987]  ? cred_has_capability+0x2b2/0x3f0
[ 1988.713764][T23987]  should_fail+0x6fb/0x860
[ 1988.718174][T23987]  ? setup_fault_attr+0x2b0/0x2b0
[ 1988.723522][T23987]  ? slab_free_freelist_hook+0xd0/0x150
[ 1988.729155][T23987]  ? cap_capable+0x23f/0x280
[ 1988.734447][T23987]  ? proc_pid_stack+0x1d5/0x1f0
[ 1988.739383][T23987]  ? proc_pid_stack+0x8e/0x1f0
[ 1988.744179][T23987]  should_failslab+0x5/0x20
[ 1988.748686][T23987]  kmem_cache_alloc_trace+0x39/0x270
[ 1988.753998][T23987]  proc_pid_stack+0x8e/0x1f0
[ 1988.758588][T23987]  proc_single_show+0xd3/0x130
[ 1988.763351][T23987]  seq_read+0x4aa/0xd30
[ 1988.767966][T23987]  do_iter_read+0x43b/0x550
[ 1988.772578][T23987]  do_preadv+0x1f4/0x330
[ 1988.776813][T23987]  ? do_writev+0x560/0x560
[ 1988.781235][T23987]  ? security_file_permission+0x128/0x300
[ 1988.786954][T23987]  ? __sb_end_write+0xa4/0xf0
[ 1988.791731][T23987]  ? vfs_write+0x427/0x4f0
[ 1988.796157][T23987]  ? do_syscall_64+0x80/0x150
09:20:37 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a000700ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 1988.800847][T23987]  do_syscall_64+0xcb/0x150
[ 1988.805386][T23987]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1988.811276][T23987] RIP: 0033:0x45d5b9
[ 1988.815164][T23987] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1988.834971][T23987] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 1988.843388][T23987] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 1988.851615][T23987] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 1988.859584][T23987] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 1988.867640][T23987] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000022
[ 1988.875671][T23987] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
09:20:37 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a002400ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:38 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0xc00)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:38 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0xa)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:38 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0xd00)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:38 executing program 4 (fault-call:14 fault-nth:35):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:38 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0xb)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:38 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a000900ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 1989.332063][T24003]  loop3: p1 p2 < > p3 p4 < p5 >
[ 1989.337114][T24003] loop3: partition table partially beyond EOD, truncated
[ 1989.370523][T24003] loop3: p1 start 2359306 is beyond EOD, truncated
09:20:38 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0xe00)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

[ 1989.388893][T24003] loop3: p2 start 25 is beyond EOD, truncated
[ 1989.409952][T24003] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 1989.431591][T24003] loop3: p4 size 2 extends beyond EOD, truncated
[ 1989.454793][T24003] loop3: p5 start 2359306 is beyond EOD, truncated
[ 1989.519078][T24041] FAULT_INJECTION: forcing a failure.
[ 1989.519078][T24041] name failslab, interval 1, probability 0, space 0, times 0
[ 1989.532108][T24041] CPU: 0 PID: 24041 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 1989.542464][T24041] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1989.552585][T24041] Call Trace:
[ 1989.555883][T24041]  dump_stack+0x1b0/0x21e
[ 1989.560204][T24041]  ? devkmsg_release+0x11c/0x11c
[ 1989.565315][T24041]  ? show_regs_print_info+0x12/0x12
[ 1989.570487][T24041]  ? cred_has_capability+0x18c/0x3f0
[ 1989.575849][T24041]  ? cred_has_capability+0x2b2/0x3f0
[ 1989.581121][T24041]  should_fail+0x6fb/0x860
[ 1989.585511][T24041]  ? setup_fault_attr+0x2b0/0x2b0
[ 1989.590510][T24041]  ? slab_free_freelist_hook+0xd0/0x150
[ 1989.596043][T24041]  ? cap_capable+0x23f/0x280
[ 1989.600696][T24041]  ? proc_pid_stack+0x1d5/0x1f0
[ 1989.605547][T24041]  ? proc_pid_stack+0x8e/0x1f0
[ 1989.610280][T24041]  should_failslab+0x5/0x20
[ 1989.614769][T24041]  kmem_cache_alloc_trace+0x39/0x270
[ 1989.620024][T24041]  proc_pid_stack+0x8e/0x1f0
[ 1989.624584][T24041]  proc_single_show+0xd3/0x130
[ 1989.629320][T24041]  seq_read+0x4aa/0xd30
[ 1989.633451][T24041]  do_iter_read+0x43b/0x550
[ 1989.638393][T24041]  do_preadv+0x1f4/0x330
[ 1989.642616][T24041]  ? do_writev+0x560/0x560
[ 1989.647007][T24041]  ? security_file_permission+0x128/0x300
[ 1989.652696][T24041]  ? __sb_end_write+0xa4/0xf0
[ 1989.663703][T24041]  ? vfs_write+0x427/0x4f0
[ 1989.668095][T24041]  do_syscall_64+0xcb/0x150
[ 1989.672579][T24041]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1989.678447][T24041] RIP: 0033:0x45d5b9
[ 1989.682364][T24041] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1989.702035][T24041] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 1989.710431][T24041] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 1989.718572][T24041] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 1989.726604][T24041] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 1989.734650][T24041] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000023
[ 1989.742595][T24041] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
09:20:38 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a002500ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:38 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0xc)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:38 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x1100)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:39 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a000a00ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:39 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0xd)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:39 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f0000000080)={0x9, <r1=>0x0}, 0x8)
bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f00000000c0)=r1, 0x4)
bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000080)=r1, 0x4)
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x20, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x20}}, 0x0)

09:20:39 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x1200)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:39 executing program 4 (fault-call:14 fault-nth:36):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

[ 1990.293705][T24052]  loop3: p1 p2 < > p3 p4 < p5 >
[ 1990.326202][T24052] loop3: partition table partially beyond EOD, truncated
[ 1990.356193][T24088] FAULT_INJECTION: forcing a failure.
[ 1990.356193][T24088] name failslab, interval 1, probability 0, space 0, times 0
[ 1990.369285][T24088] CPU: 1 PID: 24088 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 1990.379524][T24088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1990.389759][T24088] Call Trace:
[ 1990.393549][T24088]  dump_stack+0x1b0/0x21e
[ 1990.397853][T24088]  ? devkmsg_release+0x11c/0x11c
[ 1990.404458][T24088]  ? show_regs_print_info+0x12/0x12
[ 1990.409629][T24088]  ? cred_has_capability+0x18c/0x3f0
[ 1990.415030][T24088]  ? cred_has_capability+0x2b2/0x3f0
[ 1990.420287][T24088]  should_fail+0x6fb/0x860
[ 1990.424681][T24088]  ? setup_fault_attr+0x2b0/0x2b0
[ 1990.429680][T24088]  ? slab_free_freelist_hook+0xd0/0x150
[ 1990.435285][T24088]  ? cap_capable+0x23f/0x280
[ 1990.439845][T24088]  ? proc_pid_stack+0x1d5/0x1f0
[ 1990.445016][T24088]  ? proc_pid_stack+0x8e/0x1f0
[ 1990.449752][T24088]  should_failslab+0x5/0x20
[ 1990.454232][T24088]  kmem_cache_alloc_trace+0x39/0x270
[ 1990.459575][T24088]  proc_pid_stack+0x8e/0x1f0
[ 1990.464154][T24088]  proc_single_show+0xd3/0x130
[ 1990.468890][T24088]  seq_read+0x4aa/0xd30
[ 1990.473025][T24088]  do_iter_read+0x43b/0x550
[ 1990.477512][T24088]  do_preadv+0x1f4/0x330
[ 1990.481741][T24088]  ? do_writev+0x560/0x560
[ 1990.486130][T24088]  ? security_file_permission+0x128/0x300
[ 1990.491982][T24088]  ? __sb_end_write+0xa4/0xf0
[ 1990.496638][T24088]  ? vfs_write+0x427/0x4f0
[ 1990.501030][T24088]  do_syscall_64+0xcb/0x150
[ 1990.505615][T24088]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1990.511479][T24088] RIP: 0033:0x45d5b9
[ 1990.517706][T24088] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1990.537803][T24088] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 1990.546201][T24088] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 1990.554152][T24088] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 1990.562210][T24088] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
09:20:39 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a000b00ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 1990.570171][T24088] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000024
[ 1990.578134][T24088] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
09:20:39 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x1b00)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:39 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0xe)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

[ 1990.630517][T24052] loop3: p1 start 2424842 is beyond EOD, truncated
09:20:39 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
pipe(&(0x7f0000000200)={<r0=>0xffffffffffffffff})
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000001dc0)='devlink\x00')
sendmsg$DEVLINK_CMD_PORT_UNSPLIT(0xffffffffffffffff, &(0x7f0000000640)={&(0x7f0000001d80)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000001ec0)={&(0x7f0000001f40)={0x88, r1, 0x0, 0x70bd25, 0xab2f, {}, [{{@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x1}}}, {{@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}}, {{@pci={{0x8, 0x1, 'pci\x00'}, {0x11, 0x2, '0000:00:10.0\x00'}}, {0x8, 0x3, 0x2}}}]}, 0x88}}, 0x0)
sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r0, &(0x7f0000000440)={&(0x7f00000001c0), 0xc, &(0x7f0000000400)={&(0x7f0000000240)={0x184, r1, 0x10, 0x70bd2a, 0x25dfdbff, {}, [{@pci={{0x8, 0x1, 'pci\x00'}, {0x11, 0x2, '0000:00:10.0\x00'}}, {0x8, 0x8e, 0x3}, {0xc, 0x8f, 0xea}, {0xc, 0x90, 0xffff}}, {@pci={{0x8, 0x1, 'pci\x00'}, {0x11, 0x2, '0000:00:10.0\x00'}}, {0x8}, {0xc, 0x8f, 0x1}, {0xc, 0x90, 0x2}}, {@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}, {0xc, 0x8f, 0x8}, {0xc}}, {@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x8e, 0x1}, {0xc, 0x8f, 0x8001}, {0xc, 0x90, 0x20}}, {@pci={{0x8, 0x1, 'pci\x00'}, {0x11, 0x2, '0000:00:10.0\x00'}}, {0x8}, {0xc, 0x8f, 0x4}, {0xc, 0x90, 0x7}}, {@pci={{0x8, 0x1, 'pci\x00'}, {0x11, 0x2, '0000:00:10.0\x00'}}, {0x8, 0x8e, 0x2}, {0xc, 0x8f, 0x40}, {0xc, 0x90, 0x8284}}]}, 0x184}, 0x1, 0x0, 0x0, 0x4000850}, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000001c0)={&(0x7f00000002c0)={0x94, r1, 0x10, 0x70bd27, 0x25dfdbfb, {}, [{{@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x2}}, {0x8, 0xb, 0x48}, {0x6, 0x11, 0xfff}, {0x8, 0x15, 0x9}}, {{@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8, 0xb, 0x8000}, {0x6, 0x11, 0xe000}, {0x8, 0x15, 0x2}}]}, 0x94}, 0x1, 0x0, 0x0, 0x40801}, 0x8094)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
write(r4, &(0x7f0000000340), 0x41395527)
vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r5 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r5, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x20, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x20}}, 0x0)

[ 1990.739430][T24052] loop3: p2 start 25 is beyond EOD, truncated
[ 1990.789946][T24052] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 1990.797538][T24052] loop3: p4 size 2 extends beyond EOD, truncated
[ 1990.806096][T24052] loop3: p5 start 2424842 is beyond EOD, truncated
09:20:39 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a004800ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:39 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x2500)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:39 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a000c00ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:39 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x20, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x20}}, 0x0)
r4 = openat$null(0xffffffffffffff9c, &(0x7f0000000080)='/dev/null\x00', 0x1, 0x0)
sendmsg$ETHTOOL_MSG_STRSET_GET(r4, &(0x7f0000000340)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x28, 0x0, 0x200, 0x70bd2a, 0x25dfdbff, {}, [@ETHTOOL_A_STRSET_COUNTS_ONLY={0x4}, @ETHTOOL_A_STRSET_COUNTS_ONLY={0x4}, @ETHTOOL_A_STRSET_COUNTS_ONLY={0x4}, @ETHTOOL_A_STRSET_COUNTS_ONLY={0x4}, @ETHTOOL_A_STRSET_COUNTS_ONLY={0x4}]}, 0x28}, 0x1, 0x0, 0x0, 0x11}, 0x40000)

09:20:39 executing program 4 (fault-call:14 fault-nth:37):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:39 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x10)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:40 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x4000)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

[ 1991.206934][T24143] FAULT_INJECTION: forcing a failure.
[ 1991.206934][T24143] name failslab, interval 1, probability 0, space 0, times 0
[ 1991.220163][T24143] CPU: 1 PID: 24143 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 1991.230386][T24143] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1991.240505][T24143] Call Trace:
[ 1991.243801][T24143]  dump_stack+0x1b0/0x21e
[ 1991.248126][T24143]  ? devkmsg_release+0x11c/0x11c
[ 1991.253038][T24143]  ? __schedule+0x8ae/0xe30
[ 1991.257601][T24143]  ? show_regs_print_info+0x12/0x12
[ 1991.262770][T24143]  ? cred_has_capability+0x18c/0x3f0
[ 1991.268281][T24143]  ? cred_has_capability+0x2b2/0x3f0
[ 1991.273743][T24143]  should_fail+0x6fb/0x860
[ 1991.278224][T24143]  ? setup_fault_attr+0x2b0/0x2b0
[ 1991.283221][T24143]  ? cap_capable+0x23f/0x280
[ 1991.287783][T24143]  ? preempt_schedule_notrace+0x110/0x110
[ 1991.293579][T24143]  ? proc_pid_stack+0x8e/0x1f0
[ 1991.298356][T24143]  should_failslab+0x5/0x20
[ 1991.302832][T24143]  kmem_cache_alloc_trace+0x39/0x270
[ 1991.308087][T24143]  proc_pid_stack+0x8e/0x1f0
[ 1991.312658][T24143]  proc_single_show+0xd3/0x130
[ 1991.317593][T24143]  seq_read+0x4aa/0xd30
[ 1991.321825][T24143]  do_iter_read+0x43b/0x550
[ 1991.326300][T24143]  do_preadv+0x1f4/0x330
[ 1991.330528][T24143]  ? do_writev+0x560/0x560
[ 1991.335014][T24143]  ? __schedule+0x8ae/0xe30
[ 1991.339491][T24143]  do_syscall_64+0xcb/0x150
[ 1991.343969][T24143]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1991.349832][T24143] RIP: 0033:0x45d5b9
[ 1991.354826][T24143] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1991.374696][T24143] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 1991.383199][T24143] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 1991.391143][T24143] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 1991.399176][T24143] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
09:20:40 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = getpid()
sched_setattr(r3, &(0x7f0000000280)={0x38, 0x2, 0x0, 0x0, 0x8}, 0x0)
getpgid(r3)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x20, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x20}}, 0x0)

[ 1991.407293][T24143] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000025
[ 1991.415236][T24143] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
09:20:40 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x11)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:40 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0xcf00)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

[ 1991.607405][T24122]  loop3: p1 p2 < > p3 p4 < p5 >
[ 1991.624690][T24122] loop3: partition table partially beyond EOD, truncated
09:20:40 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a000d00ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:40 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x6, 0x39, 0x0, 0x6, 0x0, 0x0, 0x741, 0x737, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x20, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x20}}, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)={0x4, 0x4, 0x400000000004, 0x9}, 0x40)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000040)={r4, 0x28, &(0x7f0000000000)={0x0, <r5=>0x0}}, 0x10)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000080)={r5}, 0xc)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000080)={r5, 0xbd, 0x8}, 0xc)

[ 1991.659265][T24122] loop3: p1 start 4718602 is beyond EOD, truncated
[ 1991.681055][T24122] loop3: p2 start 25 is beyond EOD, truncated
[ 1991.716691][T24122] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 1991.764482][T24122] loop3: p4 size 2 extends beyond EOD, truncated
[ 1991.803259][T24122] loop3: p5 start 4718602 is beyond EOD, truncated
09:20:40 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a004c00ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:40 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x12)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:40 executing program 4 (fault-call:14 fault-nth:38):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:40 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x100000)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:40 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a000e00ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 1992.056513][T24193] FAULT_INJECTION: forcing a failure.
[ 1992.056513][T24193] name failslab, interval 1, probability 0, space 0, times 0
[ 1992.069483][T24193] CPU: 1 PID: 24193 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 1992.079620][T24193] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1992.090002][T24193] Call Trace:
[ 1992.094747][T24193]  dump_stack+0x1b0/0x21e
[ 1992.099053][T24193]  ? devkmsg_release+0x11c/0x11c
[ 1992.104239][T24193]  ? show_regs_print_info+0x12/0x12
[ 1992.110217][T24193]  ? cred_has_capability+0x18c/0x3f0
[ 1992.116601][T24193]  ? cred_has_capability+0x2b2/0x3f0
[ 1992.121857][T24193]  should_fail+0x6fb/0x860
[ 1992.126243][T24193]  ? setup_fault_attr+0x2b0/0x2b0
[ 1992.131236][T24193]  ? slab_free_freelist_hook+0xd0/0x150
[ 1992.136760][T24193]  ? cap_capable+0x23f/0x280
[ 1992.141405][T24193]  ? proc_pid_stack+0x1d5/0x1f0
[ 1992.146832][T24193]  ? proc_pid_stack+0x8e/0x1f0
[ 1992.151650][T24193]  should_failslab+0x5/0x20
[ 1992.156126][T24193]  kmem_cache_alloc_trace+0x39/0x270
[ 1992.161382][T24193]  proc_pid_stack+0x8e/0x1f0
[ 1992.166290][T24193]  proc_single_show+0xd3/0x130
[ 1992.171025][T24193]  seq_read+0x4aa/0xd30
[ 1992.175152][T24193]  do_iter_read+0x43b/0x550
[ 1992.179624][T24193]  do_preadv+0x1f4/0x330
[ 1992.183850][T24193]  ? do_writev+0x560/0x560
[ 1992.188258][T24193]  ? call_function_single_interrupt+0xa/0x20
[ 1992.194229][T24193]  ? ksys_write+0x1f4/0x2a0
[ 1992.198774][T24193]  do_syscall_64+0xcb/0x150
[ 1992.203260][T24193]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1992.209126][T24193] RIP: 0033:0x45d5b9
[ 1992.213020][T24193] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1992.232598][T24193] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 1992.241052][T24193] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 1992.249003][T24193] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 1992.258093][T24193] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 1992.266049][T24193] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000026
[ 1992.274372][T24193] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
09:20:41 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9, 0x40, 0x0, 0x0, 0x7}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500)}], 0x1, 0xc)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r4 = signalfd(r1, &(0x7f0000000180)={[0x100000000]}, 0x8)
sendmsg$IPSET_CMD_GET_BYNAME(r4, &(0x7f0000000400)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="3c0000000006010300000000000000000200000a0900020002007a310000000005000100070000007a30080000003343a3aa44b29a86920ab39d170c8cbd2291"], 0x3c}, 0x1, 0x0, 0x0, 0x80}, 0x40)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
ioctl$TCFLSH(r5, 0x540b, 0x2)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="53dc81566d023992f872487672db20e58055b5941e33d0c450d21fd5f09f7ca937b4babf60b34e5265e6c87b24dc05683729333f859b17a1af0d86d29cff0b9c009225610a25bce3f4d5af25da79e8344f174698abb7567eb4042c29319cd28b7b32f3efbd3705d31e9c329c27cc6dc389b28f003ed57995e09d58997dbe97ab8c44f769e7ad74", @ANYRES16=0x0, @ANYBLOB="000227bd7000ffdbdf250b0000000c0003800600040000000000"], 0x20}}, 0x0)

09:20:41 executing program 4 (fault-call:14 fault-nth:39):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:41 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0xf0ff7f)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:41 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x1e)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:41 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
r1 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$addseals(r1, 0x409, 0x80000000a)
ioctl$BTRFS_IOC_LOGICAL_INO_V2(r1, 0xc038943b, &(0x7f00000001c0)={0x5, 0x8, [], 0x0, &(0x7f0000000080)=[0x0]})
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x20, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x20}}, 0x0)

[ 1992.775381][T24186]  loop3: p1 p2 < > p3 p4 < p5 >
[ 1992.780559][T24186] loop3: partition table partially beyond EOD, truncated
[ 1992.810949][T24186] loop3: p1 start 4980746 is beyond EOD, truncated
[ 1992.824259][T24186] loop3: p2 start 25 is beyond EOD, truncated
[ 1992.832255][T24186] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 1992.840407][T24186] loop3: p4 size 2 extends beyond EOD, truncated
[ 1992.850175][T24186] loop3: p5 start 4980746 is beyond EOD, truncated
09:20:41 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a006000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:41 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a001100ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 1992.980750][T24235] FAULT_INJECTION: forcing a failure.
[ 1992.980750][T24235] name failslab, interval 1, probability 0, space 0, times 0
[ 1992.993453][T24235] CPU: 0 PID: 24235 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 1993.003611][T24235] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1993.013928][T24235] Call Trace:
[ 1993.017245][T24235]  dump_stack+0x1b0/0x21e
[ 1993.021564][T24235]  ? devkmsg_release+0x11c/0x11c
[ 1993.026598][T24235]  ? show_regs_print_info+0x12/0x12
[ 1993.031783][T24235]  ? should_fail+0x85/0x860
[ 1993.036261][T24235]  ? should_fail+0x6f/0x860
[ 1993.041173][T24235]  should_fail+0x6fb/0x860
[ 1993.045561][T24235]  ? setup_fault_attr+0x2b0/0x2b0
[ 1993.050557][T24235]  ? slab_free_freelist_hook+0xd0/0x150
[ 1993.056075][T24235]  ? cap_capable+0x23f/0x280
[ 1993.060647][T24235]  ? proc_pid_stack+0x1d5/0x1f0
[ 1993.065478][T24235]  ? proc_pid_stack+0x8e/0x1f0
[ 1993.070211][T24235]  should_failslab+0x5/0x20
[ 1993.074784][T24235]  kmem_cache_alloc_trace+0x39/0x270
[ 1993.080037][T24235]  proc_pid_stack+0x8e/0x1f0
[ 1993.084601][T24235]  proc_single_show+0xd3/0x130
[ 1993.089340][T24235]  seq_read+0x4aa/0xd30
[ 1993.093469][T24235]  do_iter_read+0x43b/0x550
[ 1993.097948][T24235]  do_preadv+0x1f4/0x330
[ 1993.102172][T24235]  ? do_writev+0x560/0x560
[ 1993.106575][T24235]  ? security_file_permission+0x128/0x300
[ 1993.112262][T24235]  ? __sb_end_write+0xa4/0xf0
[ 1993.116915][T24235]  ? vfs_write+0x427/0x4f0
[ 1993.121307][T24235]  do_syscall_64+0xcb/0x150
[ 1993.125992][T24235]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1993.131958][T24235] RIP: 0033:0x45d5b9
[ 1993.135829][T24235] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1993.160334][T24235] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 1993.168726][T24235] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 1993.176680][T24235] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 1993.184630][T24235] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 1993.192689][T24235] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000027
[ 1993.200641][T24235] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
09:20:42 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x25)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:42 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
pipe(&(0x7f0000000080))
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f00000002c0)={0x4c, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xf0}, @IPVS_CMD_ATTR_DEST={0x30, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@multicast2}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x1}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x2}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0xfffffff9}]}]}, 0x4c}}, 0x0)

09:20:42 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x1000000)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:42 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x40000, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f0000000400)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
openat$pidfd(0xffffffffffffff9c, &(0x7f0000000180)='/proc/self\x00', 0x20e080, 0x0)
r4 = accept$inet6(r3, &(0x7f0000000080)={0xa, 0x0, 0x0, @initdev}, &(0x7f00000000c0)=0x1c)
ioctl$HIDIOCGRDESC(0xffffffffffffffff, 0x90044802, &(0x7f0000000440)={0x971, "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"})
r5 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000300)='rdma.max\x00', 0x2, 0x0)
ioctl$EXT4_IOC_MIGRATE(r5, 0x6609)
ioctl$int_in(r4, 0x5452, &(0x7f00000002c0)=0x9)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000e80)=ANY=[@ANYBLOB="20005400fcfec10236a7f1b73cbb49f6bce9d41ad0a7655b86c6f7cd5db29e4efd49180391513e1a90b5956932466e", @ANYRESOCT, @ANYBLOB="000227bd7000ffdbdf250b00006f3517de41d6b631c421d7e800b91e8ae4ed1054e68e49cc7c291a39a7e33abdc2ad5b6910071eed62f9c4e377681e2576635f971a529a6f301367d6f6bb97dcbf1be3fd61654718340cf33f877fcfdb4aac6b6f6636bb0d888144722dc60746951f91e5547248b64f213db4fd06a852ebc7a208e75f401896d35dca650dc34ac0d516"], 0x20}, 0x1, 0x0, 0x0, 0x60004844}, 0x24008000)

09:20:42 executing program 4 (fault-call:14 fault-nth:40):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

[ 1993.555274][T24244]  loop3: p1 p2 < > p3 p4 < p5 >
[ 1993.560884][T24244] loop3: partition table partially beyond EOD, truncated
[ 1993.591551][T24244] loop3: p1 start 6291466 is beyond EOD, truncated
09:20:42 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0xcf)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:42 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x2000000)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:42 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a001200ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 1993.624418][T24244] loop3: p2 start 25 is beyond EOD, truncated
[ 1993.642280][T24244] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 1993.656050][T24244] loop3: p4 size 2 extends beyond EOD, truncated
[ 1993.663092][T24244] loop3: p5 start 6291466 is beyond EOD, truncated
[ 1993.787735][T24280] FAULT_INJECTION: forcing a failure.
[ 1993.787735][T24280] name failslab, interval 1, probability 0, space 0, times 0
[ 1993.801256][T24280] CPU: 1 PID: 24280 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 1993.811411][T24280] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1993.824323][T24280] Call Trace:
[ 1993.827616][T24280]  dump_stack+0x1b0/0x21e
[ 1993.831965][T24280]  ? devkmsg_release+0x11c/0x11c
[ 1993.837146][T24280]  ? __schedule+0x8ae/0xe30
[ 1993.841652][T24280]  ? show_regs_print_info+0x12/0x12
[ 1993.846847][T24280]  ? cred_has_capability+0x18c/0x3f0
[ 1993.852132][T24280]  ? cred_has_capability+0x2b2/0x3f0
[ 1993.857415][T24280]  should_fail+0x6fb/0x860
[ 1993.861833][T24280]  ? setup_fault_attr+0x2b0/0x2b0
[ 1993.867047][T24280]  ? cap_capable+0x23f/0x280
[ 1993.871630][T24280]  ? preempt_schedule_notrace+0x110/0x110
[ 1993.877348][T24280]  ? proc_pid_stack+0x8e/0x1f0
[ 1993.882494][T24280]  should_failslab+0x5/0x20
09:20:42 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a006800ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 1993.887006][T24280]  kmem_cache_alloc_trace+0x39/0x270
[ 1993.892497][T24280]  proc_pid_stack+0x8e/0x1f0
[ 1993.897303][T24280]  proc_single_show+0xd3/0x130
[ 1993.902058][T24280]  seq_read+0x4aa/0xd30
[ 1993.906209][T24280]  do_iter_read+0x43b/0x550
[ 1993.910710][T24280]  do_preadv+0x1f4/0x330
[ 1993.914939][T24280]  ? do_writev+0x560/0x560
[ 1993.919345][T24280]  ? security_file_permission+0x128/0x300
[ 1993.925186][T24280]  ? __sb_end_write+0xa4/0xf0
[ 1993.929853][T24280]  ? vfs_write+0x427/0x4f0
[ 1993.934269][T24280]  do_syscall_64+0xcb/0x150
[ 1993.938771][T24280]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1993.944653][T24280] RIP: 0033:0x45d5b9
[ 1993.948710][T24280] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1993.968833][T24280] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 1993.977323][T24280] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 1993.985497][T24280] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 1993.993745][T24280] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 1994.001711][T24280] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000028
[ 1994.009684][T24280] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
09:20:43 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a001c00ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:43 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x300)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:43 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x3000000)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:43 executing program 4 (fault-call:14 fault-nth:41):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

[ 1994.485237][T24295]  loop3: p1 p2 < > p3 p4 < p5 >
[ 1994.491396][T24295] loop3: partition table partially beyond EOD, truncated
[ 1994.515952][T24295] loop3: p1 start 6815754 is beyond EOD, truncated
[ 1994.524216][T24295] loop3: p2 start 25 is beyond EOD, truncated
[ 1994.531402][T24295] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 1994.540175][T24295] loop3: p4 size 2 extends beyond EOD, truncated
[ 1994.551858][T24295] loop3: p5 start 6815754 is beyond EOD, truncated
09:20:43 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x4000000)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:43 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff})
write(0xffffffffffffffff, &(0x7f00000002c0)="23e35fdf2b3c03e405228f1d461b9a43f34c26ae43f799e9361df8676a538916504773fb1ad2412a72522db4eb841f83cbec29b061964ec0f326e77e17149340837dd4372667a60f3d0800000000000000f78be41a0f65180fc110f4c69ce93c988bd7744c5fa7f414c1f8047d8b980b24e43a338dbcaf1dea4fa3abe065e9", 0x7f)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r2, &(0x7f00000017c0), 0x375, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x3d, 0x0)
write$binfmt_aout(r4, &(0x7f0000000100)=ANY=[@ANYRES16=r3], 0xffffff78)
ioctl$TCSETS(r4, 0x40045431, &(0x7f00000001c0))
r5 = syz_open_pts(r4, 0x0)
r6 = dup3(r5, r4, 0x0)
read(r6, &(0x7f0000000080)=""/35, 0x23)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)

09:20:43 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x500)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:43 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a006c00ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 1994.747531][T24319] FAULT_INJECTION: forcing a failure.
[ 1994.747531][T24319] name failslab, interval 1, probability 0, space 0, times 0
[ 1994.760339][T24319] CPU: 0 PID: 24319 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 1994.770858][T24319] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1994.780905][T24319] Call Trace:
[ 1994.784174][T24319]  dump_stack+0x1b0/0x21e
[ 1994.788630][T24319]  ? devkmsg_release+0x11c/0x11c
[ 1994.793625][T24319]  ? show_regs_print_info+0x12/0x12
[ 1994.798793][T24319]  ? cred_has_capability+0x18c/0x3f0
[ 1994.804063][T24319]  ? cred_has_capability+0x2b2/0x3f0
[ 1994.809520][T24319]  should_fail+0x6fb/0x860
[ 1994.813930][T24319]  ? setup_fault_attr+0x2b0/0x2b0
[ 1994.818942][T24319]  ? slab_free_freelist_hook+0xd0/0x150
[ 1994.824479][T24319]  ? cap_capable+0x23f/0x280
[ 1994.829115][T24319]  ? proc_pid_stack+0x1d5/0x1f0
[ 1994.833943][T24319]  ? proc_pid_stack+0x8e/0x1f0
[ 1994.838686][T24319]  should_failslab+0x5/0x20
[ 1994.843163][T24319]  kmem_cache_alloc_trace+0x39/0x270
[ 1994.848435][T24319]  proc_pid_stack+0x8e/0x1f0
[ 1994.852996][T24319]  proc_single_show+0xd3/0x130
[ 1994.857746][T24319]  seq_read+0x4aa/0xd30
[ 1994.861878][T24319]  do_iter_read+0x43b/0x550
[ 1994.866355][T24319]  do_preadv+0x1f4/0x330
[ 1994.870569][T24319]  ? do_writev+0x560/0x560
[ 1994.875072][T24319]  ? security_file_permission+0x128/0x300
[ 1994.880785][T24319]  ? __sb_end_write+0xa4/0xf0
[ 1994.885458][T24319]  ? vfs_write+0x427/0x4f0
[ 1994.889854][T24319]  do_syscall_64+0xcb/0x150
[ 1994.894332][T24319]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1994.900382][T24319] RIP: 0033:0x45d5b9
[ 1994.904254][T24319] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1994.923830][T24319] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 1994.932325][T24319] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 1994.940278][T24319] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 1994.948277][T24319] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 1994.956224][T24319] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000029
[ 1994.964256][T24319] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
[ 1995.127597][  T346] syz-executor.0 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=3, oom_score_adj=0
[ 1995.218248][  T346] CPU: 1 PID: 346 Comm: syz-executor.0 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 1995.228249][  T346] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1995.238493][  T346] Call Trace:
[ 1995.241779][  T346]  dump_stack+0x1b0/0x21e
[ 1995.246195][  T346]  ? devkmsg_release+0x11c/0x11c
[ 1995.251121][  T346]  ? ___ratelimit+0x3bf/0x560
[ 1995.255788][  T346]  ? show_regs_print_info+0x12/0x12
[ 1995.260978][  T346]  ? _raw_spin_lock+0xa1/0x170
[ 1995.265727][  T346]  ? radix_tree_cpu_dead+0x160/0x160
[ 1995.270992][  T346]  dump_header+0xdb/0x700
[ 1995.275440][  T346]  oom_kill_process+0xd3/0x280
[ 1995.280176][  T346]  out_of_memory+0x5b6/0x890
[ 1995.284753][  T346]  ? unregister_oom_notifier+0x20/0x20
[ 1995.291397][  T346]  __alloc_pages_slowpath+0x17bc/0x1cb0
[ 1995.296915][  T346]  ? get_page_from_freelist+0x7c0/0x7c0
[ 1995.302442][  T346]  ? __zone_watermark_ok+0x91/0x280
[ 1995.307705][  T346]  __alloc_pages_nodemask+0x5cb/0x7c0
[ 1995.313069][  T346]  ? gfp_pfmemalloc_allowed+0x130/0x130
[ 1995.318899][  T346]  ? copy_process+0x5c9/0x52c0
[ 1995.323681][  T346]  ? copy_process+0x5c9/0x52c0
[ 1995.329236][  T346]  ? kmem_cache_alloc+0x1d5/0x250
[ 1995.334250][  T346]  copy_process+0x612/0x52c0
[ 1995.338814][  T346]  ? reuse_swap_page+0x416/0x6f0
[ 1995.344177][  T346]  ? ptep_set_access_flags+0x69/0xa0
[ 1995.349431][  T346]  ? do_wp_page+0xae1/0x14b0
[ 1995.353994][  T346]  ? _raw_spin_lock+0xa1/0x170
[ 1995.359181][  T346]  ? do_swap_page+0x1510/0x1510
[ 1995.364004][  T346]  ? iov_iter_init+0x83/0x160
[ 1995.369280][  T346]  ? fork_idle+0x290/0x290
[ 1995.373688][  T346]  ? handle_mm_fault+0x916/0x4140
[ 1995.378708][  T346]  _do_fork+0x180/0x8f0
[ 1995.382857][  T346]  ? finish_fault+0x230/0x230
[ 1995.387512][  T346]  ? __fsnotify_parent+0x300/0x300
[ 1995.392643][  T346]  ? dup_mm+0x300/0x300
[ 1995.396771][  T346]  ? _copy_to_user+0x8e/0xb0
[ 1995.401332][  T346]  ? put_timespec64+0x106/0x150
[ 1995.406154][  T346]  ? ktime_get_raw+0x130/0x130
[ 1995.410889][  T346]  __x64_sys_clone+0x246/0x2b0
[ 1995.415643][  T346]  ? __ia32_sys_vfork+0x110/0x110
[ 1995.420639][  T346]  ? do_user_addr_fault+0x55c/0x9f0
[ 1995.425813][  T346]  do_syscall_64+0xcb/0x150
[ 1995.430321][  T346]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1995.436189][  T346] RIP: 0033:0x45bb8a
[ 1995.440061][  T346] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[ 1995.459725][  T346] RSP: 002b:00007ffd41307b60 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 1995.468132][  T346] RAX: ffffffffffffffda RBX: 00007ffd41307b60 RCX: 000000000045bb8a
[ 1995.476178][  T346] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[ 1995.484134][  T346] RBP: 00007ffd41307ba0 R08: 0000000000000001 R09: 0000000001a99940
[ 1995.492095][  T346] R10: 0000000001a99c10 R11: 0000000000000246 R12: 0000000000000001
[ 1995.500569][  T346] R13: 0000000000000000 R14: 0000000000000000 R15: 00007ffd41307bf0
[ 1995.714372][  T346] Mem-Info:
[ 1995.717940][  T346] active_anon:1381793 inactive_anon:38511 isolated_anon:0
[ 1995.717940][  T346]  active_file:390 inactive_file:445 isolated_file:49
[ 1995.717940][  T346]  unevictable:4 dirty:28 writeback:26 unstable:0
[ 1995.717940][  T346]  slab_reclaimable:9494 slab_unreclaimable:79198
[ 1995.717940][  T346]  mapped:56302 shmem:6894 pagetables:35016 bounce:0
[ 1995.717940][  T346]  free:14354 free_pcp:261 free_cma:0
[ 1995.797241][  T346] Node 0 active_anon:5526972kB inactive_anon:154044kB active_file:1312kB inactive_file:1800kB unevictable:16kB isolated(anon):0kB isolated(file):116kB mapped:225352kB dirty:204kB writeback:16kB shmem:27576kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 1995.828409][  T346] DMA free:15904kB min:24kB low:36kB high:48kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15904kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1995.855434][  T346] lowmem_reserve[]: 0 2912 6416 6416
[ 1995.862275][  T346] DMA32 free:20740kB min:8740kB low:11720kB high:14700kB active_anon:2925440kB inactive_anon:0kB active_file:4kB inactive_file:0kB unevictable:0kB writepending:4kB present:3129332kB managed:2983760kB mlocked:0kB kernel_stack:3200kB pagetables:1900kB bounce:0kB free_pcp:4kB local_pcp:0kB free_cma:0kB
[ 1995.892604][  T346] lowmem_reserve[]: 0 0 3504 3504
[ 1995.899653][  T346] Normal free:19048kB min:5592kB low:9180kB high:12768kB active_anon:2601344kB inactive_anon:154044kB active_file:1340kB inactive_file:4100kB unevictable:16kB writepending:224kB present:4718592kB managed:3588928kB mlocked:16kB kernel_stack:38080kB pagetables:138168kB bounce:0kB free_pcp:484kB local_pcp:24kB free_cma:0kB
[ 1995.931356][  T346] lowmem_reserve[]: 0 0 0 0
[ 1995.936462][  T346] DMA: 0*4kB 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (U) 3*4096kB (M) = 15904kB
09:20:44 executing program 4 (fault-call:14 fault-nth:42):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

[ 1995.968408][  T346] DMA32: 167*4kB (UMH) 7*8kB (UM) 21*16kB (UMH) 167*32kB (UMH) 82*64kB (UMH) 29*128kB (UMH) 7*256kB (UM) 1*512kB (M) 1*1024kB (M) 1*2048kB (M) 0*4096kB = 20740kB
[ 1996.059116][  T346] Normal: 148*4kB (EH) 348*8kB (EH) 154*16kB (EH) 95*32kB (UEH) 28*64kB (MEH) 4*128kB (MH) 0*256kB 1*512kB (M) 0*1024kB 0*2048kB 0*4096kB = 11696kB
[ 1996.137668][  T346] 9287 total pagecache pages
[ 1996.164976][  T346] 0 pages in swap cache
[ 1996.188273][  T346] Swap cache stats: add 0, delete 0, find 0/0
[ 1996.210716][  T346] Free swap  = 0kB
[ 1996.231371][  T346] Total swap = 0kB
[ 1996.243906][  T346] 1965979 pages RAM
[ 1996.257495][  T346] 0 pages HighMem/MovableOnly
[ 1996.280646][  T346] 318831 pages reserved
[ 1996.297545][  T346] 0 pages cma reserved
[ 1996.325087][  T346] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/,task=syz-executor.5,pid=5741,uid=0
[ 1996.350208][  T346] Out of memory: Killed process 5741 (syz-executor.5) total-vm:85340kB, anon-rss:28576kB, file-rss:34636kB, shmem-rss:0kB, UID:0 pgtables:168kB oom_score_adj:1000
09:20:45 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
r3 = creat(&(0x7f0000000080)='./file0\x00', 0x81)
sendmsg$AUDIT_ADD_RULE(r3, &(0x7f0000000780)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000740)={&(0x7f00000002c0)={0x450, 0x3f3, 0x4, 0x70bd2b, 0x25dfdbfc, {0x10, 0x1, 0x29, [0x8d7, 0xa3bd, 0x101, 0x9, 0x1, 0x58, 0x9, 0x2, 0xd4, 0x0, 0x1, 0x400, 0x100, 0x5, 0x86, 0xa4f5, 0x3, 0x80000000, 0x61, 0x3, 0x2, 0xb7, 0x101, 0x8f05, 0x9, 0x80000001, 0xce1b, 0x0, 0x6, 0x5, 0xe0, 0xbb, 0x0, 0x6, 0x21, 0x6, 0x2, 0x80, 0x1, 0xfc64, 0x7, 0xfffffffd, 0xb614, 0x5, 0x4, 0x5cf, 0x6, 0x3, 0x600, 0x10000, 0x8f3, 0x6, 0x0, 0x0, 0x8, 0x34b, 0x7, 0x2c75, 0x8000, 0x8000, 0x4, 0x4, 0x6, 0x9d9], [0x4af84b79, 0xffffffff, 0x0, 0x5, 0x5, 0x3, 0x8, 0x1, 0x0, 0x1, 0x20, 0x20, 0x101, 0x8, 0x32ef, 0x7, 0x7, 0x2d6, 0x100, 0x8000, 0x4, 0x9, 0x6, 0x5, 0xffff6adc, 0x7, 0x7fff, 0x400, 0x3f6c8528, 0xffff, 0x3, 0x9, 0x0, 0x9, 0x80, 0x2, 0xc98, 0x91, 0x2, 0x3, 0x40, 0x3, 0x7fffffff, 0x7, 0x3, 0x6, 0x1000, 0x1, 0x2, 0x2, 0x601651b2, 0xfffffffa, 0x3, 0x5, 0x7, 0x0, 0xffffff00, 0xff, 0x7, 0x20, 0x6, 0x7, 0x6, 0x8], [0x2, 0x1, 0x401, 0x9, 0x80, 0x5, 0x7, 0x4, 0xe25, 0x1, 0x81, 0x7d0, 0xfffff21a, 0xffffff00, 0x9, 0x6, 0xffff, 0x6, 0x7, 0x1, 0x40, 0x1, 0x1, 0x2, 0x3ff, 0x7, 0xea, 0x200, 0x1f, 0xff, 0x8d4, 0x9, 0x1, 0xe95, 0x27c7, 0x8, 0x101, 0x3, 0x7, 0x80, 0x3f, 0x4, 0x1f, 0x2, 0x1, 0x200, 0x282a, 0x20, 0x7fffffff, 0xf6b, 0xffff, 0x3, 0x10d, 0x9, 0x568, 0xb6, 0xa96, 0x10000, 0x9, 0x9, 0xffffffff, 0x80, 0x1, 0x4], [0x2, 0xff, 0x7, 0x7f, 0x0, 0xc81a, 0x400, 0x20, 0x9, 0x832, 0x1, 0x5, 0x3, 0x0, 0x6, 0x7, 0x3f, 0x2b, 0x7ff, 0x1, 0xe2a, 0x8, 0x7c76, 0x400, 0xfd0e, 0x5, 0xfff, 0x0, 0x5b9b, 0xfffffff9, 0x8, 0x9, 0xf60c, 0x9, 0x80, 0x4, 0x6, 0x10001, 0x0, 0xe4c7, 0x6d, 0x3, 0x8fc, 0x4, 0x48, 0x1, 0x200, 0x1, 0x0, 0x5571, 0x1, 0x0, 0x2, 0x8000, 0x80, 0x0, 0x7fffffff, 0x8afa625, 0x4, 0x2, 0x401, 0x921, 0x40, 0x1], 0x2d, ['stack\x00', 'stack\x00', '^,][]\'@::./*\x00', 'stack\x00', 'stack\x00', 'stack\x00', '[\x00']}, ["", "", "", "", "", "", "", "", ""]}, 0x450}, 0x1, 0x0, 0x0, 0x44000}, 0x40)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000227bdddff00"], 0x20}}, 0x0)

09:20:45 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x5000000)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

[ 1996.495211][T24332]  loop3: p1 p2 < > p3 p4 < p5 >
[ 1996.514548][T24332] loop3: partition table partially beyond EOD, truncated
[ 1996.522582][T24332] loop3: p1 start 7077898 is beyond EOD, truncated
09:20:45 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a002000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 1996.543726][T24332] loop3: p2 start 25 is beyond EOD, truncated
[ 1996.558631][T24332] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 1996.565954][T24332] loop3: p4 size 2 extends beyond EOD, truncated
[ 1996.575399][T24332] loop3: p5 start 7077898 is beyond EOD, truncated
[ 1996.617829][  T146]  loop3: p1 p2 < > p3 p4 < p5 >
[ 1996.622950][  T146] loop3: partition table partially beyond EOD, truncated
[ 1996.647971][T24354] FAULT_INJECTION: forcing a failure.
[ 1996.647971][T24354] name failslab, interval 1, probability 0, space 0, times 0
[ 1996.661146][T24354] CPU: 1 PID: 24354 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 1996.671282][T24354] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1996.681310][T24354] Call Trace:
[ 1996.684584][T24354]  dump_stack+0x1b0/0x21e
[ 1996.688887][T24354]  ? devkmsg_release+0x11c/0x11c
[ 1996.693894][T24354]  ? show_regs_print_info+0x12/0x12
[ 1996.699072][T24354]  should_fail+0x6fb/0x860
[ 1996.703456][T24354]  ? setup_fault_attr+0x2b0/0x2b0
[ 1996.708550][T24354]  ? slab_free_freelist_hook+0xd0/0x150
[ 1996.714063][T24354]  ? cap_capable+0x23f/0x280
[ 1996.718624][T24354]  ? proc_pid_stack+0x1d5/0x1f0
[ 1996.723532][T24354]  ? proc_pid_stack+0x8e/0x1f0
[ 1996.728786][T24354]  should_failslab+0x5/0x20
[ 1996.733267][T24354]  kmem_cache_alloc_trace+0x39/0x270
[ 1996.738521][T24354]  proc_pid_stack+0x8e/0x1f0
[ 1996.743092][T24354]  proc_single_show+0xd3/0x130
[ 1996.747848][T24354]  seq_read+0x4aa/0xd30
[ 1996.751978][T24354]  do_iter_read+0x43b/0x550
[ 1996.756452][T24354]  do_preadv+0x1f4/0x330
[ 1996.760664][T24354]  ? do_writev+0x560/0x560
[ 1996.766266][T24354]  ? security_file_permission+0x128/0x300
[ 1996.771956][T24354]  ? __sb_end_write+0xa4/0xf0
[ 1996.776709][T24354]  ? vfs_write+0x427/0x4f0
[ 1996.781125][T24354]  do_syscall_64+0xcb/0x150
[ 1996.785598][T24354]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1996.791464][T24354] RIP: 0033:0x45d5b9
[ 1996.795331][T24354] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1996.814905][T24354] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 1996.823315][T24354] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 1996.831270][T24354] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 1996.839213][T24354] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 1996.847243][T24354] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000002a
[ 1996.855274][T24354] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
[ 1996.892067][  T146] loop3: p1 start 7077898 is beyond EOD, truncated
09:20:45 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x600)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

[ 1996.998484][  T146] loop3: p2 start 25 is beyond EOD, truncated
09:20:46 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x6000000)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

[ 1997.063849][  T146] loop3: p3 start 4293001441 is beyond EOD, truncated
09:20:46 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a007400ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 1997.105024][  T146] loop3: p4 size 2 extends beyond EOD, truncated
[ 1997.135680][  T146] loop3: p5 start 7077898 is beyond EOD, truncated
09:20:46 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
r1 = add_key$keyring(&(0x7f00000001c0)='keyring\x00', &(0x7f0000000200)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
r2 = add_key$keyring(&(0x7f00000001c0)='keyring\x00', &(0x7f0000000200)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
r3 = add_key(&(0x7f0000000000)='user\x00', &(0x7f0000000080)={'syz', 0x0}, &(0x7f00000002c0)="a2", 0x1, r2)
keyctl$unlink(0x9, r1, r3)
setxattr$security_ima(&(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='security.ima\x00', &(0x7f00000002c0)=@ng={0x4, 0x12, "8298a25d9de2ad"}, 0x9, 0x5)
pipe(&(0x7f0000000100)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
write(r5, &(0x7f0000000340), 0x41395527)
vmsplice(r4, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r6 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000440)={0xffffffffffffffff, &(0x7f0000000300)="6fd0c442971b3a3fc36c1709b4769ea894fe466c4b9b019cef512232e99476428c860a50e944c313820c276ccf8e9cb8f3913e24b56dfc838a603302d9075cd83c61", &(0x7f0000000380)=""/150, 0x4}, 0x20)
preadv(r6, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB="000227bd7000ffdbdf250b0000000c0003800600040000000000"], 0x20}}, 0x0)

09:20:46 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a002600ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:46 executing program 4 (fault-call:14 fault-nth:43):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

[ 1997.654974][T24365]  loop3: p1 p2 < > p3 p4 < p5 >
[ 1997.660069][T24365] loop3: partition table partially beyond EOD, truncated
[ 1997.706927][T24365] loop3: p1 start 7602186 is beyond EOD, truncated
[ 1997.744826][T24365] loop3: p2 start 25 is beyond EOD, truncated
[ 1997.769817][T24365] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 1997.795368][T24365] loop3: p4 size 2 extends beyond EOD, truncated
[ 1997.822427][T24365] loop3: p5 start 7602186 is beyond EOD, truncated
[ 1998.045873][  T142] systemd-journal invoked oom-killer: gfp_mask=0x40cc0(GFP_KERNEL|__GFP_COMP), order=1, oom_score_adj=0
[ 1998.065006][  T142] CPU: 1 PID: 142 Comm: systemd-journal Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 1998.075114][  T142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1998.085155][  T142] Call Trace:
[ 1998.088529][  T142]  dump_stack+0x1b0/0x21e
[ 1998.092833][  T142]  ? devkmsg_release+0x11c/0x11c
[ 1998.097740][  T142]  ? ___ratelimit+0x3bf/0x560
[ 1998.102386][  T142]  ? show_regs_print_info+0x12/0x12
[ 1998.107728][  T142]  ? _raw_spin_lock+0xa1/0x170
[ 1998.112462][  T142]  ? radix_tree_cpu_dead+0x160/0x160
[ 1998.117734][  T142]  dump_header+0xdb/0x700
[ 1998.122041][  T142]  oom_kill_process+0xd3/0x280
[ 1998.126778][  T142]  out_of_memory+0x5b6/0x890
[ 1998.131346][  T142]  ? unregister_oom_notifier+0x20/0x20
[ 1998.136804][  T142]  __alloc_pages_slowpath+0x17bc/0x1cb0
[ 1998.142331][  T142]  ? get_page_from_freelist+0x7c0/0x7c0
[ 1998.147847][  T142]  ? __zone_watermark_ok+0x91/0x280
[ 1998.153018][  T142]  __alloc_pages_nodemask+0x5cb/0x7c0
[ 1998.158388][  T142]  ? __kasan_kmalloc+0x117/0x1b0
[ 1998.163420][  T142]  ? gfp_pfmemalloc_allowed+0x130/0x130
[ 1998.168948][  T142]  ? kmem_cache_alloc+0x1d5/0x250
[ 1998.174139][  T142]  ? ep_scan_ready_list+0x6f8/0x740
[ 1998.179324][  T142]  ? __secure_computing+0x250/0x250
[ 1998.184519][  T142]  alloc_slab_page+0x3a/0x390
[ 1998.189179][  T142]  new_slab+0x408/0x450
[ 1998.193312][  T142]  ? should_fail+0x18e/0x860
[ 1998.197877][  T142]  ___slab_alloc+0x2e0/0x450
[ 1998.202444][  T142]  ? rw_verify_area+0x340/0x340
[ 1998.207366][  T142]  ? getname_flags+0xb8/0x610
[ 1998.212042][  T142]  ? getname_flags+0xb8/0x610
[ 1998.217653][  T142]  kmem_cache_alloc+0x230/0x250
[ 1998.222484][  T142]  getname_flags+0xb8/0x610
[ 1998.226975][  T142]  ? security_prepare_creds+0x197/0x220
[ 1998.232502][  T142]  user_path_at_empty+0x28/0x50
[ 1998.237338][  T142]  do_faccessat+0x2f3/0x7f0
[ 1998.241816][  T142]  ? __ia32_sys_fallocate+0x100/0x100
[ 1998.247177][  T142]  do_syscall_64+0xcb/0x150
[ 1998.251654][  T142]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1998.257521][  T142] RIP: 0033:0x7f551cfa19c7
[ 1998.261932][  T142] Code: 83 c4 08 48 3d 01 f0 ff ff 73 01 c3 48 8b 0d c8 d4 2b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 b8 15 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d a1 d4 2b 00 f7 d8 64 89 01 48
[ 1998.281873][  T142] RSP: 002b:00007ffc5c9b5468 EFLAGS: 00000246 ORIG_RAX: 0000000000000015
[ 1998.290345][  T142] RAX: ffffffffffffffda RBX: 00007ffc5c9b8380 RCX: 00007f551cfa19c7
[ 1998.298299][  T142] RDX: 00007f551da12a00 RSI: 0000000000000000 RDI: 00005625c574b9a3
[ 1998.306330][  T142] RBP: 00007ffc5c9b54a0 R08: 0000000000000000 R09: 0000000000000000
[ 1998.314305][  T142] R10: 0000000000000069 R11: 0000000000000246 R12: 0000000000000000
[ 1998.322281][  T142] R13: 0000000000000000 R14: 00007ffc5c9b8380 R15: 00007ffc5c9b5990
[ 1998.374398][  T142] Mem-Info:
[ 1998.378155][  T142] active_anon:1390877 inactive_anon:31372 isolated_anon:0
[ 1998.378155][  T142]  active_file:106 inactive_file:264 isolated_file:16
[ 1998.378155][  T142]  unevictable:4 dirty:11 writeback:0 unstable:0
[ 1998.378155][  T142]  slab_reclaimable:9553 slab_unreclaimable:79172
[ 1998.378155][  T142]  mapped:56036 shmem:6894 pagetables:35139 bounce:0
[ 1998.378155][  T142]  free:12652 free_pcp:156 free_cma:0
[ 1998.417603][  T142] Node 0 active_anon:5563508kB inactive_anon:125488kB active_file:424kB inactive_file:1048kB unevictable:16kB isolated(anon):0kB isolated(file):64kB mapped:224044kB dirty:44kB writeback:0kB shmem:27576kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 1998.446844][  T142] DMA free:15904kB min:24kB low:36kB high:48kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15904kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1998.501872][  T142] lowmem_reserve[]: 0 2912 6416 6416
[ 1998.509545][  T142] DMA32 free:19068kB min:4644kB low:7624kB high:10604kB active_anon:2929948kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:0kB writepending:0kB present:3129332kB managed:2983760kB mlocked:0kB kernel_stack:3200kB pagetables:1912kB bounce:0kB free_pcp:448kB local_pcp:448kB free_cma:0kB
[ 1998.539262][  T142] lowmem_reserve[]: 0 0 3504 3504
[ 1998.544796][  T142] Normal free:22696kB min:5592kB low:9180kB high:12768kB active_anon:2625192kB inactive_anon:125488kB active_file:660kB inactive_file:816kB unevictable:16kB writepending:20kB present:4718592kB managed:3588928kB mlocked:16kB kernel_stack:38336kB pagetables:138644kB bounce:0kB free_pcp:2176kB local_pcp:1212kB free_cma:0kB
[ 1998.575584][  T142] lowmem_reserve[]: 0 0 0 0
[ 1998.580270][  T142] DMA: 0*4kB 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (U) 3*4096kB (M) = 15904kB
[ 1998.609523][  T142] DMA32: 13*4kB (UMH) 5*8kB (UM) 22*16kB (UMH) 209*32kB (UMH) 98*64kB (UMH) 34*128kB (UMH) 6*256kB (UM) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 19292kB
[ 1998.624989][  T142] Normal: 1082*4kB (UMEH) 678*8kB (UMEH) 283*16kB (UMEH) 135*32kB (UMEH) 33*64kB (MEH) 8*128kB (MH) 2*256kB (M) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 22248kB
[ 1998.642368][  T142] 7614 total pagecache pages
[ 1998.655095][  T142] 0 pages in swap cache
[ 1998.659872][  T142] Swap cache stats: add 0, delete 0, find 0/0
[ 1998.666523][  T142] Free swap  = 0kB
[ 1998.670697][  T142] Total swap = 0kB
[ 1998.674891][  T142] 1965979 pages RAM
[ 1998.679224][  T142] 0 pages HighMem/MovableOnly
[ 1998.684245][  T142] 318831 pages reserved
[ 1998.692954][  T142] 0 pages cma reserved
[ 1998.744389][  T142] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/,task=syz-executor.4,pid=9360,uid=0
[ 1998.786894][T24390] FAULT_INJECTION: forcing a failure.
[ 1998.786894][T24390] name failslab, interval 1, probability 0, space 0, times 0
[ 1998.794786][  T142] Out of memory: Killed process 9360 (syz-executor.4) total-vm:85216kB, anon-rss:28468kB, file-rss:34544kB, shmem-rss:0kB, UID:0 pgtables:172kB oom_score_adj:1000
[ 1998.816506][T24390] CPU: 1 PID: 24390 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 1998.826754][T24390] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1998.836806][T24390] Call Trace:
[ 1998.840081][T24390]  dump_stack+0x1b0/0x21e
[ 1998.844385][T24390]  ? devkmsg_release+0x11c/0x11c
[ 1998.849290][T24390]  ? show_regs_print_info+0x12/0x12
[ 1998.854675][T24390]  ? cred_has_capability+0x18c/0x3f0
[ 1998.860016][T24390]  ? cred_has_capability+0x2b2/0x3f0
[ 1998.865279][T24390]  should_fail+0x6fb/0x860
[ 1998.869667][T24390]  ? setup_fault_attr+0x2b0/0x2b0
[ 1998.874662][T24390]  ? slab_free_freelist_hook+0xd0/0x150
[ 1998.880190][T24390]  ? cap_capable+0x23f/0x280
[ 1998.884839][T24390]  ? proc_pid_stack+0x1d5/0x1f0
[ 1998.889668][T24390]  ? proc_pid_stack+0x8e/0x1f0
[ 1998.894407][T24390]  should_failslab+0x5/0x20
[ 1998.898884][T24390]  kmem_cache_alloc_trace+0x39/0x270
[ 1998.904140][T24390]  proc_pid_stack+0x8e/0x1f0
[ 1998.909051][T24390]  proc_single_show+0xd3/0x130
[ 1998.913792][T24390]  seq_read+0x4aa/0xd30
[ 1998.917955][T24390]  do_iter_read+0x43b/0x550
[ 1998.922444][T24390]  do_preadv+0x1f4/0x330
[ 1998.926666][T24390]  ? do_writev+0x560/0x560
[ 1998.931086][T24390]  ? security_file_permission+0x128/0x300
[ 1998.936779][T24390]  ? __sb_end_write+0xa4/0xf0
[ 1998.941531][T24390]  ? vfs_write+0x427/0x4f0
[ 1998.945930][T24390]  do_syscall_64+0xcb/0x150
[ 1998.950419][T24390]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1998.956301][T24390] RIP: 0033:0x45d5b9
[ 1998.960263][T24390] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1998.979841][T24390] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 1998.988238][T24390] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 1998.996270][T24390] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 1999.004225][T24390] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 1999.012183][T24390] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000002b
[ 1999.021189][T24390] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
09:20:48 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x7000000)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:48 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a007a00ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:48 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a052e00ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:48 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
r3 = accept4$inet(r1, &(0x7f00000001c0)={0x2, 0x0, @multicast1}, &(0x7f00000002c0)=0x10, 0x80000)
vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000300)="a872ba17fba5f83196496f6c6ce20778380c6a6aba706f357a9b84bcbfdcb57b7affab98de6235bd3995cfd935e6c9d16e388c23b29e575133b014eda734a63aabb3d96abbde7a5414f53379739bba63d5bb195dde94488ce16aa374a761c012bb6eb404e50a1ca340c3", 0x6a}], 0x1, 0x2)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
ioctl$TUNSETTXFILTER(r1, 0x400454d1, &(0x7f0000000080)={0x1, 0x3, [@remote, @broadcast, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}]})
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x20, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x20}}, 0x0)

09:20:48 executing program 4 (fault-call:14 fault-nth:44):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

[ 1999.144953][   T23] oom_reaper: reaped process 9360 (syz-executor.4), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
09:20:48 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000227bd7000ffdbeda1df250bf2ffff0b000380060004000000c0bab20a5dfceb54ed1859f077ea13e9eeabd2e99170eb3d9358ddff4dc78fc7532aca6ee3720e6d19da127bca37de6933f1e2bbc4272501804e425200f4520ee29321555e9e43716a11953565b2812d8344ac97519de2f71581c335088717fc0eb6fa2283565eb78df2de9e23d2f9004cf00664879f82b51ad51d6511a138c03970f7f40675611212aff216532327fc3353"], 0x20}}, 0x0)

[ 1999.368083][T24417] FAULT_INJECTION: forcing a failure.
[ 1999.368083][T24417] name failslab, interval 1, probability 0, space 0, times 0
[ 1999.381932][T24417] CPU: 0 PID: 24417 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 1999.392088][T24417] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1999.402142][T24417] Call Trace:
[ 1999.405527][T24417]  dump_stack+0x1b0/0x21e
[ 1999.410009][T24417]  ? devkmsg_release+0x11c/0x11c
[ 1999.414934][T24417]  ? show_regs_print_info+0x12/0x12
[ 1999.420104][T24417]  ? cred_has_capability+0x18c/0x3f0
[ 1999.425362][T24417]  ? cred_has_capability+0x2b2/0x3f0
[ 1999.430621][T24417]  should_fail+0x6fb/0x860
[ 1999.435011][T24417]  ? setup_fault_attr+0x2b0/0x2b0
[ 1999.440019][T24417]  ? cap_capable+0x23f/0x280
[ 1999.444594][T24417]  ? proc_pid_stack+0x8e/0x1f0
[ 1999.449504][T24417]  should_failslab+0x5/0x20
[ 1999.453985][T24417]  kmem_cache_alloc_trace+0x39/0x270
[ 1999.459342][T24417]  proc_pid_stack+0x8e/0x1f0
[ 1999.463901][T24417]  proc_single_show+0xd3/0x130
[ 1999.468634][T24417]  seq_read+0x4aa/0xd30
[ 1999.472772][T24417]  ? iov_iter_advance+0x1e9/0xee0
[ 1999.477853][T24417]  do_iter_read+0x43b/0x550
[ 1999.482348][T24417]  do_preadv+0x1f4/0x330
[ 1999.486573][T24417]  ? do_writev+0x560/0x560
[ 1999.491567][T24417]  ? security_file_permission+0x128/0x300
[ 1999.497258][T24417]  ? __sb_end_write+0xa4/0xf0
[ 1999.501905][T24417]  ? vfs_write+0x427/0x4f0
[ 1999.506308][T24417]  do_syscall_64+0xcb/0x150
[ 1999.510799][T24417]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 1999.516667][T24417] RIP: 0033:0x45d5b9
[ 1999.520533][T24417] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1999.540104][T24417] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 1999.548495][T24417] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 1999.556538][T24417] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
09:20:48 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x700)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:48 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x8000000)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

[ 1999.564593][T24417] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 1999.572534][T24417] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000002c
[ 1999.580478][T24417] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
09:20:49 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a003f00ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:49 executing program 4 (fault-call:14 fault-nth:45):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:49 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a009000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:49 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f0000000940), 0x8, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
r4 = getpid()
sched_setattr(r4, &(0x7f0000000280)={0x38, 0x2, 0x0, 0x0, 0x8}, 0x0)
ioprio_get$pid(0x1, r4)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
ioctl$BLKTRACESTOP(0xffffffffffffffff, 0x1275, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x20, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x20}}, 0x0)

[ 2000.569288][T24451] FAULT_INJECTION: forcing a failure.
[ 2000.569288][T24451] name failslab, interval 1, probability 0, space 0, times 0
[ 2000.582297][T24451] CPU: 1 PID: 24451 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2000.592545][T24451] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2000.602614][T24451] Call Trace:
[ 2000.605890][T24451]  dump_stack+0x1b0/0x21e
[ 2000.610191][T24451]  ? devkmsg_release+0x11c/0x11c
[ 2000.615097][T24451]  ? show_regs_print_info+0x12/0x12
[ 2000.620265][T24451]  ? cred_has_capability+0x18c/0x3f0
[ 2000.625539][T24451]  ? cred_has_capability+0x2b2/0x3f0
[ 2000.630905][T24451]  should_fail+0x6fb/0x860
[ 2000.635348][T24451]  ? setup_fault_attr+0x2b0/0x2b0
[ 2000.640442][T24451]  ? slab_free_freelist_hook+0xd0/0x150
[ 2000.646164][T24451]  ? cap_capable+0x23f/0x280
[ 2000.651860][T24451]  ? proc_pid_stack+0x1d5/0x1f0
[ 2000.656688][T24451]  ? proc_pid_stack+0x8e/0x1f0
[ 2000.661432][T24451]  should_failslab+0x5/0x20
[ 2000.665924][T24451]  kmem_cache_alloc_trace+0x39/0x270
[ 2000.671289][T24451]  proc_pid_stack+0x8e/0x1f0
[ 2000.675854][T24451]  proc_single_show+0xd3/0x130
[ 2000.680940][T24451]  seq_read+0x4aa/0xd30
[ 2000.685077][T24451]  do_iter_read+0x43b/0x550
[ 2000.689665][T24451]  do_preadv+0x1f4/0x330
[ 2000.693896][T24451]  ? do_writev+0x560/0x560
[ 2000.698489][T24451]  ? preempt_schedule_irq+0xc7/0x110
[ 2000.703745][T24451]  ? preempt_schedule_notrace+0x110/0x110
[ 2000.709447][T24451]  do_syscall_64+0xcb/0x150
[ 2000.714018][T24451]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2000.719882][T24451] RIP: 0033:0x45d5b9
[ 2000.724792][T24451] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2000.745853][T24451] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 2000.754369][T24451] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 2000.762424][T24451] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 2000.770455][T24451] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 2000.778397][T24451] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000002d
[ 2000.786424][T24451] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
[ 2000.800923][T24443] syz-executor.1 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=3, oom_score_adj=1000
[ 2000.826175][T24443] CPU: 1 PID: 24443 Comm: syz-executor.1 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2000.836434][T24443] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2000.846466][T24443] Call Trace:
[ 2000.849733][T24443]  dump_stack+0x1b0/0x21e
[ 2000.854033][T24443]  ? devkmsg_release+0x11c/0x11c
[ 2000.858941][T24443]  ? ___ratelimit+0x3bf/0x560
[ 2000.863675][T24443]  ? show_regs_print_info+0x12/0x12
[ 2000.873534][T24443]  ? _raw_spin_lock+0xa1/0x170
[ 2000.878271][T24443]  ? radix_tree_cpu_dead+0x160/0x160
[ 2000.883651][T24443]  dump_header+0xdb/0x700
[ 2000.888230][T24443]  oom_kill_process+0xd3/0x280
[ 2000.893160][T24443]  out_of_memory+0x5b6/0x890
[ 2000.897760][T24443]  ? unregister_oom_notifier+0x20/0x20
[ 2000.903301][T24443]  __alloc_pages_slowpath+0x17bc/0x1cb0
[ 2000.908825][T24443]  ? get_page_from_freelist+0x7c0/0x7c0
[ 2000.914342][T24443]  ? __zone_watermark_ok+0x91/0x280
[ 2000.919604][T24443]  __alloc_pages_nodemask+0x5cb/0x7c0
[ 2000.924958][T24443]  ? gfp_pfmemalloc_allowed+0x130/0x130
[ 2000.930474][T24443]  ? copy_process+0x5c9/0x52c0
[ 2000.935206][T24443]  ? kmem_cache_alloc+0x1d5/0x250
[ 2000.940384][T24443]  copy_process+0x612/0x52c0
[ 2000.948779][T24443]  ? __memcg_kmem_charge_memcg+0x130/0x130
[ 2000.954693][T24443]  ? get_mem_cgroup_from_mm+0x27b/0x2c0
[ 2000.960304][T24443]  ? mem_cgroup_commit_charge+0x198/0x240
[ 2000.966109][T24443]  ? _raw_spin_lock+0xa1/0x170
[ 2000.971173][T24443]  ? mem_cgroup_try_charge_delay+0x10/0x10
[ 2000.976972][T24443]  ? fork_idle+0x290/0x290
[ 2000.981397][T24443]  ? __lru_cache_add+0x1a1/0x1f0
[ 2000.986342][T24443]  ? _raw_spin_unlock+0x5/0x20
[ 2000.991076][T24443]  ? handle_mm_fault+0x916/0x4140
[ 2000.996112][T24443]  _do_fork+0x180/0x8f0
[ 2001.000239][T24443]  ? finish_fault+0x230/0x230
[ 2001.004894][T24443]  ? up_write+0xa1/0x190
[ 2001.009107][T24443]  ? dup_mm+0x300/0x300
[ 2001.013272][T24443]  __x64_sys_clone+0x246/0x2b0
[ 2001.018195][T24443]  ? __ia32_sys_vfork+0x110/0x110
[ 2001.023203][T24443]  ? do_user_addr_fault+0x55c/0x9f0
[ 2001.028374][T24443]  do_syscall_64+0xcb/0x150
[ 2001.032861][T24443]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2001.038745][T24443] RIP: 0033:0x45ff89
[ 2001.042700][T24443] Code: ff 48 85 f6 0f 84 87 8a fb ff 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 0f 8c 5e 8a fb ff 74 01 c3 31 ed 48 f7 c7 00 00 01 00 75
[ 2001.062422][T24443] RSP: 002b:00007ffdf58749c8 EFLAGS: 00000202 ORIG_RAX: 0000000000000038
[ 2001.070902][T24443] RAX: ffffffffffffffda RBX: 00007f91d3e76700 RCX: 000000000045ff89
[ 2001.079126][T24443] RDX: 00007f91d3e769d0 RSI: 00007f91d3e75db0 RDI: 00000000003d0f00
[ 2001.087081][T24443] RBP: 00007ffdf5874bf0 R08: 00007f91d3e76700 R09: 00007f91d3e76700
[ 2001.095028][T24443] R10: 00007f91d3e769d0 R11: 0000000000000202 R12: 0000000000000000
[ 2001.103074][T24443] R13: 00007ffdf5874a7f R14: 00007f91d3e769c0 R15: 000000000118cfec
[ 2001.115147][T24443] Mem-Info:
[ 2001.139936][T24443] active_anon:1397855 inactive_anon:24260 isolated_anon:0
[ 2001.139936][T24443]  active_file:207 inactive_file:202 isolated_file:27
[ 2001.139936][T24443]  unevictable:4 dirty:10 writeback:3 unstable:0
[ 2001.139936][T24443]  slab_reclaimable:9615 slab_unreclaimable:79231
[ 2001.139936][T24443]  mapped:56202 shmem:6894 pagetables:35267 bounce:0
[ 2001.139936][T24443]  free:12298 free_pcp:121 free_cma:0
[ 2001.191823][T24443] Node 0 active_anon:5591220kB inactive_anon:97040kB active_file:576kB inactive_file:688kB unevictable:16kB isolated(anon):0kB isolated(file):0kB mapped:224308kB dirty:40kB writeback:12kB shmem:27576kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2001.217079][T24443] DMA free:15904kB min:24kB low:36kB high:48kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15904kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2001.305909][T24443] lowmem_reserve[]: 0 2912 6416 6416
[ 2001.313120][T24443] DMA32 free:18756kB min:8740kB low:11720kB high:14700kB active_anon:2932720kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2983760kB mlocked:0kB kernel_stack:3200kB pagetables:1912kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2001.372011][T24443] lowmem_reserve[]: 0 0 3504 3504
[ 2001.377655][T24443] Normal free:13328kB min:16552kB low:20140kB high:23728kB active_anon:2660716kB inactive_anon:97040kB active_file:980kB inactive_file:1056kB unevictable:16kB writepending:52kB present:4718592kB managed:3588928kB mlocked:16kB kernel_stack:38592kB pagetables:139156kB bounce:0kB free_pcp:40kB local_pcp:0kB free_cma:0kB
[ 2001.408311][T24443] lowmem_reserve[]: 0 0 0 0
[ 2001.413273][T24443] DMA: 0*4kB 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (U) 3*4096kB (M) = 15904kB
[ 2001.438267][T24443] DMA32: 11*4kB (UMH) 6*8kB (UM) 28*16kB (UMH) 207*32kB (UMH) 105*64kB (UMH) 30*128kB (UMH) 4*256kB (UM) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 18748kB
[ 2001.462758][T24443] Normal: 479*4kB (UMEH) 469*8kB (UMEH) 166*16kB (UMEH) 120*32kB (UMEH) 31*64kB (UMEH) 5*128kB (MH) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 14788kB
[ 2001.478920][T24443] 7074 total pagecache pages
[ 2001.484238][T24443] 0 pages in swap cache
[ 2001.488959][T24443] Swap cache stats: add 0, delete 0, find 0/0
[ 2001.503315][T24443] Free swap  = 0kB
[ 2001.512784][T24443] Total swap = 0kB
[ 2001.516926][T24443] 1965979 pages RAM
[ 2001.521400][T24443] 0 pages HighMem/MovableOnly
[ 2001.526634][T24443] 318831 pages reserved
[ 2001.531313][T24443] 0 pages cma reserved
[ 2001.535984][T24443] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/,task=syz-executor.5,pid=5710,uid=0
[ 2001.550863][T24443] Out of memory: Killed process 5710 (syz-executor.5) total-vm:85216kB, anon-rss:28236kB, file-rss:34524kB, shmem-rss:0kB, UID:0 pgtables:168kB oom_score_adj:1000
09:20:50 executing program 4 (fault-call:14 fault-nth:46):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:50 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a004000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:50 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="060000003f226b06b4cbeed8d725b112437026658ec2c7b298f741469b83f54d224f0f9bd301011c19252aa63c02087fd424f8475c66646227fad045e5", @ANYRES16=0x0, @ANYBLOB="000227bd7000ffdbdf250b0000000c0003800600040000000000"], 0x20}}, 0x0)

09:20:50 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x9000000)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:50 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x900)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:50 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a00c000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:50 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a038000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:50 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
getpid()
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000005c0)=ANY=[@ANYBLOB="3800000010000507000200"/20, @ANYRES32, @ANYBLOB="19000016010000001800120008000100736974000c00020008000300", @ANYRES32], 0x38}}, 0x0)
sendmsg$ETHTOOL_MSG_LINKSTATE_GET(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000340), 0xc, &(0x7f0000000400)={&(0x7f0000000600)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000127bd7000ffdbdf250600000028000180140002006d616376746170300000000000000000080003000100000008000100bfbf8629d583b43ae74da7e6ba371bf19070e981e3f67fce4eb1f6e8c557df6a58572d72c62affb092ab26ecd9787229e7eff85d24f61c781decb68eaadf136b1c6b5a04ba0230d5033d3a65b85055f1601aace701eb1684c6412687055e8d8c5f450b14c67598a0abfd6f6f71f75a5aad2506a3b883b9ed2b76e07cee4be37f428fbe9382546735979edeacfc61597c6fd4ab6a624bd002af532408294cfaf1527f3c0badb318c8bed589e7e37e48f5b38d57caf4acd7654c2c58faa790b656f6e0e60f432923055128a8132bb9229cbfcfad9150343d1224fbbd1f6ef995", @ANYRES32=0x0, @ANYBLOB], 0x3c}}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x200009}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r0, 0x0)
sendmsg$NLBL_UNLABEL_C_STATICADD(r0, &(0x7f0000000300)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000002c0)={&(0x7f00000001c0)={0x1c, 0x0, 0x501, 0x70bd29, 0x25dfdbfc, {}, [@NLBL_UNLABEL_A_ACPTFLG={0x5, 0x1, 0x1}]}, 0x1c}}, 0x4004008)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x20, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x20}}, 0x0)

09:20:50 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x22, &(0x7f00000001c0)={@ipv4={[0x2, 0x0, 0x0, 0x0, 0x2, 0x0, 0x2]}, 0x0, 0x0, 0x0, 0x4000, 0x0, 0x1000}, 0x20)
getsockopt$SO_COOKIE(r0, 0x1, 0x39, &(0x7f0000000080), &(0x7f00000001c0)=0x8)
r1 = getpid()
sched_setattr(r1, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
write(r3, &(0x7f0000000340), 0x41395527)
ioctl$RTC_ALM_READ(r3, 0x80247008, &(0x7f0000000380))
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r4 = dup2(r2, r3)
ioctl$CHAR_RAW_PG(r4, 0x1269, &(0x7f0000000340)={0x907, 0x5, 0x62, &(0x7f00000002c0)="de5facc89ad0b2dbd0959202bdeda9631f4282315ba26e17d20ff1901708c9b946aa6edc1cdc6a1e1207f167871f197fdf8833bc8c8ddb1a5a6626cd7a29814a1a18295098709611da483374e99259f264c719c79f53e8d18116e3ccc5eb1d498401"})
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r5 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r5, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x20, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x20}}, 0x0)

[ 2002.032651][T24494] FAULT_INJECTION: forcing a failure.
[ 2002.032651][T24494] name failslab, interval 1, probability 0, space 0, times 0
[ 2002.045921][T24494] CPU: 1 PID: 24494 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2002.056081][T24494] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2002.066158][T24494] Call Trace:
[ 2002.069433][T24494]  dump_stack+0x1b0/0x21e
[ 2002.073737][T24494]  ? devkmsg_release+0x11c/0x11c
[ 2002.078664][T24494]  ? show_regs_print_info+0x12/0x12
[ 2002.084297][T24494]  ? cred_has_capability+0x18c/0x3f0
[ 2002.089559][T24494]  ? cred_has_capability+0x2b2/0x3f0
[ 2002.094819][T24494]  should_fail+0x6fb/0x860
[ 2002.099233][T24494]  ? setup_fault_attr+0x2b0/0x2b0
[ 2002.104231][T24494]  ? slab_free_freelist_hook+0xd0/0x150
[ 2002.109761][T24494]  ? cap_capable+0x23f/0x280
[ 2002.115450][T24494]  ? proc_pid_stack+0x1d5/0x1f0
[ 2002.120272][T24494]  ? proc_pid_stack+0x8e/0x1f0
[ 2002.125007][T24494]  should_failslab+0x5/0x20
[ 2002.129483][T24494]  kmem_cache_alloc_trace+0x39/0x270
[ 2002.134742][T24494]  proc_pid_stack+0x8e/0x1f0
[ 2002.139306][T24494]  proc_single_show+0xd3/0x130
[ 2002.144164][T24494]  seq_read+0x4aa/0xd30
[ 2002.148315][T24494]  do_iter_read+0x43b/0x550
[ 2002.152807][T24494]  do_preadv+0x1f4/0x330
[ 2002.157036][T24494]  ? do_writev+0x560/0x560
[ 2002.161665][T24494]  ? __schedule+0x8ae/0xe30
[ 2002.166149][T24494]  do_syscall_64+0xcb/0x150
[ 2002.170641][T24494]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2002.176591][T24494] RIP: 0033:0x45d5b9
[ 2002.180459][T24494] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2002.200043][T24494] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 2002.208579][T24494] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 2002.216532][T24494] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 2002.224481][T24494] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 2002.232450][T24494] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000002e
[ 2002.241701][T24494] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
[ 2002.452815][T24492] syz-executor.5 invoked oom-killer: gfp_mask=0x1100dca(GFP_HIGHUSER_MOVABLE|__GFP_ZERO|0x1000000), order=0, oom_score_adj=1000
[ 2002.575719][T24492] CPU: 1 PID: 24492 Comm: syz-executor.5 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2002.585902][T24492] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2002.596054][T24492] Call Trace:
[ 2002.599327][T24492]  dump_stack+0x1b0/0x21e
[ 2002.603628][T24492]  ? devkmsg_release+0x11c/0x11c
[ 2002.608626][T24492]  ? ___ratelimit+0x3bf/0x560
[ 2002.613898][T24492]  ? show_regs_print_info+0x12/0x12
[ 2002.619082][T24492]  ? _raw_spin_lock+0xa1/0x170
[ 2002.623905][T24492]  ? radix_tree_cpu_dead+0x160/0x160
[ 2002.629166][T24492]  dump_header+0xdb/0x700
[ 2002.633566][T24492]  oom_kill_process+0xd3/0x280
[ 2002.638316][T24492]  out_of_memory+0x5b6/0x890
[ 2002.642879][T24492]  ? unregister_oom_notifier+0x20/0x20
[ 2002.648338][T24492]  __alloc_pages_slowpath+0x17bc/0x1cb0
[ 2002.653886][T24492]  ? get_page_from_freelist+0x7c0/0x7c0
[ 2002.659451][T24492]  __alloc_pages_nodemask+0x5cb/0x7c0
[ 2002.664799][T24492]  ? gfp_pfmemalloc_allowed+0x130/0x130
[ 2002.670314][T24492]  ? mem_cgroup_commit_charge+0x198/0x240
[ 2002.676006][T24492]  ? mem_cgroup_try_charge_delay+0x10/0x10
[ 2002.681784][T24492]  ? ___preempt_schedule+0x16/0x20
[ 2002.686870][T24492]  ? __lru_cache_add+0x198/0x1f0
[ 2002.691779][T24492]  wp_page_copy+0x199/0x10e0
[ 2002.696347][T24492]  ? add_mm_rss_vec+0x270/0x270
[ 2002.701167][T24492]  ? ___preempt_schedule+0x16/0x20
[ 2002.706252][T24492]  ? do_wp_page+0x245/0x14b0
[ 2002.710813][T24492]  ? vm_normal_page+0x1c9/0x1d0
[ 2002.715695][T24492]  do_wp_page+0x48d/0x14b0
[ 2002.720110][T24492]  ? _raw_spin_lock+0xa1/0x170
[ 2002.724845][T24492]  ? do_swap_page+0x1510/0x1510
[ 2002.729670][T24492]  handle_mm_fault+0xf6c/0x4140
[ 2002.734494][T24492]  ? finish_fault+0x230/0x230
[ 2002.739149][T24492]  ? switch_mm_irqs_off+0x46e/0x870
[ 2002.744378][T24492]  ? trace_event_raw_event_sched_switch+0x480/0x480
[ 2002.751029][T24492]  ? down_read_trylock+0x17a/0x1d0
[ 2002.756114][T24492]  ? vmacache_find+0x47a/0x4b0
[ 2002.760856][T24492]  do_user_addr_fault+0x48a/0x9f0
[ 2002.765857][T24492]  page_fault+0x2f/0x40
[ 2002.769991][T24492] RIP: 0010:copy_user_enhanced_fast_string+0xe/0x30
[ 2002.776932][T24492] Code: 89 d1 c1 e9 03 83 e2 07 f3 48 a5 89 d1 f3 a4 31 c0 0f 1f 00 c3 0f 1f 80 00 00 00 00 0f 1f 00 83 fa 40 0f 82 70 ff ff ff 89 d1 <f3> a4 31 c0 0f 1f 00 c3 66 2e 0f 1f 84 00 00 00 00 00 89 d1 f3 a4
[ 2002.796962][T24492] RSP: 0018:ffff88817437f888 EFLAGS: 00010206
[ 2002.803001][T24492] RAX: ffffffff81f5ae01 RBX: 000000002025a500 RCX: 0000000000000500
[ 2002.810946][T24492] RDX: 0000000000001000 RSI: ffff88817a240b00 RDI: 000000002025a000
[ 2002.818908][T24492] RBP: ffff88817437fda8 R08: dffffc0000000000 R09: ffffed102f448200
[ 2002.828110][T24492] R10: 0000000000000000 R11: 0000000000000000 R12: 00007ffffffff000
[ 2002.836088][T24492] R13: 0000000000001000 R14: ffff88817a240000 R15: 0000000020259500
[ 2002.844308][T24492]  ? _copy_to_iter+0xfb1/0xfc0
[ 2002.849240][T24492]  copyout+0x8e/0xb0
[ 2002.853207][T24492]  copy_page_to_iter+0x393/0xbd0
[ 2002.858910][T24492]  pipe_to_user+0xa3/0x130
[ 2002.864978][T24492]  __splice_from_pipe+0x2d3/0x870
[ 2002.869976][T24492]  ? user_page_pipe_buf_steal+0xc0/0xc0
[ 2002.875493][T24492]  do_vmsplice+0x240/0xe70
[ 2002.879976][T24492]  ? write_pipe_buf+0x1d0/0x1d0
[ 2002.884923][T24492]  ? __rcu_read_lock+0x50/0x50
[ 2002.889660][T24492]  ? check_stack_object+0x5a/0x90
[ 2002.894692][T24492]  ? _copy_from_user+0xa4/0xe0
[ 2002.899442][T24492]  ? rw_copy_check_uvector+0x2b3/0x310
[ 2002.904991][T24492]  ? import_iovec+0x171/0x340
[ 2002.909643][T24492]  ? dup_iter+0x110/0x110
[ 2002.913963][T24492]  ? do_vfs_ioctl+0x757/0x1700
[ 2002.918699][T24492]  __se_sys_vmsplice+0x1cc/0x2c0
[ 2002.923695][T24492]  ? __x64_sys_vmsplice+0xa0/0xa0
[ 2002.928689][T24492]  ? put_timespec64+0x106/0x150
[ 2002.933509][T24492]  ? ktime_get_raw+0x130/0x130
[ 2002.938248][T24492]  ? get_timespec64+0x1c0/0x1c0
[ 2002.943086][T24492]  ? fget_many+0x20/0x20
[ 2002.947303][T24492]  ? __ia32_sys_clock_settime+0x230/0x230
[ 2002.953260][T24492]  do_syscall_64+0xcb/0x150
[ 2002.957864][T24492]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2002.963758][T24492] RIP: 0033:0x45d5b9
[ 2002.967628][T24492] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2002.987304][T24492] RSP: 002b:00007fa6b28e4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000116
[ 2002.995689][T24492] RAX: ffffffffffffffda RBX: 0000000000036640 RCX: 000000000045d5b9
[ 2003.003650][T24492] RDX: 0000000000000001 RSI: 0000000020000000 RDI: 0000000000000003
[ 2003.011706][T24492] RBP: 000000000118d028 R08: 0000000000000000 R09: 0000000000000000
[ 2003.019910][T24492] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118cfec
[ 2003.028201][T24492] R13: 00007ffc0feb818f R14: 00007fa6b28e59c0 R15: 000000000118cfec
[ 2003.164356][T24492] Mem-Info:
[ 2003.167862][T24492] active_anon:1399857 inactive_anon:17211 isolated_anon:0
[ 2003.167862][T24492]  active_file:601 inactive_file:776 isolated_file:73
[ 2003.167862][T24492]  unevictable:4 dirty:46 writeback:11 unstable:0
[ 2003.167862][T24492]  slab_reclaimable:9644 slab_unreclaimable:79306
[ 2003.167862][T24492]  mapped:56947 shmem:6895 pagetables:35351 bounce:0
[ 2003.167862][T24492]  free:15690 free_pcp:494 free_cma:0
[ 2003.210006][T24492] Node 0 active_anon:5599428kB inactive_anon:68844kB active_file:2140kB inactive_file:3124kB unevictable:16kB isolated(anon):0kB isolated(file):436kB mapped:227688kB dirty:184kB writeback:44kB shmem:27580kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2003.273661][T24492] DMA free:15904kB min:24kB low:36kB high:48kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15904kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2003.344066][T24492] lowmem_reserve[]: 0 2912 6416 6416
[ 2003.355936][T24492] DMA32 free:21736kB min:8740kB low:11720kB high:14700kB active_anon:2931320kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2983760kB mlocked:0kB kernel_stack:3200kB pagetables:1920kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
09:20:52 executing program 4 (fault-call:14 fault-nth:47):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

[ 2003.461433][T24492] lowmem_reserve[]: 0 0 3504 3504
[ 2003.488603][T24492] Normal free:25072kB min:24744kB low:28332kB high:31920kB active_anon:2668108kB inactive_anon:68844kB active_file:2356kB inactive_file:3968kB unevictable:16kB writepending:368kB present:4718592kB managed:3588928kB mlocked:16kB kernel_stack:38656kB pagetables:139356kB bounce:0kB free_pcp:2544kB local_pcp:1496kB free_cma:0kB
09:20:52 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a00e000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 2003.534778][T24492] lowmem_reserve[]: 0 0 0 0
[ 2003.539947][T24492] DMA: 0*4kB 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (U) 3*4096kB (M) = 15904kB
[ 2003.565616][T24492] DMA32: 4*4kB (H) 2*8kB (UM) 34*16kB (UMH) 239*32kB (UMH) 113*64kB (UMH) 41*128kB (UMH) 6*256kB (UM) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 22240kB
09:20:52 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0xa00)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

[ 2003.593917][T24492] Normal: 217*4kB (EH) 347*8kB (EH) 161*16kB (UMEH) 178*32kB (UMEH) 73*64kB (UMEH) 23*128kB (UMH) 3*256kB (UM) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20300kB
[ 2003.629421][T24492] 9735 total pagecache pages
09:20:52 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a048000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 2003.641214][T24492] 0 pages in swap cache
[ 2003.647326][T24492] Swap cache stats: add 0, delete 0, find 0/0
[ 2003.654336][T24492] Free swap  = 0kB
[ 2003.658678][T24492] Total swap = 0kB
[ 2003.662748][T24492] 1965979 pages RAM
[ 2003.672144][T24492] 0 pages HighMem/MovableOnly
[ 2003.681289][T24492] 318831 pages reserved
[ 2003.735780][T24492] 0 pages cma reserved
[ 2003.758204][T24521] FAULT_INJECTION: forcing a failure.
[ 2003.758204][T24521] name failslab, interval 1, probability 0, space 0, times 0
[ 2003.770917][T24521] CPU: 1 PID: 24521 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2003.781080][T24521] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2003.791456][T24521] Call Trace:
[ 2003.794728][T24521]  dump_stack+0x1b0/0x21e
[ 2003.800171][T24521]  ? devkmsg_release+0x11c/0x11c
[ 2003.805166][T24521]  ? show_regs_print_info+0x12/0x12
[ 2003.811119][T24521]  ? cred_has_capability+0x18c/0x3f0
[ 2003.816373][T24521]  ? cred_has_capability+0x2b2/0x3f0
[ 2003.821644][T24521]  should_fail+0x6fb/0x860
[ 2003.826033][T24521]  ? setup_fault_attr+0x2b0/0x2b0
[ 2003.831089][T24521]  ? slab_free_freelist_hook+0xd0/0x150
[ 2003.836797][T24521]  ? cap_capable+0x23f/0x280
[ 2003.841358][T24521]  ? proc_pid_stack+0x1d5/0x1f0
[ 2003.846198][T24521]  ? proc_pid_stack+0x8e/0x1f0
[ 2003.850951][T24521]  should_failslab+0x5/0x20
[ 2003.855430][T24521]  kmem_cache_alloc_trace+0x39/0x270
[ 2003.860858][T24521]  proc_pid_stack+0x8e/0x1f0
[ 2003.865418][T24521]  proc_single_show+0xd3/0x130
[ 2003.870244][T24521]  seq_read+0x4aa/0xd30
[ 2003.874550][T24521]  do_iter_read+0x43b/0x550
[ 2003.879022][T24521]  do_preadv+0x1f4/0x330
[ 2003.883253][T24521]  ? do_writev+0x560/0x560
[ 2003.887652][T24521]  ? security_file_permission+0x128/0x300
[ 2003.893343][T24521]  ? __sb_end_write+0xa4/0xf0
[ 2003.897995][T24521]  ? vfs_write+0x427/0x4f0
[ 2003.902387][T24521]  do_syscall_64+0xcb/0x150
[ 2003.907037][T24521]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2003.912924][T24521] RIP: 0033:0x45d5b9
[ 2003.916806][T24521] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2003.936486][T24521] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 2003.944874][T24521] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 2003.952994][T24521] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 2003.961045][T24521] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 2003.969007][T24521] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000002f
[ 2003.977047][T24521] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
[ 2003.995070][T24492] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/,task=syz-executor.1,pid=11605,uid=0
[ 2004.041095][T24492] Out of memory: Killed process 11605 (syz-executor.1) total-vm:77148kB, anon-rss:20516kB, file-rss:34520kB, shmem-rss:0kB, UID:0 pgtables:156kB oom_score_adj:1000
09:20:53 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0xa000000)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:20:53 executing program 4 (fault-call:14 fault-nth:48):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:53 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0afdef00ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:53 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a00b401ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:53 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0xb00)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

[ 2004.576545][T24544] FAULT_INJECTION: forcing a failure.
[ 2004.576545][T24544] name failslab, interval 1, probability 0, space 0, times 0
[ 2004.589272][T24544] CPU: 0 PID: 24544 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2004.599508][T24544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2004.609567][T24544] Call Trace:
[ 2004.612864][T24544]  dump_stack+0x1b0/0x21e
[ 2004.617199][T24544]  ? devkmsg_release+0x11c/0x11c
[ 2004.622138][T24544]  ? show_regs_print_info+0x12/0x12
[ 2004.627339][T24544]  ? cred_has_capability+0x18c/0x3f0
[ 2004.632638][T24544]  ? cred_has_capability+0x2b2/0x3f0
[ 2004.637922][T24544]  should_fail+0x6fb/0x860
[ 2004.642588][T24544]  ? setup_fault_attr+0x2b0/0x2b0
[ 2004.647614][T24544]  ? slab_free_freelist_hook+0xd0/0x150
[ 2004.653310][T24544]  ? cap_capable+0x23f/0x280
[ 2004.658025][T24544]  ? proc_pid_stack+0x1d5/0x1f0
[ 2004.662879][T24544]  ? proc_pid_stack+0x8e/0x1f0
[ 2004.667649][T24544]  should_failslab+0x5/0x20
[ 2004.672156][T24544]  kmem_cache_alloc_trace+0x39/0x270
[ 2004.677439][T24544]  proc_pid_stack+0x8e/0x1f0
[ 2004.682055][T24544]  proc_single_show+0xd3/0x130
[ 2004.686821][T24544]  seq_read+0x4aa/0xd30
[ 2004.690990][T24544]  do_iter_read+0x43b/0x550
[ 2004.695583][T24544]  do_preadv+0x1f4/0x330
[ 2004.699823][T24544]  ? do_writev+0x560/0x560
[ 2004.704239][T24544]  ? __schedule+0x8ae/0xe30
[ 2004.708754][T24544]  do_syscall_64+0xcb/0x150
[ 2004.713475][T24544]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2004.719566][T24544] RIP: 0033:0x45d5b9
[ 2004.723567][T24544] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2004.743284][T24544] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 2004.751693][T24544] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 2004.759660][T24544] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 2004.767627][T24544] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
09:20:53 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0xfffffffffffffff2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000005c0)=ANY=[@ANYBLOB="3800000010000507000200"/20, @ANYRES32=r4, @ANYBLOB="190000c4160100ffff18001200080001007301000000112b9b8909f2", @ANYRES32], 0x38}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=@ipv6_newaddr={0x2c, 0x14, 0x121, 0x0, 0x0, {0xa, 0x40}, [@IFA_ADDRESS={0x14, 0x1, @rand_addr=' \x01\x00'}]}, 0x2c}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)=ANY=[@ANYRES32, @ANYRES32=0x0, @ANYRES64=r0], 0x34}, 0x1, 0x0, 0x0, 0x4}, 0x44840)
sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000580)={&(0x7f0000000500)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="080800000020fddbd0252000000008000307", @ANYRES32=0x0, @ANYBLOB="08000300", @ANYRES32=0x0, @ANYBLOB="08000300", @ANYRES32=0x0, @ANYBLOB="0800010001000000080001000400000008000300", @ANYRES32=0x0, @ANYBLOB="0c0099000500000003000000080001000100000008000100000000000c0099000700000003000000"], 0x6c}, 0x1, 0x0, 0x0, 0x2000404c}, 0x0)
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x20, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x20}}, 0x0)

[ 2004.775684][T24544] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000030
[ 2004.784523][T24544] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
[ 2004.908889][T24550] systemd-udevd invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=-1000
[ 2004.967683][T24550] CPU: 0 PID: 24550 Comm: systemd-udevd Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2004.977973][T24550] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2004.988016][T24550] Call Trace:
[ 2004.991294][T24550]  dump_stack+0x1b0/0x21e
[ 2004.995722][T24550]  ? devkmsg_release+0x11c/0x11c
[ 2005.000635][T24550]  ? ___ratelimit+0x3bf/0x560
[ 2005.005285][T24550]  ? show_regs_print_info+0x12/0x12
[ 2005.010452][T24550]  ? _raw_spin_lock+0xa1/0x170
[ 2005.016313][T24550]  ? radix_tree_cpu_dead+0x160/0x160
[ 2005.021569][T24550]  dump_header+0xdb/0x700
[ 2005.025964][T24550]  oom_kill_process+0xd3/0x280
[ 2005.030917][T24550]  out_of_memory+0x5b6/0x890
[ 2005.035488][T24550]  ? unregister_oom_notifier+0x20/0x20
[ 2005.040936][T24550]  __alloc_pages_slowpath+0x17bc/0x1cb0
[ 2005.046458][T24550]  ? get_page_from_freelist+0x7c0/0x7c0
[ 2005.051978][T24550]  __alloc_pages_nodemask+0x5cb/0x7c0
[ 2005.057333][T24550]  ? gfp_pfmemalloc_allowed+0x130/0x130
[ 2005.062951][T24550]  ? __rcu_read_lock+0x50/0x50
[ 2005.067699][T24550]  ? lock_page_memcg+0x6e/0x140
[ 2005.072521][T24550]  wp_page_copy+0x1c4/0x10e0
[ 2005.077180][T24550]  ? xas_find+0x61b/0x6f0
[ 2005.081488][T24550]  ? add_mm_rss_vec+0x270/0x270
[ 2005.086338][T24550]  do_wp_page+0x657/0x14b0
[ 2005.090891][T24550]  ? _raw_spin_lock+0xa1/0x170
[ 2005.095626][T24550]  ? do_swap_page+0x1510/0x1510
[ 2005.100449][T24550]  ? finish_fault+0x230/0x230
[ 2005.105099][T24550]  ? switch_mm_irqs_off+0x46e/0x870
[ 2005.110274][T24550]  handle_mm_fault+0xf6c/0x4140
[ 2005.115185][T24550]  ? finish_fault+0x230/0x230
[ 2005.119835][T24550]  ? memset+0x1f/0x40
[ 2005.123793][T24550]  ? down_read_trylock+0x17a/0x1d0
[ 2005.128875][T24550]  ? vmacache_update+0x9f/0xf0
[ 2005.133610][T24550]  do_user_addr_fault+0x48a/0x9f0
[ 2005.138699][T24550]  page_fault+0x2f/0x40
[ 2005.142913][T24550] RIP: 0033:0x7f72b9ae03ae
[ 2005.147313][T24550] Code: b8 38 00 00 00 0f 05 48 3d 00 f0 ff ff 0f 87 de 00 00 00 85 c0 41 89 c5 0f 85 e5 00 00 00 48 8b 05 4f 63 2e 00 48 85 c0 74 04 <48> 83 00 04 0f 31 48 c1 e2 20 89 c0 48 09 d0 64 48 89 04 25 20 06
[ 2005.167339][T24550] RSP: 002b:00007ffee4b93d90 EFLAGS: 00010206
[ 2005.173377][T24550] RAX: 00007f72b9fe3428 RBX: 00007ffee4b93d90 RCX: 00007f72b9ae038b
[ 2005.181324][T24550] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[ 2005.189538][T24550] RBP: 00007ffee4b93de0 R08: 00007f72bac908c0 R09: 0000000000000210
[ 2005.197577][T24550] R10: 00007f72bac90b90 R11: 0000000000000246 R12: 0000000000000000
[ 2005.205619][T24550] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2005.327017][T24550] Mem-Info:
[ 2005.330486][T24550] active_anon:1407919 inactive_anon:12080 isolated_anon:0
[ 2005.330486][T24550]  active_file:425 inactive_file:407 isolated_file:32
[ 2005.330486][T24550]  unevictable:4 dirty:69 writeback:0 unstable:0
[ 2005.330486][T24550]  slab_reclaimable:9683 slab_unreclaimable:79234
[ 2005.330486][T24550]  mapped:56669 shmem:6894 pagetables:35363 bounce:0
[ 2005.330486][T24550]  free:13649 free_pcp:50 free_cma:0
[ 2005.380032][T24550] Node 0 active_anon:5631776kB inactive_anon:48320kB active_file:1384kB inactive_file:1400kB unevictable:16kB isolated(anon):0kB isolated(file):196kB mapped:226176kB dirty:276kB writeback:0kB shmem:27576kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2005.405138][T24550] DMA free:15904kB min:24kB low:36kB high:48kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15904kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2005.432030][T24550] lowmem_reserve[]: 0 2912 6416 6416
[ 2005.453729][T24550] DMA32 free:18892kB min:8740kB low:11720kB high:14700kB active_anon:2934360kB inactive_anon:0kB active_file:104kB inactive_file:0kB unevictable:0kB writepending:4kB present:3129332kB managed:2983760kB mlocked:0kB kernel_stack:3232kB pagetables:2028kB bounce:0kB free_pcp:4kB local_pcp:4kB free_cma:0kB
[ 2005.506766][T24550] lowmem_reserve[]: 0 0 3504 3504
[ 2005.511868][T24550] Normal free:20608kB min:5592kB low:9180kB high:12768kB active_anon:2697976kB inactive_anon:48320kB active_file:836kB inactive_file:964kB unevictable:16kB writepending:288kB present:4718592kB managed:3588928kB mlocked:16kB kernel_stack:38688kB pagetables:139424kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB
[ 2005.541560][T24550] lowmem_reserve[]: 0 0 0 0
[ 2005.546262][T24550] DMA: 0*4kB 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (U) 3*4096kB (M) = 15904kB
[ 2005.559658][T24550] DMA32: 45*4kB (UMH) 15*8kB (UM) 27*16kB (UMH) 224*32kB (UMH) 112*64kB (UMH) 33*128kB (UMH) 1*256kB (M) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 19548kB
[ 2005.574929][T24550] Normal: 349*4kB (UMEH) 511*8kB (UMEH) 202*16kB (UMEH) 143*32kB (UMEH) 38*64kB (UMEH) 5*128kB (UH) 1*256kB (M) 1*512kB (M) 2*1024kB (M) 0*2048kB 0*4096kB = 19180kB
[ 2005.591686][T24550] 7566 total pagecache pages
[ 2005.594064][T24540]  loop3: p1 p2 < > p3 p4 < p5 >
[ 2005.596331][T24550] 0 pages in swap cache
[ 2005.601368][T24540] loop3: partition table partially beyond EOD, truncated
[ 2005.612215][T24550] Swap cache stats: add 0, delete 0, find 0/0
[ 2005.613596][T24540] loop3: p1 start 28573706 is beyond EOD, truncated
[ 2005.626993][T24540] loop3: p2 start 25 is beyond EOD, truncated
[ 2005.633893][T24550] Free swap  = 0kB
[ 2005.634101][T24540] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 2005.644880][T24550] Total swap = 0kB
[ 2005.645346][T24540] loop3: p4 size 2 extends beyond EOD, truncated
09:20:54 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0xb000000)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

[ 2005.655286][T24550] 1965979 pages RAM
[ 2005.659389][T24550] 0 pages HighMem/MovableOnly
[ 2005.664686][T24550] 318831 pages reserved
[ 2005.669824][T24540] loop3: p5 start 28573706 is beyond EOD, truncated
[ 2005.669917][T24550] 0 pages cma reserved
[ 2005.681290][T24550] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/,task=syz-executor.0,pid=13565,uid=0
[ 2005.713597][T24550] Out of memory: Killed process 13565 (syz-executor.0) total-vm:85480kB, anon-rss:16584kB, file-rss:34840kB, shmem-rss:0kB, UID:0 pgtables:160kB oom_score_adj:1000
09:20:54 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a000402ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:54 executing program 4 (fault-call:14 fault-nth:49):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

[ 2005.771413][  T146]  loop3: p1 p2 < > p3 p4 < p5 >
[ 2005.797815][  T146] loop3: partition table partially beyond EOD, truncated
[ 2005.814497][   T23] oom_reaper: reaped process 13565 (syz-executor.0), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[ 2005.815799][  T146] loop3: p1 start 28573706 is beyond EOD, truncated
[ 2005.838928][  T146] loop3: p2 start 25 is beyond EOD, truncated
[ 2005.854454][  T146] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 2005.861281][  T146] loop3: p4 size 2 extends beyond EOD, truncated
[ 2005.898855][  T146] loop3: p5 start 28573706 is beyond EOD, truncated
[ 2006.093238][T24570] FAULT_INJECTION: forcing a failure.
[ 2006.093238][T24570] name failslab, interval 1, probability 0, space 0, times 0
[ 2006.105941][T24570] CPU: 1 PID: 24570 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2006.116178][T24570] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2006.126532][T24570] Call Trace:
[ 2006.129906][T24570]  dump_stack+0x1b0/0x21e
[ 2006.134215][T24570]  ? devkmsg_release+0x11c/0x11c
[ 2006.139135][T24570]  ? show_regs_print_info+0x12/0x12
[ 2006.144304][T24570]  ? cred_has_capability+0x18c/0x3f0
[ 2006.149655][T24570]  ? cred_has_capability+0x2b2/0x3f0
[ 2006.154908][T24570]  should_fail+0x6fb/0x860
[ 2006.159297][T24570]  ? setup_fault_attr+0x2b0/0x2b0
[ 2006.164305][T24570]  ? slab_free_freelist_hook+0xd0/0x150
[ 2006.169819][T24570]  ? cap_capable+0x23f/0x280
[ 2006.174378][T24570]  ? proc_pid_stack+0x1d5/0x1f0
[ 2006.179207][T24570]  ? proc_pid_stack+0x8e/0x1f0
[ 2006.183939][T24570]  should_failslab+0x5/0x20
[ 2006.188424][T24570]  kmem_cache_alloc_trace+0x39/0x270
[ 2006.193682][T24570]  proc_pid_stack+0x8e/0x1f0
[ 2006.198256][T24570]  proc_single_show+0xd3/0x130
[ 2006.202989][T24570]  seq_read+0x4aa/0xd30
[ 2006.207321][T24570]  do_iter_read+0x43b/0x550
[ 2006.211810][T24570]  do_preadv+0x1f4/0x330
[ 2006.216045][T24570]  ? do_writev+0x560/0x560
[ 2006.220454][T24570]  ? security_file_permission+0x128/0x300
[ 2006.226243][T24570]  ? __sb_end_write+0xa4/0xf0
[ 2006.230892][T24570]  ? vfs_write+0x427/0x4f0
[ 2006.235294][T24570]  do_syscall_64+0xcb/0x150
[ 2006.239779][T24570]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2006.245643][T24570] RIP: 0033:0x45d5b9
[ 2006.249538][T24570] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2006.269126][T24570] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 2006.277509][T24570] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 2006.286840][T24570] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 2006.294867][T24570] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 2006.302807][T24570] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000031
[ 2006.310749][T24570] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
[ 2006.382240][T24556] syz-executor.0 invoked oom-killer: gfp_mask=0x1100dca(GFP_HIGHUSER_MOVABLE|__GFP_ZERO|0x1000000), order=0, oom_score_adj=1000
[ 2006.432027][T24556] CPU: 0 PID: 24556 Comm: syz-executor.0 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2006.442205][T24556] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2006.452250][T24556] Call Trace:
[ 2006.455537][T24556]  dump_stack+0x1b0/0x21e
[ 2006.459855][T24556]  ? devkmsg_release+0x11c/0x11c
[ 2006.464859][T24556]  ? ___ratelimit+0x3bf/0x560
[ 2006.469517][T24556]  ? show_regs_print_info+0x12/0x12
[ 2006.474713][T24556]  ? _raw_spin_lock+0xa1/0x170
[ 2006.479465][T24556]  ? radix_tree_cpu_dead+0x160/0x160
[ 2006.484906][T24556]  dump_header+0xdb/0x700
[ 2006.489210][T24556]  oom_kill_process+0xd3/0x280
[ 2006.493944][T24556]  out_of_memory+0x5b6/0x890
[ 2006.498503][T24556]  ? unregister_oom_notifier+0x20/0x20
[ 2006.503936][T24556]  __alloc_pages_slowpath+0x17bc/0x1cb0
[ 2006.509456][T24556]  ? get_page_from_freelist+0x7c0/0x7c0
[ 2006.514973][T24556]  __alloc_pages_nodemask+0x5cb/0x7c0
[ 2006.520325][T24556]  ? gfp_pfmemalloc_allowed+0x130/0x130
[ 2006.525847][T24556]  ? __perf_event_task_sched_in+0x4ed/0x550
[ 2006.531712][T24556]  wp_page_copy+0x199/0x10e0
[ 2006.536277][T24556]  ? switch_mm_irqs_off+0x25d/0x870
[ 2006.542062][T24556]  ? switch_mm+0xe0/0xe0
[ 2006.546361][T24556]  ? add_mm_rss_vec+0x270/0x270
[ 2006.551284][T24556]  ? vm_normal_page+0x1c9/0x1d0
[ 2006.556113][T24556]  do_wp_page+0x48d/0x14b0
[ 2006.560498][T24556]  ? _raw_spin_lock+0xa1/0x170
[ 2006.565271][T24556]  ? do_swap_page+0x1510/0x1510
[ 2006.570095][T24556]  handle_mm_fault+0xf6c/0x4140
[ 2006.575123][T24556]  ? finish_fault+0x230/0x230
[ 2006.579784][T24556]  ? update_curr+0x584/0x740
[ 2006.584371][T24556]  ? down_read_trylock+0x17a/0x1d0
[ 2006.589561][T24556]  ? _raw_spin_unlock_irq+0x5/0x20
[ 2006.594648][T24556]  ? vmacache_find+0x205/0x4b0
[ 2006.599384][T24556]  do_user_addr_fault+0x48a/0x9f0
[ 2006.604395][T24556]  page_fault+0x2f/0x40
[ 2006.608526][T24556] RIP: 0010:copy_user_enhanced_fast_string+0xe/0x30
[ 2006.615081][T24556] Code: 89 d1 c1 e9 03 83 e2 07 f3 48 a5 89 d1 f3 a4 31 c0 0f 1f 00 c3 0f 1f 80 00 00 00 00 0f 1f 00 83 fa 40 0f 82 70 ff ff ff 89 d1 <f3> a4 31 c0 0f 1f 00 c3 66 2e 0f 1f 84 00 00 00 00 00 89 d1 f3 a4
[ 2006.634868][T24556] RSP: 0018:ffff8881cb767888 EFLAGS: 00010206
[ 2006.640903][T24556] RAX: ffffffff81f5ae01 RBX: 0000000020821500 RCX: 0000000000000500
[ 2006.648844][T24556] RDX: 0000000000001000 RSI: ffff8881c8dbbb00 RDI: 0000000020821000
[ 2006.656799][T24556] RBP: ffff8881cb767da8 R08: dffffc0000000000 R09: ffffed10391b7800
[ 2006.664843][T24556] R10: 0000000000000000 R11: 0000000000000000 R12: 00007ffffffff000
[ 2006.672796][T24556] R13: 0000000000001000 R14: ffff8881c8dbb000 R15: 0000000020820500
[ 2006.680752][T24556]  ? _copy_to_iter+0xfb1/0xfc0
[ 2006.685488][T24556]  copyout+0x8e/0xb0
[ 2006.689453][T24556]  copy_page_to_iter+0x393/0xbd0
[ 2006.694373][T24556]  pipe_to_user+0xa3/0x130
[ 2006.698760][T24556]  __splice_from_pipe+0x2d3/0x870
[ 2006.703754][T24556]  ? user_page_pipe_buf_steal+0xc0/0xc0
[ 2006.709353][T24556]  do_vmsplice+0x240/0xe70
[ 2006.713739][T24556]  ? write_pipe_buf+0x1d0/0x1d0
[ 2006.718559][T24556]  ? __rcu_read_lock+0x50/0x50
[ 2006.723317][T24556]  ? check_stack_object+0x5a/0x90
[ 2006.728310][T24556]  ? _copy_from_user+0xa4/0xe0
[ 2006.733145][T24556]  ? rw_copy_check_uvector+0x2b3/0x310
[ 2006.738833][T24556]  ? import_iovec+0x171/0x340
[ 2006.743741][T24556]  ? dup_iter+0x110/0x110
[ 2006.748051][T24556]  ? do_vfs_ioctl+0x757/0x1700
[ 2006.752783][T24556]  __se_sys_vmsplice+0x1cc/0x2c0
[ 2006.757693][T24556]  ? __x64_sys_vmsplice+0xa0/0xa0
[ 2006.762689][T24556]  ? put_timespec64+0x106/0x150
[ 2006.767514][T24556]  ? ktime_get_raw+0x130/0x130
[ 2006.772269][T24556]  ? get_timespec64+0x1c0/0x1c0
[ 2006.777105][T24556]  ? fget_many+0x20/0x20
[ 2006.781337][T24556]  ? __ia32_sys_clock_settime+0x230/0x230
[ 2006.787026][T24556]  do_syscall_64+0xcb/0x150
[ 2006.791585][T24556]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2006.797461][T24556] RIP: 0033:0x45d5b9
[ 2006.801327][T24556] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2006.821509][T24556] RSP: 002b:00007fc344b26c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000116
[ 2006.829901][T24556] RAX: ffffffffffffffda RBX: 0000000000036640 RCX: 000000000045d5b9
[ 2006.837842][T24556] RDX: 0000000000000001 RSI: 0000000020000000 RDI: 0000000000000004
[ 2006.845794][T24556] RBP: 000000000118d0c8 R08: 0000000000000000 R09: 0000000000000000
[ 2006.853845][T24556] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118d08c
[ 2006.862048][T24556] R13: 00007ffd4130796f R14: 00007fc344b279c0 R15: 000000000118d08c
09:20:55 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0aeffd00ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:55 executing program 4 (fault-call:14 fault-nth:50):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:55 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a004a02ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:55 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r0, 0x0)
ioctl$VT_GETSTATE(r0, 0x5603, &(0x7f0000000080)={0x4, 0x8, 0x1ff})
r1 = getpid()
sched_setattr(r1, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
syz_io_uring_submit(0x0, 0x0, &(0x7f0000001540)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x8, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x6)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f0000001780)=[{&(0x7f00000002c0)=""/187, 0xbb}, {&(0x7f0000000080)}, {&(0x7f0000000380)=""/193, 0xc1}, {&(0x7f00000001c0)=""/48, 0x30}, {&(0x7f0000000480)=""/177, 0xb1}, {&(0x7f0000000540)=""/4096, 0x1000}, {&(0x7f0000001840)=""/182, 0xb6}, {&(0x7f0000001600)=""/87, 0x57}, {&(0x7f0000001680)=""/147, 0x93}, {&(0x7f0000001740)=""/46, 0x2e}], 0xa, 0x0, 0x0)
fcntl$setflags(r3, 0x2, 0x1)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="007127bd70ca1c1715c85eff0467"], 0x14}}, 0x0)

09:20:55 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0xc000000)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

[ 2007.181503][T24591] FAULT_INJECTION: forcing a failure.
[ 2007.181503][T24591] name failslab, interval 1, probability 0, space 0, times 0
[ 2007.194277][T24591] CPU: 0 PID: 24591 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2007.204687][T24591] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2007.214727][T24591] Call Trace:
[ 2007.218285][T24591]  dump_stack+0x1b0/0x21e
[ 2007.222676][T24591]  ? devkmsg_release+0x11c/0x11c
[ 2007.227618][T24591]  ? show_regs_print_info+0x12/0x12
[ 2007.232788][T24591]  ? cred_has_capability+0x18c/0x3f0
[ 2007.238045][T24591]  ? cred_has_capability+0x2b2/0x3f0
[ 2007.243316][T24591]  should_fail+0x6fb/0x860
[ 2007.247730][T24591]  ? setup_fault_attr+0x2b0/0x2b0
[ 2007.252726][T24591]  ? slab_free_freelist_hook+0xd0/0x150
[ 2007.258331][T24591]  ? cap_capable+0x23f/0x280
[ 2007.262907][T24591]  ? proc_pid_stack+0x1d5/0x1f0
[ 2007.267998][T24591]  ? proc_pid_stack+0x8e/0x1f0
[ 2007.272737][T24591]  should_failslab+0x5/0x20
[ 2007.277211][T24591]  kmem_cache_alloc_trace+0x39/0x270
[ 2007.282551][T24591]  proc_pid_stack+0x8e/0x1f0
[ 2007.287669][T24591]  proc_single_show+0xd3/0x130
[ 2007.292415][T24591]  seq_read+0x4aa/0xd30
[ 2007.296550][T24591]  do_iter_read+0x43b/0x550
[ 2007.301033][T24591]  do_preadv+0x1f4/0x330
[ 2007.305243][T24591]  ? do_writev+0x560/0x560
[ 2007.309642][T24591]  ? security_file_permission+0x128/0x300
[ 2007.315335][T24591]  ? __sb_end_write+0xa4/0xf0
[ 2007.319980][T24591]  ? vfs_write+0x427/0x4f0
[ 2007.324370][T24591]  do_syscall_64+0xcb/0x150
[ 2007.328865][T24591]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2007.334729][T24591] RIP: 0033:0x45d5b9
[ 2007.338596][T24591] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2007.358259][T24591] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 2007.366640][T24591] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 2007.374844][T24591] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 2007.382873][T24591] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 2007.390813][T24591] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000032
[ 2007.398755][T24591] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
[ 2007.630010][T24556] Mem-Info:
[ 2007.634899][T24586]  loop3: p1 p2 < > p3 p4 < p5 >
[ 2007.638759][T24586] loop3: partition table partially beyond EOD, truncated
[ 2007.644025][T24556] active_anon:1407281 inactive_anon:12081 isolated_anon:0
[ 2007.644025][T24556]  active_file:543 inactive_file:1064 isolated_file:32
[ 2007.644025][T24556]  unevictable:4 dirty:50 writeback:0 unstable:0
[ 2007.644025][T24556]  slab_reclaimable:9728 slab_unreclaimable:79470
[ 2007.644025][T24556]  mapped:57068 shmem:6894 pagetables:35432 bounce:0
[ 2007.644025][T24556]  free:12784 free_pcp:477 free_cma:0
[ 2007.653039][T24586] loop3: p1 start 38404106 is beyond EOD, truncated
[ 2007.762325][T24556] Node 0 active_anon:5633224kB inactive_anon:48324kB active_file:2768kB inactive_file:2356kB unevictable:16kB isolated(anon):0kB isolated(file):268kB mapped:228172kB dirty:200kB writeback:0kB shmem:27576kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2007.812033][T24586] loop3: p2 start 25 is beyond EOD, truncated
[ 2007.850928][T24586] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 2007.884893][T24586] loop3: p4 size 2 extends beyond EOD, truncated
[ 2007.905845][T24586] loop3: p5 start 38404106 is beyond EOD, truncated
[ 2007.912794][T24556] DMA free:15904kB min:24kB low:36kB high:48kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15904kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2007.955718][T24556] lowmem_reserve[]: 0 2912 6416 6416
[ 2007.961417][T24556] DMA32 free:19460kB min:8740kB low:11720kB high:14700kB active_anon:2937844kB inactive_anon:0kB active_file:108kB inactive_file:0kB unevictable:0kB writepending:8kB present:3129332kB managed:2983760kB mlocked:0kB kernel_stack:3232kB pagetables:2040kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2007.990132][T24556] lowmem_reserve[]: 0 0 3504 3504
[ 2007.995394][T24556] Normal free:15532kB min:21976kB low:25564kB high:29152kB active_anon:2698924kB inactive_anon:48320kB active_file:808kB inactive_file:656kB unevictable:16kB writepending:200kB present:4718592kB managed:3588928kB mlocked:16kB kernel_stack:38752kB pagetables:139792kB bounce:0kB free_pcp:360kB local_pcp:56kB free_cma:0kB
[ 2008.028382][T24556] lowmem_reserve[]: 0 0 0 0
[ 2008.033100][T24556] DMA: 0*4kB 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (U) 3*4096kB (M) = 15904kB
[ 2008.046768][T24556] DMA32: 20*4kB (UMH) 3*8kB (UM) 32*16kB (UMH) 221*32kB (UMH) 120*64kB (UMH) 30*128kB (UMH) 1*256kB (M) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 19464kB
[ 2008.062723][T24556] Normal: 624*4kB (UMEH) 483*8kB (UMEH) 164*16kB (UMEH) 94*32kB (UMEH) 34*64kB (UMEH) 5*128kB (MH) 0*256kB 1*512kB (M) 0*1024kB 0*2048kB 0*4096kB = 15320kB
[ 2008.079199][T24556] 7036 total pagecache pages
[ 2008.084637][T24556] 0 pages in swap cache
[ 2008.088954][T24556] Swap cache stats: add 0, delete 0, find 0/0
[ 2008.095518][T24556] Free swap  = 0kB
[ 2008.099649][T24556] Total swap = 0kB
[ 2008.103965][T24556] 1965979 pages RAM
[ 2008.107917][T24556] 0 pages HighMem/MovableOnly
[ 2008.112745][T24556] 318831 pages reserved
[ 2008.117147][T24556] 0 pages cma reserved
[ 2008.121358][T24556] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/,task=syz-executor.0,pid=13083,uid=0
[ 2008.136098][T24556] Out of memory: Killed process 13083 (syz-executor.0) total-vm:85480kB, anon-rss:16584kB, file-rss:34840kB, shmem-rss:0kB, UID:0 pgtables:160kB oom_score_adj:1000
[ 2008.157714][   T23] oom_reaper: reaped process 13083 (syz-executor.0), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
09:20:57 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a00a202ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:57 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0xc00)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:20:57 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a000200ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:57 executing program 4 (fault-call:14 fault-nth:51):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:57 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0xd00)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

[ 2008.614087][T24603]  loop3: p1 p2 < > p3 p4 < p5 >
[ 2008.619446][T24603] loop3: partition table partially beyond EOD, truncated
[ 2008.687616][T24603] loop3: p1 start 44171274 is beyond EOD, truncated
[ 2008.718427][T24603] loop3: p2 start 25 is beyond EOD, truncated
[ 2008.745460][T24603] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 2008.770093][T24603] loop3: p4 size 2 extends beyond EOD, truncated
[ 2008.784347][T24603] loop3: p5 start 44171274 is beyond EOD, truncated
[ 2008.801375][T24623] FAULT_INJECTION: forcing a failure.
[ 2008.801375][T24623] name failslab, interval 1, probability 0, space 0, times 0
[ 2008.814113][T24623] CPU: 1 PID: 24623 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2008.824238][T24623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2008.834308][T24623] Call Trace:
[ 2008.837577][T24623]  dump_stack+0x1b0/0x21e
[ 2008.841912][T24623]  ? devkmsg_release+0x11c/0x11c
[ 2008.846821][T24623]  ? show_regs_print_info+0x12/0x12
[ 2008.851991][T24623]  ? cred_has_capability+0x18c/0x3f0
[ 2008.857247][T24623]  ? cred_has_capability+0x2b2/0x3f0
[ 2008.862592][T24623]  should_fail+0x6fb/0x860
[ 2008.866980][T24623]  ? setup_fault_attr+0x2b0/0x2b0
[ 2008.871980][T24623]  ? slab_free_freelist_hook+0xd0/0x150
[ 2008.877497][T24623]  ? cap_capable+0x23f/0x280
[ 2008.882060][T24623]  ? proc_pid_stack+0x1d5/0x1f0
[ 2008.886879][T24623]  ? proc_pid_stack+0x8e/0x1f0
[ 2008.891610][T24623]  should_failslab+0x5/0x20
[ 2008.896084][T24623]  kmem_cache_alloc_trace+0x39/0x270
[ 2008.901342][T24623]  proc_pid_stack+0x8e/0x1f0
[ 2008.905902][T24623]  proc_single_show+0xd3/0x130
[ 2008.910639][T24623]  seq_read+0x4aa/0xd30
[ 2008.914774][T24623]  do_iter_read+0x43b/0x550
[ 2008.919251][T24623]  do_preadv+0x1f4/0x330
[ 2008.923469][T24623]  ? do_writev+0x560/0x560
[ 2008.927861][T24623]  ? security_file_permission+0x128/0x300
[ 2008.933558][T24623]  ? __sb_end_write+0xa4/0xf0
[ 2008.938295][T24623]  ? vfs_write+0x427/0x4f0
[ 2008.943011][T24623]  do_syscall_64+0xcb/0x150
[ 2008.947488][T24623]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2008.953351][T24623] RIP: 0033:0x45d5b9
[ 2008.957241][T24623] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2008.976821][T24623] RSP: 002b:00007f5525a80c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 2008.985215][T24623] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 2008.993159][T24623] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 2009.001100][T24623] RBP: 00007f5525a80ca0 R08: 0000000000000000 R09: 0000000000000000
[ 2009.009044][T24623] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000033
[ 2009.017295][T24623] R13: 00007ffd8cac604f R14: 00007f5525a819c0 R15: 000000000118d1cc
[ 2009.066834][T24614] syz-executor.5 invoked oom-killer: gfp_mask=0x1100dca(GFP_HIGHUSER_MOVABLE|__GFP_ZERO|0x1000000), order=0, oom_score_adj=1000
[ 2009.080342][T24614] CPU: 1 PID: 24614 Comm: syz-executor.5 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2009.090701][T24614] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2009.100749][T24614] Call Trace:
[ 2009.104019][T24614]  dump_stack+0x1b0/0x21e
[ 2009.108322][T24614]  ? devkmsg_release+0x11c/0x11c
[ 2009.113246][T24614]  ? ___ratelimit+0x3bf/0x560
[ 2009.117895][T24614]  ? show_regs_print_info+0x12/0x12
[ 2009.123064][T24614]  ? _raw_spin_lock+0xa1/0x170
[ 2009.127818][T24614]  ? radix_tree_cpu_dead+0x160/0x160
[ 2009.133076][T24614]  dump_header+0xdb/0x700
[ 2009.137393][T24614]  oom_kill_process+0xd3/0x280
[ 2009.142130][T24614]  out_of_memory+0x5b6/0x890
[ 2009.146891][T24614]  ? unregister_oom_notifier+0x20/0x20
[ 2009.152331][T24614]  __alloc_pages_slowpath+0x17bc/0x1cb0
[ 2009.158051][T24614]  ? get_page_from_freelist+0x7c0/0x7c0
[ 2009.163570][T24614]  ? flush_tlb_func_common+0x45/0x580
[ 2009.168918][T24614]  __alloc_pages_nodemask+0x5cb/0x7c0
[ 2009.174392][T24614]  ? gfp_pfmemalloc_allowed+0x130/0x130
[ 2009.179911][T24614]  ? mem_cgroup_commit_charge+0x198/0x240
[ 2009.185888][T24614]  ? mem_cgroup_try_charge_delay+0x10/0x10
[ 2009.192358][T24614]  ? __lru_cache_add+0x1a1/0x1f0
[ 2009.197268][T24614]  wp_page_copy+0x199/0x10e0
[ 2009.201835][T24614]  ? add_mm_rss_vec+0x270/0x270
[ 2009.206847][T24614]  ? vm_normal_page+0x1c9/0x1d0
[ 2009.211678][T24614]  do_wp_page+0x48d/0x14b0
[ 2009.216078][T24614]  ? _raw_spin_lock+0xa1/0x170
[ 2009.220905][T24614]  ? do_swap_page+0x1510/0x1510
[ 2009.225731][T24614]  handle_mm_fault+0xf6c/0x4140
[ 2009.230554][T24614]  ? finish_fault+0x230/0x230
[ 2009.235229][T24614]  ? update_curr+0x584/0x740
[ 2009.239791][T24614]  ? down_read_trylock+0x17a/0x1d0
[ 2009.244890][T24614]  ? _raw_spin_unlock_irq+0x5/0x20
[ 2009.249973][T24614]  ? vmacache_find+0x3a2/0x4b0
[ 2009.254731][T24614]  do_user_addr_fault+0x48a/0x9f0
[ 2009.259818][T24614]  page_fault+0x2f/0x40
[ 2009.263947][T24614] RIP: 0010:copy_user_enhanced_fast_string+0xe/0x30
[ 2009.270523][T24614] Code: 89 d1 c1 e9 03 83 e2 07 f3 48 a5 89 d1 f3 a4 31 c0 0f 1f 00 c3 0f 1f 80 00 00 00 00 0f 1f 00 83 fa 40 0f 82 70 ff ff ff 89 d1 <f3> a4 31 c0 0f 1f 00 c3 66 2e 0f 1f 84 00 00 00 00 00 89 d1 f3 a4
[ 2009.290191][T24614] RSP: 0018:ffff888160c67888 EFLAGS: 00010206
[ 2009.296239][T24614] RAX: ffffffff81f5ae01 RBX: 0000000020c89500 RCX: 0000000000000500
[ 2009.304192][T24614] RDX: 0000000000001000 RSI: ffff8881c6d2ab00 RDI: 0000000020c89000
[ 2009.312147][T24614] RBP: ffff888160c67da8 R08: dffffc0000000000 R09: ffffed1038da5600
[ 2009.320088][T24614] R10: 0000000000000000 R11: 0000000000000000 R12: 00007ffffffff000
[ 2009.328124][T24614] R13: 0000000000001000 R14: ffff8881c6d2a000 R15: 0000000020c88500
[ 2009.336087][T24614]  ? _copy_to_iter+0xfb1/0xfc0
[ 2009.340834][T24614]  copyout+0x8e/0xb0
[ 2009.344713][T24614]  copy_page_to_iter+0x393/0xbd0
[ 2009.349630][T24614]  pipe_to_user+0xa3/0x130
[ 2009.354018][T24614]  __splice_from_pipe+0x2d3/0x870
[ 2009.359025][T24614]  ? user_page_pipe_buf_steal+0xc0/0xc0
[ 2009.364539][T24614]  do_vmsplice+0x240/0xe70
[ 2009.368939][T24614]  ? write_pipe_buf+0x1d0/0x1d0
[ 2009.373791][T24614]  ? __rcu_read_lock+0x50/0x50
[ 2009.378525][T24614]  ? check_stack_object+0x5a/0x90
[ 2009.383519][T24614]  ? _copy_from_user+0xa4/0xe0
[ 2009.388340][T24614]  ? rw_copy_check_uvector+0x2b3/0x310
[ 2009.393772][T24614]  ? import_iovec+0x171/0x340
[ 2009.398426][T24614]  ? dup_iter+0x110/0x110
[ 2009.402737][T24614]  ? do_vfs_ioctl+0x757/0x1700
[ 2009.407476][T24614]  __se_sys_vmsplice+0x1cc/0x2c0
[ 2009.412386][T24614]  ? __x64_sys_vmsplice+0xa0/0xa0
[ 2009.417380][T24614]  ? put_timespec64+0x106/0x150
[ 2009.422211][T24614]  ? ktime_get_raw+0x130/0x130
[ 2009.427040][T24614]  ? get_timespec64+0x1c0/0x1c0
[ 2009.431859][T24614]  ? fget_many+0x20/0x20
[ 2009.436073][T24614]  ? __ia32_sys_clock_settime+0x230/0x230
[ 2009.441772][T24614]  do_syscall_64+0xcb/0x150
[ 2009.446255][T24614]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2009.452118][T24614] RIP: 0033:0x45d5b9
[ 2009.456080][T24614] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2009.475666][T24614] RSP: 002b:00007fa6b28e4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000116
[ 2009.484059][T24614] RAX: ffffffffffffffda RBX: 0000000000036640 RCX: 000000000045d5b9
[ 2009.492003][T24614] RDX: 0000000000000001 RSI: 0000000020000000 RDI: 0000000000000003
[ 2009.500033][T24614] RBP: 000000000118d028 R08: 0000000000000000 R09: 0000000000000000
[ 2009.508323][T24614] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118cfec
[ 2009.518205][T24614] R13: 00007ffc0feb818f R14: 00007fa6b28e59c0 R15: 000000000118cfec
[ 2009.538062][T24614] Mem-Info:
[ 2009.541399][T24614] active_anon:1406980 inactive_anon:12081 isolated_anon:0
[ 2009.541399][T24614]  active_file:666 inactive_file:644 isolated_file:89
[ 2009.541399][T24614]  unevictable:4 dirty:35 writeback:1 unstable:0
[ 2009.541399][T24614]  slab_reclaimable:9768 slab_unreclaimable:79285
[ 2009.541399][T24614]  mapped:56977 shmem:6895 pagetables:35390 bounce:0
[ 2009.541399][T24614]  free:13715 free_pcp:392 free_cma:0
[ 2009.580622][T24614] Node 0 active_anon:5627920kB inactive_anon:48324kB active_file:2664kB inactive_file:2676kB unevictable:16kB isolated(anon):0kB isolated(file):180kB mapped:227808kB dirty:140kB writeback:4kB shmem:27580kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
09:20:58 executing program 4 (fault-call:14 fault-nth:52):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:20:58 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a000300ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 2009.606815][T24614] DMA free:15904kB min:24kB low:36kB high:48kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15904kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2009.701540][T24614] lowmem_reserve[]: 0 2912 6416 6416
[ 2009.713686][T24614] DMA32 free:20712kB min:8740kB low:11720kB high:14700kB active_anon:2938724kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2983760kB mlocked:0kB kernel_stack:3232kB pagetables:2040kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2009.771285][T24614] lowmem_reserve[]: 0 0 3504 3504
[ 2009.777114][T24614] Normal free:22168kB min:17880kB low:21468kB high:25056kB active_anon:2689288kB inactive_anon:48324kB active_file:2288kB inactive_file:2056kB unevictable:16kB writepending:144kB present:4718592kB managed:3588928kB mlocked:16kB kernel_stack:38464kB pagetables:139520kB bounce:0kB free_pcp:248kB local_pcp:248kB free_cma:0kB
[ 2009.830727][T24614] lowmem_reserve[]: 0 0 0 0
[ 2009.835607][T24614] DMA: 0*4kB 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (U) 3*4096kB (M) = 15904kB
[ 2009.863334][T24614] DMA32: 21*4kB (UMEH) 1*8kB (U) 29*16kB (UEH) 239*32kB (UMEH) 125*64kB (UMEH) 35*128kB (UMEH) 2*256kB (ME) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 21196kB
[ 2009.879716][T24614] Normal: 339*4kB (UMEH) 645*8kB (UMEH) 215*16kB (UMEH) 107*32kB (UMEH) 31*64kB (UMEH) 33*128kB (UMH) 3*256kB (M) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20356kB
[ 2009.897179][T24614] 7805 total pagecache pages
[ 2009.904050][T24614] 0 pages in swap cache
[ 2009.909202][T24614] Swap cache stats: add 0, delete 0, find 0/0
[ 2009.916280][T24614] Free swap  = 0kB
[ 2009.920870][T24614] Total swap = 0kB
[ 2009.926296][T24614] 1965979 pages RAM
[ 2009.930889][T24614] 0 pages HighMem/MovableOnly
[ 2009.942426][T24614] 318831 pages reserved
[ 2009.955675][T24614] 0 pages cma reserved
[ 2009.963583][T24614] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/,task=syz-executor.4,pid=9919,uid=0
09:20:58 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a000400ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 2009.981304][T24614] Out of memory: Killed process 9919 (syz-executor.4) total-vm:85612kB, anon-rss:16580kB, file-rss:34840kB, shmem-rss:0kB, UID:0 pgtables:164kB oom_score_adj:1000
09:20:58 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a00b202ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:20:59 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0xd000000)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

[ 2010.215945][T24656] FAULT_INJECTION: forcing a failure.
[ 2010.215945][T24656] name failslab, interval 1, probability 0, space 0, times 0
[ 2010.229002][T24656] CPU: 1 PID: 24656 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2010.239248][T24656] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2010.249469][T24656] Call Trace:
[ 2010.253011][T24656]  dump_stack+0x1b0/0x21e
[ 2010.257318][T24656]  ? devkmsg_release+0x11c/0x11c
[ 2010.262233][T24656]  ? __schedule+0x8ae/0xe30
[ 2010.266706][T24656]  ? show_regs_print_info+0x12/0x12
[ 2010.271889][T24656]  ? cred_has_capability+0x18c/0x3f0
[ 2010.277406][T24656]  ? cred_has_capability+0x2b2/0x3f0
[ 2010.282663][T24656]  should_fail+0x6fb/0x860
[ 2010.287054][T24656]  ? setup_fault_attr+0x2b0/0x2b0
[ 2010.292068][T24656]  ? cap_capable+0x23f/0x280
[ 2010.296646][T24656]  ? preempt_schedule_notrace+0x110/0x110
[ 2010.302334][T24656]  ? proc_pid_stack+0x8e/0x1f0
[ 2010.307072][T24656]  should_failslab+0x5/0x20
[ 2010.311551][T24656]  kmem_cache_alloc_trace+0x39/0x270
[ 2010.316811][T24656]  proc_pid_stack+0x8e/0x1f0
[ 2010.321394][T24656]  proc_single_show+0xd3/0x130
[ 2010.326130][T24656]  seq_read+0x4aa/0xd30
[ 2010.330263][T24656]  do_iter_read+0x43b/0x550
[ 2010.335264][T24656]  do_preadv+0x1f4/0x330
[ 2010.339571][T24656]  ? do_writev+0x560/0x560
[ 2010.343962][T24656]  ? security_file_permission+0x128/0x300
[ 2010.349750][T24656]  ? __sb_end_write+0xa4/0xf0
[ 2010.354515][T24656]  ? vfs_write+0x427/0x4f0
[ 2010.359163][T24656]  ? do_syscall_64+0x80/0x150
[ 2010.364104][T24656]  ? do_syscall_64+0x9c/0x150
[ 2010.368766][T24656]  do_syscall_64+0xcb/0x150
[ 2010.373256][T24656]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2010.379207][T24656] RIP: 0033:0x45d5b9
[ 2010.383248][T24656] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2010.402913][T24656] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 2010.411386][T24656] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 2010.419330][T24656] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 2010.427278][T24656] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 2010.435221][T24656] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000034
[ 2010.443336][T24656] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
[ 2010.776495][T24652] syz-executor.5 invoked oom-killer: gfp_mask=0x1100dca(GFP_HIGHUSER_MOVABLE|__GFP_ZERO|0x1000000), order=0, oom_score_adj=1000
[ 2010.790298][T24652] CPU: 1 PID: 24652 Comm: syz-executor.5 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2010.800566][T24652] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2010.811068][T24652] Call Trace:
[ 2010.814363][T24652]  dump_stack+0x1b0/0x21e
[ 2010.818814][T24652]  ? devkmsg_release+0x11c/0x11c
[ 2010.823771][T24652]  ? ___ratelimit+0x3bf/0x560
[ 2010.828850][T24652]  ? show_regs_print_info+0x12/0x12
[ 2010.834036][T24652]  ? _raw_spin_lock+0xa1/0x170
[ 2010.838782][T24652]  ? radix_tree_cpu_dead+0x160/0x160
[ 2010.844078][T24652]  dump_header+0xdb/0x700
[ 2010.848391][T24652]  oom_kill_process+0xd3/0x280
[ 2010.853134][T24652]  out_of_memory+0x5b6/0x890
[ 2010.857815][T24652]  ? unregister_oom_notifier+0x20/0x20
[ 2010.863270][T24652]  __alloc_pages_slowpath+0x17bc/0x1cb0
[ 2010.869009][T24652]  ? get_page_from_freelist+0x7c0/0x7c0
[ 2010.874670][T24652]  __alloc_pages_nodemask+0x5cb/0x7c0
[ 2010.880352][T24652]  ? gfp_pfmemalloc_allowed+0x130/0x130
[ 2010.885875][T24652]  ? mem_cgroup_commit_charge+0x198/0x240
[ 2010.891591][T24652]  ? mem_cgroup_try_charge_delay+0x10/0x10
[ 2010.897674][T24652]  ? __lru_cache_add+0x1a1/0x1f0
[ 2010.902851][T24652]  wp_page_copy+0x199/0x10e0
[ 2010.907440][T24652]  ? add_mm_rss_vec+0x270/0x270
[ 2010.912269][T24652]  ? vm_normal_page+0x1c9/0x1d0
[ 2010.917118][T24652]  do_wp_page+0x48d/0x14b0
[ 2010.921511][T24652]  ? _raw_spin_lock+0xa1/0x170
[ 2010.926259][T24652]  ? do_swap_page+0x1510/0x1510
[ 2010.931261][T24652]  handle_mm_fault+0xf6c/0x4140
[ 2010.936100][T24652]  ? finish_fault+0x230/0x230
[ 2010.942755][T24652]  ? update_curr+0x584/0x740
[ 2010.947325][T24652]  ? down_read_trylock+0x17a/0x1d0
[ 2010.952460][T24652]  ? _raw_spin_unlock_irq+0x5/0x20
[ 2010.957635][T24652]  ? vmacache_find+0x47a/0x4b0
[ 2010.962420][T24652]  do_user_addr_fault+0x48a/0x9f0
[ 2010.967434][T24652]  page_fault+0x2f/0x40
[ 2010.971586][T24652] RIP: 0010:copy_user_enhanced_fast_string+0xe/0x30
[ 2010.978199][T24652] Code: 89 d1 c1 e9 03 83 e2 07 f3 48 a5 89 d1 f3 a4 31 c0 0f 1f 00 c3 0f 1f 80 00 00 00 00 0f 1f 00 83 fa 40 0f 82 70 ff ff ff 89 d1 <f3> a4 31 c0 0f 1f 00 c3 66 2e 0f 1f 84 00 00 00 00 00 89 d1 f3 a4
[ 2010.997781][T24652] RSP: 0018:ffff888170337888 EFLAGS: 00010206
[ 2011.003827][T24652] RAX: ffffffff81f5ae01 RBX: 00000000202ab500 RCX: 0000000000000500
[ 2011.011889][T24652] RDX: 0000000000001000 RSI: ffff88804dbd3b00 RDI: 00000000202ab000
[ 2011.020042][T24652] RBP: ffff888170337da8 R08: dffffc0000000000 R09: ffffed1009b7a800
[ 2011.028178][T24652] R10: 0000000000000000 R11: 0000000000000000 R12: 00007ffffffff000
[ 2011.036957][T24652] R13: 0000000000001000 R14: ffff88804dbd3000 R15: 00000000202aa500
[ 2011.045118][T24652]  ? _copy_to_iter+0xfb1/0xfc0
[ 2011.050116][T24652]  copyout+0x8e/0xb0
[ 2011.053992][T24652]  copy_page_to_iter+0x393/0xbd0
[ 2011.058926][T24652]  pipe_to_user+0xa3/0x130
[ 2011.063361][T24652]  __splice_from_pipe+0x2d3/0x870
[ 2011.068680][T24652]  ? user_page_pipe_buf_steal+0xc0/0xc0
[ 2011.075054][T24652]  do_vmsplice+0x240/0xe70
[ 2011.079734][T24652]  ? write_pipe_buf+0x1d0/0x1d0
[ 2011.084568][T24652]  ? __rcu_read_lock+0x50/0x50
[ 2011.089313][T24652]  ? check_stack_object+0x5a/0x90
[ 2011.094922][T24652]  ? _copy_from_user+0xa4/0xe0
[ 2011.099671][T24652]  ? rw_copy_check_uvector+0x2b3/0x310
[ 2011.105441][T24652]  ? import_iovec+0x171/0x340
[ 2011.110116][T24652]  ? dup_iter+0x110/0x110
[ 2011.114512][T24652]  ? do_vfs_ioctl+0x757/0x1700
[ 2011.119260][T24652]  __se_sys_vmsplice+0x1cc/0x2c0
[ 2011.124182][T24652]  ? __x64_sys_vmsplice+0xa0/0xa0
[ 2011.129727][T24652]  ? put_timespec64+0x106/0x150
[ 2011.134587][T24652]  ? ktime_get_raw+0x130/0x130
[ 2011.139331][T24652]  ? get_timespec64+0x1c0/0x1c0
[ 2011.144179][T24652]  ? fget_many+0x20/0x20
[ 2011.148416][T24652]  ? __ia32_sys_clock_settime+0x230/0x230
[ 2011.154503][T24652]  do_syscall_64+0xcb/0x150
[ 2011.159690][T24652]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2011.165733][T24652] RIP: 0033:0x45d5b9
[ 2011.169720][T24652] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2011.189614][T24652] RSP: 002b:00007fa6b28e4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000116
[ 2011.198009][T24652] RAX: ffffffffffffffda RBX: 0000000000036640 RCX: 000000000045d5b9
[ 2011.206061][T24652] RDX: 0000000000000001 RSI: 0000000020000000 RDI: 0000000000000003
[ 2011.214114][T24652] RBP: 000000000118d028 R08: 0000000000000000 R09: 0000000000000000
[ 2011.222385][T24652] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118cfec
[ 2011.230363][T24652] R13: 00007ffc0feb818f R14: 00007fa6b28e59c0 R15: 000000000118cfec
[ 2011.242316][T24652] Mem-Info:
[ 2011.274141][T24652] active_anon:1404105 inactive_anon:12081 isolated_anon:0
[ 2011.274141][T24652]  active_file:239 inactive_file:670 isolated_file:52
[ 2011.274141][T24652]  unevictable:4 dirty:26 writeback:6 unstable:0
[ 2011.274141][T24652]  slab_reclaimable:9681 slab_unreclaimable:79778
[ 2011.274141][T24652]  mapped:56459 shmem:6894 pagetables:35413 bounce:0
[ 2011.274141][T24652]  free:16233 free_pcp:778 free_cma:0
09:21:00 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0xe00)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:21:00 executing program 4 (fault-call:14 fault-nth:53):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:21:00 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a000003ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:21:00 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a000500ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 2011.319341][T24652] Node 0 active_anon:5616120kB inactive_anon:48324kB active_file:1056kB inactive_file:5980kB unevictable:16kB isolated(anon):0kB isolated(file):208kB mapped:228336kB dirty:104kB writeback:24kB shmem:27576kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2011.347222][T24652] DMA free:15904kB min:24kB low:36kB high:48kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15904kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2011.435474][T24652] lowmem_reserve[]: 0 2912 6416 6416
[ 2011.441201][T24652] DMA32 free:21212kB min:8740kB low:11720kB high:14700kB active_anon:2939444kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2983760kB mlocked:0kB kernel_stack:3232kB pagetables:2040kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2011.470312][T24652] lowmem_reserve[]: 0 0 3504 3504
[ 2011.483138][T24652] Normal free:23772kB min:21976kB low:25564kB high:29152kB active_anon:2677580kB inactive_anon:48324kB active_file:2600kB inactive_file:5004kB unevictable:16kB writepending:80kB present:4718592kB managed:3588928kB mlocked:16kB kernel_stack:38528kB pagetables:139464kB bounce:0kB free_pcp:1884kB local_pcp:496kB free_cma:0kB
[ 2011.549616][T24652] lowmem_reserve[]: 0 0 0 0
[ 2011.559661][T24652] DMA: 0*4kB 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (U) 3*4096kB (M) = 15904kB
[ 2011.574559][T24652] DMA32: 27*4kB (UMH) 9*8kB (UM) 26*16kB (UMH) 246*32kB (UMH) 129*64kB (UMH) 32*128kB (UMH) 3*256kB (M) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 21588kB
[ 2011.630898][T24652] Normal: 914*4kB (UMEH) 755*8kB (MEH) 224*16kB (MEH) 107*32kB (MEH) 85*64kB (MEH) 51*128kB (UMH) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 28672kB
[ 2011.649096][T24652] 7654 total pagecache pages
[ 2011.675002][T24652] 0 pages in swap cache
[ 2011.690225][T24652] Swap cache stats: add 0, delete 0, find 0/0
[ 2011.721594][T24652] Free swap  = 0kB
[ 2011.742486][T24652] Total swap = 0kB
[ 2011.765565][T24652] 1965979 pages RAM
[ 2011.787084][T24652] 0 pages HighMem/MovableOnly
[ 2011.817109][T24652] 318831 pages reserved
[ 2011.834797][T24652] 0 pages cma reserved
[ 2011.852408][T24652] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/,task=syz-executor.4,pid=24633,uid=0
09:21:00 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0xe000000)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:21:00 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a000600ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 2012.184609][T24682] syz-executor.4 invoked oom-killer: gfp_mask=0x1100dca(GFP_HIGHUSER_MOVABLE|__GFP_ZERO|0x1000000), order=0, oom_score_adj=1000
[ 2012.197979][T24682] CPU: 1 PID: 24682 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2012.208399][T24682] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2012.218491][T24682] Call Trace:
[ 2012.221783][T24682]  dump_stack+0x1b0/0x21e
[ 2012.226118][T24682]  ? devkmsg_release+0x11c/0x11c
[ 2012.231053][T24682]  ? ___ratelimit+0x3bf/0x560
[ 2012.235725][T24682]  ? show_regs_print_info+0x12/0x12
[ 2012.240920][T24682]  ? _raw_spin_lock+0xa1/0x170
[ 2012.245679][T24682]  ? radix_tree_cpu_dead+0x160/0x160
[ 2012.251048][T24682]  dump_header+0xdb/0x700
[ 2012.255384][T24682]  oom_kill_process+0xd3/0x280
[ 2012.260294][T24682]  out_of_memory+0x5b6/0x890
[ 2012.264877][T24682]  ? unregister_oom_notifier+0x20/0x20
[ 2012.270333][T24682]  __alloc_pages_slowpath+0x17bc/0x1cb0
[ 2012.275876][T24682]  ? get_page_from_freelist+0x7c0/0x7c0
[ 2012.281418][T24682]  ? flush_tlb_func_common+0x45/0x580
[ 2012.286963][T24682]  __alloc_pages_nodemask+0x5cb/0x7c0
[ 2012.292330][T24682]  ? gfp_pfmemalloc_allowed+0x130/0x130
[ 2012.297887][T24682]  ? mem_cgroup_commit_charge+0x198/0x240
[ 2012.303605][T24682]  ? mem_cgroup_try_charge_delay+0x10/0x10
[ 2012.309533][T24682]  ? __lru_cache_add+0x1a1/0x1f0
[ 2012.314467][T24682]  wp_page_copy+0x199/0x10e0
[ 2012.319059][T24682]  ? add_mm_rss_vec+0x270/0x270
[ 2012.324147][T24682]  ? plist_add+0x4bf/0x5c0
[ 2012.328561][T24682]  ? vm_normal_page+0x1c9/0x1d0
[ 2012.333512][T24682]  do_wp_page+0x48d/0x14b0
[ 2012.338189][T24682]  ? _raw_spin_lock+0xa1/0x170
[ 2012.342946][T24682]  ? do_swap_page+0x1510/0x1510
[ 2012.347907][T24682]  handle_mm_fault+0xf6c/0x4140
[ 2012.352836][T24682]  ? finish_fault+0x230/0x230
[ 2012.357500][T24682]  ? switch_mm_irqs_off+0x46e/0x870
[ 2012.362705][T24682]  ? trace_event_raw_event_sched_switch+0x480/0x480
[ 2012.369278][T24682]  ? down_read_trylock+0x17a/0x1d0
[ 2012.374365][T24682]  ? vmacache_find+0x205/0x4b0
[ 2012.379104][T24682]  do_user_addr_fault+0x48a/0x9f0
[ 2012.384114][T24682]  page_fault+0x2f/0x40
[ 2012.388244][T24682] RIP: 0010:copy_user_enhanced_fast_string+0xe/0x30
[ 2012.394894][T24682] Code: 89 d1 c1 e9 03 83 e2 07 f3 48 a5 89 d1 f3 a4 31 c0 0f 1f 00 c3 0f 1f 80 00 00 00 00 0f 1f 00 83 fa 40 0f 82 70 ff ff ff 89 d1 <f3> a4 31 c0 0f 1f 00 c3 66 2e 0f 1f 84 00 00 00 00 00 89 d1 f3 a4
[ 2012.415168][T24682] RSP: 0018:ffff88815f0c7888 EFLAGS: 00010206
[ 2012.421292][T24682] RAX: ffffffff81f5ae01 RBX: 00000000201a0500 RCX: 0000000000000500
[ 2012.429408][T24682] RDX: 0000000000001000 RSI: ffff88818f3f9b00 RDI: 00000000201a0000
[ 2012.437475][T24682] RBP: ffff88815f0c7da8 R08: dffffc0000000000 R09: ffffed1031e7f400
[ 2012.445520][T24682] R10: 0000000000000000 R11: 0000000000000000 R12: 00007ffffffff000
[ 2012.453466][T24682] R13: 0000000000001000 R14: ffff88818f3f9000 R15: 000000002019f500
[ 2012.461525][T24682]  ? _copy_to_iter+0xfb1/0xfc0
[ 2012.466262][T24682]  copyout+0x8e/0xb0
[ 2012.470145][T24682]  copy_page_to_iter+0x393/0xbd0
[ 2012.475054][T24682]  pipe_to_user+0xa3/0x130
[ 2012.479442][T24682]  __splice_from_pipe+0x2d3/0x870
[ 2012.484796][T24682]  ? user_page_pipe_buf_steal+0xc0/0xc0
[ 2012.490325][T24682]  do_vmsplice+0x240/0xe70
[ 2012.494714][T24682]  ? write_pipe_buf+0x1d0/0x1d0
[ 2012.499533][T24682]  ? __rcu_read_lock+0x50/0x50
[ 2012.504281][T24682]  ? check_stack_object+0x5a/0x90
[ 2012.509459][T24682]  ? _copy_from_user+0xa4/0xe0
[ 2012.514195][T24682]  ? rw_copy_check_uvector+0x2b3/0x310
[ 2012.519646][T24682]  ? import_iovec+0x171/0x340
[ 2012.524301][T24682]  ? dup_iter+0x110/0x110
[ 2012.528606][T24682]  ? do_vfs_ioctl+0x757/0x1700
[ 2012.533341][T24682]  __se_sys_vmsplice+0x1cc/0x2c0
[ 2012.538257][T24682]  ? __x64_sys_vmsplice+0xa0/0xa0
[ 2012.543251][T24682]  ? put_timespec64+0x106/0x150
[ 2012.548245][T24682]  ? ktime_get_raw+0x130/0x130
[ 2012.553006][T24682]  ? get_timespec64+0x1c0/0x1c0
[ 2012.557936][T24682]  ? fget_many+0x20/0x20
[ 2012.562240][T24682]  ? __ia32_sys_clock_settime+0x230/0x230
[ 2012.567959][T24682]  do_syscall_64+0xcb/0x150
[ 2012.572533][T24682]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2012.578498][T24682] RIP: 0033:0x45d5b9
[ 2012.582366][T24682] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2012.602045][T24682] RSP: 002b:00007f5525ac2c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000116
[ 2012.610517][T24682] RAX: ffffffffffffffda RBX: 0000000000036640 RCX: 000000000045d5b9
[ 2012.618561][T24682] RDX: 0000000000000001 RSI: 0000000020000000 RDI: 0000000000000004
[ 2012.626852][T24682] RBP: 000000000118d0c8 R08: 0000000000000000 R09: 0000000000000000
[ 2012.634837][T24682] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118d08c
[ 2012.642959][T24682] R13: 00007ffd8cac604f R14: 00007f5525ac39c0 R15: 000000000118d08c
[ 2012.651380][T24682] Mem-Info:
[ 2012.654731][T24682] active_anon:1408780 inactive_anon:12081 isolated_anon:0
[ 2012.654731][T24682]  active_file:384 inactive_file:379 isolated_file:71
[ 2012.654731][T24682]  unevictable:4 dirty:1 writeback:6 unstable:0
[ 2012.654731][T24682]  slab_reclaimable:9329 slab_unreclaimable:80258
[ 2012.654731][T24682]  mapped:56684 shmem:6894 pagetables:35376 bounce:0
[ 2012.654731][T24682]  free:11752 free_pcp:341 free_cma:0
[ 2012.693173][T24682] Node 0 active_anon:5635120kB inactive_anon:48324kB active_file:1536kB inactive_file:1516kB unevictable:16kB isolated(anon):0kB isolated(file):284kB mapped:226636kB dirty:4kB writeback:24kB shmem:27576kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2012.717675][T24682] DMA free:15904kB min:24kB low:36kB high:48kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15904kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2012.743643][T24682] lowmem_reserve[]: 0 2912 6416 6416
[ 2012.748960][T24682] DMA32 free:18680kB min:8740kB low:11720kB high:14700kB active_anon:2941964kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2983760kB mlocked:0kB kernel_stack:3232kB pagetables:2040kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2012.778312][T24682] lowmem_reserve[]: 0 0 3504 3504
[ 2012.783901][T24682] Normal free:13936kB min:20648kB low:24236kB high:27824kB active_anon:2692700kB inactive_anon:48324kB active_file:1620kB inactive_file:2000kB unevictable:16kB writepending:80kB present:4718592kB managed:3588928kB mlocked:16kB kernel_stack:38784kB pagetables:139464kB bounce:0kB free_pcp:592kB local_pcp:0kB free_cma:0kB
[ 2012.813952][T24682] lowmem_reserve[]: 0 0 0 0
[ 2012.818657][T24682] DMA: 0*4kB 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (U) 3*4096kB (M) = 15904kB
[ 2012.831988][T24682] DMA32: 45*4kB (UMH) 9*8kB (UM) 35*16kB (UMH) 228*32kB (UMH) 115*64kB (UMH) 27*128kB (UMH) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 18924kB
[ 2012.846903][T24682] Normal: 693*4kB (UMEH) 491*8kB (UMEH) 165*16kB (UMEH) 112*32kB (UMEH) 28*64kB (MEH) 3*128kB (H) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 15100kB
[ 2012.862317][T24682] 7438 total pagecache pages
[ 2012.866941][T24682] 0 pages in swap cache
[ 2012.871085][T24682] Swap cache stats: add 0, delete 0, find 0/0
[ 2012.877253][T24682] Free swap  = 0kB
[ 2012.880964][T24682] Total swap = 0kB
[ 2012.884696][T24682] 1965979 pages RAM
[ 2012.888499][T24682] 0 pages HighMem/MovableOnly
[ 2012.893176][T24682] 318831 pages reserved
[ 2012.897386][T24682] 0 pages cma reserved
[ 2012.901438][T24682] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/,task=syz-executor.3,pid=2527,uid=0
[ 2012.915544][T24682] Out of memory: Killed process 2527 (syz-executor.3) total-vm:85480kB, anon-rss:16580kB, file-rss:34840kB, shmem-rss:0kB, UID:0 pgtables:160kB oom_score_adj:1000
[ 2012.954859][T24683] FAULT_INJECTION: forcing a failure.
[ 2012.954859][T24683] name failslab, interval 1, probability 0, space 0, times 0
[ 2012.967556][T24683] CPU: 0 PID: 24683 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2012.977693][T24683] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2012.987755][T24683] Call Trace:
[ 2012.991038][T24683]  dump_stack+0x1b0/0x21e
[ 2012.995343][T24683]  ? devkmsg_release+0x11c/0x11c
[ 2013.000253][T24683]  ? show_regs_print_info+0x12/0x12
[ 2013.005514][T24683]  ? cred_has_capability+0x18c/0x3f0
[ 2013.010770][T24683]  ? cred_has_capability+0x2b2/0x3f0
[ 2013.016135][T24683]  should_fail+0x6fb/0x860
[ 2013.020533][T24683]  ? setup_fault_attr+0x2b0/0x2b0
[ 2013.025539][T24683]  ? slab_free_freelist_hook+0xd0/0x150
[ 2013.031061][T24683]  ? cap_capable+0x23f/0x280
[ 2013.035769][T24683]  ? proc_pid_stack+0x1d5/0x1f0
[ 2013.040677][T24683]  ? proc_pid_stack+0x8e/0x1f0
[ 2013.045423][T24683]  should_failslab+0x5/0x20
[ 2013.049914][T24683]  kmem_cache_alloc_trace+0x39/0x270
[ 2013.055291][T24683]  proc_pid_stack+0x8e/0x1f0
[ 2013.059873][T24683]  proc_single_show+0xd3/0x130
[ 2013.064610][T24683]  seq_read+0x4aa/0xd30
[ 2013.068740][T24683]  do_iter_read+0x43b/0x550
[ 2013.073215][T24683]  do_preadv+0x1f4/0x330
[ 2013.077652][T24683]  ? do_writev+0x560/0x560
[ 2013.082129][T24683]  ? __schedule+0x8ae/0xe30
[ 2013.086605][T24683]  do_syscall_64+0xcb/0x150
[ 2013.091085][T24683]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2013.097208][T24683] RIP: 0033:0x45d5b9
[ 2013.101075][T24683] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2013.120671][T24683] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 2013.131163][T24683] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 2013.139313][T24683] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 2013.147369][T24683] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 2013.155416][T24683] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000035
[ 2013.163364][T24683] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
[ 2013.227276][   T23] oom_reaper: reaped process 2527 (syz-executor.3), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
09:21:02 executing program 4 (fault-call:14 fault-nth:54):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

[ 2013.488464][T24674]  loop3: p1 p2 < > p3 p4 < p5 >
[ 2013.503346][T24674] loop3: partition table partially beyond EOD, truncated
[ 2013.514780][T24674] loop3: p1 start 50331658 is beyond EOD, truncated
[ 2013.521421][T24674] loop3: p2 start 25 is beyond EOD, truncated
[ 2013.527806][T24674] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 2013.534912][T24674] loop3: p4 size 2 extends beyond EOD, truncated
[ 2013.541966][T24674] loop3: p5 start 50331658 is beyond EOD, truncated
[ 2013.580279][  T146]  loop3: p1 p2 < > p3 p4 < p5 >
[ 2013.585442][  T146] loop3: partition table partially beyond EOD, truncated
[ 2013.593419][  T146] loop3: p1 start 50331658 is beyond EOD, truncated
[ 2013.600574][  T146] loop3: p2 start 25 is beyond EOD, truncated
[ 2013.610971][  T146] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 2013.627064][  T146] loop3: p4 size 2 extends beyond EOD, truncated
[ 2013.645864][  T146] loop3: p5 start 50331658 is beyond EOD, truncated
[ 2013.679319][T24698] FAULT_INJECTION: forcing a failure.
[ 2013.679319][T24698] name failslab, interval 1, probability 0, space 0, times 0
[ 2013.692103][T24698] CPU: 1 PID: 24698 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2013.702259][T24698] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2013.712466][T24698] Call Trace:
[ 2013.715751][T24698]  dump_stack+0x1b0/0x21e
[ 2013.720055][T24698]  ? devkmsg_release+0x11c/0x11c
[ 2013.725072][T24698]  ? show_regs_print_info+0x12/0x12
[ 2013.730245][T24698]  should_fail+0x6fb/0x860
[ 2013.734635][T24698]  ? setup_fault_attr+0x2b0/0x2b0
[ 2013.739630][T24698]  ? slab_free_freelist_hook+0xd0/0x150
[ 2013.745153][T24698]  ? cap_capable+0x23f/0x280
[ 2013.749718][T24698]  ? proc_pid_stack+0x1d5/0x1f0
[ 2013.754633][T24698]  ? proc_pid_stack+0x8e/0x1f0
[ 2013.759368][T24698]  should_failslab+0x5/0x20
[ 2013.763865][T24698]  kmem_cache_alloc_trace+0x39/0x270
[ 2013.769123][T24698]  proc_pid_stack+0x8e/0x1f0
[ 2013.773691][T24698]  proc_single_show+0xd3/0x130
[ 2013.778521][T24698]  seq_read+0x4aa/0xd30
[ 2013.782653][T24698]  ? do_iter_read+0x4a1/0x550
[ 2013.787655][T24698]  do_iter_read+0x43b/0x550
[ 2013.792134][T24698]  do_preadv+0x1f4/0x330
[ 2013.796352][T24698]  ? do_writev+0x560/0x560
[ 2013.800743][T24698]  ? security_file_permission+0x128/0x300
[ 2013.807261][T24698]  ? __sb_end_write+0xa4/0xf0
[ 2013.811917][T24698]  ? vfs_write+0x427/0x4f0
[ 2013.816310][T24698]  do_syscall_64+0xcb/0x150
[ 2013.820790][T24698]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2013.826655][T24698] RIP: 0033:0x45d5b9
[ 2013.830559][T24698] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2013.850137][T24698] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 2013.858523][T24698] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 2013.866470][T24698] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 2013.874521][T24698] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 2013.882466][T24698] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000036
[ 2013.890411][T24698] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
[ 2013.922599][  T146] systemd-udevd invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=-1000
[ 2013.933019][  T146] CPU: 1 PID: 146 Comm: systemd-udevd Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2013.942910][  T146] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2013.953085][  T146] Call Trace:
[ 2013.956414][  T146]  dump_stack+0x1b0/0x21e
[ 2013.960743][  T146]  ? devkmsg_release+0x11c/0x11c
[ 2013.965731][  T146]  ? ___ratelimit+0x3bf/0x560
[ 2013.970403][  T146]  ? show_regs_print_info+0x12/0x12
[ 2013.975687][  T146]  ? _raw_spin_lock+0xa1/0x170
[ 2013.980568][  T146]  ? radix_tree_cpu_dead+0x160/0x160
[ 2013.985863][  T146]  dump_header+0xdb/0x700
[ 2013.990281][  T146]  oom_kill_process+0xd3/0x280
[ 2013.995167][  T146]  out_of_memory+0x5b6/0x890
[ 2013.999755][  T146]  ? unregister_oom_notifier+0x20/0x20
[ 2014.005906][  T146]  __alloc_pages_slowpath+0x17bc/0x1cb0
[ 2014.011453][  T146]  ? get_page_from_freelist+0x7c0/0x7c0
[ 2014.017086][  T146]  ? __zone_watermark_ok+0x91/0x280
[ 2014.022323][  T146]  __alloc_pages_nodemask+0x5cb/0x7c0
[ 2014.027689][  T146]  ? do_syscall_64+0xcb/0x150
[ 2014.032596][  T146]  ? gfp_pfmemalloc_allowed+0x130/0x130
[ 2014.038332][  T146]  ? lockref_get+0x1c2/0x2b0
[ 2014.042918][  T146]  ? blk_crypto_keyslot_evict+0x160/0x160
[ 2014.048649][  T146]  ? should_fail+0x18e/0x860
[ 2014.053239][  T146]  ? __rcu_read_lock+0x50/0x50
[ 2014.058726][  T146]  ? setup_fault_attr+0x2b0/0x2b0
[ 2014.063724][  T146]  ? find_inode_fast+0x3e7/0x4a0
[ 2014.068637][  T146]  __get_free_pages+0xa/0x30
[ 2014.073204][  T146]  inode_doinit_with_dentry+0x950/0x10e0
[ 2014.078836][  T146]  ? __wake_up_bit+0x170/0x170
[ 2014.083590][  T146]  ? sb_finish_set_opts+0x7e0/0x7e0
[ 2014.088761][  T146]  ? current_time+0x1aa/0x2e0
[ 2014.093431][  T146]  ? atime_needs_update+0x570/0x570
[ 2014.098619][  T146]  security_d_instantiate+0x90/0xf0
[ 2014.103806][  T146]  d_splice_alias+0x71/0x590
[ 2014.108644][  T146]  kernfs_iop_lookup+0x17a/0x1f0
[ 2014.113661][  T146]  __lookup_slow+0x2f2/0x470
[ 2014.118318][  T146]  ? lookup_one_len2+0x2d0/0x2d0
[ 2014.123338][  T146]  walk_component+0x363/0x830
[ 2014.128011][  T146]  ? follow_managed+0x950/0x950
[ 2014.135033][  T146]  ? generic_permission+0x13a/0x4a0
[ 2014.140207][  T146]  ? security_inode_permission+0xda/0x110
[ 2014.145903][  T146]  link_path_walk+0x72b/0x1500
[ 2014.150642][  T146]  ? path_init+0x887/0x1220
[ 2014.155165][  T146]  ? path_init+0x1220/0x1220
[ 2014.159745][  T146]  ? path_init+0x962/0x1220
[ 2014.164232][  T146]  path_lookupat+0xd4/0xa50
[ 2014.168798][  T146]  ? __kasan_kmalloc+0x117/0x1b0
[ 2014.173714][  T146]  ? getname_flags+0xb8/0x610
[ 2014.178364][  T146]  ? user_path_at_empty+0x28/0x50
[ 2014.183360][  T146]  ? do_readlinkat+0x10c/0x3d0
[ 2014.188118][  T146]  ? __x64_sys_readlinkat+0x96/0xb0
[ 2014.193309][  T146]  ? do_syscall_64+0xcb/0x150
[ 2014.197974][  T146]  ? entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2014.204122][  T146]  ? seccomp_run_filters+0x2b6/0x2f0
[ 2014.209487][  T146]  ? filename_lookup+0x6c0/0x6c0
[ 2014.214401][  T146]  ? __seccomp_filter+0xa9b/0x1720
[ 2014.219592][  T146]  ? task_work_run+0x176/0x1a0
[ 2014.224337][  T146]  ? prepare_exit_to_usermode+0x286/0x2e0
[ 2014.230037][  T146]  ? entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2014.236454][  T146]  filename_lookup+0x226/0x6c0
[ 2014.241223][  T146]  ? hashlen_string+0x120/0x120
[ 2014.246045][  T146]  ? strncpy_from_user+0x20c/0x370
[ 2014.251236][  T146]  ? getname_flags+0x20d/0x610
[ 2014.255988][  T146]  do_readlinkat+0x10c/0x3d0
[ 2014.260555][  T146]  ? cp_old_stat+0x8c0/0x8c0
[ 2014.265125][  T146]  ? do_syscall_64+0x150/0x150
[ 2014.270125][  T146]  ? __fpregs_load_activate+0x2d3/0x390
[ 2014.275910][  T146]  __x64_sys_readlinkat+0x96/0xb0
[ 2014.280919][  T146]  do_syscall_64+0xcb/0x150
[ 2014.285657][  T146]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2014.291530][  T146] RIP: 0033:0x7f72b9b050ba
[ 2014.295921][  T146] Code: 48 8b 0d e1 bd 2b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 49 89 ca b8 0b 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d ae bd 2b 00 f7 d8 64 89 01 48
[ 2014.317583][  T146] RSP: 002b:00007ffee4b943a8 EFLAGS: 00000202 ORIG_RAX: 000000000000010b
[ 2014.325966][  T146] RAX: ffffffffffffffda RBX: 0000563cedcd4540 RCX: 00007f72b9b050ba
[ 2014.333913][  T146] RDX: 0000563cedcd4540 RSI: 0000563cedcc4070 RDI: 00000000ffffff9c
[ 2014.341857][  T146] RBP: 0000000000000064 R08: 0000563ced4a3670 R09: 0000000000000070
[ 2014.349814][  T146] R10: 0000000000000063 R11: 0000000000000202 R12: 0000563cedcc4070
[ 2014.357756][  T146] R13: 00000000ffffff9c R14: 00007ffee4b94400 R15: 0000000000000063
[ 2014.378371][  T146] Mem-Info:
[ 2014.381621][  T146] active_anon:1405857 inactive_anon:12080 isolated_anon:0
[ 2014.381621][  T146]  active_file:648 inactive_file:666 isolated_file:32
[ 2014.381621][  T146]  unevictable:4 dirty:96 writeback:0 unstable:0
[ 2014.381621][  T146]  slab_reclaimable:9347 slab_unreclaimable:80513
[ 2014.381621][  T146]  mapped:57164 shmem:6894 pagetables:35441 bounce:0
[ 2014.381621][  T146]  free:14221 free_pcp:210 free_cma:0
[ 2014.447212][  T146] Node 0 active_anon:5623428kB inactive_anon:48320kB active_file:1752kB inactive_file:1364kB unevictable:16kB isolated(anon):0kB isolated(file):256kB mapped:226956kB dirty:384kB writeback:0kB shmem:27576kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2014.473403][  T146] DMA free:15904kB min:24kB low:36kB high:48kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15904kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2014.533191][  T146] lowmem_reserve[]: 0 2912 6416 6416
[ 2014.545299][  T146] DMA32 free:18588kB min:8740kB low:11720kB high:14700kB active_anon:2941832kB inactive_anon:0kB active_file:0kB inactive_file:340kB unevictable:0kB writepending:64kB present:3129332kB managed:2983760kB mlocked:0kB kernel_stack:3264kB pagetables:2036kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2014.650369][  T146] lowmem_reserve[]: 0 0 3504 3504
09:21:03 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x1100)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:21:03 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a000700ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 2014.670859][  T146] Normal free:20592kB min:20648kB low:24236kB high:27824kB active_anon:2681184kB inactive_anon:48320kB active_file:1248kB inactive_file:4896kB unevictable:16kB writepending:320kB present:4718592kB managed:3588928kB mlocked:16kB kernel_stack:38624kB pagetables:139728kB bounce:0kB free_pcp:292kB local_pcp:0kB free_cma:0kB
[ 2014.709028][  T146] lowmem_reserve[]: 0 0 0 0
[ 2014.724636][  T146] DMA: 0*4kB 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (U) 3*4096kB (M) = 15904kB
[ 2014.739097][  T146] DMA32: 46*4kB (UMH) 11*8kB (UM) 40*16kB (UMH) 226*32kB (UMH) 116*64kB (UMH) 27*128kB (UMH) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 19024kB
[ 2014.754878][  T146] Normal: 198*4kB (UMEH) 510*8kB (UMEH) 219*16kB (UMEH) 152*32kB (UMEH) 56*64kB (UMEH) 11*128kB (MH) 7*256kB (M) 2*512kB (M) 0*1024kB 0*2048kB 0*4096kB = 21048kB
09:21:03 executing program 4 (fault-call:14 fault-nth:55):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

[ 2014.772172][  T146] 8682 total pagecache pages
[ 2014.777079][  T146] 0 pages in swap cache
[ 2014.781871][  T146] Swap cache stats: add 0, delete 0, find 0/0
[ 2014.788119][  T146] Free swap  = 0kB
[ 2014.791977][  T146] Total swap = 0kB
[ 2014.795742][  T146] 1965979 pages RAM
[ 2014.799705][  T146] 0 pages HighMem/MovableOnly
[ 2014.804493][  T146] 318831 pages reserved
[ 2014.808745][  T146] 0 pages cma reserved
[ 2014.812907][  T146] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/,task=syz-executor.5,pid=14886,uid=0
[ 2014.829755][  T146] Out of memory: Killed process 14886 (syz-executor.5) total-vm:85744kB, anon-rss:16580kB, file-rss:34824kB, shmem-rss:0kB, UID:0 pgtables:160kB oom_score_adj:1000
09:21:03 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x10000000)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:21:03 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a000204ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 2015.044566][T24718] FAULT_INJECTION: forcing a failure.
[ 2015.044566][T24718] name failslab, interval 1, probability 0, space 0, times 0
[ 2015.057353][T24718] CPU: 0 PID: 24718 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2015.067504][T24718] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2015.077640][T24718] Call Trace:
[ 2015.080949][T24718]  dump_stack+0x1b0/0x21e
[ 2015.085286][T24718]  ? devkmsg_release+0x11c/0x11c
[ 2015.090301][T24718]  ? show_regs_print_info+0x12/0x12
[ 2015.095491][T24718]  ? cred_has_capability+0x18c/0x3f0
[ 2015.100745][T24718]  ? cred_has_capability+0x2b2/0x3f0
[ 2015.106005][T24718]  should_fail+0x6fb/0x860
[ 2015.110405][T24718]  ? setup_fault_attr+0x2b0/0x2b0
[ 2015.115410][T24718]  ? slab_free_freelist_hook+0xd0/0x150
[ 2015.120947][T24718]  ? cap_capable+0x23f/0x280
[ 2015.125536][T24718]  ? proc_pid_stack+0x1d5/0x1f0
[ 2015.130716][T24718]  ? proc_pid_stack+0x8e/0x1f0
[ 2015.135458][T24718]  should_failslab+0x5/0x20
[ 2015.139935][T24718]  kmem_cache_alloc_trace+0x39/0x270
[ 2015.145204][T24718]  proc_pid_stack+0x8e/0x1f0
[ 2015.149853][T24718]  proc_single_show+0xd3/0x130
[ 2015.154599][T24718]  seq_read+0x4aa/0xd30
[ 2015.158814][T24718]  do_iter_read+0x43b/0x550
[ 2015.163288][T24718]  do_preadv+0x1f4/0x330
[ 2015.167513][T24718]  ? do_writev+0x560/0x560
[ 2015.171902][T24718]  ? __schedule+0x8ae/0xe30
[ 2015.176393][T24718]  do_syscall_64+0xcb/0x150
[ 2015.180880][T24718]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2015.186753][T24718] RIP: 0033:0x45d5b9
[ 2015.190797][T24718] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2015.210561][T24718] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 2015.218961][T24718] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 2015.227252][T24718] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 2015.235492][T24718] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 2015.243454][T24718] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000037
[ 2015.251414][T24718] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
09:21:04 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a000800ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 2015.387318][  T337] syz-fuzzer invoked oom-killer: gfp_mask=0x1100dca(GFP_HIGHUSER_MOVABLE|__GFP_ZERO|0x1000000), order=0, oom_score_adj=0
[ 2015.477439][  T337] CPU: 0 PID: 337 Comm: syz-fuzzer Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2015.488149][  T337] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2015.499248][  T337] Call Trace:
[ 2015.502521][  T337]  dump_stack+0x1b0/0x21e
[ 2015.506944][  T337]  ? devkmsg_release+0x11c/0x11c
[ 2015.512034][  T337]  ? ___ratelimit+0x3bf/0x560
[ 2015.517734][  T337]  ? show_regs_print_info+0x12/0x12
[ 2015.522907][  T337]  ? _raw_spin_lock+0xa1/0x170
[ 2015.528171][  T337]  ? radix_tree_cpu_dead+0x160/0x160
[ 2015.533452][  T337]  dump_header+0xdb/0x700
[ 2015.537888][  T337]  oom_kill_process+0xd3/0x280
[ 2015.542647][  T337]  out_of_memory+0x5b6/0x890
[ 2015.547222][  T337]  ? unregister_oom_notifier+0x20/0x20
[ 2015.552659][  T337]  __alloc_pages_slowpath+0x17bc/0x1cb0
[ 2015.558279][  T337]  ? get_page_from_freelist+0x7c0/0x7c0
[ 2015.563800][  T337]  __alloc_pages_nodemask+0x5cb/0x7c0
[ 2015.569240][  T337]  ? gfp_pfmemalloc_allowed+0x130/0x130
[ 2015.574859][  T337]  ? __rcu_read_lock+0x50/0x50
[ 2015.579600][  T337]  ? __perf_event_task_sched_out+0x1127/0x1250
[ 2015.586460][  T337]  handle_mm_fault+0x1849/0x4140
[ 2015.591376][  T337]  ? finish_fault+0x230/0x230
[ 2015.596044][  T337]  ? down_read_trylock+0x17a/0x1d0
[ 2015.601136][  T337]  ? vmacache_find+0x205/0x4b0
[ 2015.606143][  T337]  do_user_addr_fault+0x48a/0x9f0
[ 2015.611176][  T337]  page_fault+0x2f/0x40
[ 2015.615394][  T337] RIP: 0033:0x467f53
[ 2015.619634][  T337] Code: 00 48 81 eb 00 01 00 00 48 81 c7 00 01 00 00 48 81 fb 00 01 00 00 73 82 e9 07 ff ff ff c5 fd ef c0 48 81 fb 00 00 00 02 73 46 <c5> fe 7f 07 c5 fe 7f 47 20 c5 fe 7f 47 40 c5 fe 7f 47 60 48 81 eb
[ 2015.639547][  T337] RSP: 002b:000000c000230898 EFLAGS: 00010287
[ 2015.645767][  T337] RAX: 0000000000000000 RBX: 0000000000002000 RCX: 000000c020d82000
[ 2015.653898][  T337] RDX: 00007ff4728f1b98 RSI: 0000000000000002 RDI: 000000c020d82000
[ 2015.662193][  T337] RBP: 000000c0002308e0 R08: 000000c020d82000 R09: 0000000000000001
[ 2015.670148][  T337] R10: 00007ff4728f1b98 R11: 00000000000006c1 R12: 0000000000000000
[ 2015.678109][  T337] R13: 0000000000000040 R14: 00000000000001ff R15: 0000000000000200
[ 2015.798414][  T337] Mem-Info:
[ 2015.801840][  T337] active_anon:1406604 inactive_anon:12081 isolated_anon:0
[ 2015.801840][  T337]  active_file:371 inactive_file:392 isolated_file:0
[ 2015.801840][  T337]  unevictable:4 dirty:71 writeback:0 unstable:0
[ 2015.801840][  T337]  slab_reclaimable:9196 slab_unreclaimable:80924
[ 2015.801840][  T337]  mapped:56660 shmem:6895 pagetables:35524 bounce:0
[ 2015.801840][  T337]  free:13796 free_pcp:39 free_cma:0
[ 2015.863821][  T337] Node 0 active_anon:5626456kB inactive_anon:48316kB active_file:716kB inactive_file:908kB unevictable:16kB isolated(anon):0kB isolated(file):208kB mapped:225328kB dirty:240kB writeback:48kB shmem:27576kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2015.904799][  T337] DMA free:15904kB min:24kB low:36kB high:48kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15904kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2015.931169][  T337] lowmem_reserve[]: 0 2912 6416 6416
[ 2015.936567][  T337] DMA32 free:17560kB min:4644kB low:7624kB high:10604kB active_anon:2943656kB inactive_anon:0kB active_file:104kB inactive_file:24kB unevictable:0kB writepending:0kB present:3129332kB managed:2983760kB mlocked:0kB kernel_stack:3232kB pagetables:2040kB bounce:0kB free_pcp:48kB local_pcp:44kB free_cma:0kB
[ 2015.965391][  T337] lowmem_reserve[]: 0 0 3504 3504
[ 2015.970453][  T337] Normal free:21388kB min:5592kB low:9180kB high:12768kB active_anon:2682800kB inactive_anon:48316kB active_file:1100kB inactive_file:2312kB unevictable:16kB writepending:388kB present:4718592kB managed:3588928kB mlocked:16kB kernel_stack:38720kB pagetables:140048kB bounce:0kB free_pcp:724kB local_pcp:456kB free_cma:0kB
[ 2016.001833][  T337] lowmem_reserve[]: 0 0 0 0
[ 2016.017761][  T337] DMA: 0*4kB 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (U) 3*4096kB (M) = 15904kB
[ 2016.032102][  T337] DMA32: 24*4kB (UMH) 11*8kB (UM) 26*16kB (UMH) 190*32kB (UMH) 116*64kB (UMH) 27*128kB (UMH) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 17560kB
[ 2016.050758][  T337] Normal: 710*4kB (UMEH) 636*8kB (UMEH) 301*16kB (UMEH) 176*32kB (UMEH) 42*64kB (UMEH) 10*128kB (UMH) 1*256kB (M) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 22600kB
[ 2016.067739][T24713]  loop3: p1 p2 < > p3 p4 < p5 >
[ 2016.072345][  T337] 7948 total pagecache pages
[ 2016.073606][T24713] loop3: partition table partially beyond EOD, truncated
[ 2016.077707][  T337] 0 pages in swap cache
[ 2016.085814][T24713] loop3: p1 start 67239946 is beyond EOD, truncated
[ 2016.089326][  T337] Swap cache stats: add 0, delete 0, find 0/0
[ 2016.096840][T24713] loop3: p2 start 25 is beyond EOD, truncated
[ 2016.102155][  T337] Free swap  = 0kB
[ 2016.111125][  T337] Total swap = 0kB
[ 2016.122474][  T337] 1965979 pages RAM
[ 2016.129863][  T337] 0 pages HighMem/MovableOnly
[ 2016.130462][T24713] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 2016.134660][  T337] 318831 pages reserved
[ 2016.134662][  T337] 0 pages cma reserved
[ 2016.134667][  T337] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/,task=syz-executor.1,pid=24387,uid=0
[ 2016.134703][  T337] Out of memory: Killed process 24387 (syz-executor.1) total-vm:85480kB, anon-rss:16576kB, file-rss:34824kB, shmem-rss:0kB, UID:0 pgtables:160kB oom_score_adj:1000
[ 2016.180923][T24713] loop3: p4 size 2 extends beyond EOD, truncated
[ 2016.190175][T24713] loop3: p5 start 67239946 is beyond EOD, truncated
[ 2016.293927][  T146]  loop3: p1 p2 < > p3 p4 < p5 >
[ 2016.299258][  T146] loop3: partition table partially beyond EOD, truncated
[ 2016.307341][  T146] loop3: p1 start 67239946 is beyond EOD, truncated
[ 2016.314904][  T146] loop3: p2 start 25 is beyond EOD, truncated
[ 2016.321252][  T146] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 2016.328838][  T146] loop3: p4 size 2 extends beyond EOD, truncated
09:21:05 executing program 4 (fault-call:14 fault-nth:56):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

[ 2016.342916][  T146] loop3: p5 start 67239946 is beyond EOD, truncated
09:21:05 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a000604ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:21:05 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x1200)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:21:05 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x11000000)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

[ 2016.634244][T24743] FAULT_INJECTION: forcing a failure.
[ 2016.634244][T24743] name failslab, interval 1, probability 0, space 0, times 0
[ 2016.647389][T24743] CPU: 1 PID: 24743 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2016.657625][T24743] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2016.667677][T24743] Call Trace:
[ 2016.671007][T24743]  dump_stack+0x1b0/0x21e
[ 2016.675343][T24743]  ? devkmsg_release+0x11c/0x11c
[ 2016.680272][T24743]  ? show_regs_print_info+0x12/0x12
[ 2016.685615][T24743]  ? cred_has_capability+0x18c/0x3f0
[ 2016.690890][T24743]  ? cred_has_capability+0x2b2/0x3f0
[ 2016.696181][T24743]  should_fail+0x6fb/0x860
[ 2016.700603][T24743]  ? setup_fault_attr+0x2b0/0x2b0
[ 2016.705646][T24743]  ? preempt_schedule_irq+0xc7/0x110
[ 2016.711015][T24743]  ? cap_capable+0x23f/0x280
[ 2016.715695][T24743]  ? proc_pid_stack+0x1d5/0x1f0
[ 2016.720545][T24743]  ? proc_pid_stack+0x8e/0x1f0
[ 2016.725308][T24743]  should_failslab+0x5/0x20
[ 2016.729806][T24743]  kmem_cache_alloc_trace+0x39/0x270
[ 2016.735867][T24743]  proc_pid_stack+0x8e/0x1f0
[ 2016.740457][T24743]  proc_single_show+0xd3/0x130
[ 2016.745428][T24743]  seq_read+0x4aa/0xd30
[ 2016.750455][T24743]  do_iter_read+0x43b/0x550
[ 2016.754954][T24743]  do_preadv+0x1f4/0x330
[ 2016.759201][T24743]  ? do_writev+0x560/0x560
[ 2016.763631][T24743]  ? security_file_permission+0x128/0x300
[ 2016.769354][T24743]  ? __sb_end_write+0xa4/0xf0
[ 2016.774042][T24743]  ? vfs_write+0x427/0x4f0
[ 2016.778673][T24743]  do_syscall_64+0xcb/0x150
[ 2016.783171][T24743]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2016.789061][T24743] RIP: 0033:0x45d5b9
[ 2016.792946][T24743] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2016.812784][T24743] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 2016.821273][T24743] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 2016.829263][T24743] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 2016.837226][T24743] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 2016.845187][T24743] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000038
[ 2016.853177][T24743] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
[ 2016.947389][T24729] syz-executor.0 invoked oom-killer: gfp_mask=0x1100dca(GFP_HIGHUSER_MOVABLE|__GFP_ZERO|0x1000000), order=0, oom_score_adj=1000
[ 2016.961004][T24729] CPU: 0 PID: 24729 Comm: syz-executor.0 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2016.971411][T24729] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2016.981459][T24729] Call Trace:
[ 2016.984739][T24729]  dump_stack+0x1b0/0x21e
[ 2016.989067][T24729]  ? devkmsg_release+0x11c/0x11c
[ 2016.993976][T24729]  ? ___ratelimit+0x3bf/0x560
[ 2016.998625][T24729]  ? show_regs_print_info+0x12/0x12
[ 2017.003808][T24729]  ? _raw_spin_lock+0xa1/0x170
[ 2017.008550][T24729]  ? radix_tree_cpu_dead+0x160/0x160
[ 2017.013826][T24729]  dump_header+0xdb/0x700
[ 2017.018508][T24729]  oom_kill_process+0xd3/0x280
[ 2017.023372][T24729]  out_of_memory+0x5b6/0x890
[ 2017.028123][T24729]  ? unregister_oom_notifier+0x20/0x20
[ 2017.033782][T24729]  __alloc_pages_slowpath+0x17bc/0x1cb0
[ 2017.039506][T24729]  ? get_page_from_freelist+0x7c0/0x7c0
[ 2017.045032][T24729]  __alloc_pages_nodemask+0x5cb/0x7c0
[ 2017.050380][T24729]  ? gfp_pfmemalloc_allowed+0x130/0x130
[ 2017.055909][T24729]  handle_mm_fault+0x1849/0x4140
[ 2017.060820][T24729]  ? finish_fault+0x230/0x230
[ 2017.065469][T24729]  ? up_write+0xa1/0x190
[ 2017.069692][T24729]  ? down_read_trylock+0x17a/0x1d0
[ 2017.074790][T24729]  ? vmacache_update+0x9f/0xf0
[ 2017.079888][T24729]  do_user_addr_fault+0x48a/0x9f0
[ 2017.084972][T24729]  page_fault+0x2f/0x40
[ 2017.089117][T24729] RIP: 0033:0x4149cf
[ 2017.093158][T24729] Code: 0f 84 c8 02 00 00 48 83 bd 78 ff ff ff 00 0f 84 f9 04 00 00 48 8b 95 68 ff ff ff 44 89 95 38 ff ff ff 4c 8d ac 10 00 f7 ff ff <49> 89 85 90 06 00 00 49 8d 85 10 03 00 00 49 89 95 98 06 00 00 41
[ 2017.113570][T24729] RSP: 002b:00007ffd41307900 EFLAGS: 00010206
[ 2017.119619][T24729] RAX: 00007fc344ac5000 RBX: 0000000000020000 RCX: 000000000045d60a
[ 2017.127564][T24729] RDX: 0000000000021000 RSI: 0000000000021000 RDI: 0000000000000000
[ 2017.135508][T24729] RBP: 00007ffd413079e0 R08: ffffffffffffffff R09: 0000000000000000
[ 2017.143631][T24729] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd41307ae0
[ 2017.151586][T24729] R13: 00007fc344ae5700 R14: 0000000000000d6a R15: 000000000118d1cc
[ 2017.176379][T24729] Mem-Info:
[ 2017.179676][T24729] active_anon:1408054 inactive_anon:12082 isolated_anon:0
[ 2017.179676][T24729]  active_file:368 inactive_file:392 isolated_file:32
[ 2017.179676][T24729]  unevictable:4 dirty:27 writeback:1 unstable:0
[ 2017.179676][T24729]  slab_reclaimable:9171 slab_unreclaimable:80702
[ 2017.179676][T24729]  mapped:56706 shmem:6895 pagetables:35538 bounce:0
[ 2017.179676][T24729]  free:12399 free_pcp:0 free_cma:0
[ 2017.233020][T24729] Node 0 active_anon:5632216kB inactive_anon:48328kB active_file:1472kB inactive_file:1468kB unevictable:16kB isolated(anon):0kB isolated(file):0kB mapped:226624kB dirty:108kB writeback:4kB shmem:27580kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2017.295094][T24729] DMA free:15904kB min:24kB low:36kB high:48kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15904kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2017.322430][T24729] lowmem_reserve[]: 0 2912 6416 6416
[ 2017.333742][T24729] DMA32 free:17232kB min:4644kB low:7624kB high:10604kB active_anon:2943776kB inactive_anon:0kB active_file:0kB inactive_file:44kB unevictable:0kB writepending:0kB present:3129332kB managed:2983760kB mlocked:0kB kernel_stack:3232kB pagetables:2036kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2017.362637][T24729] lowmem_reserve[]: 0 0 3504 3504
[ 2017.367845][T24729] Normal free:17888kB min:24744kB low:28332kB high:31920kB active_anon:2687952kB inactive_anon:48328kB active_file:800kB inactive_file:1024kB unevictable:16kB writepending:112kB present:4718592kB managed:3588928kB mlocked:16kB kernel_stack:38944kB pagetables:140116kB bounce:0kB free_pcp:176kB local_pcp:0kB free_cma:0kB
[ 2017.400022][T24729] lowmem_reserve[]: 0 0 0 0
[ 2017.404675][T24729] DMA: 0*4kB 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (U) 3*4096kB (M) = 15904kB
[ 2017.418138][T24729] DMA32: 4*4kB (H) 4*8kB (UM) 21*16kB (UH) 191*32kB (UMH) 120*64kB (UMH) 27*128kB (UMH) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 17632kB
[ 2017.432897][T24729] Normal: 1536*4kB (UMEH) 463*8kB (UMEH) 225*16kB (UMEH) 96*32kB (UMEH) 30*64kB (MEH) 4*128kB (MH) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 18952kB
[ 2017.448287][T24729] 7162 total pagecache pages
[ 2017.452900][T24729] 0 pages in swap cache
[ 2017.457045][T24729] Swap cache stats: add 0, delete 0, find 0/0
[ 2017.463127][T24729] Free swap  = 0kB
[ 2017.467016][T24729] Total swap = 0kB
[ 2017.470964][T24729] 1965979 pages RAM
[ 2017.486432][T24729] 0 pages HighMem/MovableOnly
[ 2017.491269][T24729] 318831 pages reserved
[ 2017.495629][T24729] 0 pages cma reserved
[ 2017.500408][T24729] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/,task=syz-executor.1,pid=15095,uid=0
[ 2017.514907][T24729] Out of memory: Killed process 15095 (syz-executor.1) total-vm:85480kB, anon-rss:16576kB, file-rss:34824kB, shmem-rss:0kB, UID:0 pgtables:160kB oom_score_adj:1000
[ 2017.536799][   T23] oom_reaper: reaped process 15095 (syz-executor.1), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
09:21:06 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a008004ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:21:06 executing program 4 (fault-call:14 fault-nth:57):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:21:06 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x1e00)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:21:06 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x12000000)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:21:06 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a000900ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 2018.084109][T24768] FAULT_INJECTION: forcing a failure.
[ 2018.084109][T24768] name failslab, interval 1, probability 0, space 0, times 0
[ 2018.097022][T24768] CPU: 1 PID: 24768 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2018.107347][T24768] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2018.117724][T24768] Call Trace:
[ 2018.121169][T24768]  dump_stack+0x1b0/0x21e
[ 2018.125562][T24768]  ? devkmsg_release+0x11c/0x11c
[ 2018.130558][T24768]  ? show_regs_print_info+0x12/0x12
[ 2018.135729][T24768]  ? cred_has_capability+0x18c/0x3f0
[ 2018.141071][T24768]  ? cred_has_capability+0x2b2/0x3f0
[ 2018.146415][T24768]  should_fail+0x6fb/0x860
[ 2018.150980][T24768]  ? setup_fault_attr+0x2b0/0x2b0
[ 2018.156239][T24768]  ? slab_free_freelist_hook+0xd0/0x150
[ 2018.161773][T24768]  ? cap_capable+0x23f/0x280
[ 2018.166345][T24768]  ? proc_pid_stack+0x1d5/0x1f0
[ 2018.171187][T24768]  ? proc_pid_stack+0x8e/0x1f0
[ 2018.175936][T24768]  should_failslab+0x5/0x20
[ 2018.180412][T24768]  kmem_cache_alloc_trace+0x39/0x270
[ 2018.185777][T24768]  proc_pid_stack+0x8e/0x1f0
[ 2018.190356][T24768]  proc_single_show+0xd3/0x130
[ 2018.195117][T24768]  seq_read+0x4aa/0xd30
[ 2018.199463][T24768]  do_iter_read+0x43b/0x550
[ 2018.203950][T24768]  do_preadv+0x1f4/0x330
[ 2018.208185][T24768]  ? do_writev+0x560/0x560
[ 2018.212593][T24768]  ? security_file_permission+0x128/0x300
[ 2018.218470][T24768]  ? __sb_end_write+0xa4/0xf0
[ 2018.223134][T24768]  ? vfs_write+0x427/0x4f0
[ 2018.227531][T24768]  do_syscall_64+0xcb/0x150
[ 2018.232202][T24768]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2018.238246][T24768] RIP: 0033:0x45d5b9
[ 2018.242114][T24768] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2018.261981][T24768] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 2018.270496][T24768] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 2018.278459][T24768] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 2018.286584][T24768] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 2018.294528][T24768] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000039
[ 2018.302491][T24768] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
[ 2018.419369][  T142] systemd-journal invoked oom-killer: gfp_mask=0x40cc0(GFP_KERNEL|__GFP_COMP), order=1, oom_score_adj=0
[ 2018.471176][  T142] CPU: 1 PID: 142 Comm: systemd-journal Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2018.481267][  T142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2018.491407][  T142] Call Trace:
[ 2018.494816][  T142]  dump_stack+0x1b0/0x21e
[ 2018.499232][  T142]  ? devkmsg_release+0x11c/0x11c
[ 2018.504161][  T142]  ? ___ratelimit+0x3bf/0x560
[ 2018.508916][  T142]  ? show_regs_print_info+0x12/0x12
[ 2018.514107][  T142]  ? _raw_spin_lock+0xa1/0x170
[ 2018.518864][  T142]  ? radix_tree_cpu_dead+0x160/0x160
[ 2018.524150][  T142]  dump_header+0xdb/0x700
[ 2018.528514][  T142]  oom_kill_process+0xd3/0x280
[ 2018.533376][  T142]  out_of_memory+0x5b6/0x890
[ 2018.537980][  T142]  ? unregister_oom_notifier+0x20/0x20
[ 2018.543437][  T142]  __alloc_pages_slowpath+0x17bc/0x1cb0
[ 2018.548990][  T142]  ? get_page_from_freelist+0x7c0/0x7c0
[ 2018.554628][  T142]  ? __zone_watermark_ok+0x91/0x280
[ 2018.559825][  T142]  __alloc_pages_nodemask+0x5cb/0x7c0
[ 2018.565188][  T142]  ? __kasan_kmalloc+0x117/0x1b0
[ 2018.570128][  T142]  ? gfp_pfmemalloc_allowed+0x130/0x130
[ 2018.575671][  T142]  ? kmem_cache_alloc+0x1d5/0x250
[ 2018.580683][  T142]  ? kern_path_locked+0x550/0x550
[ 2018.585692][  T142]  ? __secure_computing+0x250/0x250
[ 2018.590884][  T142]  alloc_slab_page+0x3a/0x390
[ 2018.595641][  T142]  new_slab+0x408/0x450
[ 2018.599792][  T142]  ? should_fail+0x18e/0x860
[ 2018.604374][  T142]  ___slab_alloc+0x2e0/0x450
[ 2018.608939][  T142]  ? perf_pmu_sched_task+0x370/0x370
[ 2018.614283][  T142]  ? getname_flags+0xb8/0x610
[ 2018.618949][  T142]  ? getname_flags+0xb8/0x610
[ 2018.623598][  T142]  kmem_cache_alloc+0x230/0x250
[ 2018.629031][  T142]  getname_flags+0xb8/0x610
[ 2018.633508][  T142]  ? security_prepare_creds+0x197/0x220
[ 2018.639028][  T142]  user_path_at_empty+0x28/0x50
[ 2018.643853][  T142]  do_faccessat+0x2f3/0x7f0
[ 2018.648335][  T142]  ? __ia32_sys_fallocate+0x100/0x100
[ 2018.654331][  T142]  do_syscall_64+0xcb/0x150
[ 2018.659180][  T142]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2018.665130][  T142] RIP: 0033:0x7f551cfa19c7
[ 2018.669525][  T142] Code: 83 c4 08 48 3d 01 f0 ff ff 73 01 c3 48 8b 0d c8 d4 2b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 b8 15 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d a1 d4 2b 00 f7 d8 64 89 01 48
[ 2018.689187][  T142] RSP: 002b:00007ffc5c9b5358 EFLAGS: 00000246 ORIG_RAX: 0000000000000015
[ 2018.697658][  T142] RAX: ffffffffffffffda RBX: 00007ffc5c9b8380 RCX: 00007f551cfa19c7
[ 2018.705604][  T142] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00005625c574b9a3
[ 2018.713653][  T142] RBP: 00007ffc5c9b54a0 R08: 00005625c57413e5 R09: 0000000000000018
[ 2018.721616][  T142] R10: 0000000000000030 R11: 0000000000000246 R12: 0000000000000000
[ 2018.729560][  T142] R13: 0000000000000000 R14: 00005625c5f978c0 R15: 00007ffc5c9b5990
[ 2018.791123][  T142] Mem-Info:
[ 2018.818293][  T142] active_anon:1404467 inactive_anon:12081 isolated_anon:0
[ 2018.818293][  T142]  active_file:468 inactive_file:1085 isolated_file:54
[ 2018.818293][  T142]  unevictable:4 dirty:54 writeback:12 unstable:0
[ 2018.818293][  T142]  slab_reclaimable:9085 slab_unreclaimable:80987
[ 2018.818293][  T142]  mapped:57221 shmem:6894 pagetables:35569 bounce:0
[ 2018.818293][  T142]  free:14652 free_pcp:210 free_cma:0
[ 2018.859076][  T142] Node 0 active_anon:5617868kB inactive_anon:48324kB active_file:2072kB inactive_file:4540kB unevictable:16kB isolated(anon):0kB isolated(file):216kB mapped:229084kB dirty:116kB writeback:0kB shmem:27576kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2018.885433][  T142] DMA free:15904kB min:24kB low:36kB high:48kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15904kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2018.937800][  T142] lowmem_reserve[]: 0 2912 6416 6416
[ 2018.944380][  T142] DMA32 free:19752kB min:4644kB low:7624kB high:10604kB active_anon:2941488kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2983760kB mlocked:0kB kernel_stack:3232kB pagetables:2036kB bounce:0kB free_pcp:60kB local_pcp:60kB free_cma:0kB
[ 2018.974619][  T142] lowmem_reserve[]: 0 0 3504 3504
09:21:07 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a00f504ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:21:07 executing program 4 (fault-call:14 fault-nth:58):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

[ 2018.981689][  T142] Normal free:22812kB min:20648kB low:24236kB high:27824kB active_anon:2676472kB inactive_anon:48332kB active_file:3300kB inactive_file:3504kB unevictable:16kB writepending:280kB present:4718592kB managed:3588928kB mlocked:16kB kernel_stack:38912kB pagetables:140216kB bounce:0kB free_pcp:1052kB local_pcp:172kB free_cma:0kB
09:21:08 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x1b000000)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:21:08 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a000a00ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 2019.065072][  T142] lowmem_reserve[]: 0 0 0 0
[ 2019.069834][  T142] DMA: 0*4kB 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (U) 3*4096kB (M) = 15904kB
[ 2019.083310][  T142] DMA32: 91*4kB (UMH) 5*8kB (UM) 25*16kB (UMH) 228*32kB (UMH) 119*64kB (UMH) 29*128kB (UMH) 3*256kB (UM) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20196kB
09:21:08 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x2500)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

[ 2019.165821][  T142] Normal: 199*4kB (UEH) 293*8kB (MEH) 258*16kB (MEH) 176*32kB (UMEH) 59*64kB (UMEH) 25*128kB (MH) 1*256kB (M) 2*512kB (M) 0*1024kB 0*2048kB 0*4096kB = 21156kB
[ 2019.261119][  T142] 9713 total pagecache pages
[ 2019.304267][T24802] FAULT_INJECTION: forcing a failure.
[ 2019.304267][T24802] name failslab, interval 1, probability 0, space 0, times 0
[ 2019.316989][T24802] CPU: 0 PID: 24802 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2019.327124][T24802] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2019.337151][T24802] Call Trace:
[ 2019.340418][T24802]  dump_stack+0x1b0/0x21e
[ 2019.344719][T24802]  ? devkmsg_release+0x11c/0x11c
[ 2019.349625][T24802]  ? show_regs_print_info+0x12/0x12
[ 2019.354881][T24802]  ? cred_has_capability+0x18c/0x3f0
[ 2019.360221][T24802]  ? cred_has_capability+0x2b2/0x3f0
[ 2019.365477][T24802]  should_fail+0x6fb/0x860
[ 2019.369876][T24802]  ? setup_fault_attr+0x2b0/0x2b0
[ 2019.375055][T24802]  ? slab_free_freelist_hook+0xd0/0x150
[ 2019.380570][T24802]  ? cap_capable+0x23f/0x280
[ 2019.385302][T24802]  ? proc_pid_stack+0x1d5/0x1f0
[ 2019.390184][T24802]  ? proc_pid_stack+0x8e/0x1f0
[ 2019.394917][T24802]  should_failslab+0x5/0x20
[ 2019.399392][T24802]  kmem_cache_alloc_trace+0x39/0x270
[ 2019.404660][T24802]  proc_pid_stack+0x8e/0x1f0
[ 2019.409218][T24802]  proc_single_show+0xd3/0x130
[ 2019.414041][T24802]  seq_read+0x4aa/0xd30
[ 2019.418953][T24802]  do_iter_read+0x43b/0x550
[ 2019.423428][T24802]  do_preadv+0x1f4/0x330
[ 2019.427645][T24802]  ? do_writev+0x560/0x560
[ 2019.432032][T24802]  ? security_file_permission+0x128/0x300
[ 2019.437824][T24802]  ? __sb_end_write+0xa4/0xf0
[ 2019.442491][T24802]  ? vfs_write+0x427/0x4f0
[ 2019.447055][T24802]  do_syscall_64+0xcb/0x150
[ 2019.451530][T24802]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2019.457497][T24802] RIP: 0033:0x45d5b9
[ 2019.461363][T24802] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2019.480951][T24802] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 2019.489368][T24802] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 2019.497407][T24802] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 2019.505358][T24802] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 2019.513399][T24802] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000003a
[ 2019.521861][T24802] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
[ 2019.545490][  T142] 0 pages in swap cache
[ 2019.568093][  T142] Swap cache stats: add 0, delete 0, find 0/0
[ 2019.619119][  T142] Free swap  = 0kB
[ 2019.623211][  T142] Total swap = 0kB
[ 2019.627307][  T142] 1965979 pages RAM
[ 2019.631425][  T142] 0 pages HighMem/MovableOnly
[ 2019.650720][  T142] 318831 pages reserved
[ 2019.668303][  T142] 0 pages cma reserved
[ 2019.699494][  T142] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/,task=syz-executor.1,pid=13656,uid=0
[ 2019.765960][  T142] Out of memory: Killed process 13656 (syz-executor.1) total-vm:85480kB, anon-rss:16576kB, file-rss:34824kB, shmem-rss:0kB, UID:0 pgtables:160kB oom_score_adj:1000
[ 2019.854295][T24784]  loop3: p1 p2 < > p3 p4 < p5 >
[ 2019.859285][T24784] loop3: partition table partially beyond EOD, truncated
[ 2019.876836][T24784] loop3: p1 start 83165194 is beyond EOD, truncated
[ 2019.883513][T24784] loop3: p2 start 25 is beyond EOD, truncated
[ 2019.890390][T24784] loop3: p3 start 4293001441 is beyond EOD, truncated
09:21:08 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x4000)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

[ 2019.910129][T24784] loop3: p4 size 2 extends beyond EOD, truncated
[ 2019.920918][T24784] loop3: p5 start 83165194 is beyond EOD, truncated
09:21:08 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a000b00ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:21:08 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x25000000)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:21:08 executing program 4 (fault-call:14 fault-nth:59):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

[ 2020.260562][T24820] FAULT_INJECTION: forcing a failure.
[ 2020.260562][T24820] name failslab, interval 1, probability 0, space 0, times 0
[ 2020.273457][T24820] CPU: 1 PID: 24820 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2020.283779][T24820] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2020.293867][T24820] Call Trace:
[ 2020.297134][T24820]  dump_stack+0x1b0/0x21e
[ 2020.301448][T24820]  ? devkmsg_release+0x11c/0x11c
[ 2020.306355][T24820]  ? show_regs_print_info+0x12/0x12
[ 2020.311545][T24820]  ? cred_has_capability+0x18c/0x3f0
[ 2020.316796][T24820]  ? cred_has_capability+0x2b2/0x3f0
[ 2020.322139][T24820]  should_fail+0x6fb/0x860
[ 2020.326526][T24820]  ? setup_fault_attr+0x2b0/0x2b0
[ 2020.331544][T24820]  ? slab_free_freelist_hook+0xd0/0x150
[ 2020.337074][T24820]  ? cap_capable+0x23f/0x280
[ 2020.341828][T24820]  ? proc_pid_stack+0x1d5/0x1f0
[ 2020.346646][T24820]  ? proc_pid_stack+0x8e/0x1f0
[ 2020.351383][T24820]  should_failslab+0x5/0x20
[ 2020.355859][T24820]  kmem_cache_alloc_trace+0x39/0x270
[ 2020.361115][T24820]  proc_pid_stack+0x8e/0x1f0
[ 2020.365704][T24820]  proc_single_show+0xd3/0x130
[ 2020.370437][T24820]  seq_read+0x4aa/0xd30
[ 2020.374565][T24820]  do_iter_read+0x43b/0x550
[ 2020.379040][T24820]  do_preadv+0x1f4/0x330
[ 2020.383271][T24820]  ? do_writev+0x560/0x560
[ 2020.387939][T24820]  ? security_file_permission+0x128/0x300
[ 2020.393638][T24820]  ? __sb_end_write+0xa4/0xf0
[ 2020.398313][T24820]  ? vfs_write+0x427/0x4f0
[ 2020.402702][T24820]  do_syscall_64+0xcb/0x150
[ 2020.407177][T24820]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2020.413404][T24820] RIP: 0033:0x45d5b9
[ 2020.417272][T24820] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2020.436846][T24820] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 2020.445227][T24820] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 2020.453181][T24820] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 2020.461125][T24820] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 2020.469066][T24820] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000003b
[ 2020.477705][T24820] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
[ 2020.515983][  T142] systemd-journal invoked oom-killer: gfp_mask=0x40cc0(GFP_KERNEL|__GFP_COMP), order=1, oom_score_adj=0
[ 2020.569747][  T142] CPU: 1 PID: 142 Comm: systemd-journal Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2020.579866][  T142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2020.589911][  T142] Call Trace:
[ 2020.593205][  T142]  dump_stack+0x1b0/0x21e
[ 2020.597594][  T142]  ? devkmsg_release+0x11c/0x11c
[ 2020.602501][  T142]  ? ___ratelimit+0x3bf/0x560
[ 2020.612094][  T142]  ? show_regs_print_info+0x12/0x12
[ 2020.617266][  T142]  ? _raw_spin_lock+0xa1/0x170
[ 2020.622000][  T142]  ? radix_tree_cpu_dead+0x160/0x160
[ 2020.627256][  T142]  dump_header+0xdb/0x700
[ 2020.631648][  T142]  oom_kill_process+0xd3/0x280
[ 2020.636383][  T142]  out_of_memory+0x5b6/0x890
[ 2020.640963][  T142]  ? unregister_oom_notifier+0x20/0x20
[ 2020.646829][  T142]  __alloc_pages_slowpath+0x17bc/0x1cb0
[ 2020.652370][  T142]  ? get_page_from_freelist+0x7c0/0x7c0
[ 2020.657973][  T142]  ? __zone_watermark_ok+0x91/0x280
[ 2020.663156][  T142]  __alloc_pages_nodemask+0x5cb/0x7c0
[ 2020.668762][  T142]  ? __kasan_kmalloc+0x117/0x1b0
[ 2020.673675][  T142]  ? gfp_pfmemalloc_allowed+0x130/0x130
[ 2020.679192][  T142]  ? kmem_cache_alloc+0x1d5/0x250
[ 2020.684626][  T142]  ? __secure_computing+0x250/0x250
[ 2020.689903][  T142]  alloc_slab_page+0x3a/0x390
[ 2020.694553][  T142]  new_slab+0x408/0x450
[ 2020.698678][  T142]  ? should_fail+0x18e/0x860
[ 2020.703240][  T142]  ? getname_flags+0xb8/0x610
[ 2020.708237][  T142]  ___slab_alloc+0x2e0/0x450
[ 2020.712809][  T142]  ? perf_pmu_sched_task+0x370/0x370
[ 2020.718077][  T142]  ? getname_flags+0xb8/0x610
[ 2020.722819][  T142]  ? getname_flags+0xb8/0x610
[ 2020.727465][  T142]  kmem_cache_alloc+0x230/0x250
[ 2020.732547][  T142]  getname_flags+0xb8/0x610
[ 2020.737117][  T142]  ? security_prepare_creds+0x197/0x220
[ 2020.742814][  T142]  user_path_at_empty+0x28/0x50
[ 2020.747725][  T142]  do_faccessat+0x2f3/0x7f0
[ 2020.752200][  T142]  ? __ia32_sys_fallocate+0x100/0x100
[ 2020.757892][  T142]  do_syscall_64+0xcb/0x150
[ 2020.762370][  T142]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2020.768435][  T142] RIP: 0033:0x7f551cfa19c7
[ 2020.772826][  T142] Code: 83 c4 08 48 3d 01 f0 ff ff 73 01 c3 48 8b 0d c8 d4 2b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 b8 15 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d a1 d4 2b 00 f7 d8 64 89 01 48
[ 2020.793898][  T142] RSP: 002b:00007ffc5c9b5468 EFLAGS: 00000246 ORIG_RAX: 0000000000000015
[ 2020.802281][  T142] RAX: ffffffffffffffda RBX: 00007ffc5c9b8380 RCX: 00007f551cfa19c7
[ 2020.810239][  T142] RDX: 00007f551da12a00 RSI: 0000000000000000 RDI: 00005625c574b9a3
[ 2020.818631][  T142] RBP: 00007ffc5c9b54a0 R08: 0000000000000000 R09: 0000000000000000
[ 2020.826673][  T142] R10: 0000000000000069 R11: 0000000000000246 R12: 0000000000000000
[ 2020.834881][  T142] R13: 0000000000000000 R14: 00007ffc5c9b8380 R15: 00007ffc5c9b5990
[ 2020.861200][  T142] Mem-Info:
[ 2020.869684][  T142] active_anon:1405888 inactive_anon:12080 isolated_anon:0
[ 2020.869684][  T142]  active_file:653 inactive_file:649 isolated_file:32
[ 2020.869684][  T142]  unevictable:4 dirty:63 writeback:0 unstable:0
[ 2020.869684][  T142]  slab_reclaimable:9077 slab_unreclaimable:80993
[ 2020.869684][  T142]  mapped:57209 shmem:6895 pagetables:35706 bounce:0
[ 2020.869684][  T142]  free:13596 free_pcp:56 free_cma:0
[ 2020.915331][  T142] Node 0 active_anon:5623552kB inactive_anon:48320kB active_file:2512kB inactive_file:2448kB unevictable:16kB isolated(anon):0kB isolated(file):312kB mapped:228748kB dirty:252kB writeback:0kB shmem:27580kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2020.940774][  T142] DMA free:15904kB min:24kB low:36kB high:48kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15904kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2020.967481][  T142] lowmem_reserve[]: 0 2912 6416 6416
[ 2020.997390][  T142] DMA32 free:17940kB min:4644kB low:7624kB high:10604kB active_anon:2943620kB inactive_anon:0kB active_file:144kB inactive_file:384kB unevictable:0kB writepending:0kB present:3129332kB managed:2983760kB mlocked:0kB kernel_stack:3264kB pagetables:2148kB bounce:0kB free_pcp:232kB local_pcp:200kB free_cma:0kB
[ 2021.027393][  T142] lowmem_reserve[]: 0 0 3504 3504
[ 2021.053016][  T142] Normal free:17384kB min:5592kB low:9180kB high:12768kB active_anon:2679832kB inactive_anon:48320kB active_file:2380kB inactive_file:5132kB unevictable:16kB writepending:252kB present:4718592kB managed:3588928kB mlocked:16kB kernel_stack:38912kB pagetables:140676kB bounce:0kB free_pcp:572kB local_pcp:256kB free_cma:0kB
[ 2021.087246][  T142] lowmem_reserve[]: 0 0 0 0
[ 2021.098096][  T142] DMA: 0*4kB 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (U) 3*4096kB (M) = 15904kB
[ 2021.115376][  T142] DMA32: 7*4kB (UMH) 5*8kB (UM) 25*16kB (UMH) 168*32kB (UMH) 113*64kB (UMH) 32*128kB (UMH) 3*256kB (UM) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 17940kB
[ 2021.132772][  T142] Normal: 223*4kB (UMEH) 264*8kB (UMEH) 167*16kB (MEH) 136*32kB (MEH) 67*64kB (UMEH) 35*128kB (UMH) 2*256kB (UM) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 19308kB
[ 2021.151688][  T142] 9682 total pagecache pages
[ 2021.157459][  T142] 0 pages in swap cache
09:21:10 executing program 4 (fault-call:14 fault-nth:60):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:21:10 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a000c00ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:21:10 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a000005ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 2021.162598][  T142] Swap cache stats: add 0, delete 0, find 0/0
[ 2021.177591][  T142] Free swap  = 0kB
[ 2021.196047][  T142] Total swap = 0kB
[ 2021.214896][  T142] 1965979 pages RAM
[ 2021.234910][  T142] 0 pages HighMem/MovableOnly
[ 2021.259888][  T142] 318831 pages reserved
[ 2021.278985][  T142] 0 pages cma reserved
[ 2021.294695][  T142] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/,task=syz-executor.1,pid=13504,uid=0
[ 2021.342838][  T142] Out of memory: Killed process 13504 (syz-executor.1) total-vm:85480kB, anon-rss:16576kB, file-rss:34824kB, shmem-rss:0kB, UID:0 pgtables:160kB oom_score_adj:1000
09:21:10 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000227bd7000ffdbdf250b0000000c0003800600040000005415"], 0x20}}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x0, @fd_index=0xa, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
r4 = open(0x0, 0x14183e, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, r4, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000380)=@IORING_OP_SENDMSG={0x9, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000340)={&(0x7f0000000000)=@qipcrtr={0x2a, 0x0, 0x7fff}, 0x80, &(0x7f0000000280)=[{&(0x7f0000000100)="b205", 0x2}, {&(0x7f0000000140)}, {&(0x7f0000000180)='Q', 0x1}, {&(0x7f0000000580)="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", 0xed0}, {&(0x7f00000001c0)="0e72c13d7b063ff8825f0370a0ad14726870fa8fff57e4a2b1741df8e4c4d94f6d28c5c7d39a566e0819cc2b8930fa3046465dac935a912ceba997902f170f69aeb3f00a60", 0x45}, {&(0x7f0000000240)}], 0x6, &(0x7f00000003c0)=ANY=[@ANYBLOB="2800000000e6ffff0001000000000000893aff7f77f933c1d4112a93e07f0900000094ae000000000c313c0f801e8179c92b4c1e0446d73c464aebe9fc978df3d41f69369a39829026c4610dff081d723e35224815"], 0x28}, 0x0, 0x20000000, 0x0, {0x0, r5}}, 0x9)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000340)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x5, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r5}}, 0x7)

09:21:10 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a000d00ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:21:10 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x40000000)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:21:10 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0xcf00)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

[ 2021.789929][T24853] FAULT_INJECTION: forcing a failure.
[ 2021.789929][T24853] name failslab, interval 1, probability 0, space 0, times 0
[ 2021.802786][T24853] CPU: 0 PID: 24853 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2021.812927][T24853] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2021.823061][T24853] Call Trace:
[ 2021.826511][T24853]  dump_stack+0x1b0/0x21e
[ 2021.830815][T24853]  ? devkmsg_release+0x11c/0x11c
[ 2021.835725][T24853]  ? show_regs_print_info+0x12/0x12
[ 2021.840988][T24853]  ? cred_has_capability+0x18c/0x3f0
[ 2021.846302][T24853]  ? cred_has_capability+0x2b2/0x3f0
[ 2021.851825][T24853]  should_fail+0x6fb/0x860
[ 2021.856222][T24853]  ? setup_fault_attr+0x2b0/0x2b0
[ 2021.861220][T24853]  ? slab_free_freelist_hook+0xd0/0x150
[ 2021.866827][T24853]  ? cap_capable+0x23f/0x280
[ 2021.871419][T24853]  ? proc_pid_stack+0x1d5/0x1f0
[ 2021.876243][T24853]  ? proc_pid_stack+0x8e/0x1f0
[ 2021.880979][T24853]  should_failslab+0x5/0x20
[ 2021.885542][T24853]  kmem_cache_alloc_trace+0x39/0x270
[ 2021.890808][T24853]  proc_pid_stack+0x8e/0x1f0
[ 2021.895371][T24853]  proc_single_show+0xd3/0x130
[ 2021.900125][T24853]  seq_read+0x4aa/0xd30
[ 2021.904964][T24853]  do_iter_read+0x43b/0x550
[ 2021.909616][T24853]  do_preadv+0x1f4/0x330
[ 2021.913840][T24853]  ? do_writev+0x560/0x560
[ 2021.918339][T24853]  ? retint_kernel+0x1b/0x1b
[ 2021.922952][T24853]  ? fput_many+0x39/0x1a0
[ 2021.927253][T24853]  ? fput_many+0x42/0x1a0
[ 2021.931653][T24853]  do_syscall_64+0xcb/0x150
[ 2021.936129][T24853]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2021.941993][T24853] RIP: 0033:0x45d5b9
[ 2021.945948][T24853] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2021.965698][T24853] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 2021.974310][T24853] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 2021.982259][T24853] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 2021.990944][T24853] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 2021.998889][T24853] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000003c
[ 2022.006848][T24853] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
[ 2022.064392][T24828] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 2022.172064][T24828] CPU: 1 PID: 24828 Comm: syz-executor.3 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2022.182354][T24828] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2022.192500][T24828] Call Trace:
[ 2022.195769][T24828]  dump_stack+0x1b0/0x21e
[ 2022.200094][T24828]  ? devkmsg_release+0x11c/0x11c
[ 2022.205018][T24828]  ? ___ratelimit+0x3bf/0x560
[ 2022.209682][T24828]  ? show_regs_print_info+0x12/0x12
[ 2022.215083][T24828]  ? _raw_spin_lock+0xa1/0x170
[ 2022.219823][T24828]  ? radix_tree_cpu_dead+0x160/0x160
[ 2022.225088][T24828]  dump_header+0xdb/0x700
[ 2022.229399][T24828]  oom_kill_process+0xd3/0x280
[ 2022.234225][T24828]  out_of_memory+0x5b6/0x890
[ 2022.238816][T24828]  ? unregister_oom_notifier+0x20/0x20
[ 2022.244259][T24828]  __alloc_pages_slowpath+0x17bc/0x1cb0
[ 2022.249872][T24828]  ? get_page_from_freelist+0x7c0/0x7c0
[ 2022.255401][T24828]  ? __schedule+0x8ae/0xe30
[ 2022.260412][T24828]  __alloc_pages_nodemask+0x5cb/0x7c0
[ 2022.265958][T24828]  ? gfp_pfmemalloc_allowed+0x130/0x130
[ 2022.271475][T24828]  ? mem_cgroup_commit_charge+0x198/0x240
[ 2022.279856][T24828]  ? mem_cgroup_try_charge_delay+0x10/0x10
[ 2022.285653][T24828]  ? __lru_cache_add+0x1a1/0x1f0
[ 2022.290648][T24828]  wp_page_copy+0x1c4/0x10e0
[ 2022.295907][T24828]  ? trace_event_raw_event_rcu_utilization+0x170/0x170
[ 2022.302743][T24828]  ? add_mm_rss_vec+0x270/0x270
[ 2022.307566][T24828]  do_wp_page+0x657/0x14b0
[ 2022.311970][T24828]  ? _raw_spin_lock+0xa1/0x170
[ 2022.316819][T24828]  ? do_swap_page+0x1510/0x1510
[ 2022.321656][T24828]  ? __perf_event_task_sched_out+0x1127/0x1250
[ 2022.327867][T24828]  handle_mm_fault+0xf6c/0x4140
[ 2022.332787][T24828]  ? finish_fault+0x230/0x230
[ 2022.337437][T24828]  ? down_read_trylock+0x17a/0x1d0
[ 2022.342697][T24828]  ? vmacache_find+0x205/0x4b0
[ 2022.347446][T24828]  do_user_addr_fault+0x48a/0x9f0
[ 2022.352443][T24828]  page_fault+0x2f/0x40
[ 2022.356596][T24828] RIP: 0033:0x40f7d8
[ 2022.360462][T24828] Code: 00 00 49 8d be 88 00 00 00 48 89 ea 48 89 de 0f 85 dd 00 00 00 e8 98 2e 00 00 8b 05 32 88 35 00 48 8b 15 ab 43 29 01 83 c0 01 <89> 05 22 88 35 00 89 02 48 83 c4 08 5b 5d 41 5c 41 5d 41 5e 41 5f
[ 2022.380220][T24828] RSP: 002b:00007ffd6f066590 EFLAGS: 00010202
[ 2022.386390][T24828] RAX: 0000000000000001 RBX: 0000001b31220014 RCX: 0000001b32220000
[ 2022.394389][T24828] RDX: 0000001b31220000 RSI: 0000000000000105 RDI: ffffffffe7eb2104
[ 2022.402447][T24828] RBP: 0000001b31220018 R08: 00000000e7eb2104 R09: 00000000e7eb2108
[ 2022.410393][T24828] R10: 00007ffd6f0666b0 R11: 0000000000000246 R12: 0000001b3122001c
[ 2022.418454][T24828] R13: 000000000118d940 R14: 000000000118cf40 R15: 000000000118cf4c
[ 2022.466213][T24828] Mem-Info:
[ 2022.469807][T24828] active_anon:1406941 inactive_anon:12082 isolated_anon:0
[ 2022.469807][T24828]  active_file:309 inactive_file:307 isolated_file:29
[ 2022.469807][T24828]  unevictable:4 dirty:49 writeback:0 unstable:0
[ 2022.469807][T24828]  slab_reclaimable:8853 slab_unreclaimable:81377
[ 2022.469807][T24828]  mapped:56613 shmem:6895 pagetables:35719 bounce:0
[ 2022.469807][T24828]  free:13059 free_pcp:52 free_cma:0
[ 2022.546330][T24828] Node 0 active_anon:5628864kB inactive_anon:48328kB active_file:980kB inactive_file:916kB unevictable:16kB isolated(anon):0kB isolated(file):116kB mapped:225752kB dirty:196kB writeback:0kB shmem:27580kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2022.582904][T24828] DMA free:15904kB min:24kB low:36kB high:48kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15904kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2022.610842][T24828] lowmem_reserve[]: 0 2912 6416 6416
[ 2022.616320][T24828] DMA32 free:17324kB min:4644kB low:7624kB high:10604kB active_anon:2944304kB inactive_anon:0kB active_file:40kB inactive_file:20kB unevictable:0kB writepending:0kB present:3129332kB managed:2983760kB mlocked:0kB kernel_stack:3264kB pagetables:2152kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2022.645199][T24828] lowmem_reserve[]: 0 0 3504 3504
[ 2022.650467][T24828] Normal free:18244kB min:20648kB low:24236kB high:27824kB active_anon:2683896kB inactive_anon:48328kB active_file:716kB inactive_file:824kB unevictable:16kB writepending:296kB present:4718592kB managed:3588928kB mlocked:16kB kernel_stack:39200kB pagetables:140724kB bounce:0kB free_pcp:852kB local_pcp:520kB free_cma:0kB
[ 2022.698940][T24828] lowmem_reserve[]: 0 0 0 0
[ 2022.703676][T24828] DMA: 0*4kB 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (U) 3*4096kB (M) = 15904kB
[ 2022.717566][T24828] DMA32: 20*4kB (UMH) 13*8kB (UM) 37*16kB (UMH) 171*32kB (UMH) 98*64kB (UMH) 34*128kB (UMH) 3*256kB (UM) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 17640kB
[ 2022.762131][T24828] Normal: 398*4kB (UMEH) 454*8kB (UMEH) 266*16kB (UMEH) 155*32kB (UMEH) 67*64kB (MEH) 5*128kB (MH) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 19368kB
[ 2022.786852][T24828] 7125 total pagecache pages
[ 2022.792896][T24828] 0 pages in swap cache
[ 2022.797175][T24828] Swap cache stats: add 0, delete 0, find 0/0
[ 2022.803245][T24828] Free swap  = 0kB
[ 2022.807091][T24828] Total swap = 0kB
[ 2022.810797][T24828] 1965979 pages RAM
[ 2022.814687][T24828] 0 pages HighMem/MovableOnly
[ 2022.819686][T24828] 318831 pages reserved
[ 2022.823944][T24828] 0 pages cma reserved
[ 2022.828127][T24828] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/,task=syz-executor.5,pid=24841,uid=0
[ 2022.853175][T24828] Out of memory: Killed process 24841 (syz-executor.5) total-vm:85480kB, anon-rss:16572kB, file-rss:34876kB, shmem-rss:0kB, UID:0 pgtables:160kB oom_score_adj:1000
[ 2022.874608][   T23] oom_reaper: reaped process 24841 (syz-executor.5), now anon-rss:0kB, file-rss:34820kB, shmem-rss:0kB
[ 2023.402430][T24867] syz-executor.0 invoked oom-killer: gfp_mask=0x1100dca(GFP_HIGHUSER_MOVABLE|__GFP_ZERO|0x1000000), order=0, oom_score_adj=1000
[ 2023.429792][T24867] CPU: 0 PID: 24867 Comm: syz-executor.0 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2023.440050][T24867] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2023.450081][T24867] Call Trace:
[ 2023.453520][T24867]  dump_stack+0x1b0/0x21e
[ 2023.457878][T24867]  ? devkmsg_release+0x11c/0x11c
[ 2023.462796][T24867]  ? ___ratelimit+0x3bf/0x560
[ 2023.467531][T24867]  ? show_regs_print_info+0x12/0x12
[ 2023.472706][T24867]  ? _raw_spin_lock+0xa1/0x170
[ 2023.477437][T24867]  ? radix_tree_cpu_dead+0x160/0x160
[ 2023.482902][T24867]  dump_header+0xdb/0x700
[ 2023.487213][T24867]  oom_kill_process+0xd3/0x280
[ 2023.492009][T24867]  out_of_memory+0x5b6/0x890
[ 2023.496570][T24867]  ? unregister_oom_notifier+0x20/0x20
[ 2023.501999][T24867]  __alloc_pages_slowpath+0x17bc/0x1cb0
[ 2023.507518][T24867]  ? get_page_from_freelist+0x7c0/0x7c0
[ 2023.513043][T24867]  ? _raw_spin_lock+0xa1/0x170
[ 2023.517783][T24867]  __alloc_pages_nodemask+0x5cb/0x7c0
[ 2023.523136][T24867]  ? gfp_pfmemalloc_allowed+0x130/0x130
[ 2023.528653][T24867]  ? __perf_event_task_sched_in+0x4ed/0x550
[ 2023.534528][T24867]  wp_page_copy+0x199/0x10e0
[ 2023.539090][T24867]  ? switch_mm_irqs_off+0x46e/0x870
[ 2023.544257][T24867]  ? switch_mm+0xe0/0xe0
[ 2023.548482][T24867]  ? add_mm_rss_vec+0x270/0x270
[ 2023.553303][T24867]  ? vm_normal_page+0x1c9/0x1d0
[ 2023.558231][T24867]  do_wp_page+0x48d/0x14b0
[ 2023.562634][T24867]  ? _raw_spin_lock+0xa1/0x170
[ 2023.567467][T24867]  ? do_swap_page+0x1510/0x1510
[ 2023.572288][T24867]  handle_mm_fault+0xf6c/0x4140
[ 2023.577465][T24867]  ? finish_fault+0x230/0x230
[ 2023.582111][T24867]  ? update_curr+0x584/0x740
[ 2023.586671][T24867]  ? down_read_trylock+0x17a/0x1d0
[ 2023.591760][T24867]  ? _raw_spin_unlock_irq+0x5/0x20
[ 2023.596842][T24867]  ? vmacache_find+0x2d2/0x4b0
[ 2023.601576][T24867]  do_user_addr_fault+0x48a/0x9f0
[ 2023.606601][T24867]  page_fault+0x2f/0x40
[ 2023.610738][T24867] RIP: 0010:copy_user_enhanced_fast_string+0xe/0x30
[ 2023.617316][T24867] Code: 89 d1 c1 e9 03 83 e2 07 f3 48 a5 89 d1 f3 a4 31 c0 0f 1f 00 c3 0f 1f 80 00 00 00 00 0f 1f 00 83 fa 40 0f 82 70 ff ff ff 89 d1 <f3> a4 31 c0 0f 1f 00 c3 66 2e 0f 1f 84 00 00 00 00 00 89 d1 f3 a4
[ 2023.636888][T24867] RSP: 0000:ffff88816b0e7888 EFLAGS: 00010206
[ 2023.642921][T24867] RAX: ffffffff81f5ae01 RBX: 0000000020731500 RCX: 0000000000000500
[ 2023.650863][T24867] RDX: 0000000000001000 RSI: ffff88816050bb00 RDI: 0000000020731000
[ 2023.658807][T24867] RBP: ffff88816b0e7da8 R08: dffffc0000000000 R09: ffffed102c0a1800
[ 2023.666757][T24867] R10: 0000000000000000 R11: 0000000000000000 R12: 00007ffffffff000
[ 2023.674787][T24867] R13: 0000000000001000 R14: ffff88816050b000 R15: 0000000020730500
[ 2023.682750][T24867]  ? _copy_to_iter+0xfb1/0xfc0
[ 2023.687494][T24867]  copyout+0x8e/0xb0
[ 2023.691358][T24867]  copy_page_to_iter+0x393/0xbd0
[ 2023.696274][T24867]  pipe_to_user+0xa3/0x130
[ 2023.700658][T24867]  __splice_from_pipe+0x2d3/0x870
[ 2023.705652][T24867]  ? user_page_pipe_buf_steal+0xc0/0xc0
[ 2023.711163][T24867]  do_vmsplice+0x240/0xe70
[ 2023.715550][T24867]  ? __rcu_read_lock+0x50/0x50
[ 2023.720283][T24867]  ? filemap_map_pages+0x10aa/0x1120
[ 2023.725808][T24867]  ? write_pipe_buf+0x1d0/0x1d0
[ 2023.730696][T24867]  ? __rcu_read_lock+0x50/0x50
[ 2023.735478][T24867]  ? check_stack_object+0x5a/0x90
[ 2023.740480][T24867]  ? _copy_from_user+0xa4/0xe0
[ 2023.745230][T24867]  ? rw_copy_check_uvector+0x2b3/0x310
[ 2023.751354][T24867]  ? import_iovec+0x171/0x340
[ 2023.756003][T24867]  ? dup_iter+0x110/0x110
[ 2023.760329][T24867]  ? do_vfs_ioctl+0x757/0x1700
[ 2023.765074][T24867]  __se_sys_vmsplice+0x1cc/0x2c0
[ 2023.769980][T24867]  ? __x64_sys_vmsplice+0xa0/0xa0
[ 2023.774973][T24867]  ? put_timespec64+0x106/0x150
[ 2023.779801][T24867]  ? ktime_get_raw+0x130/0x130
[ 2023.784709][T24867]  ? get_timespec64+0x1c0/0x1c0
[ 2023.789531][T24867]  ? fget_many+0x20/0x20
[ 2023.793753][T24867]  ? __ia32_sys_clock_settime+0x230/0x230
[ 2023.801264][T24867]  do_syscall_64+0xcb/0x150
[ 2023.805744][T24867]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2023.811614][T24867] RIP: 0033:0x45d5b9
[ 2023.815505][T24867] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2023.835091][T24867] RSP: 002b:00007fc344b26c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000116
[ 2023.843482][T24867] RAX: ffffffffffffffda RBX: 0000000000036640 RCX: 000000000045d5b9
[ 2023.851423][T24867] RDX: 0000000000000001 RSI: 0000000020000000 RDI: 0000000000000004
[ 2023.859376][T24867] RBP: 000000000118d0c8 R08: 0000000000000000 R09: 0000000000000000
[ 2023.867326][T24867] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118d08c
[ 2023.875378][T24867] R13: 00007ffd4130796f R14: 00007fc344b279c0 R15: 000000000118d08c
[ 2023.940211][T24867] Mem-Info:
[ 2023.943800][T24867] active_anon:1407166 inactive_anon:12080 isolated_anon:0
[ 2023.943800][T24867]  active_file:57 inactive_file:144 isolated_file:32
[ 2023.943800][T24867]  unevictable:4 dirty:0 writeback:0 unstable:0
[ 2023.943800][T24867]  slab_reclaimable:8825 slab_unreclaimable:81351
[ 2023.943800][T24867]  mapped:56222 shmem:6893 pagetables:35585 bounce:0
[ 2023.943800][T24867]  free:12935 free_pcp:746 free_cma:0
[ 2023.982056][T24867] Node 0 active_anon:5628664kB inactive_anon:48320kB active_file:228kB inactive_file:576kB unevictable:16kB isolated(anon):0kB isolated(file):0kB mapped:224788kB dirty:0kB writeback:0kB shmem:27572kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2024.018341][T24867] DMA free:15904kB min:24kB low:36kB high:48kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15904kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2024.045400][T24867] lowmem_reserve[]: 0 2912 6416 6416
[ 2024.051375][T24867] DMA32 free:18484kB min:4644kB low:7624kB high:10604kB active_anon:2942652kB inactive_anon:0kB active_file:0kB inactive_file:232kB unevictable:0kB writepending:0kB present:3129332kB managed:2983760kB mlocked:0kB kernel_stack:3264kB pagetables:2144kB bounce:0kB free_pcp:1628kB local_pcp:1264kB free_cma:0kB
[ 2024.080971][T24867] lowmem_reserve[]: 0 0 3504 3504
[ 2024.086420][T24867] Normal free:15792kB min:5592kB low:9180kB high:12768kB active_anon:2686012kB inactive_anon:48320kB active_file:428kB inactive_file:1136kB unevictable:16kB writepending:0kB present:4718592kB managed:3588928kB mlocked:16kB kernel_stack:38720kB pagetables:140196kB bounce:0kB free_pcp:1200kB local_pcp:900kB free_cma:0kB
[ 2024.116939][T24867] lowmem_reserve[]: 0 0 0 0
[ 2024.121756][T24867] DMA: 0*4kB 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (U) 3*4096kB (M) = 15904kB
[ 2024.135428][T24867] DMA32: 5*4kB (MH) 2*8kB (UM) 11*16kB (H) 169*32kB (UMH) 121*64kB (UMH) 34*128kB (UMH) 3*256kB (UM) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 18484kB
[ 2024.150822][T24867] Normal: 249*4kB (UEH) 369*8kB (UMEH) 242*16kB (UMEH) 150*32kB (UMEH) 27*64kB (UMEH) 5*128kB (MH) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 14988kB
[ 2024.166780][T24867] 7314 total pagecache pages
[ 2024.171937][T24867] 0 pages in swap cache
[ 2024.176735][T24867] Swap cache stats: add 0, delete 0, find 0/0
[ 2024.183657][T24867] Free swap  = 0kB
[ 2024.188038][T24867] Total swap = 0kB
[ 2024.192524][T24867] 1965979 pages RAM
[ 2024.197067][T24867] 0 pages HighMem/MovableOnly
[ 2024.202189][T24867] 318831 pages reserved
[ 2024.206685][T24867] 0 pages cma reserved
[ 2024.211325][T24867] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/,task=syz-executor.1,pid=24864,uid=0
[ 2024.226125][T24867] Out of memory: Killed process 24864 (syz-executor.1) total-vm:85480kB, anon-rss:16576kB, file-rss:34828kB, shmem-rss:0kB, UID:0 pgtables:160kB oom_score_adj:1000
[ 2024.246608][   T23] oom_reaper: reaped process 24864 (syz-executor.1), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
09:21:13 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x7fffefe5)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:21:13 executing program 4 (fault-call:14 fault-nth:61):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:21:13 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x100000)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:21:13 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a000006ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:21:13 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r3, 0x29, 0x22, &(0x7f00000001c0)={@ipv4={[0x2, 0x0, 0x0, 0x0, 0x2, 0x0, 0x2]}, 0x0, 0x0, 0x0, 0x4000}, 0x20)
ioctl$sock_netdev_private(r3, 0x89fd, &(0x7f00000002c0)="1d6eb233da8ebb60e0dfdce4a6d4c0a90b988e9ff03129999d42702bdcc81c931623fd1de6549bd421c43eb7bd072c5b15cec4c492ee89a89fe3d56eccbbb88536ab53a5168645f8c95baa82d8af4be71daa5225b24cd64e9ccb236193ebba17574f7e80a8de26201129ada6ac2b1f4b721c5f11f3b3b8345fe4dedd59deeef63a9d21523ee9df5adecfcefb6b1623e5644ac6acdbe65b5766176885a53377037ee685f7f441667feac7ff276e8d8ab98fe3dd9eb27dd7d81b166249409e7aeec0a62d729206a2a19404be5c6e2b41da7e6633d24fdd7821c1540480efbfbb3b9e9cec9d31a9ef546506ed3d9dfe2c2323f4b4d76f1a97667d")
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000227bd5900ff040000000000"], 0x20}}, 0x0)

09:21:13 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a000e00ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 2024.576224][T24897] FAULT_INJECTION: forcing a failure.
[ 2024.576224][T24897] name failslab, interval 1, probability 0, space 0, times 0
[ 2024.588905][T24897] CPU: 1 PID: 24897 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2024.599303][T24897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2024.607014][T24891] syz-executor.0 invoked oom-killer: gfp_mask=0x1100dca(GFP_HIGHUSER_MOVABLE|__GFP_ZERO|0x1000000), order=0, oom_score_adj=1000
[ 2024.609562][T24897] Call Trace:
[ 2024.626110][T24897]  dump_stack+0x1b0/0x21e
[ 2024.630432][T24897]  ? devkmsg_release+0x11c/0x11c
[ 2024.635361][T24897]  ? show_regs_print_info+0x12/0x12
[ 2024.640674][T24897]  ? cred_has_capability+0x18c/0x3f0
[ 2024.645949][T24897]  ? cred_has_capability+0x2b2/0x3f0
[ 2024.652262][T24897]  should_fail+0x6fb/0x860
[ 2024.656656][T24897]  ? setup_fault_attr+0x2b0/0x2b0
[ 2024.661654][T24897]  ? slab_free_freelist_hook+0xd0/0x150
[ 2024.667192][T24897]  ? cap_capable+0x23f/0x280
[ 2024.671782][T24897]  ? proc_pid_stack+0x1d5/0x1f0
[ 2024.676624][T24897]  ? proc_pid_stack+0x8e/0x1f0
[ 2024.681472][T24897]  should_failslab+0x5/0x20
[ 2024.685971][T24897]  kmem_cache_alloc_trace+0x39/0x270
[ 2024.691239][T24897]  proc_pid_stack+0x8e/0x1f0
[ 2024.695810][T24897]  proc_single_show+0xd3/0x130
[ 2024.700560][T24897]  seq_read+0x4aa/0xd30
[ 2024.704690][T24897]  do_iter_read+0x43b/0x550
[ 2024.709178][T24897]  do_preadv+0x1f4/0x330
[ 2024.713390][T24897]  ? do_writev+0x560/0x560
[ 2024.717777][T24897]  ? security_file_permission+0x128/0x300
[ 2024.723466][T24897]  ? __sb_end_write+0xa4/0xf0
[ 2024.728113][T24897]  ? vfs_write+0x427/0x4f0
[ 2024.735887][T24897]  do_syscall_64+0xcb/0x150
[ 2024.740360][T24897]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2024.746222][T24897] RIP: 0033:0x45d5b9
[ 2024.750967][T24897] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2024.770824][T24897] RSP: 002b:00007f5525a80c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 2024.779204][T24897] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 2024.787148][T24897] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 2024.795190][T24897] RBP: 00007f5525a80ca0 R08: 0000000000000000 R09: 0000000000000000
[ 2024.803131][T24897] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000003d
[ 2024.811085][T24897] R13: 00007ffd8cac604f R14: 00007f5525a819c0 R15: 000000000118d1cc
[ 2024.819060][T24891] CPU: 0 PID: 24891 Comm: syz-executor.0 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2024.829205][T24891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2024.839250][T24891] Call Trace:
[ 2024.842539][T24891]  dump_stack+0x1b0/0x21e
[ 2024.846862][T24891]  ? devkmsg_release+0x11c/0x11c
[ 2024.851926][T24891]  ? show_regs_print_info+0x12/0x12
[ 2024.857111][T24891]  ? _raw_spin_lock+0xa1/0x170
[ 2024.861877][T24891]  ? radix_tree_cpu_dead+0x160/0x160
[ 2024.867224][T24891]  dump_header+0xdb/0x700
[ 2024.871526][T24891]  oom_kill_process+0xd3/0x280
[ 2024.876356][T24891]  out_of_memory+0x5b6/0x890
[ 2024.880918][T24891]  ? unregister_oom_notifier+0x20/0x20
[ 2024.886349][T24891]  __alloc_pages_slowpath+0x17bc/0x1cb0
[ 2024.891869][T24891]  ? get_page_from_freelist+0x7c0/0x7c0
[ 2024.897399][T24891]  __alloc_pages_nodemask+0x5cb/0x7c0
[ 2024.902745][T24891]  ? gfp_pfmemalloc_allowed+0x130/0x130
[ 2024.908349][T24891]  ? __perf_event_task_sched_in+0x4ed/0x550
[ 2024.914224][T24891]  wp_page_copy+0x199/0x10e0
[ 2024.918809][T24891]  ? switch_mm_irqs_off+0x25d/0x870
[ 2024.923988][T24891]  ? switch_mm+0xe0/0xe0
[ 2024.928201][T24891]  ? add_mm_rss_vec+0x270/0x270
[ 2024.933041][T24891]  ? vm_normal_page+0x1c9/0x1d0
[ 2024.937861][T24891]  do_wp_page+0x48d/0x14b0
[ 2024.942248][T24891]  ? _raw_spin_lock+0xa1/0x170
[ 2024.946981][T24891]  ? do_swap_page+0x1510/0x1510
[ 2024.951822][T24891]  handle_mm_fault+0xf6c/0x4140
[ 2024.956650][T24891]  ? finish_fault+0x230/0x230
[ 2024.961297][T24891]  ? switch_mm_irqs_off+0x46e/0x870
[ 2024.966484][T24891]  ? trace_event_raw_event_sched_switch+0x480/0x480
[ 2024.973656][T24891]  ? down_read_trylock+0x17a/0x1d0
[ 2024.978739][T24891]  ? vmacache_find+0x205/0x4b0
[ 2024.983574][T24891]  do_user_addr_fault+0x48a/0x9f0
[ 2024.988572][T24891]  page_fault+0x2f/0x40
[ 2024.992700][T24891] RIP: 0010:copy_user_enhanced_fast_string+0xe/0x30
[ 2024.999268][T24891] Code: 89 d1 c1 e9 03 83 e2 07 f3 48 a5 89 d1 f3 a4 31 c0 0f 1f 00 c3 0f 1f 80 00 00 00 00 0f 1f 00 83 fa 40 0f 82 70 ff ff ff 89 d1 <f3> a4 31 c0 0f 1f 00 c3 66 2e 0f 1f 84 00 00 00 00 00 89 d1 f3 a4
[ 2025.018931][T24891] RSP: 0018:ffff888140d4f888 EFLAGS: 00010206
[ 2025.025228][T24891] RAX: ffffffff81f5ae01 RBX: 000000002003a500 RCX: 0000000000000500
[ 2025.035531][T24891] RDX: 0000000000001000 RSI: ffff8881614ccb00 RDI: 000000002003a000
[ 2025.043499][T24891] RBP: ffff888140d4fda8 R08: dffffc0000000000 R09: ffffed102c299a00
[ 2025.051833][T24891] R10: 0000000000000000 R11: 0000000000000000 R12: 00007ffffffff000
[ 2025.059783][T24891] R13: 0000000000001000 R14: ffff8881614cc000 R15: 0000000020039500
[ 2025.067748][T24891]  ? _copy_to_iter+0xfb1/0xfc0
[ 2025.072494][T24891]  copyout+0x8e/0xb0
[ 2025.076359][T24891]  copy_page_to_iter+0x393/0xbd0
[ 2025.082223][T24891]  pipe_to_user+0xa3/0x130
[ 2025.086607][T24891]  __splice_from_pipe+0x2d3/0x870
[ 2025.091601][T24891]  ? user_page_pipe_buf_steal+0xc0/0xc0
[ 2025.097136][T24891]  do_vmsplice+0x240/0xe70
[ 2025.101640][T24891]  ? is_mmconf_reserved+0x420/0x420
[ 2025.106894][T24891]  ? write_pipe_buf+0x1d0/0x1d0
[ 2025.111713][T24891]  ? __rcu_read_lock+0x50/0x50
[ 2025.116470][T24891]  ? preempt_schedule+0xeb/0x110
[ 2025.121374][T24891]  ? check_stack_object+0x5a/0x90
[ 2025.126366][T24891]  ? _copy_from_user+0xa4/0xe0
[ 2025.131097][T24891]  ? rw_copy_check_uvector+0x2b3/0x310
[ 2025.136536][T24891]  ? import_iovec+0x171/0x340
[ 2025.141181][T24891]  ? dup_iter+0x110/0x110
[ 2025.145495][T24891]  ? do_vfs_ioctl+0x757/0x1700
[ 2025.150228][T24891]  __se_sys_vmsplice+0x1cc/0x2c0
[ 2025.155135][T24891]  ? __x64_sys_vmsplice+0xa0/0xa0
[ 2025.160132][T24891]  ? put_timespec64+0x106/0x150
[ 2025.164954][T24891]  ? ktime_get_raw+0x130/0x130
[ 2025.169691][T24891]  ? get_timespec64+0x1c0/0x1c0
[ 2025.174524][T24891]  ? __ia32_sys_clock_settime+0x230/0x230
[ 2025.180212][T24891]  do_syscall_64+0xcb/0x150
[ 2025.184686][T24891]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2025.190548][T24891] RIP: 0033:0x45d5b9
[ 2025.194439][T24891] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2025.214820][T24891] RSP: 002b:00007fc344b26c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000116
[ 2025.223207][T24891] RAX: ffffffffffffffda RBX: 0000000000036640 RCX: 000000000045d5b9
[ 2025.231167][T24891] RDX: 0000000000000001 RSI: 0000000020000000 RDI: 0000000000000004
[ 2025.239113][T24891] RBP: 000000000118d0c8 R08: 0000000000000000 R09: 0000000000000000
[ 2025.247149][T24891] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118d08c
[ 2025.255117][T24891] R13: 00007ffd4130796f R14: 00007fc344b279c0 R15: 000000000118d08c
[ 2025.281969][T24891] Mem-Info:
[ 2025.285863][T24891] active_anon:1405641 inactive_anon:12081 isolated_anon:0
[ 2025.285863][T24891]  active_file:630 inactive_file:663 isolated_file:87
[ 2025.285863][T24891]  unevictable:4 dirty:66 writeback:0 unstable:0
[ 2025.285863][T24891]  slab_reclaimable:8772 slab_unreclaimable:81717
[ 2025.285863][T24891]  mapped:57325 shmem:6894 pagetables:35723 bounce:0
[ 2025.285863][T24891]  free:13168 free_pcp:50 free_cma:0
[ 2025.324740][T24891] Node 0 active_anon:5622564kB inactive_anon:48324kB active_file:2500kB inactive_file:2500kB unevictable:16kB isolated(anon):0kB isolated(file):348kB mapped:229200kB dirty:264kB writeback:0kB shmem:27576kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2025.349917][T24891] DMA free:15904kB min:24kB low:36kB high:48kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15904kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2025.376621][T24891] lowmem_reserve[]: 0 2912 6416 6416
[ 2025.382463][T24891] DMA32 free:17244kB min:4644kB low:7624kB high:10604kB active_anon:2945076kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2983760kB mlocked:0kB kernel_stack:3360kB pagetables:2256kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2025.423506][T24891] lowmem_reserve[]: 0 0 3504 3504
[ 2025.429123][T24891] Normal free:20028kB min:24744kB low:28332kB high:31920kB active_anon:2677288kB inactive_anon:48324kB active_file:2752kB inactive_file:2220kB unevictable:16kB writepending:264kB present:4718592kB managed:3588928kB mlocked:16kB kernel_stack:39200kB pagetables:140636kB bounce:0kB free_pcp:336kB local_pcp:0kB free_cma:0kB
[ 2025.469922][T24891] lowmem_reserve[]: 0 0 0 0
[ 2025.475412][T24891] DMA: 0*4kB 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (U) 3*4096kB (M) = 15904kB
[ 2025.490460][T24891] DMA32: 5*4kB (UH) 3*8kB (U) 34*16kB (UMH) 167*32kB (UMH) 100*64kB (UMH) 34*128kB (UMH) 4*256kB (UM) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 17708kB
[ 2025.506541][T24891] Normal: 1680*4kB (MEH) 583*8kB (UMEH) 324*16kB (UMEH) 89*32kB (UMEH) 23*64kB (MEH) 5*128kB (MH) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 21528kB
[ 2025.522970][T24891] 7728 total pagecache pages
[ 2025.528476][T24891] 0 pages in swap cache
[ 2025.533850][T24891] Swap cache stats: add 0, delete 0, find 0/0
[ 2025.541192][T24891] Free swap  = 0kB
[ 2025.547331][T24891] Total swap = 0kB
[ 2025.552105][T24891] 1965979 pages RAM
[ 2025.556885][T24891] 0 pages HighMem/MovableOnly
[ 2025.561916][T24891] 318831 pages reserved
[ 2025.566717][T24891] 0 pages cma reserved
[ 2025.571811][T24891] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/,task=syz-executor.1,pid=13288,uid=0
[ 2025.586818][T24891] Out of memory: Killed process 13288 (syz-executor.1) total-vm:85480kB, anon-rss:16576kB, file-rss:34824kB, shmem-rss:0kB, UID:0 pgtables:160kB oom_score_adj:1000
[ 2025.609012][   T23] oom_reaper: reaped process 13288 (syz-executor.1), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
09:21:14 executing program 4 (fault-call:14 fault-nth:62):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:21:14 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a000406ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:21:14 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x1e0000)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:21:14 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a001000ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:21:14 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x7ffff000)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:21:14 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x20, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x20}}, 0x0)
r4 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x22, &(0x7f00000001c0)={@ipv4={[0x2, 0x0, 0x0, 0x0, 0x2, 0x0, 0x2]}, 0x0, 0x0, 0x0, 0x4000}, 0x20)
setsockopt$inet6_mreq(r4, 0x29, 0x1c, &(0x7f0000000080)={@private1={0xfc, 0x1, [], 0x1}}, 0x14)

[ 2026.068828][T24933] FAULT_INJECTION: forcing a failure.
[ 2026.068828][T24933] name failslab, interval 1, probability 0, space 0, times 0
[ 2026.081886][T24933] CPU: 1 PID: 24933 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2026.092383][T24933] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2026.102641][T24933] Call Trace:
[ 2026.105926][T24933]  dump_stack+0x1b0/0x21e
[ 2026.110248][T24933]  ? devkmsg_release+0x11c/0x11c
[ 2026.115294][T24933]  ? show_regs_print_info+0x12/0x12
[ 2026.121279][T24933]  should_fail+0x6fb/0x860
[ 2026.125691][T24933]  ? setup_fault_attr+0x2b0/0x2b0
[ 2026.130909][T24933]  ? slab_free_freelist_hook+0xd0/0x150
[ 2026.136883][T24933]  ? cap_capable+0x23f/0x280
[ 2026.141566][T24933]  ? proc_pid_stack+0x1d5/0x1f0
[ 2026.146437][T24933]  ? proc_pid_stack+0x8e/0x1f0
[ 2026.151200][T24933]  should_failslab+0x5/0x20
[ 2026.156317][T24933]  kmem_cache_alloc_trace+0x39/0x270
[ 2026.161600][T24933]  proc_pid_stack+0x8e/0x1f0
[ 2026.166190][T24933]  proc_single_show+0xd3/0x130
[ 2026.170954][T24933]  seq_read+0x4aa/0xd30
[ 2026.175110][T24933]  do_iter_read+0x43b/0x550
[ 2026.179621][T24933]  do_preadv+0x1f4/0x330
[ 2026.183957][T24933]  ? do_writev+0x560/0x560
[ 2026.188466][T24933]  ? security_file_permission+0x128/0x300
[ 2026.194267][T24933]  ? __sb_end_write+0xa4/0xf0
[ 2026.198943][T24933]  ? vfs_write+0x427/0x4f0
[ 2026.203639][T24933]  ? do_user_addr_fault+0x55c/0x9f0
[ 2026.208834][T24933]  do_syscall_64+0xcb/0x150
[ 2026.213441][T24933]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2026.220743][T24933] RIP: 0033:0x45d5b9
[ 2026.224661][T24933] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2026.244366][T24933] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 2026.252769][T24933] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 2026.260864][T24933] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 2026.268825][T24933] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 2026.276790][T24933] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000003e
[ 2026.284759][T24933] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
[ 2026.414614][T24914] syz-executor.0 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=3, oom_score_adj=1000
[ 2026.432062][T24914] CPU: 0 PID: 24914 Comm: syz-executor.0 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2026.442415][T24914] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2026.452443][T24914] Call Trace:
[ 2026.455722][T24914]  dump_stack+0x1b0/0x21e
[ 2026.460023][T24914]  ? devkmsg_release+0x11c/0x11c
[ 2026.464928][T24914]  ? ___ratelimit+0x3bf/0x560
[ 2026.469576][T24914]  ? show_regs_print_info+0x12/0x12
[ 2026.474741][T24914]  ? _raw_spin_lock+0xa1/0x170
[ 2026.479487][T24914]  ? radix_tree_cpu_dead+0x160/0x160
[ 2026.484743][T24914]  dump_header+0xdb/0x700
[ 2026.489043][T24914]  oom_kill_process+0xd3/0x280
[ 2026.493796][T24914]  out_of_memory+0x5b6/0x890
[ 2026.498395][T24914]  ? unregister_oom_notifier+0x20/0x20
[ 2026.503823][T24914]  __alloc_pages_slowpath+0x17bc/0x1cb0
[ 2026.509340][T24914]  ? get_page_from_freelist+0x7c0/0x7c0
[ 2026.514854][T24914]  ? __zone_watermark_ok+0x91/0x280
[ 2026.520053][T24914]  __alloc_pages_nodemask+0x5cb/0x7c0
[ 2026.525415][T24914]  ? gfp_pfmemalloc_allowed+0x130/0x130
[ 2026.531364][T24914]  ? copy_process+0x5c9/0x52c0
[ 2026.536097][T24914]  ? kmem_cache_alloc+0x1d5/0x250
[ 2026.541092][T24914]  copy_process+0x612/0x52c0
[ 2026.545750][T24914]  ? __memcg_kmem_charge_memcg+0x130/0x130
[ 2026.551525][T24914]  ? get_mem_cgroup_from_mm+0x27b/0x2c0
[ 2026.557052][T24914]  ? mem_cgroup_commit_charge+0x198/0x240
[ 2026.562762][T24914]  ? _raw_spin_lock+0xa1/0x170
[ 2026.567496][T24914]  ? mem_cgroup_try_charge_delay+0x10/0x10
[ 2026.573275][T24914]  ? fork_idle+0x290/0x290
[ 2026.577671][T24914]  ? __lru_cache_add+0x1a1/0x1f0
[ 2026.582578][T24914]  ? _raw_spin_unlock+0x5/0x20
[ 2026.587490][T24914]  ? handle_mm_fault+0x916/0x4140
[ 2026.592484][T24914]  _do_fork+0x180/0x8f0
[ 2026.596615][T24914]  ? finish_fault+0x230/0x230
[ 2026.601609][T24914]  ? dup_mm+0x300/0x300
[ 2026.605850][T24914]  __x64_sys_clone+0x246/0x2b0
[ 2026.610585][T24914]  ? __ia32_sys_vfork+0x110/0x110
[ 2026.615690][T24914]  ? __fpregs_load_activate+0x2d3/0x390
[ 2026.621291][T24914]  ? do_user_addr_fault+0x55c/0x9f0
[ 2026.626546][T24914]  do_syscall_64+0xcb/0x150
[ 2026.631019][T24914]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2026.637836][T24914] RIP: 0033:0x45ff89
[ 2026.641705][T24914] Code: ff 48 85 f6 0f 84 87 8a fb ff 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 0f 8c 5e 8a fb ff 74 01 c3 31 ed 48 f7 c7 00 00 01 00 75
[ 2026.661549][T24914] RSP: 002b:00007ffd413078b8 EFLAGS: 00000202 ORIG_RAX: 0000000000000038
[ 2026.670075][T24914] RAX: ffffffffffffffda RBX: 00007fc344b06700 RCX: 000000000045ff89
[ 2026.678205][T24914] RDX: 00007fc344b069d0 RSI: 00007fc344b05db0 RDI: 00000000003d0f00
[ 2026.686212][T24914] RBP: 00007ffd41307ae0 R08: 00007fc344b06700 R09: 00007fc344b06700
[ 2026.694257][T24914] R10: 00007fc344b069d0 R11: 0000000000000202 R12: 0000000000000000
[ 2026.702721][T24914] R13: 00007ffd4130796f R14: 00007fc344b069c0 R15: 000000000118d12c
[ 2026.713025][T24914] Mem-Info:
[ 2026.721992][T24914] active_anon:1406252 inactive_anon:12080 isolated_anon:0
[ 2026.721992][T24914]  active_file:615 inactive_file:646 isolated_file:87
[ 2026.721992][T24914]  unevictable:4 dirty:96 writeback:0 unstable:0
[ 2026.721992][T24914]  slab_reclaimable:8633 slab_unreclaimable:81884
[ 2026.721992][T24914]  mapped:57271 shmem:6896 pagetables:35806 bounce:0
[ 2026.721992][T24914]  free:12660 free_pcp:155 free_cma:0
[ 2026.764797][T24914] Node 0 active_anon:5625008kB inactive_anon:48320kB active_file:2300kB inactive_file:2312kB unevictable:16kB isolated(anon):0kB isolated(file):228kB mapped:228684kB dirty:384kB writeback:0kB shmem:27584kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2026.789979][T24914] DMA free:15904kB min:24kB low:36kB high:48kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15904kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2026.841081][T24914] lowmem_reserve[]: 0 2912 6416 6416
[ 2026.853660][T24914] DMA32 free:17308kB min:4644kB low:7624kB high:10604kB active_anon:2945744kB inactive_anon:0kB active_file:0kB inactive_file:136kB unevictable:0kB writepending:4kB present:3129332kB managed:2983760kB mlocked:0kB kernel_stack:3296kB pagetables:2252kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2026.884076][T24914] lowmem_reserve[]: 0 0 3504 3504
[ 2026.889566][T24914] Normal free:20076kB min:24744kB low:28332kB high:31920kB active_anon:2679184kB inactive_anon:48320kB active_file:1532kB inactive_file:1364kB unevictable:16kB writepending:364kB present:4718592kB managed:3588928kB mlocked:16kB kernel_stack:39168kB pagetables:140868kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2026.927878][T24914] lowmem_reserve[]: 0 0 0 0
[ 2026.933086][T24914] DMA: 0*4kB 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (U) 3*4096kB (M) = 15904kB
[ 2026.966812][T24914] DMA32: 7*4kB (UMH) 6*8kB (UM) 35*16kB (UMH) 171*32kB (UMH) 97*64kB (UMH) 32*128kB (UMH) 4*256kB (UM) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 17436kB
[ 2027.001784][T24914] Normal: 1734*4kB (UMEH) 542*8kB (UMEH) 251*16kB (UMEH) 114*32kB (UMEH) 28*64kB (MEH) 7*128kB (MH) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 21624kB
[ 2027.017952][T24914] 7209 total pagecache pages
[ 2027.023695][T24914] 0 pages in swap cache
[ 2027.028287][T24914] Swap cache stats: add 0, delete 0, find 0/0
[ 2027.035400][T24914] Free swap  = 0kB
[ 2027.039829][T24914] Total swap = 0kB
[ 2027.048178][T24914] 1965979 pages RAM
[ 2027.052524][T24914] 0 pages HighMem/MovableOnly
[ 2027.057745][T24914] 318831 pages reserved
[ 2027.063073][T24914] 0 pages cma reserved
[ 2027.068149][T24914] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/,task=syz-executor.5,pid=18675,uid=0
[ 2027.084960][T24914] Out of memory: Killed process 18675 (syz-executor.5) total-vm:85480kB, anon-rss:16572kB, file-rss:34824kB, shmem-rss:0kB, UID:0 pgtables:160kB oom_score_adj:1000
[ 2027.106081][   T23] oom_reaper: reaped process 18675 (syz-executor.5), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
09:21:16 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a001100ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:21:16 executing program 4 (fault-call:14 fault-nth:63):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:21:16 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0xcf000000)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:21:16 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0xd2ff7f)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

[ 2027.253677][T24919]  loop3: p1 p2 < > p3 p4 < p5 >
[ 2027.258873][T24919] loop3: partition table partially beyond EOD, truncated
[ 2027.273503][T24919] loop3: p1 start 100925450 is beyond EOD, truncated
09:21:16 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000227bd7000038006000400000001006fc8b991b309a4e86eb523aea6d1db368608595f9aae28731a51e704e883737f5e3e3a86ebf9ff231aa8b915a4cdb9f4f6158df95014ca0c2af5b7ac1c73f6baf873384f426f9894cfe5418d2d429a1a491379c0f66cb94abbf88afb1ac6872753b9bddba4160b71c2b4b6db5526b474f379bf2a4cb729694e15038484"], 0x20}}, 0x0)

[ 2027.310802][T24919] loop3: p2 start 25 is beyond EOD, truncated
[ 2027.351275][T24919] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 2027.371828][T24919] loop3: p4 size 2 extends beyond EOD, truncated
[ 2027.378854][T24919] loop3: p5 start 100925450 is beyond EOD, truncated
09:21:16 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a000007ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 2027.467349][T24961] FAULT_INJECTION: forcing a failure.
[ 2027.467349][T24961] name failslab, interval 1, probability 0, space 0, times 0
[ 2027.480225][T24961] CPU: 0 PID: 24961 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2027.491053][T24961] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2027.501084][T24961] Call Trace:
[ 2027.504351][T24961]  dump_stack+0x1b0/0x21e
[ 2027.508750][T24961]  ? devkmsg_release+0x11c/0x11c
[ 2027.513663][T24961]  ? show_regs_print_info+0x12/0x12
[ 2027.518943][T24961]  ? cred_has_capability+0x18c/0x3f0
[ 2027.524200][T24961]  ? cred_has_capability+0x2b2/0x3f0
[ 2027.529458][T24961]  should_fail+0x6fb/0x860
[ 2027.535324][T24961]  ? setup_fault_attr+0x2b0/0x2b0
[ 2027.540336][T24961]  ? slab_free_freelist_hook+0xd0/0x150
[ 2027.545877][T24961]  ? cap_capable+0x23f/0x280
[ 2027.550443][T24961]  ? proc_pid_stack+0x1d5/0x1f0
[ 2027.555266][T24961]  ? proc_pid_stack+0x8e/0x1f0
[ 2027.560107][T24961]  should_failslab+0x5/0x20
[ 2027.564594][T24961]  kmem_cache_alloc_trace+0x39/0x270
[ 2027.569879][T24961]  proc_pid_stack+0x8e/0x1f0
[ 2027.574525][T24961]  proc_single_show+0xd3/0x130
[ 2027.579263][T24961]  seq_read+0x4aa/0xd30
[ 2027.583425][T24961]  do_iter_read+0x43b/0x550
[ 2027.588083][T24961]  do_preadv+0x1f4/0x330
[ 2027.592315][T24961]  ? do_writev+0x560/0x560
[ 2027.596701][T24961]  ? __schedule+0x8ae/0xe30
[ 2027.601175][T24961]  ? __x64_sys_write+0x19/0x80
[ 2027.605910][T24961]  do_syscall_64+0xcb/0x150
[ 2027.610392][T24961]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2027.616283][T24961] RIP: 0033:0x45d5b9
[ 2027.620246][T24961] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2027.640042][T24961] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 2027.648434][T24961] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 2027.656377][T24961] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 2027.664318][T24961] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 2027.672258][T24961] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000003f
[ 2027.680210][T24961] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
[ 2027.778195][T24907] systemd-udevd invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 2027.813878][T24907] CPU: 1 PID: 24907 Comm: systemd-udevd Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2027.823982][T24907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2027.834029][T24907] Call Trace:
[ 2027.837324][T24907]  dump_stack+0x1b0/0x21e
[ 2027.841643][T24907]  ? devkmsg_release+0x11c/0x11c
[ 2027.846674][T24907]  ? ___ratelimit+0x3bf/0x560
[ 2027.851339][T24907]  ? show_regs_print_info+0x12/0x12
[ 2027.856617][T24907]  ? _raw_spin_lock+0xa1/0x170
[ 2027.861376][T24907]  ? radix_tree_cpu_dead+0x160/0x160
[ 2027.866830][T24907]  dump_header+0xdb/0x700
[ 2027.871172][T24907]  oom_kill_process+0xd3/0x280
[ 2027.875930][T24907]  out_of_memory+0x5b6/0x890
[ 2027.880601][T24907]  ? unregister_oom_notifier+0x20/0x20
[ 2027.886055][T24907]  __alloc_pages_slowpath+0x17bc/0x1cb0
[ 2027.891598][T24907]  ? get_page_from_freelist+0x7c0/0x7c0
[ 2027.897228][T24907]  ? __zone_watermark_ok+0x91/0x280
[ 2027.902451][T24907]  __alloc_pages_nodemask+0x5cb/0x7c0
[ 2027.907967][T24907]  ? entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2027.914306][T24907]  ? gfp_pfmemalloc_allowed+0x130/0x130
[ 2027.919822][T24907]  ? lockref_get+0x1c2/0x2b0
[ 2027.924470][T24907]  ? blk_crypto_keyslot_evict+0x160/0x160
[ 2027.930161][T24907]  ? should_fail+0x18e/0x860
[ 2027.934813][T24907]  ? __rcu_read_lock+0x50/0x50
[ 2027.939551][T24907]  ? setup_fault_attr+0x2b0/0x2b0
[ 2027.944545][T24907]  ? find_inode_fast+0x3e7/0x4a0
[ 2027.949480][T24907]  __get_free_pages+0xa/0x30
[ 2027.954077][T24907]  inode_doinit_with_dentry+0x950/0x10e0
[ 2027.959682][T24907]  ? __wake_up_bit+0x170/0x170
[ 2027.964421][T24907]  ? sb_finish_set_opts+0x7e0/0x7e0
[ 2027.969607][T24907]  ? current_time+0x1aa/0x2e0
[ 2027.974344][T24907]  ? atime_needs_update+0x570/0x570
[ 2027.979512][T24907]  security_d_instantiate+0x90/0xf0
[ 2027.984687][T24907]  d_splice_alias+0x71/0x590
[ 2027.989338][T24907]  kernfs_iop_lookup+0x17a/0x1f0
[ 2027.994247][T24907]  __lookup_slow+0x2f2/0x470
[ 2027.998807][T24907]  ? lookup_one_len2+0x2d0/0x2d0
[ 2028.004490][T24907]  ? path_openat+0x124/0x42d0
[ 2028.009146][T24907]  ? entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2028.015193][T24907]  ? path_openat+0x124/0x42d0
[ 2028.019846][T24907]  ? do_filp_open+0x1f7/0x430
[ 2028.024497][T24907]  walk_component+0x363/0x830
[ 2028.029255][T24907]  ? follow_managed+0x950/0x950
[ 2028.034112][T24907]  ? generic_permission+0x13a/0x4a0
[ 2028.039482][T24907]  ? security_inode_permission+0xda/0x110
[ 2028.045183][T24907]  link_path_walk+0x72b/0x1500
[ 2028.050269][T24907]  ? path_init+0x887/0x1220
[ 2028.054742][T24907]  ? path_init+0x1220/0x1220
[ 2028.059301][T24907]  ? path_init+0x962/0x1220
[ 2028.063777][T24907]  path_openat+0x1c7/0x42d0
[ 2028.068262][T24907]  ? perf_pmu_sched_task+0x370/0x370
[ 2028.073610][T24907]  ? switch_mm_irqs_off+0x46e/0x870
[ 2028.078792][T24907]  ? trace_event_raw_event_sched_switch+0x480/0x480
[ 2028.085365][T24907]  ? switch_mm+0xe0/0xe0
[ 2028.089632][T24907]  ? finish_task_switch+0x235/0x4c0
[ 2028.094992][T24907]  ? __schedule+0x8ae/0xe30
[ 2028.099464][T24907]  ? do_filp_open+0x430/0x430
[ 2028.104115][T24907]  ? is_mmconf_reserved+0x420/0x420
[ 2028.109284][T24907]  ? entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2028.115408][T24907]  ? __seccomp_filter+0xa9b/0x1720
[ 2028.120590][T24907]  ? preempt_schedule_irq+0xc7/0x110
[ 2028.125846][T24907]  ? preempt_schedule_notrace+0x110/0x110
[ 2028.131793][T24907]  ? __se_sys_flock+0x447/0x530
[ 2028.136793][T24907]  ? entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2028.143103][T24907]  ? _raw_spin_trylock_bh+0x190/0x190
[ 2028.148459][T24907]  do_filp_open+0x1f7/0x430
[ 2028.153048][T24907]  ? vfs_tmpfile+0x220/0x220
[ 2028.157632][T24907]  ? _raw_spin_lock+0xa1/0x170
[ 2028.162380][T24907]  ? _raw_spin_trylock_bh+0x190/0x190
[ 2028.168681][T24907]  ? _raw_spin_unlock+0x5/0x20
[ 2028.173428][T24907]  ? __alloc_fd+0x4e8/0x590
[ 2028.178259][T24907]  do_sys_open+0x36f/0x7a0
[ 2028.182687][T24907]  ? file_open_root+0x440/0x440
[ 2028.187518][T24907]  ? __fpregs_load_activate+0x2d3/0x390
[ 2028.193041][T24907]  do_syscall_64+0xcb/0x150
[ 2028.197610][T24907]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2028.203473][T24907] RIP: 0033:0x7f72b9b036f0
[ 2028.207900][T24907] Code: 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 83 3d 19 30 2c 00 00 75 10 b8 02 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 fe 9d 01 00 48 89 04 24
[ 2028.227563][T24907] RSP: 002b:00007ffee4b94068 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[ 2028.236047][T24907] RAX: ffffffffffffffda RBX: 0000563cedcd64e0 RCX: 00007f72b9b036f0
[ 2028.243994][T24907] RDX: 00000000000001b6 RSI: 0000000000080000 RDI: 00007ffee4b94210
[ 2028.251974][T24907] RBP: 0000000000000008 R08: 0000000000000008 R09: 0000000000000001
[ 2028.259919][T24907] R10: 0000000000080000 R11: 0000000000000246 R12: 0000563ced4a368a
[ 2028.267865][T24907] R13: 0000000000000001 R14: 0000563cedcd1af0 R15: 00007ffee4b94290
[ 2028.462000][T24907] Mem-Info:
[ 2028.465431][T24907] active_anon:1405765 inactive_anon:12081 isolated_anon:0
[ 2028.465431][T24907]  active_file:130 inactive_file:150 isolated_file:25
[ 2028.465431][T24907]  unevictable:4 dirty:43 writeback:8 unstable:0
[ 2028.465431][T24907]  slab_reclaimable:8359 slab_unreclaimable:82067
[ 2028.465431][T24907]  mapped:56318 shmem:6895 pagetables:35805 bounce:0
[ 2028.465431][T24907]  free:14119 free_pcp:58 free_cma:0
[ 2028.509847][T24907] Node 0 active_anon:5623060kB inactive_anon:48324kB active_file:400kB inactive_file:376kB unevictable:16kB isolated(anon):0kB isolated(file):92kB mapped:225072kB dirty:172kB writeback:32kB shmem:27580kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2028.537511][T24907] DMA free:15904kB min:24kB low:36kB high:48kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15904kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2028.577790][T24907] lowmem_reserve[]: 0 2912 6416 6416
[ 2028.583670][T24907] DMA32 free:17100kB min:4644kB low:7624kB high:10604kB active_anon:2943572kB inactive_anon:0kB active_file:64kB inactive_file:80kB unevictable:0kB writepending:76kB present:3129332kB managed:2983760kB mlocked:0kB kernel_stack:3712kB pagetables:2376kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2028.615299][T24907] lowmem_reserve[]: 0 0 3504 3504
[ 2028.620744][T24907] Normal free:24480kB min:5592kB low:9180kB high:12768kB active_anon:2679488kB inactive_anon:48324kB active_file:688kB inactive_file:780kB unevictable:16kB writepending:128kB present:4718592kB managed:3588928kB mlocked:16kB kernel_stack:38944kB pagetables:140844kB bounce:0kB free_pcp:104kB local_pcp:0kB free_cma:0kB
[ 2028.659594][T24907] lowmem_reserve[]: 0 0 0 0
[ 2028.664178][T24907] DMA: 0*4kB 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (U) 3*4096kB (M) = 15904kB
[ 2028.677789][T24907] DMA32: 16*4kB (UMH) 9*8kB (UM) 36*16kB (UMH) 95*32kB (UH) 96*64kB (UH) 31*128kB (UMH) 2*256kB (U) 0*512kB 1*1024kB (M) 1*2048kB (M) 0*4096kB = 17448kB
[ 2028.694383][T24907] Normal: 2247*4kB (UMEH) 489*8kB (UMEH) 307*16kB (UMEH) 109*32kB (UMEH) 35*64kB (MEH) 6*128kB (MH) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 24308kB
[ 2028.710917][T24907] 7274 total pagecache pages
[ 2028.715569][T24907] 0 pages in swap cache
[ 2028.719721][T24907] Swap cache stats: add 0, delete 0, find 0/0
[ 2028.726092][T24907] Free swap  = 0kB
[ 2028.729899][T24907] Total swap = 0kB
[ 2028.733721][T24907] 1965979 pages RAM
[ 2028.737695][T24907] 0 pages HighMem/MovableOnly
[ 2028.742417][T24907] 318831 pages reserved
[ 2028.746568][T24907] 0 pages cma reserved
[ 2028.750631][T24907] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/,task=syz-executor.5,pid=17733,uid=0
[ 2028.770204][T24907] Out of memory: Killed process 17733 (syz-executor.5) total-vm:85480kB, anon-rss:16572kB, file-rss:34824kB, shmem-rss:0kB, UID:0 pgtables:160kB oom_score_adj:1000
09:21:17 executing program 4 (fault-call:14 fault-nth:64):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:21:17 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a001200ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:21:17 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0xe5efff7f)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:21:17 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0xf0ff7f)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:21:17 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x10000004, 0x0, 0x9, 0x0, 0x0, 0x80000}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f00000002c0)={{{@in6=@dev={0xfe, 0x80, [], 0x28}, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x4e24, 0x9, 0x4e23, 0x0, 0x2, 0x20, 0x80, 0x2}, {0x1f, 0x6e, 0x80000000, 0x5, 0x4, 0x3, 0x8, 0x401}, {0x8000, 0xedf3, 0x9, 0x9}, 0x10, 0x6e6bc0, 0x1, 0x1, 0x1, 0x1}, {{@in=@private=0xa010101, 0x4d5, 0x3c}, 0x2, @in6=@dev={0xfe, 0x80, [], 0x2e}, 0x3504, 0x0, 0x2, 0x0, 0xad5a, 0x1, 0x100}}, 0xe8)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x20, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x20}}, 0x0)

[ 2029.063100][T24971]  loop3: p1 p2 < > p3 p4 < p5 >
[ 2029.068370][T24971] loop3: partition table partially beyond EOD, truncated
[ 2029.077291][T24971] loop3: p1 start 117440522 is beyond EOD, truncated
[ 2029.138851][T24971] loop3: p2 start 25 is beyond EOD, truncated
[ 2029.165761][T24995] FAULT_INJECTION: forcing a failure.
[ 2029.165761][T24995] name failslab, interval 1, probability 0, space 0, times 0
[ 2029.178458][T24995] CPU: 0 PID: 24995 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2029.188880][T24995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2029.193090][T24971] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 2029.198939][T24995] Call Trace:
[ 2029.198952][T24995]  dump_stack+0x1b0/0x21e
[ 2029.198960][T24995]  ? devkmsg_release+0x11c/0x11c
[ 2029.198972][T24995]  ? show_regs_print_info+0x12/0x12
[ 2029.223545][T24995]  ? should_fail+0x85/0x860
[ 2029.228026][T24995]  ? should_fail+0x6f/0x860
[ 2029.232677][T24995]  should_fail+0x6fb/0x860
[ 2029.237070][T24995]  ? setup_fault_attr+0x2b0/0x2b0
[ 2029.242068][T24995]  ? slab_free_freelist_hook+0xd0/0x150
[ 2029.247601][T24995]  ? cap_capable+0x23f/0x280
[ 2029.252363][T24995]  ? proc_pid_stack+0x1d5/0x1f0
[ 2029.257185][T24995]  ? proc_pid_stack+0x8e/0x1f0
[ 2029.261940][T24995]  should_failslab+0x5/0x20
[ 2029.266415][T24995]  kmem_cache_alloc_trace+0x39/0x270
[ 2029.271773][T24995]  proc_pid_stack+0x8e/0x1f0
[ 2029.276337][T24995]  proc_single_show+0xd3/0x130
[ 2029.281858][T24995]  seq_read+0x4aa/0xd30
[ 2029.286005][T24995]  do_iter_read+0x43b/0x550
[ 2029.290477][T24995]  do_preadv+0x1f4/0x330
[ 2029.294776][T24995]  ? do_writev+0x560/0x560
[ 2029.299178][T24995]  ? __schedule+0x8ae/0xe30
[ 2029.303656][T24995]  do_syscall_64+0xcb/0x150
[ 2029.308130][T24995]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2029.313993][T24995] RIP: 0033:0x45d5b9
[ 2029.317873][T24995] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2029.337449][T24995] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 2029.346105][T24995] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 2029.354067][T24995] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 2029.362016][T24995] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 2029.369971][T24995] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000040
[ 2029.378008][T24995] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
09:21:18 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a001c00ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 2029.561180][T24971] loop3: p4 size 2 extends beyond EOD, truncated
[ 2029.644740][T24990] syz-executor.0 invoked oom-killer: gfp_mask=0x1100dca(GFP_HIGHUSER_MOVABLE|__GFP_ZERO|0x1000000), order=0, oom_score_adj=1000
[ 2029.673439][T24990] CPU: 0 PID: 24990 Comm: syz-executor.0 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2029.683605][T24990] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2029.693653][T24990] Call Trace:
[ 2029.696940][T24990]  dump_stack+0x1b0/0x21e
[ 2029.701257][T24990]  ? devkmsg_release+0x11c/0x11c
[ 2029.706186][T24990]  ? ___ratelimit+0x3bf/0x560
[ 2029.710855][T24990]  ? show_regs_print_info+0x12/0x12
[ 2029.716022][T24990]  ? _raw_spin_lock+0xa1/0x170
[ 2029.720755][T24990]  ? radix_tree_cpu_dead+0x160/0x160
[ 2029.726129][T24990]  dump_header+0xdb/0x700
[ 2029.730439][T24990]  oom_kill_process+0xd3/0x280
[ 2029.735174][T24990]  out_of_memory+0x5b6/0x890
[ 2029.739752][T24990]  ? unregister_oom_notifier+0x20/0x20
[ 2029.745201][T24990]  __alloc_pages_slowpath+0x17bc/0x1cb0
[ 2029.750719][T24990]  ? get_page_from_freelist+0x7c0/0x7c0
[ 2029.756241][T24990]  __alloc_pages_nodemask+0x5cb/0x7c0
[ 2029.761604][T24990]  ? gfp_pfmemalloc_allowed+0x130/0x130
[ 2029.767316][T24990]  ? __perf_event_task_sched_in+0x4ed/0x550
[ 2029.773179][T24990]  wp_page_copy+0x199/0x10e0
[ 2029.777741][T24990]  ? switch_mm_irqs_off+0x25d/0x870
[ 2029.782908][T24990]  ? switch_mm+0xe0/0xe0
[ 2029.787148][T24990]  ? add_mm_rss_vec+0x270/0x270
[ 2029.791970][T24990]  ? vm_normal_page+0x1c9/0x1d0
[ 2029.796908][T24990]  do_wp_page+0x48d/0x14b0
[ 2029.801300][T24990]  ? _raw_spin_lock+0xa1/0x170
[ 2029.806035][T24990]  ? do_swap_page+0x1510/0x1510
[ 2029.810855][T24990]  handle_mm_fault+0xf6c/0x4140
[ 2029.815766][T24990]  ? finish_fault+0x230/0x230
[ 2029.820426][T24990]  ? update_curr+0x584/0x740
[ 2029.825002][T24990]  ? down_read_trylock+0x17a/0x1d0
[ 2029.830086][T24990]  ? _raw_spin_unlock_irq+0x5/0x20
[ 2029.835184][T24990]  ? vmacache_find+0x47a/0x4b0
[ 2029.840094][T24990]  do_user_addr_fault+0x48a/0x9f0
[ 2029.845190][T24990]  page_fault+0x2f/0x40
[ 2029.849341][T24990] RIP: 0010:copy_user_enhanced_fast_string+0xe/0x30
[ 2029.855899][T24990] Code: 89 d1 c1 e9 03 83 e2 07 f3 48 a5 89 d1 f3 a4 31 c0 0f 1f 00 c3 0f 1f 80 00 00 00 00 0f 1f 00 83 fa 40 0f 82 70 ff ff ff 89 d1 <f3> a4 31 c0 0f 1f 00 c3 66 2e 0f 1f 84 00 00 00 00 00 89 d1 f3 a4
[ 2029.875644][T24990] RSP: 0018:ffff88810a307888 EFLAGS: 00010206
[ 2029.881680][T24990] RAX: ffffffff81f5ae01 RBX: 00000000202ea500 RCX: 0000000000000500
[ 2029.889884][T24990] RDX: 0000000000001000 RSI: ffff8881878fcb00 RDI: 00000000202ea000
[ 2029.897834][T24990] RBP: ffff88810a307da8 R08: dffffc0000000000 R09: ffffed1030f1fa00
[ 2029.905873][T24990] R10: 0000000000000000 R11: 0000000000000000 R12: 00007ffffffff000
[ 2029.914512][T24990] R13: 0000000000001000 R14: ffff8881878fc000 R15: 00000000202e9500
[ 2029.923510][T24990]  ? _copy_to_iter+0xfb1/0xfc0
[ 2029.928261][T24990]  copyout+0x8e/0xb0
[ 2029.932307][T24990]  copy_page_to_iter+0x393/0xbd0
[ 2029.937217][T24990]  pipe_to_user+0xa3/0x130
[ 2029.941864][T24990]  __splice_from_pipe+0x2d3/0x870
[ 2029.946862][T24990]  ? user_page_pipe_buf_steal+0xc0/0xc0
[ 2029.952726][T24990]  do_vmsplice+0x240/0xe70
[ 2029.957119][T24990]  ? write_pipe_buf+0x1d0/0x1d0
[ 2029.961955][T24990]  ? __rcu_read_lock+0x50/0x50
[ 2029.967039][T24990]  ? check_stack_object+0x5a/0x90
[ 2029.972127][T24990]  ? _copy_from_user+0xa4/0xe0
[ 2029.976874][T24990]  ? rw_copy_check_uvector+0x2b3/0x310
[ 2029.982323][T24990]  ? import_iovec+0x171/0x340
[ 2029.986973][T24990]  ? dup_iter+0x110/0x110
[ 2029.991279][T24990]  ? do_vfs_ioctl+0x757/0x1700
[ 2029.996032][T24990]  __se_sys_vmsplice+0x1cc/0x2c0
[ 2030.000942][T24990]  ? __x64_sys_vmsplice+0xa0/0xa0
[ 2030.005941][T24990]  ? put_timespec64+0x106/0x150
[ 2030.010778][T24990]  ? ktime_get_raw+0x130/0x130
[ 2030.015550][T24990]  ? get_timespec64+0x1c0/0x1c0
[ 2030.020399][T24990]  ? fget_many+0x20/0x20
[ 2030.024888][T24990]  ? __ia32_sys_clock_settime+0x230/0x230
[ 2030.030678][T24990]  do_syscall_64+0xcb/0x150
[ 2030.035157][T24990]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2030.041037][T24990] RIP: 0033:0x45d5b9
[ 2030.045006][T24990] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2030.064607][T24990] RSP: 002b:00007fc344b26c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000116
[ 2030.072988][T24990] RAX: ffffffffffffffda RBX: 0000000000036640 RCX: 000000000045d5b9
[ 2030.080931][T24990] RDX: 0000000000000001 RSI: 0000000020000000 RDI: 0000000000000004
[ 2030.088983][T24990] RBP: 000000000118d0c8 R08: 0000000000000000 R09: 0000000000000000
[ 2030.096931][T24990] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118d08c
[ 2030.104962][T24990] R13: 00007ffd4130796f R14: 00007fc344b279c0 R15: 000000000118d08c
[ 2030.129396][T24990] Mem-Info:
[ 2030.152754][T24990] active_anon:1406263 inactive_anon:12079 isolated_anon:0
[ 2030.152754][T24990]  active_file:469 inactive_file:480 isolated_file:40
[ 2030.152754][T24990]  unevictable:4 dirty:44 writeback:0 unstable:0
[ 2030.152754][T24990]  slab_reclaimable:8301 slab_unreclaimable:81874
[ 2030.152754][T24990]  mapped:56765 shmem:6894 pagetables:35818 bounce:0
[ 2030.152754][T24990]  free:12434 free_pcp:878 free_cma:0
09:21:19 executing program 4 (fault-call:14 fault-nth:65):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

[ 2030.226898][T24990] Node 0 active_anon:5625052kB inactive_anon:48316kB active_file:2152kB inactive_file:5304kB unevictable:16kB isolated(anon):0kB isolated(file):28kB mapped:229460kB dirty:76kB writeback:0kB shmem:27576kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2030.263374][T24971] loop3: p5 start 117440522 is beyond EOD, truncated
[ 2030.315810][T24990] DMA free:15904kB min:24kB low:36kB high:48kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15904kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2030.343213][T24990] lowmem_reserve[]: 0 2912 6416 6416
[ 2030.348945][T24990] DMA32 free:18992kB min:4644kB low:7624kB high:10604kB active_anon:2939088kB inactive_anon:0kB active_file:1608kB inactive_file:996kB unevictable:0kB writepending:12kB present:3129332kB managed:2983760kB mlocked:0kB kernel_stack:3456kB pagetables:2500kB bounce:0kB free_pcp:300kB local_pcp:0kB free_cma:0kB
[ 2030.378829][T24990] lowmem_reserve[]: 0 0 3504 3504
[ 2030.384331][T24990] Normal free:15696kB min:13784kB low:17372kB high:20960kB active_anon:2686316kB inactive_anon:48316kB active_file:1092kB inactive_file:1540kB unevictable:16kB writepending:164kB present:4718592kB managed:3588928kB mlocked:16kB kernel_stack:39168kB pagetables:140772kB bounce:0kB free_pcp:220kB local_pcp:0kB free_cma:0kB
[ 2030.443073][T24990] lowmem_reserve[]: 0 0 0 0
[ 2030.453678][T24990] DMA: 0*4kB 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (U) 3*4096kB (M) = 15904kB
[ 2030.488399][T24990] DMA32: 63*4kB (UMH) 37*8kB (UM) 29*16kB (UMH) 108*32kB (UH) 96*64kB (UMH) 29*128kB (UH) 5*256kB (UM) 1*512kB (M) 1*1024kB (M) 1*2048kB (M) 0*4096kB = 19188kB
[ 2030.523237][T24990] Normal: 288*4kB (UEH) 137*8kB (UMEH) 207*16kB (UMEH) 81*32kB (UMEH) 31*64kB (UMEH) 9*128kB (MEH) 5*256kB (ME) 0*512kB 1*1024kB (M) 0*2048kB 0*4096kB = 13592kB
[ 2030.540618][T24990] 8444 total pagecache pages
[ 2030.552494][T24990] 0 pages in swap cache
[ 2030.557568][T24990] Swap cache stats: add 0, delete 0, find 0/0
[ 2030.564512][T24990] Free swap  = 0kB
[ 2030.568782][T24990] Total swap = 0kB
[ 2030.573466][T24990] 1965979 pages RAM
[ 2030.611031][T24990] 0 pages HighMem/MovableOnly
[ 2030.660143][T24990] 318831 pages reserved
[ 2030.692004][T24990] 0 pages cma reserved
[ 2030.706477][T24990] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/,task=syz-executor.5,pid=17245,uid=0
[ 2030.739813][T24990] Out of memory: Killed process 17245 (syz-executor.5) total-vm:85480kB, anon-rss:16572kB, file-rss:34824kB, shmem-rss:0kB, UID:0 pgtables:160kB oom_score_adj:1000
09:21:19 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0xffffff7f)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:21:19 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a000009ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 2030.960931][T25016] FAULT_INJECTION: forcing a failure.
[ 2030.960931][T25016] name failslab, interval 1, probability 0, space 0, times 0
[ 2030.973776][T25016] CPU: 0 PID: 25016 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2030.984587][T25016] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2030.994637][T25016] Call Trace:
[ 2030.997927][T25016]  dump_stack+0x1b0/0x21e
[ 2031.002248][T25016]  ? devkmsg_release+0x11c/0x11c
[ 2031.007172][T25016]  ? show_regs_print_info+0x12/0x12
[ 2031.012347][T25016]  ? cred_has_capability+0x18c/0x3f0
[ 2031.017618][T25016]  ? cred_has_capability+0x2b2/0x3f0
[ 2031.022960][T25016]  should_fail+0x6fb/0x860
[ 2031.027346][T25016]  ? setup_fault_attr+0x2b0/0x2b0
[ 2031.032342][T25016]  ? slab_free_freelist_hook+0xd0/0x150
[ 2031.038051][T25016]  ? cap_capable+0x23f/0x280
[ 2031.042619][T25016]  ? proc_pid_stack+0x1d5/0x1f0
[ 2031.047442][T25016]  ? proc_pid_stack+0x8e/0x1f0
[ 2031.052178][T25016]  should_failslab+0x5/0x20
[ 2031.056739][T25016]  kmem_cache_alloc_trace+0x39/0x270
[ 2031.062009][T25016]  proc_pid_stack+0x8e/0x1f0
[ 2031.066589][T25016]  proc_single_show+0xd3/0x130
[ 2031.071367][T25016]  seq_read+0x4aa/0xd30
[ 2031.075512][T25016]  do_iter_read+0x43b/0x550
[ 2031.080011][T25016]  do_preadv+0x1f4/0x330
[ 2031.084858][T25016]  ? do_writev+0x560/0x560
[ 2031.089247][T25016]  ? security_file_permission+0x128/0x300
[ 2031.094937][T25016]  ? __sb_end_write+0xa4/0xf0
[ 2031.099591][T25016]  ? vfs_write+0x427/0x4f0
[ 2031.103982][T25016]  ? do_user_addr_fault+0x55c/0x9f0
[ 2031.109155][T25016]  do_syscall_64+0xcb/0x150
[ 2031.113632][T25016]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2031.119496][T25016] RIP: 0033:0x45d5b9
[ 2031.123478][T25016] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2031.143471][T25016] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 2031.151866][T25016] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 2031.160075][T25016] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 2031.168382][T25016] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 2031.177083][T25016] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000041
[ 2031.185124][T25016] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
09:21:20 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000080)=<r4=>0x0)
r5 = getpid()
sched_setattr(r5, &(0x7f0000000280)={0x38, 0x2, 0x0, 0x0, 0x8}, 0x0)
read$hiddev(r2, &(0x7f0000000180)=""/57, 0x39)
setpgid(r4, r5)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="5a0f3252729152e5f5d0228a5cdfd739d96d556dfd1945b77b56c6b28fe11888", @ANYRES16=0x0, @ANYBLOB="000227bd7000ffdbdf250b00000008000400810000000c0003800600040000000000"], 0x28}}, 0x400c040)

09:21:20 executing program 4 (fault-call:14 fault-nth:66):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:21:20 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000080)={0x38, 0x3, 0x0, 0x4, 0x9, 0x0, 0x6}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r3 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/timer\x00', 0x60000)
ioctl$F2FS_IOC_FLUSH_DEVICE(r3, 0x4008f50a, &(0x7f00000001c0)={0x2, 0xfffffff7})
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="1d86f8f1", @ANYRES16=0x0, @ANYBLOB="000227bd7000ffdbdf250b0000000c0003800600040000000000"], 0x20}}, 0x0)

[ 2031.711721][T25014]  loop3: p1 p2 < > p3 p4 < p5 >
[ 2031.716858][T25014] loop3: partition table partially beyond EOD, truncated
[ 2031.724758][T25014] loop3: p1 start 150994954 is beyond EOD, truncated
09:21:20 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x1000000)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:21:20 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a002600ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:21:20 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0), 0x40000000000016a, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$GIO_FONT(r1, 0x4b60, &(0x7f00000002c0)=""/59)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f0000001480)=[{&(0x7f00000014c0)=""/4096, 0x1000}, {&(0x7f0000001300)=""/47, 0x2f}, {&(0x7f0000001340)=""/182, 0xb6}, {&(0x7f0000000300)=""/105, 0x69}], 0x4, 0x8, 0x0)
chdir(&(0x7f0000000380)='./file0\x00')
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
r4 = getpid()
sched_setattr(r4, &(0x7f0000000280)={0x38, 0x2, 0x0, 0x0, 0x8}, 0x0)
sched_setattr(r4, &(0x7f0000000180)={0x38, 0x6, 0x8, 0x6, 0x4, 0x8, 0x3, 0x6, 0x4, 0x5}, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="3ab9253f0c763e9043e75ef21b91745958e796f3851eca1b29172ac6", @ANYRES16=0x0, @ANYBLOB="000227bd7000ffdb5d4d0bfbabb7b91d03800600040000000000"], 0x20}}, 0x0)
ioctl$BLKBSZSET(r3, 0x40081271, &(0x7f00000001c0)=0x2)

[ 2031.783876][T25014] loop3: p2 start 25 is beyond EOD, truncated
[ 2031.789963][T25014] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 2031.821362][T25014] loop3: p4 size 2 extends beyond EOD, truncated
[ 2031.852610][T25014] loop3: p5 start 150994954 is beyond EOD, truncated
[ 2031.963663][T25044] FAULT_INJECTION: forcing a failure.
[ 2031.963663][T25044] name failslab, interval 1, probability 0, space 0, times 0
[ 2031.976807][T25044] CPU: 1 PID: 25044 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2031.986955][T25044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2031.997002][T25044] Call Trace:
[ 2032.000381][T25044]  dump_stack+0x1b0/0x21e
[ 2032.004793][T25044]  ? devkmsg_release+0x11c/0x11c
[ 2032.009728][T25044]  ? show_regs_print_info+0x12/0x12
[ 2032.014922][T25044]  ? cred_has_capability+0x18c/0x3f0
[ 2032.021463][T25044]  ? cred_has_capability+0x2b2/0x3f0
[ 2032.026737][T25044]  should_fail+0x6fb/0x860
[ 2032.031157][T25044]  ? setup_fault_attr+0x2b0/0x2b0
[ 2032.036303][T25044]  ? slab_free_freelist_hook+0xd0/0x150
[ 2032.041831][T25044]  ? cap_capable+0x23f/0x280
[ 2032.046412][T25044]  ? proc_pid_stack+0x1d5/0x1f0
[ 2032.051236][T25044]  ? proc_pid_stack+0x8e/0x1f0
[ 2032.056079][T25044]  should_failslab+0x5/0x20
[ 2032.060655][T25044]  kmem_cache_alloc_trace+0x39/0x270
[ 2032.066001][T25044]  proc_pid_stack+0x8e/0x1f0
[ 2032.070590][T25044]  proc_single_show+0xd3/0x130
[ 2032.075340][T25044]  seq_read+0x4aa/0xd30
[ 2032.079996][T25044]  do_iter_read+0x43b/0x550
[ 2032.084519][T25044]  do_preadv+0x1f4/0x330
[ 2032.088747][T25044]  ? do_writev+0x560/0x560
[ 2032.093144][T25044]  ? security_file_permission+0x128/0x300
[ 2032.099631][T25044]  ? __sb_end_write+0xa4/0xf0
[ 2032.104297][T25044]  ? vfs_write+0x427/0x4f0
[ 2032.108709][T25044]  do_syscall_64+0xcb/0x150
[ 2032.113793][T25044]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2032.119654][T25044] RIP: 0033:0x45d5b9
[ 2032.123782][T25044] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2032.143507][T25044] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 2032.151895][T25044] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 2032.164024][T25044] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 2032.172089][T25044] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 2032.180128][T25044] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000042
[ 2032.189399][T25044] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
[ 2032.206720][  T146] systemd-udevd invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=3, oom_score_adj=-1000
[ 2032.220716][  T146] CPU: 0 PID: 146 Comm: systemd-udevd Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2032.230913][  T146] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2032.241132][  T146] Call Trace:
[ 2032.244450][  T146]  dump_stack+0x1b0/0x21e
[ 2032.248864][  T146]  ? devkmsg_release+0x11c/0x11c
[ 2032.253913][  T146]  ? show_regs_print_info+0x12/0x12
[ 2032.259109][  T146]  dump_header+0xdb/0x700
[ 2032.263465][  T146]  oom_kill_process+0xd3/0x280
[ 2032.268206][  T146]  out_of_memory+0x5b6/0x890
[ 2032.273116][  T146]  ? unregister_oom_notifier+0x20/0x20
[ 2032.278548][  T146]  __alloc_pages_slowpath+0x17bc/0x1cb0
[ 2032.284079][  T146]  ? get_page_from_freelist+0x7c0/0x7c0
[ 2032.289866][  T146]  ? __zone_watermark_ok+0x91/0x280
[ 2032.295038][  T146]  __alloc_pages_nodemask+0x5cb/0x7c0
[ 2032.300562][  T146]  ? gfp_pfmemalloc_allowed+0x130/0x130
[ 2032.306173][  T146]  ? copy_process+0x5c9/0x52c0
[ 2032.310926][  T146]  ? copy_process+0x5c9/0x52c0
[ 2032.315666][  T146]  ? kmem_cache_alloc+0x1d5/0x250
[ 2032.320677][  T146]  copy_process+0x612/0x52c0
[ 2032.325243][  T146]  ? _raw_spin_lock_irqsave+0xda/0x1c0
[ 2032.330678][  T146]  ? sock_setsockopt+0x1d93/0x2c30
[ 2032.335785][  T146]  ? fork_idle+0x290/0x290
[ 2032.340174][  T146]  _do_fork+0x180/0x8f0
[ 2032.344401][  T146]  ? dup_mm+0x300/0x300
[ 2032.348748][  T146]  ? __secure_computing+0x1b6/0x250
[ 2032.353916][  T146]  ? syscall_trace_enter+0x683/0xa70
[ 2032.359171][  T146]  __x64_sys_clone+0x246/0x2b0
[ 2032.363919][  T146]  ? __ia32_sys_vfork+0x110/0x110
[ 2032.368923][  T146]  ? __fpregs_load_activate+0x2d3/0x390
[ 2032.374617][  T146]  do_syscall_64+0xcb/0x150
[ 2032.379097][  T146]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2032.384968][  T146] RIP: 0033:0x7f72b9ae038b
[ 2032.389464][  T146] Code: db 45 85 f6 0f 85 95 01 00 00 64 4c 8b 04 25 10 00 00 00 31 d2 4d 8d 90 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 de 00 00 00 85 c0 41 89 c5 0f 85 e5 00 00
[ 2032.409145][  T146] RSP: 002b:00007ffee4b93d90 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 2032.417544][  T146] RAX: ffffffffffffffda RBX: 00007ffee4b93d90 RCX: 00007f72b9ae038b
[ 2032.425491][  T146] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[ 2032.433451][  T146] RBP: 00007ffee4b93de0 R08: 00007f72bac908c0 R09: 0000000000000210
[ 2032.441398][  T146] R10: 00007f72bac90b90 R11: 0000000000000246 R12: 0000000000000000
[ 2032.449342][  T146] R13: 0000000000000020 R14: 0000000000000000 R15: 0000000000000000
[ 2032.507819][  T146] Mem-Info:
[ 2032.511123][  T146] active_anon:1409431 inactive_anon:12081 isolated_anon:0
[ 2032.511123][  T146]  active_file:389 inactive_file:393 isolated_file:25
[ 2032.511123][  T146]  unevictable:4 dirty:52 writeback:0 unstable:0
[ 2032.511123][  T146]  slab_reclaimable:8263 slab_unreclaimable:81833
[ 2032.511123][  T146]  mapped:56841 shmem:6894 pagetables:35840 bounce:0
[ 2032.511123][  T146]  free:10033 free_pcp:156 free_cma:0
[ 2032.561394][  T146] Node 0 active_anon:5637724kB inactive_anon:48324kB active_file:1700kB inactive_file:1560kB unevictable:16kB isolated(anon):0kB isolated(file):200kB mapped:227264kB dirty:208kB writeback:0kB shmem:27576kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2032.615921][  T146] DMA free:15904kB min:24kB low:36kB high:48kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15904kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2032.648830][  T146] lowmem_reserve[]: 0 2912 6416 6416
09:21:21 executing program 4 (fault-call:14 fault-nth:67):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

[ 2032.656181][  T146] DMA32 free:17276kB min:4644kB low:7624kB high:10604kB active_anon:2943052kB inactive_anon:0kB active_file:164kB inactive_file:592kB unevictable:0kB writepending:4kB present:3129332kB managed:2983760kB mlocked:0kB kernel_stack:3392kB pagetables:2492kB bounce:0kB free_pcp:1360kB local_pcp:1324kB free_cma:0kB
[ 2032.685858][  T146] lowmem_reserve[]: 0 0 3504 3504
[ 2032.690981][  T146] Normal free:6808kB min:5592kB low:9180kB high:12768kB active_anon:2688284kB inactive_anon:48324kB active_file:1640kB inactive_file:5460kB unevictable:16kB writepending:184kB present:4718592kB managed:3588928kB mlocked:16kB kernel_stack:38880kB pagetables:140868kB bounce:0kB free_pcp:1640kB local_pcp:1224kB free_cma:0kB
[ 2032.741383][  T146] lowmem_reserve[]: 0 0 0 0
[ 2032.752445][  T146] DMA: 0*4kB 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (U) 3*4096kB (M) = 15904kB
09:21:21 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a00000aff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 2032.784148][  T146] DMA32: 70*4kB (UMH) 49*8kB (UM) 34*16kB (UMH) 119*32kB (UMH) 95*64kB (UMH) 30*128kB (UH) 4*256kB (UM) 0*512kB 1*1024kB (M) 1*2048kB (M) 0*4096kB = 19040kB
[ 2032.826398][  T146] Normal: 213*4kB (MEH) 186*8kB (MEH) 85*16kB (MEH) 48*32kB (UMH) 34*64kB (UMH) 6*128kB (UMH) 1*256kB (M) 0*512kB 1*1024kB (M) 0*2048kB 0*4096kB = 9460kB
[ 2032.843991][  T146] 8503 total pagecache pages
[ 2032.849268][  T146] 0 pages in swap cache
[ 2032.853945][  T146] Swap cache stats: add 0, delete 0, find 0/0
[ 2032.860387][  T146] Free swap  = 0kB
[ 2032.864675][  T146] Total swap = 0kB
[ 2032.869554][  T146] 1965979 pages RAM
[ 2032.880934][  T146] 0 pages HighMem/MovableOnly
[ 2032.891817][  T146] 318831 pages reserved
[ 2032.898587][  T146] 0 pages cma reserved
[ 2032.904246][  T146] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/,task=syz-executor.3,pid=8259,uid=0
09:21:21 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x5, 0x0, 0x0, 0x9, 0xae, 0x0, 0x0, 0xfffdf001}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x24, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000080}, 0x400c040)

[ 2032.972232][  T146] Out of memory: Killed process 8259 (syz-executor.3) total-vm:85612kB, anon-rss:16572kB, file-rss:34824kB, shmem-rss:0kB, UID:0 pgtables:160kB oom_score_adj:1000
[ 2033.190993][T25066] FAULT_INJECTION: forcing a failure.
[ 2033.190993][T25066] name failslab, interval 1, probability 0, space 0, times 0
[ 2033.204033][T25066] CPU: 0 PID: 25066 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2033.214186][T25066] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2033.224845][T25066] Call Trace:
[ 2033.228144][T25066]  dump_stack+0x1b0/0x21e
[ 2033.232969][T25066]  ? devkmsg_release+0x11c/0x11c
[ 2033.237966][T25066]  ? show_regs_print_info+0x12/0x12
[ 2033.243137][T25066]  should_fail+0x6fb/0x860
[ 2033.247523][T25066]  ? setup_fault_attr+0x2b0/0x2b0
[ 2033.252927][T25066]  ? slab_free_freelist_hook+0xd0/0x150
[ 2033.258446][T25066]  ? cap_capable+0x23f/0x280
[ 2033.263010][T25066]  ? proc_pid_stack+0x1d5/0x1f0
[ 2033.268221][T25066]  ? proc_pid_stack+0x8e/0x1f0
[ 2033.273081][T25066]  should_failslab+0x5/0x20
[ 2033.277562][T25066]  kmem_cache_alloc_trace+0x39/0x270
[ 2033.282849][T25066]  proc_pid_stack+0x8e/0x1f0
[ 2033.287428][T25066]  proc_single_show+0xd3/0x130
[ 2033.292169][T25066]  seq_read+0x4aa/0xd30
[ 2033.296404][T25066]  do_iter_read+0x43b/0x550
[ 2033.300881][T25066]  do_preadv+0x1f4/0x330
[ 2033.305116][T25066]  ? do_writev+0x560/0x560
[ 2033.309508][T25066]  ? security_file_permission+0x128/0x300
[ 2033.315304][T25066]  ? __sb_end_write+0xa4/0xf0
[ 2033.320048][T25066]  ? vfs_write+0x427/0x4f0
[ 2033.324461][T25066]  do_syscall_64+0xcb/0x150
[ 2033.328945][T25066]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2033.334897][T25066] RIP: 0033:0x45d5b9
[ 2033.338765][T25066] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2033.359210][T25066] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 2033.367639][T25066] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 2033.375584][T25066] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 2033.383631][T25066] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 2033.391672][T25066] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000043
[ 2033.399719][T25066] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
[ 2033.428792][T25064] syz-executor.0 invoked oom-killer: gfp_mask=0x1100dca(GFP_HIGHUSER_MOVABLE|__GFP_ZERO|0x1000000), order=0, oom_score_adj=1000
[ 2033.480741][T25064] CPU: 1 PID: 25064 Comm: syz-executor.0 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2033.490914][T25064] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2033.501141][T25064] Call Trace:
[ 2033.504428][T25064]  dump_stack+0x1b0/0x21e
[ 2033.508760][T25064]  ? devkmsg_release+0x11c/0x11c
[ 2033.513776][T25064]  ? ___ratelimit+0x3bf/0x560
[ 2033.518562][T25064]  ? show_regs_print_info+0x12/0x12
[ 2033.523752][T25064]  ? _raw_spin_lock+0xa1/0x170
[ 2033.528593][T25064]  ? radix_tree_cpu_dead+0x160/0x160
[ 2033.534223][T25064]  dump_header+0xdb/0x700
[ 2033.538552][T25064]  oom_kill_process+0xd3/0x280
[ 2033.543335][T25064]  out_of_memory+0x5b6/0x890
[ 2033.547927][T25064]  ? unregister_oom_notifier+0x20/0x20
[ 2033.553402][T25064]  __alloc_pages_slowpath+0x17bc/0x1cb0
[ 2033.559030][T25064]  ? get_page_from_freelist+0x7c0/0x7c0
[ 2033.564552][T25064]  __alloc_pages_nodemask+0x5cb/0x7c0
[ 2033.569896][T25064]  ? gfp_pfmemalloc_allowed+0x130/0x130
[ 2033.575425][T25064]  wp_page_copy+0x199/0x10e0
[ 2033.579996][T25064]  ? add_mm_rss_vec+0x270/0x270
[ 2033.584997][T25064]  ? vm_normal_page+0x1c9/0x1d0
[ 2033.589828][T25064]  do_wp_page+0x48d/0x14b0
[ 2033.594218][T25064]  ? _raw_spin_lock+0xa1/0x170
[ 2033.598957][T25064]  ? do_swap_page+0x1510/0x1510
[ 2033.603867][T25064]  handle_mm_fault+0xf6c/0x4140
[ 2033.608746][T25064]  ? finish_fault+0x230/0x230
[ 2033.613397][T25064]  ? down_read_trylock+0x17a/0x1d0
[ 2033.618488][T25064]  ? vmacache_update+0x9f/0xf0
[ 2033.623233][T25064]  do_user_addr_fault+0x48a/0x9f0
[ 2033.628228][T25064]  page_fault+0x2f/0x40
[ 2033.632355][T25064] RIP: 0010:copy_user_enhanced_fast_string+0xe/0x30
[ 2033.639007][T25064] Code: 89 d1 c1 e9 03 83 e2 07 f3 48 a5 89 d1 f3 a4 31 c0 0f 1f 00 c3 0f 1f 80 00 00 00 00 0f 1f 00 83 fa 40 0f 82 70 ff ff ff 89 d1 <f3> a4 31 c0 0f 1f 00 c3 66 2e 0f 1f 84 00 00 00 00 00 89 d1 f3 a4
[ 2033.658598][T25064] RSP: 0018:ffff888175bd7888 EFLAGS: 00010206
[ 2033.664651][T25064] RAX: ffffffff81f5ae01 RBX: 0000000020001500 RCX: 0000000000000500
[ 2033.672690][T25064] RDX: 0000000000001000 RSI: ffff88817edc4b00 RDI: 0000000020001000
[ 2033.680717][T25064] RBP: ffff888175bd7da8 R08: dffffc0000000000 R09: ffffed102fdb8a00
[ 2033.688659][T25064] R10: 0000000000000000 R11: 0000000000000000 R12: 00007ffffffff000
[ 2033.696712][T25064] R13: 0000000000001000 R14: ffff88817edc4000 R15: 0000000020000500
[ 2033.704670][T25064]  ? _copy_to_iter+0xfb1/0xfc0
[ 2033.709409][T25064]  copyout+0x8e/0xb0
[ 2033.713297][T25064]  copy_page_to_iter+0x393/0xbd0
[ 2033.718206][T25064]  pipe_to_user+0xa3/0x130
[ 2033.722627][T25064]  __splice_from_pipe+0x2d3/0x870
[ 2033.727632][T25064]  ? user_page_pipe_buf_steal+0xc0/0xc0
[ 2033.733147][T25064]  do_vmsplice+0x240/0xe70
[ 2033.737627][T25064]  ? write_pipe_buf+0x1d0/0x1d0
[ 2033.742537][T25064]  ? __rcu_read_lock+0x50/0x50
[ 2033.747347][T25064]  ? check_stack_object+0x5a/0x90
[ 2033.752346][T25064]  ? _copy_from_user+0xa4/0xe0
[ 2033.757278][T25064]  ? rw_copy_check_uvector+0x2b3/0x310
[ 2033.762715][T25064]  ? import_iovec+0x171/0x340
[ 2033.767375][T25064]  ? dup_iter+0x110/0x110
[ 2033.771679][T25064]  ? do_vfs_ioctl+0x757/0x1700
[ 2033.776430][T25064]  __se_sys_vmsplice+0x1cc/0x2c0
[ 2033.781600][T25064]  ? __x64_sys_vmsplice+0xa0/0xa0
[ 2033.786611][T25064]  ? put_timespec64+0x106/0x150
[ 2033.791522][T25064]  ? ktime_get_raw+0x130/0x130
[ 2033.796789][T25064]  ? get_timespec64+0x1c0/0x1c0
[ 2033.801612][T25064]  ? fget_many+0x20/0x20
[ 2033.805828][T25064]  ? __ia32_sys_clock_settime+0x230/0x230
[ 2033.811535][T25064]  do_syscall_64+0xcb/0x150
[ 2033.816099][T25064]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2033.821963][T25064] RIP: 0033:0x45d5b9
[ 2033.825936][T25064] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2033.845627][T25064] RSP: 002b:00007fc344b26c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000116
[ 2033.854546][T25064] RAX: ffffffffffffffda RBX: 0000000000036640 RCX: 000000000045d5b9
[ 2033.862578][T25064] RDX: 0000000000000001 RSI: 0000000020000000 RDI: 0000000000000004
[ 2033.870525][T25064] RBP: 000000000118d0c8 R08: 0000000000000000 R09: 0000000000000000
[ 2033.878478][T25064] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118d08c
[ 2033.886421][T25064] R13: 00007ffd4130796f R14: 00007fc344b279c0 R15: 000000000118d08c
[ 2033.907662][T25064] Mem-Info:
[ 2033.918557][T25064] active_anon:1405718 inactive_anon:12081 isolated_anon:0
[ 2033.918557][T25064]  active_file:452 inactive_file:504 isolated_file:47
[ 2033.918557][T25064]  unevictable:4 dirty:70 writeback:4 unstable:0
[ 2033.918557][T25064]  slab_reclaimable:8259 slab_unreclaimable:82118
[ 2033.918557][T25064]  mapped:57024 shmem:6894 pagetables:35991 bounce:0
[ 2033.918557][T25064]  free:13203 free_pcp:54 free_cma:0
[ 2033.959156][T25064] Node 0 active_anon:5622872kB inactive_anon:48324kB active_file:1808kB inactive_file:2116kB unevictable:16kB isolated(anon):0kB isolated(file):188kB mapped:228096kB dirty:280kB writeback:16kB shmem:27576kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2034.018668][T25064] DMA free:15904kB min:24kB low:36kB high:48kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15904kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2034.061905][T25064] lowmem_reserve[]: 0 2912 6416 6416
[ 2034.068175][T25064] DMA32 free:18112kB min:4644kB low:7624kB high:10604kB active_anon:2942856kB inactive_anon:0kB active_file:84kB inactive_file:64kB unevictable:0kB writepending:4kB present:3129332kB managed:2983760kB mlocked:0kB kernel_stack:3392kB pagetables:2496kB bounce:0kB free_pcp:4kB local_pcp:4kB free_cma:0kB
[ 2034.109345][T25064] lowmem_reserve[]: 0 0 3504 3504
[ 2034.140691][T25064] Normal free:17872kB min:17880kB low:21468kB high:25056kB active_anon:2680016kB inactive_anon:48324kB active_file:2120kB inactive_file:2532kB unevictable:16kB writepending:292kB present:4718592kB managed:3588928kB mlocked:16kB kernel_stack:39136kB pagetables:141468kB bounce:0kB free_pcp:76kB local_pcp:76kB free_cma:0kB
09:21:23 executing program 4 (fault-call:14 fault-nth:68):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

[ 2034.211106][T25064] lowmem_reserve[]: 0 0 0 0
[ 2034.225773][T25064] DMA: 0*4kB 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (U) 3*4096kB (M) = 15904kB
[ 2034.244539][T25064] DMA32: 40*4kB (UMH) 34*8kB (UM) 29*16kB (UMH) 120*32kB (UMH) 95*64kB (UMH) 30*128kB (UH) 4*256kB (UM) 0*512kB 1*1024kB (M) 1*2048kB (M) 0*4096kB = 18752kB
[ 2034.264511][T25064] Normal: 259*4kB (UMEH) 84*8kB (UMEH) 70*16kB (UMEH) 75*32kB (UMH) 89*64kB (UMH) 42*128kB (UMH) 3*256kB (UM) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 17068kB
[ 2034.282010][T25064] 8337 total pagecache pages
[ 2034.287453][T25064] 0 pages in swap cache
[ 2034.315322][T25064] Swap cache stats: add 0, delete 0, find 0/0
[ 2034.329704][T25064] Free swap  = 0kB
[ 2034.333854][T25064] Total swap = 0kB
[ 2034.338636][T25064] 1965979 pages RAM
[ 2034.343021][T25064] 0 pages HighMem/MovableOnly
[ 2034.347829][T25064] 318831 pages reserved
[ 2034.352119][T25064] 0 pages cma reserved
09:21:23 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a00000bff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 2034.356436][T25064] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/,task=syz-executor.3,pid=3478,uid=0
[ 2034.455166][T25064] Out of memory: Killed process 3478 (syz-executor.3) total-vm:85744kB, anon-rss:16572kB, file-rss:34824kB, shmem-rss:0kB, UID:0 pgtables:160kB oom_score_adj:1000
09:21:23 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a000402ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 2034.589766][T25083] FAULT_INJECTION: forcing a failure.
[ 2034.589766][T25083] name failslab, interval 1, probability 0, space 0, times 0
[ 2034.602650][T25083] CPU: 0 PID: 25083 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2034.612803][T25083] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2034.622855][T25083] Call Trace:
[ 2034.626163][T25083]  dump_stack+0x1b0/0x21e
[ 2034.630489][T25083]  ? devkmsg_release+0x11c/0x11c
[ 2034.635419][T25083]  ? show_regs_print_info+0x12/0x12
[ 2034.640609][T25083]  ? cred_has_capability+0x18c/0x3f0
[ 2034.645921][T25083]  ? cred_has_capability+0x2b2/0x3f0
[ 2034.651618][T25083]  should_fail+0x6fb/0x860
[ 2034.656329][T25083]  ? setup_fault_attr+0x2b0/0x2b0
[ 2034.661422][T25083]  ? slab_free_freelist_hook+0xd0/0x150
[ 2034.667059][T25083]  ? cap_capable+0x23f/0x280
[ 2034.671634][T25083]  ? proc_pid_stack+0x1d5/0x1f0
[ 2034.676458][T25083]  ? proc_pid_stack+0x8e/0x1f0
[ 2034.681195][T25083]  should_failslab+0x5/0x20
[ 2034.685855][T25083]  kmem_cache_alloc_trace+0x39/0x270
[ 2034.691113][T25083]  proc_pid_stack+0x8e/0x1f0
[ 2034.695681][T25083]  proc_single_show+0xd3/0x130
[ 2034.700530][T25083]  seq_read+0x4aa/0xd30
[ 2034.704662][T25083]  do_iter_read+0x43b/0x550
[ 2034.709138][T25083]  do_preadv+0x1f4/0x330
[ 2034.713360][T25083]  ? do_writev+0x560/0x560
[ 2034.717752][T25083]  ? __schedule+0x8ae/0xe30
[ 2034.722230][T25083]  do_syscall_64+0xcb/0x150
[ 2034.726811][T25083]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2034.732783][T25083] RIP: 0033:0x45d5b9
[ 2034.736674][T25083] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2034.756824][T25083] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 2034.765558][T25083] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 2034.773525][T25083] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 2034.781563][T25083] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 2034.789531][T25083] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000044
[ 2034.797563][T25083] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
[ 2034.979283][T25062] syz-executor.1 invoked oom-killer: gfp_mask=0x1100dca(GFP_HIGHUSER_MOVABLE|__GFP_ZERO|0x1000000), order=0, oom_score_adj=1000
[ 2035.002328][T25062] CPU: 1 PID: 25062 Comm: syz-executor.1 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2035.012661][T25062] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2035.022865][T25062] Call Trace:
[ 2035.026280][T25062]  dump_stack+0x1b0/0x21e
[ 2035.030605][T25062]  ? devkmsg_release+0x11c/0x11c
[ 2035.035616][T25062]  ? ___ratelimit+0x3bf/0x560
[ 2035.040272][T25062]  ? show_regs_print_info+0x12/0x12
[ 2035.045448][T25062]  ? _raw_spin_lock+0xa1/0x170
[ 2035.050191][T25062]  ? radix_tree_cpu_dead+0x160/0x160
[ 2035.055457][T25062]  dump_header+0xdb/0x700
[ 2035.059764][T25062]  oom_kill_process+0xd3/0x280
[ 2035.064605][T25062]  out_of_memory+0x5b6/0x890
[ 2035.069259][T25062]  ? unregister_oom_notifier+0x20/0x20
[ 2035.074714][T25062]  __alloc_pages_slowpath+0x17bc/0x1cb0
[ 2035.080940][T25062]  ? get_page_from_freelist+0x7c0/0x7c0
[ 2035.087281][T25062]  __alloc_pages_nodemask+0x5cb/0x7c0
[ 2035.092991][T25062]  ? gfp_pfmemalloc_allowed+0x130/0x130
[ 2035.098613][T25062]  ? mem_cgroup_commit_charge+0x198/0x240
[ 2035.104391][T25062]  ? mem_cgroup_try_charge_delay+0x10/0x10
[ 2035.110257][T25062]  ? __lru_cache_add+0x1a1/0x1f0
[ 2035.115170][T25062]  wp_page_copy+0x199/0x10e0
[ 2035.119736][T25062]  ? add_mm_rss_vec+0x270/0x270
[ 2035.124654][T25062]  ? vm_normal_page+0x1c9/0x1d0
[ 2035.129479][T25062]  do_wp_page+0x48d/0x14b0
[ 2035.133957][T25062]  ? _raw_spin_lock+0xa1/0x170
[ 2035.138971][T25062]  ? do_swap_page+0x1510/0x1510
[ 2035.143808][T25062]  handle_mm_fault+0xf6c/0x4140
[ 2035.148648][T25062]  ? finish_fault+0x230/0x230
[ 2035.153297][T25062]  ? __perf_event_task_sched_in+0x4ed/0x550
[ 2035.159165][T25062]  ? down_read_trylock+0x17a/0x1d0
[ 2035.164338][T25062]  ? vmacache_find+0x2d2/0x4b0
[ 2035.169078][T25062]  do_user_addr_fault+0x48a/0x9f0
[ 2035.174282][T25062]  page_fault+0x2f/0x40
[ 2035.178506][T25062] RIP: 0010:copy_user_enhanced_fast_string+0xe/0x30
[ 2035.185150][T25062] Code: 89 d1 c1 e9 03 83 e2 07 f3 48 a5 89 d1 f3 a4 31 c0 0f 1f 00 c3 0f 1f 80 00 00 00 00 0f 1f 00 83 fa 40 0f 82 70 ff ff ff 89 d1 <f3> a4 31 c0 0f 1f 00 c3 66 2e 0f 1f 84 00 00 00 00 00 89 d1 f3 a4
[ 2035.205110][T25062] RSP: 0018:ffff888114177888 EFLAGS: 00010206
[ 2035.211157][T25062] RAX: ffffffff81f5ae01 RBX: 00000000207d7500 RCX: 0000000000000500
[ 2035.219112][T25062] RDX: 0000000000001000 RSI: ffff888163bdcb00 RDI: 00000000207d7000
[ 2035.227179][T25062] RBP: ffff888114177da8 R08: dffffc0000000000 R09: ffffed102c77ba00
[ 2035.235505][T25062] R10: 0000000000000000 R11: 0000000000000000 R12: 00007ffffffff000
[ 2035.243454][T25062] R13: 0000000000001000 R14: ffff888163bdc000 R15: 00000000207d6500
[ 2035.251775][T25062]  ? _copy_to_iter+0xfb1/0xfc0
[ 2035.257382][T25062]  copyout+0x8e/0xb0
[ 2035.261296][T25062]  copy_page_to_iter+0x393/0xbd0
[ 2035.266219][T25062]  pipe_to_user+0xa3/0x130
[ 2035.270804][T25062]  __splice_from_pipe+0x2d3/0x870
[ 2035.275813][T25062]  ? user_page_pipe_buf_steal+0xc0/0xc0
[ 2035.281330][T25062]  do_vmsplice+0x240/0xe70
[ 2035.285841][T25062]  ? write_pipe_buf+0x1d0/0x1d0
[ 2035.290769][T25062]  ? __rcu_read_lock+0x50/0x50
[ 2035.295508][T25062]  ? check_stack_object+0x5a/0x90
[ 2035.300503][T25062]  ? _copy_from_user+0xa4/0xe0
[ 2035.305244][T25062]  ? rw_copy_check_uvector+0x2b3/0x310
[ 2035.310761][T25062]  ? import_iovec+0x171/0x340
[ 2035.315671][T25062]  ? dup_iter+0x110/0x110
[ 2035.319984][T25062]  ? do_vfs_ioctl+0x757/0x1700
[ 2035.324720][T25062]  __se_sys_vmsplice+0x1cc/0x2c0
[ 2035.329734][T25062]  ? __x64_sys_vmsplice+0xa0/0xa0
[ 2035.334763][T25062]  ? put_timespec64+0x106/0x150
[ 2035.339686][T25062]  ? ktime_get_raw+0x130/0x130
[ 2035.344421][T25062]  ? get_timespec64+0x1c0/0x1c0
[ 2035.349242][T25062]  ? fget_many+0x20/0x20
[ 2035.353545][T25062]  ? __ia32_sys_clock_settime+0x230/0x230
[ 2035.359290][T25062]  do_syscall_64+0xcb/0x150
[ 2035.363961][T25062]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2035.369838][T25062] RIP: 0033:0x45d5b9
[ 2035.373720][T25062] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2035.393414][T25062] RSP: 002b:00007f91d3e75c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000116
[ 2035.401821][T25062] RAX: ffffffffffffffda RBX: 0000000000036640 RCX: 000000000045d5b9
[ 2035.410207][T25062] RDX: 0000000000000001 RSI: 0000000020000000 RDI: 0000000000000003
[ 2035.418251][T25062] RBP: 000000000118d028 R08: 0000000000000000 R09: 0000000000000000
[ 2035.426194][T25062] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118cfec
[ 2035.434137][T25062] R13: 00007ffdf5874a7f R14: 00007f91d3e769c0 R15: 000000000118cfec
[ 2035.446420][T25062] Mem-Info:
[ 2035.449967][T25062] active_anon:1408787 inactive_anon:12081 isolated_anon:0
[ 2035.449967][T25062]  active_file:403 inactive_file:416 isolated_file:0
[ 2035.449967][T25062]  unevictable:4 dirty:33 writeback:14 unstable:0
[ 2035.449967][T25062]  slab_reclaimable:8242 slab_unreclaimable:81944
[ 2035.449967][T25062]  mapped:56911 shmem:6894 pagetables:35964 bounce:0
[ 2035.449967][T25062]  free:10429 free_pcp:27 free_cma:0
[ 2035.516845][T25062] Node 0 active_anon:5636848kB inactive_anon:48324kB active_file:1332kB inactive_file:1288kB unevictable:16kB isolated(anon):0kB isolated(file):236kB mapped:227144kB dirty:132kB writeback:56kB shmem:27576kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2035.564576][T25062] DMA free:15904kB min:24kB low:36kB high:48kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15904kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2035.595955][T25062] lowmem_reserve[]: 0 2912 6416 6416
[ 2035.601571][T25062] DMA32 free:17096kB min:4644kB low:7624kB high:10604kB active_anon:2944372kB inactive_anon:0kB active_file:40kB inactive_file:0kB unevictable:0kB writepending:4kB present:3129332kB managed:2983760kB mlocked:0kB kernel_stack:3392kB pagetables:2492kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB
[ 2035.645257][T25062] lowmem_reserve[]: 0 0 3504 3504
[ 2035.655643][T25062] Normal free:9496kB min:9688kB low:13276kB high:16864kB active_anon:2692816kB inactive_anon:48324kB active_file:568kB inactive_file:736kB unevictable:16kB writepending:184kB present:4718592kB managed:3588928kB mlocked:16kB kernel_stack:39360kB pagetables:141364kB bounce:0kB free_pcp:44kB local_pcp:44kB free_cma:0kB
[ 2035.689893][T25062] lowmem_reserve[]: 0 0 0 0
[ 2035.694473][T25062] DMA: 0*4kB 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (U) 3*4096kB (M) = 15904kB
[ 2035.708629][T25062] DMA32: 24*4kB (UMH) 6*8kB (U) 18*16kB (UH) 116*32kB (UMH) 94*64kB (UH) 30*128kB (UH) 4*256kB (UM) 1*512kB (M) 0*1024kB 1*2048kB (M) 0*4096kB = 17584kB
[ 2035.733789][T25062] Normal: 67*4kB (UMEH) 45*8kB (UMEH) 74*16kB (UEH) 57*32kB (UMH) 21*64kB (MH) 11*128kB (MH) 1*256kB (M) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 6644kB
[ 2035.750236][T25062] 7496 total pagecache pages
[ 2035.755252][T25062] 0 pages in swap cache
[ 2035.760713][T25062] Swap cache stats: add 0, delete 0, find 0/0
[ 2035.767277][T25062] Free swap  = 0kB
[ 2035.771394][T25062] Total swap = 0kB
[ 2035.776125][T25062] 1965979 pages RAM
[ 2035.780812][T25062] 0 pages HighMem/MovableOnly
[ 2035.786728][T25062] 318831 pages reserved
[ 2035.798289][T25062] 0 pages cma reserved
[ 2035.803531][T25062] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/,task=syz-executor.1,pid=24435,uid=0
[ 2035.819072][T25062] Out of memory: Killed process 24435 (syz-executor.1) total-vm:85348kB, anon-rss:16568kB, file-rss:34824kB, shmem-rss:0kB, UID:0 pgtables:160kB oom_score_adj:1000
09:21:25 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x2000000)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:21:25 executing program 4 (fault-call:14 fault-nth:69):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:21:25 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
r1 = bpf$OBJ_GET_PROG(0x7, &(0x7f00000001c0)={&(0x7f0000000080)='./file0\x00', 0x0, 0x10}, 0x10)
ioctl$FS_IOC_FSGETXATTR(r1, 0x801c581f, &(0x7f00000002c0)={0x6, 0x88, 0x8, 0x40, 0xff})
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB='*\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000227bd7000ffdbdf250b00000008000400810000000c0003800600040000000000"], 0x28}}, 0x400c040)

09:21:25 executing program 1:
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300)='nl80211\x00')
ioctl$sock_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000380)={0x0, @xdp={0x2c, 0xa, 0x0, 0x10}, @can={0x1d, <r1=>0x0}, @llc={0x1a, 0x100, 0x3f, 0xe3, 0x81, 0x20, @dev={[], 0x34}}, 0x81, 0x0, 0x0, 0x0, 0x3f, &(0x7f0000000340)='bond_slave_1\x00', 0x1, 0x30000, 0x44})
sendmsg$NL80211_CMD_GET_MESH_CONFIG(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x64, r0, 0x800, 0x70bd2a, 0x25dfdbff, {}, [@NL80211_ATTR_WDEV={0xc, 0x99, {0x2, 0xffffffffffffffff}}, @NL80211_ATTR_WDEV={0xc, 0x99, {0x3, 0x1}}, @NL80211_ATTR_WDEV={0xc}, @NL80211_ATTR_IFINDEX={0x8, 0x3, r1}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x4}, @NL80211_ATTR_IFINDEX={0x8}, @NL80211_ATTR_IFINDEX={0x8}, @NL80211_ATTR_WDEV={0xc, 0x99, {0x400, 0x2}}]}, 0x64}, 0x1, 0x0, 0x0, 0x80c4}, 0x4000000)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
r3 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r3, 0x29, 0x22, &(0x7f00000001c0)={@ipv4={[0x2, 0x0, 0x0, 0x0, 0x2, 0x0, 0x2]}, 0x0, 0x0, 0x0, 0x4000}, 0x20)
ioctl$sock_SIOCSIFVLAN_GET_VLAN_INGRESS_PRIORITY_CMD(r3, 0x8983, &(0x7f0000000080))
pipe(&(0x7f0000000100)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
write(r5, &(0x7f0000000340), 0x41395527)
vmsplice(r4, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r6 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r6, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x20, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x20}}, 0x0)

[ 2036.288014][T25107] FAULT_INJECTION: forcing a failure.
[ 2036.288014][T25107] name failslab, interval 1, probability 0, space 0, times 0
[ 2036.300749][T25107] CPU: 1 PID: 25107 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2036.310905][T25107] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2036.320931][T25107] Call Trace:
[ 2036.324286][T25107]  dump_stack+0x1b0/0x21e
[ 2036.328672][T25107]  ? devkmsg_release+0x11c/0x11c
[ 2036.334281][T25107]  ? show_regs_print_info+0x12/0x12
[ 2036.339450][T25107]  should_fail+0x6fb/0x860
[ 2036.343836][T25107]  ? setup_fault_attr+0x2b0/0x2b0
[ 2036.348829][T25107]  ? slab_free_freelist_hook+0xd0/0x150
[ 2036.354359][T25107]  ? cap_capable+0x23f/0x280
[ 2036.358946][T25107]  ? proc_pid_stack+0x1d5/0x1f0
[ 2036.363786][T25107]  ? proc_pid_stack+0x8e/0x1f0
[ 2036.368524][T25107]  should_failslab+0x5/0x20
[ 2036.373003][T25107]  kmem_cache_alloc_trace+0x39/0x270
[ 2036.378261][T25107]  proc_pid_stack+0x8e/0x1f0
[ 2036.382834][T25107]  proc_single_show+0xd3/0x130
[ 2036.387572][T25107]  seq_read+0x4aa/0xd30
[ 2036.391710][T25107]  do_iter_read+0x43b/0x550
[ 2036.396184][T25107]  do_preadv+0x1f4/0x330
[ 2036.400399][T25107]  ? do_writev+0x560/0x560
[ 2036.404787][T25107]  ? security_file_permission+0x128/0x300
[ 2036.410572][T25107]  ? __sb_end_write+0xa4/0xf0
[ 2036.415239][T25107]  ? vfs_write+0x427/0x4f0
[ 2036.419756][T25107]  do_syscall_64+0xcb/0x150
[ 2036.424494][T25107]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2036.430372][T25107] RIP: 0033:0x45d5b9
[ 2036.434423][T25107] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2036.454096][T25107] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 2036.462483][T25107] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 2036.470426][T25107] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 2036.478368][T25107] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 2036.486428][T25107] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000045
[ 2036.494371][T25107] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
09:21:25 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
write$P9_RREMOVE(0xffffffffffffffff, &(0x7f0000000080)={0x7, 0x7b, 0x1}, 0x7)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
r4 = syz_open_dev$ptys(0xc, 0x3, 0x1)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r2, 0x81f8943c, &(0x7f00000002c0)={0x0, ""/256, 0x0, 0x0, 0x0, 0x0, ""/16, ""/16, ""/16, <r5=>0x0})
ioctl$BTRFS_IOC_BALANCE_V2(r3, 0xc4009420, &(0x7f0000000540)={0x2, 0x4, {0x1ff, @usage=0x388, 0x0, 0x7, 0x1, 0x8, 0x7, 0x9, 0x5e, @usage=0x45e, 0xf, 0x2, [0x3, 0x2, 0xffffffffffffffff, 0x2, 0xffff, 0x4]}, {0x401, @usage, 0x0, 0xc2dc, 0xec, 0xfffffffffffffff7, 0x9, 0x5, 0x66, @usage=0x96, 0x1ff, 0x4, [0x9, 0x8, 0x1000, 0xffffffffffffffff, 0x5, 0x8001]}, {0x7, @struct={0x9, 0x7f}, <r6=>0x0, 0xa, 0x6, 0x5, 0x8001, 0x8, 0xe91, @struct={0xff, 0x7fffffff}, 0xffff, 0xb5, [0x3ff, 0x9, 0xb1f, 0x9, 0x100000000, 0xfffffffffffffffb]}, {0x6, 0x8, 0x3}})
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r3, 0x50009418, &(0x7f0000000940)={{r4}, r5, 0x4, @inherit={0x50, &(0x7f0000001940)=ANY=[@ANYBLOB="010000000000000001000000000000000300000000000000ff00000000000000240000000000000005000000000000005093000000000000ff03000000000000000000000000000001000100000000006cd1f4f36656b3aa9e0d834897ef5a3f8faef6282f99c49d14e1"]}, @devid=r6})
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x20, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x20}}, 0x0)

09:21:25 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x3000000)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:21:25 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a000003ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:21:25 executing program 4 (fault-call:14 fault-nth:70):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:21:25 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a00000cff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:21:25 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
ioctl$TIOCCBRK(r2, 0x5428)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

[ 2037.255662][T25135] FAULT_INJECTION: forcing a failure.
[ 2037.255662][T25135] name failslab, interval 1, probability 0, space 0, times 0
[ 2037.268772][T25135] CPU: 1 PID: 25135 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2037.279184][T25135] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2037.289937][T25135] Call Trace:
[ 2037.293304][T25135]  dump_stack+0x1b0/0x21e
[ 2037.297616][T25135]  ? devkmsg_release+0x11c/0x11c
[ 2037.302524][T25135]  ? show_regs_print_info+0x12/0x12
[ 2037.307689][T25135]  ? should_fail+0x175/0x860
[ 2037.312246][T25135]  ? should_fail+0x29d/0x860
[ 2037.316893][T25135]  should_fail+0x6fb/0x860
[ 2037.321279][T25135]  ? setup_fault_attr+0x2b0/0x2b0
[ 2037.326287][T25135]  ? slab_free_freelist_hook+0xd0/0x150
[ 2037.331805][T25135]  ? cap_capable+0x23f/0x280
[ 2037.336365][T25135]  ? proc_pid_stack+0x1d5/0x1f0
[ 2037.341189][T25135]  ? proc_pid_stack+0x8e/0x1f0
[ 2037.345922][T25135]  should_failslab+0x5/0x20
[ 2037.350396][T25135]  kmem_cache_alloc_trace+0x39/0x270
[ 2037.355655][T25135]  proc_pid_stack+0x8e/0x1f0
[ 2037.360222][T25135]  proc_single_show+0xd3/0x130
[ 2037.364957][T25135]  seq_read+0x4aa/0xd30
[ 2037.369085][T25135]  do_iter_read+0x43b/0x550
[ 2037.373558][T25135]  do_preadv+0x1f4/0x330
[ 2037.377780][T25135]  ? do_writev+0x560/0x560
[ 2037.382167][T25135]  ? __schedule+0x8ae/0xe30
[ 2037.386681][T25135]  do_syscall_64+0xcb/0x150
[ 2037.391162][T25135]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2037.397026][T25135] RIP: 0033:0x45d5b9
[ 2037.400891][T25135] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2037.420463][T25135] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 2037.428848][T25135] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 2037.436799][T25135] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 2037.444742][T25135] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 2037.452831][T25135] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000046
[ 2037.460884][T25135] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
[ 2037.738360][T25122] syz-executor.1 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=3, oom_score_adj=1000
[ 2037.759036][T25122] CPU: 1 PID: 25122 Comm: syz-executor.1 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2037.769194][T25122] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2037.779343][T25122] Call Trace:
[ 2037.782625][T25122]  dump_stack+0x1b0/0x21e
[ 2037.786937][T25122]  ? devkmsg_release+0x11c/0x11c
[ 2037.791843][T25122]  ? ___ratelimit+0x3bf/0x560
[ 2037.796486][T25122]  ? show_regs_print_info+0x12/0x12
[ 2037.801653][T25122]  ? _raw_spin_lock+0xa1/0x170
[ 2037.806397][T25122]  ? radix_tree_cpu_dead+0x160/0x160
[ 2037.811660][T25122]  dump_header+0xdb/0x700
[ 2037.815961][T25122]  oom_kill_process+0xd3/0x280
[ 2037.820692][T25122]  out_of_memory+0x5b6/0x890
[ 2037.825254][T25122]  ? unregister_oom_notifier+0x20/0x20
[ 2037.830681][T25122]  __alloc_pages_slowpath+0x17bc/0x1cb0
[ 2037.836204][T25122]  ? get_page_from_freelist+0x7c0/0x7c0
[ 2037.841726][T25122]  ? __zone_watermark_ok+0x91/0x280
[ 2037.846907][T25122]  __alloc_pages_nodemask+0x5cb/0x7c0
[ 2037.852261][T25122]  ? gfp_pfmemalloc_allowed+0x130/0x130
[ 2037.857776][T25122]  ? copy_process+0x5c9/0x52c0
[ 2037.862508][T25122]  ? kmem_cache_alloc+0x1d5/0x250
[ 2037.867600][T25122]  copy_process+0x612/0x52c0
[ 2037.872162][T25122]  ? __memcg_kmem_charge_memcg+0x130/0x130
[ 2037.879552][T25122]  ? get_mem_cgroup_from_mm+0x27b/0x2c0
[ 2037.885087][T25122]  ? mem_cgroup_commit_charge+0x198/0x240
[ 2037.890780][T25122]  ? _raw_spin_lock+0xa1/0x170
[ 2037.895605][T25122]  ? mem_cgroup_try_charge_delay+0x10/0x10
[ 2037.901390][T25122]  ? fork_idle+0x290/0x290
[ 2037.905807][T25122]  ? __lru_cache_add+0x1a1/0x1f0
[ 2037.910724][T25122]  ? _raw_spin_unlock+0x5/0x20
[ 2037.915545][T25122]  ? handle_mm_fault+0x916/0x4140
[ 2037.921061][T25122]  _do_fork+0x180/0x8f0
[ 2037.925187][T25122]  ? finish_fault+0x230/0x230
[ 2037.929841][T25122]  ? up_write+0xa1/0x190
[ 2037.934053][T25122]  ? dup_mm+0x300/0x300
[ 2037.938266][T25122]  __x64_sys_clone+0x246/0x2b0
[ 2037.943021][T25122]  ? __ia32_sys_vfork+0x110/0x110
[ 2037.948027][T25122]  ? do_user_addr_fault+0x55c/0x9f0
[ 2037.953205][T25122]  do_syscall_64+0xcb/0x150
[ 2037.957693][T25122]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2037.963565][T25122] RIP: 0033:0x45ff89
[ 2037.967429][T25122] Code: ff 48 85 f6 0f 84 87 8a fb ff 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 0f 8c 5e 8a fb ff 74 01 c3 31 ed 48 f7 c7 00 00 01 00 75
[ 2037.987015][T25122] RSP: 002b:00007ffdf58749c8 EFLAGS: 00000202 ORIG_RAX: 0000000000000038
[ 2037.995403][T25122] RAX: ffffffffffffffda RBX: 00007f91d3e55700 RCX: 000000000045ff89
[ 2038.003345][T25122] RDX: 00007f91d3e559d0 RSI: 00007f91d3e54db0 RDI: 00000000003d0f00
[ 2038.011389][T25122] RBP: 00007ffdf5874bf0 R08: 00007f91d3e55700 R09: 00007f91d3e55700
[ 2038.019331][T25122] R10: 00007f91d3e559d0 R11: 0000000000000202 R12: 0000000000000000
[ 2038.027287][T25122] R13: 00007ffdf5874a7f R14: 00007f91d3e559c0 R15: 000000000118d08c
[ 2038.041849][T25122] Mem-Info:
[ 2038.045224][T25122] active_anon:1409134 inactive_anon:12080 isolated_anon:0
[ 2038.045224][T25122]  active_file:204 inactive_file:313 isolated_file:76
[ 2038.045224][T25122]  unevictable:4 dirty:5 writeback:0 unstable:0
[ 2038.045224][T25122]  slab_reclaimable:8210 slab_unreclaimable:81974
[ 2038.045224][T25122]  mapped:56555 shmem:6894 pagetables:36124 bounce:0
[ 2038.045224][T25122]  free:10233 free_pcp:39 free_cma:0
[ 2038.091209][T25122] Node 0 active_anon:5624636kB inactive_anon:48320kB active_file:816kB inactive_file:1552kB unevictable:16kB isolated(anon):0kB isolated(file):304kB mapped:226420kB dirty:20kB writeback:0kB shmem:27576kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2038.132133][T25122] DMA free:15904kB min:24kB low:36kB high:48kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15904kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2038.284360][T25122] lowmem_reserve[]: 0 2912 6416 6416
[ 2038.297228][T25122] DMA32 free:18388kB min:4644kB low:7624kB high:10604kB active_anon:2943472kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:0kB writepending:0kB present:3129332kB managed:2983760kB mlocked:0kB kernel_stack:3392kB pagetables:2500kB bounce:0kB free_pcp:488kB local_pcp:488kB free_cma:0kB
[ 2038.329327][T25122] lowmem_reserve[]: 0 0 3504 3504
[ 2038.334816][T25122] Normal free:7496kB min:9688kB low:13276kB high:16864kB active_anon:2688024kB inactive_anon:48320kB active_file:3244kB inactive_file:3196kB unevictable:16kB writepending:20kB present:4718592kB managed:3588928kB mlocked:16kB kernel_stack:39232kB pagetables:141996kB bounce:0kB free_pcp:48kB local_pcp:0kB free_cma:0kB
[ 2038.372099][T25122] lowmem_reserve[]: 0 0 0 0
[ 2038.377179][T25122] DMA: 0*4kB 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (U) 3*4096kB (M) = 15904kB
[ 2038.414455][T25122] DMA32: 14*4kB (UH) 4*8kB (U) 23*16kB (UH) 116*32kB (UMH) 104*64kB (UMH) 31*128kB (UMH) 4*256kB (UM) 0*512kB 1*1024kB (M) 1*2048kB (M) 0*4096kB = 18888kB
[ 2038.468387][T25122] Normal: 739*4kB (UMEH) 222*8kB (UMEH) 151*16kB (UMEH) 23*32kB (UMH) 16*64kB (MH) 6*128kB (MH) 1*256kB (M) 1*512kB (M) 0*1024kB 0*2048kB 0*4096kB = 10444kB
[ 2038.500739][T25122] 7270 total pagecache pages
[ 2038.505749][T25122] 0 pages in swap cache
[ 2038.509874][T25122] Swap cache stats: add 0, delete 0, find 0/0
[ 2038.522050][T25122] Free swap  = 0kB
[ 2038.526372][T25122] Total swap = 0kB
[ 2038.531352][T25122] 1965979 pages RAM
[ 2038.536102][T25122] 0 pages HighMem/MovableOnly
[ 2038.542447][T25122] 318831 pages reserved
[ 2038.546922][T25122] 0 pages cma reserved
[ 2038.551550][T25122] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/,task=syz-executor.4,pid=25119,uid=0
09:21:27 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a00000dff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:21:27 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a008003ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 2038.809664][T25124] syz-executor.1 invoked oom-killer: gfp_mask=0x500cc2(GFP_HIGHUSER|__GFP_ACCOUNT), order=0, oom_score_adj=1000
[ 2038.822912][T25124] CPU: 0 PID: 25124 Comm: syz-executor.1 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2038.833072][T25124] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2038.843410][T25124] Call Trace:
[ 2038.846786][T25124]  dump_stack+0x1b0/0x21e
[ 2038.851632][T25124]  ? devkmsg_release+0x11c/0x11c
[ 2038.856554][T25124]  ? ___ratelimit+0x3bf/0x560
[ 2038.861331][T25124]  ? show_regs_print_info+0x12/0x12
[ 2038.866526][T25124]  ? _raw_spin_lock+0xa1/0x170
[ 2038.871560][T25124]  ? radix_tree_cpu_dead+0x160/0x160
[ 2038.876980][T25124]  dump_header+0xdb/0x700
[ 2038.881359][T25124]  oom_kill_process+0xd3/0x280
[ 2038.886220][T25124]  out_of_memory+0x5b6/0x890
[ 2038.890937][T25124]  ? unregister_oom_notifier+0x20/0x20
[ 2038.896490][T25124]  __alloc_pages_slowpath+0x17bc/0x1cb0
[ 2038.902605][T25124]  ? get_page_from_freelist+0x7c0/0x7c0
[ 2038.908331][T25124]  ? __zone_watermark_ok+0x91/0x280
[ 2038.913626][T25124]  __alloc_pages_nodemask+0x5cb/0x7c0
[ 2038.919390][T25124]  ? gfp_pfmemalloc_allowed+0x130/0x130
[ 2038.925357][T25124]  ? copy_page_from_iter+0x3f3/0x660
[ 2038.931123][T25124]  pipe_write+0x4ae/0x1220
[ 2038.935547][T25124]  ? pipe_read+0xc80/0xc80
[ 2038.940547][T25124]  ? avc_has_perm+0x15f/0x260
[ 2038.945596][T25124]  ? init_wait_entry+0xd0/0xd0
[ 2038.951059][T25124]  ? avc_has_perm_noaudit+0x3f0/0x3f0
[ 2038.957465][T25124]  ? security_file_alloc+0x32/0x200
[ 2038.963874][T25124]  ? iov_iter_init+0x83/0x160
[ 2038.968739][T25124]  __vfs_write+0x579/0x700
[ 2038.973256][T25124]  ? __kernel_write+0x340/0x340
[ 2038.978214][T25124]  ? security_file_permission+0x128/0x300
[ 2038.983943][T25124]  vfs_write+0x217/0x4f0
[ 2038.988711][T25124]  ksys_write+0x168/0x2a0
[ 2038.993053][T25124]  ? __ia32_sys_read+0x80/0x80
[ 2038.997829][T25124]  do_syscall_64+0xcb/0x150
[ 2039.002458][T25124]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2039.008451][T25124] RIP: 0033:0x45d5b9
[ 2039.012614][T25124] Code: Bad RIP value.
[ 2039.016945][T25124] RSP: 002b:00007f91d3e96c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 2039.025700][T25124] RAX: ffffffffffffffda RBX: 0000000000036780 RCX: 000000000045d5b9
[ 2039.033850][T25124] RDX: 0000000041395527 RSI: 0000000020000340 RDI: 0000000000000004
[ 2039.042824][T25124] RBP: 000000000118cf80 R08: 0000000000000000 R09: 0000000000000000
[ 2039.050998][T25124] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118cf4c
[ 2039.058976][T25124] R13: 00007ffdf5874a7f R14: 00007f91d3e979c0 R15: 000000000118cf4c
[ 2039.069872][T25124] Mem-Info:
[ 2039.073084][T25124] active_anon:1409261 inactive_anon:12080 isolated_anon:0
[ 2039.073084][T25124]  active_file:61 inactive_file:121 isolated_file:0
[ 2039.073084][T25124]  unevictable:4 dirty:3 writeback:1 unstable:0
[ 2039.073084][T25124]  slab_reclaimable:8199 slab_unreclaimable:82050
[ 2039.073084][T25124]  mapped:56184 shmem:6893 pagetables:36071 bounce:0
[ 2039.073084][T25124]  free:10655 free_pcp:7 free_cma:0
[ 2039.116321][T25124] Node 0 active_anon:5637044kB inactive_anon:48320kB active_file:244kB inactive_file:752kB unevictable:16kB isolated(anon):0kB isolated(file):0kB mapped:225036kB dirty:12kB writeback:4kB shmem:27572kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2039.150275][T25124] DMA free:15904kB min:24kB low:36kB high:48kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15904kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2039.181714][T25124] lowmem_reserve[]: 0 2912 6416 6416
[ 2039.187691][T25124] DMA32 free:18520kB min:4644kB low:7624kB high:10604kB active_anon:2943752kB inactive_anon:0kB active_file:4kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2983760kB mlocked:0kB kernel_stack:3392kB pagetables:2496kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2039.218771][T25124] lowmem_reserve[]: 0 0 3504 3504
[ 2039.224243][T25124] Normal free:5492kB min:5592kB low:9180kB high:12768kB active_anon:2695308kB inactive_anon:48320kB active_file:264kB inactive_file:244kB unevictable:16kB writepending:0kB present:4718592kB managed:3588928kB mlocked:16kB kernel_stack:39296kB pagetables:141788kB bounce:0kB free_pcp:252kB local_pcp:0kB free_cma:0kB
[ 2039.258689][T25124] lowmem_reserve[]: 0 0 0 0
[ 2039.265707][T25124] DMA: 0*4kB 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (U) 3*4096kB (M) = 15904kB
[ 2039.281031][T25124] DMA32: 17*4kB (UMH) 5*8kB (UM) 31*16kB (UMH) 115*32kB (UH) 104*64kB (UMH) 31*128kB (UMH) 4*256kB (UM) 0*512kB 1*1024kB (M) 1*2048kB (M) 0*4096kB = 19004kB
[ 2039.299817][T25124] Normal: 102*4kB (UMEH) 99*8kB (UMEH) 104*16kB (UMEH) 15*32kB (UMH) 17*64kB (MH) 6*128kB (MH) 1*256kB (M) 1*512kB (M) 0*1024kB 0*2048kB 0*4096kB = 5968kB
[ 2039.317061][T25124] 6970 total pagecache pages
[ 2039.321734][T25124] 0 pages in swap cache
[ 2039.326097][T25124] Swap cache stats: add 0, delete 0, find 0/0
[ 2039.334372][T25124] Free swap  = 0kB
[ 2039.338722][T25124] Total swap = 0kB
[ 2039.342729][T25124] 1965979 pages RAM
[ 2039.346753][T25124] 0 pages HighMem/MovableOnly
[ 2039.351744][T25124] 318831 pages reserved
[ 2039.356234][T25124] 0 pages cma reserved
09:21:27 executing program 4 (fault-call:14 fault-nth:71):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

[ 2039.360465][T25124] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/,task=syz-executor.1,pid=22847,uid=0
[ 2039.375773][T25124] Out of memory: Killed process 22847 (syz-executor.1) total-vm:85348kB, anon-rss:16568kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:160kB oom_score_adj:1000
[ 2039.396564][   T23] oom_reaper: reaped process 22847 (syz-executor.1), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[ 2039.792612][T25139] syz-executor.0 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=3, oom_score_adj=1000
[ 2039.808062][T25139] CPU: 0 PID: 25139 Comm: syz-executor.0 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2039.819918][T25139] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2039.831070][T25139] Call Trace:
[ 2039.835349][T25139]  dump_stack+0x1b0/0x21e
[ 2039.841388][T25139]  ? devkmsg_release+0x11c/0x11c
[ 2039.847813][T25139]  ? ___ratelimit+0x3bf/0x560
[ 2039.852799][T25139]  ? show_regs_print_info+0x12/0x12
[ 2039.858835][T25139]  ? _raw_spin_lock+0xa1/0x170
[ 2039.863905][T25139]  ? radix_tree_cpu_dead+0x160/0x160
[ 2039.870267][T25139]  dump_header+0xdb/0x700
[ 2039.874699][T25139]  oom_kill_process+0xd3/0x280
[ 2039.879732][T25139]  out_of_memory+0x5b6/0x890
[ 2039.884576][T25139]  ? unregister_oom_notifier+0x20/0x20
[ 2039.890508][T25139]  __alloc_pages_slowpath+0x17bc/0x1cb0
[ 2039.896067][T25139]  ? get_page_from_freelist+0x7c0/0x7c0
[ 2039.901628][T25139]  ? __zone_watermark_ok+0x91/0x280
[ 2039.906928][T25139]  __alloc_pages_nodemask+0x5cb/0x7c0
[ 2039.912575][T25139]  ? gfp_pfmemalloc_allowed+0x130/0x130
[ 2039.918303][T25139]  ? copy_process+0x5c9/0x52c0
[ 2039.923592][T25139]  ? copy_process+0x5c9/0x52c0
[ 2039.928535][T25139]  ? kmem_cache_alloc+0x1d5/0x250
[ 2039.934786][T25139]  copy_process+0x612/0x52c0
[ 2039.940235][T25139]  ? __memcg_kmem_charge_memcg+0x130/0x130
[ 2039.946937][T25139]  ? get_mem_cgroup_from_mm+0x27b/0x2c0
[ 2039.953651][T25139]  ? mem_cgroup_commit_charge+0x198/0x240
[ 2039.960469][T25139]  ? _raw_spin_lock+0xa1/0x170
[ 2039.965632][T25139]  ? mem_cgroup_try_charge_delay+0x10/0x10
[ 2039.974781][T25139]  ? fork_idle+0x290/0x290
[ 2039.980694][T25139]  ? __lru_cache_add+0x1a1/0x1f0
[ 2039.986633][T25139]  ? _raw_spin_unlock+0x5/0x20
[ 2039.991781][T25139]  ? handle_mm_fault+0x916/0x4140
[ 2039.997245][T25139]  _do_fork+0x180/0x8f0
[ 2040.002474][T25139]  ? finish_fault+0x230/0x230
[ 2040.008443][T25139]  ? up_write+0xa1/0x190
[ 2040.013023][T25139]  ? dup_mm+0x300/0x300
[ 2040.018822][T25139]  __x64_sys_clone+0x246/0x2b0
[ 2040.024733][T25139]  ? __ia32_sys_vfork+0x110/0x110
[ 2040.030241][T25139]  ? do_user_addr_fault+0x55c/0x9f0
[ 2040.035714][T25139]  do_syscall_64+0xcb/0x150
[ 2040.041243][T25139]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2040.049519][T25139] RIP: 0033:0x45ff89
[ 2040.054215][T25139] Code: Bad RIP value.
[ 2040.058913][T25139] RSP: 002b:00007ffd413078b8 EFLAGS: 00000202 ORIG_RAX: 0000000000000038
[ 2040.069078][T25139] RAX: ffffffffffffffda RBX: 00007fc344b27700 RCX: 000000000045ff89
[ 2040.078412][T25139] RDX: 00007fc344b279d0 RSI: 00007fc344b26db0 RDI: 00000000003d0f00
[ 2040.088747][T25139] RBP: 00007ffd41307ae0 R08: 00007fc344b27700 R09: 00007fc344b27700
[ 2040.100543][T25139] R10: 00007fc344b279d0 R11: 0000000000000202 R12: 0000000000000000
[ 2040.110951][T25139] R13: 00007ffd4130796f R14: 00007fc344b279c0 R15: 000000000118d08c
[ 2040.148764][T25139] Mem-Info:
[ 2040.154463][T25139] active_anon:1404804 inactive_anon:12080 isolated_anon:0
[ 2040.154463][T25139]  active_file:194 inactive_file:843 isolated_file:22
[ 2040.154463][T25139]  unevictable:4 dirty:0 writeback:0 unstable:0
[ 2040.154463][T25139]  slab_reclaimable:8199 slab_unreclaimable:82124
[ 2040.154463][T25139]  mapped:56806 shmem:6893 pagetables:36030 bounce:0
[ 2040.154463][T25139]  free:13441 free_pcp:720 free_cma:0
[ 2040.269999][T25139] Node 0 active_anon:5619316kB inactive_anon:48320kB active_file:1560kB inactive_file:7996kB unevictable:16kB isolated(anon):0kB isolated(file):384kB mapped:231224kB dirty:0kB writeback:0kB shmem:27572kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2040.348510][T25139] DMA free:15904kB min:24kB low:36kB high:48kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15904kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2040.379463][T25139] lowmem_reserve[]: 0 2912 6416 6416
09:21:29 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r3, 0x0)
ioctl$CHAR_RAW_IOMIN(r3, 0x1278, &(0x7f0000000080))
sched_setattr(0x0, 0x0, 0x0)
sendmsg$TIPC_NL_NET_GET(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000003c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="f0000000", @ANYRES16=0x0, @ANYBLOB="000129bd7000fddbdf250e000000600002801c0003800800020004000000080001000900000008000200fbffffff080002ef857f014177b42f00b0000000080002004100000024000380080001007f00000008000100060000000800010000800000080002001f00000004000400040004000400040038000280340003800800010080000000080002000900000008000100f8ffffff080001004506000008000100090000000800020000000000440007800c00030001000000000000000800ece6010000800c000300e10a0000000000000c000300c30000000000000008000200030000000c000400"], 0xf0}, 0x1, 0x0, 0x0, 0x1}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:21:29 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
write(r1, &(0x7f0000000340), 0x41395527)
r2 = socket$inet_icmp(0x2, 0x2, 0x1)
vmsplice(r2, &(0x7f0000000600)=[{&(0x7f0000000940)="1257858436968e41ddfd8e77a0957fef801c5af3df2de2d03068cb1e3721c3e1a0e9ae5d554ea8714896017522cdd5e09a7de27b79ff3b881e206545bff861edb7c1cbe91a4ba76ff6fd0df12969f935c25e25ed2521327fa51a3a5f341b4f32372551c7fb8ba371d2457949dde698e64c6cac3233bafb01ea261015bdc4f78486a84a1b9cfb4cc312f205ffc52e22837157e25c16addbb95ba149c1f25fee80189fc64e085efd6b350a6829ec47b0c75472b6db", 0x4d}, {&(0x7f0000000700)="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", 0x7b}, {&(0x7f0000000400)="d2a88662eff534caba6c079a57098aae20ebac08bd675ffff6da0511d4b0f82560d6bd5742dd0a7dfda7a9c69571f3e3645e34acd42dbd054cb462ccb5738291556a82f38322084c49b78cdab2c25fddd2c87e4a82166a544c72edadb5420eb9b1ddac958e32ec2e6a1b0d510f621f3455a3bcf6ec8f658ad6a6e0a17277fd69f280b88fa01899fd713b9d55a1baffd549924c38c909b88851d06cee07eee3d054ba28db25fa3f806059dc7c4cc8ecb470", 0xb1}, {&(0x7f00000004c0)="1a7dce437a183c69b139a12e5b80831c4b9e22296b0914e89b52a4f07357c9b1b949f20e9b079a7afc1da336ca03d09c0f3bfc48290b7d7476e8050b0da5da44976ac9cf15fd1d8bd047df8b10ef553ae1aa1d4fda087591f21854587006efad716ad4ae5dfd6891e64268b5ad2f801b40ddfc60b1abec5c9659e68fb3a1b3bae5ba7ea0fcec27c620895021c5348e9c78f364dec82e544c7a13c9d139c6b218f5f944d52129510abc2d3b5f195be69eafc8d663b63a29af789f5c596121d3a9", 0xc0}, {&(0x7f0000000580)="5627a0dd6b76fc884066d449d7314bc480d909de05f23a73880c6453fe09e9f5809557880902d4eebad04b7c7348dfc67c80d6561438238bdf1c17cd1ae125bf6ea3e4ca335fa8df998f29d2530adb702d32fa31db300041002cc7", 0x5b}], 0x5, 0xc)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0002ffdbdf250b0000000c00fe8006000400100000000000000062cce45637866f76317b04e648ddc1ef8593891cc67034d87693ffffffffffffff27d6edd3956f466bb9207ade89efbef681b80c1304e95a56088601c501e74e2c681919173eca3764a4399e7c64015b63006ad9bc4f638784b50aaa39fede1ecf32078401ac5e0d8e27559be8ab3b65f18c6b1c6d05d311ffda1dd8df2922cb"], 0x20}}, 0x0)

[ 2040.385960][T25139] DMA32 free:21388kB min:4644kB low:7624kB high:10604kB active_anon:2932852kB inactive_anon:4kB active_file:564kB inactive_file:5856kB unevictable:0kB writepending:0kB present:3129332kB managed:2983760kB mlocked:0kB kernel_stack:3456kB pagetables:2716kB bounce:0kB free_pcp:692kB local_pcp:252kB free_cma:0kB
[ 2040.427603][T25148]  loop3: p1 p2 < > p3 p4 < p5 >
[ 2040.451765][T25148] loop3: partition table partially beyond EOD, truncated
[ 2040.507011][T25160] FAULT_INJECTION: forcing a failure.
[ 2040.507011][T25160] name failslab, interval 1, probability 0, space 0, times 0
[ 2040.510966][T25148] loop3: p1 start 218103818 is beyond EOD, truncated
[ 2040.529433][T25160] CPU: 1 PID: 25160 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2040.540967][T25160] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2040.552331][T25160] Call Trace:
[ 2040.555916][T25160]  dump_stack+0x1b0/0x21e
[ 2040.560793][T25160]  ? devkmsg_release+0x11c/0x11c
[ 2040.566338][T25160]  ? show_regs_print_info+0x12/0x12
[ 2040.572240][T25160]  ? cred_has_capability+0x18c/0x3f0
[ 2040.577720][T25160]  ? cred_has_capability+0x2b2/0x3f0
[ 2040.584417][T25160]  should_fail+0x6fb/0x860
[ 2040.589580][T25160]  ? setup_fault_attr+0x2b0/0x2b0
[ 2040.594884][T25160]  ? slab_free_freelist_hook+0xd0/0x150
[ 2040.600732][T25160]  ? cap_capable+0x23f/0x280
[ 2040.605491][T25160]  ? proc_pid_stack+0x1d5/0x1f0
[ 2040.611150][T25160]  ? proc_pid_stack+0x8e/0x1f0
[ 2040.616426][T25160]  should_failslab+0x5/0x20
[ 2040.621865][T25160]  kmem_cache_alloc_trace+0x39/0x270
[ 2040.628523][T25160]  proc_pid_stack+0x8e/0x1f0
[ 2040.634310][T25160]  proc_single_show+0xd3/0x130
[ 2040.639681][T25160]  seq_read+0x4aa/0xd30
[ 2040.644074][T25160]  do_iter_read+0x43b/0x550
[ 2040.649774][T25160]  do_preadv+0x1f4/0x330
[ 2040.654536][T25160]  ? do_writev+0x560/0x560
[ 2040.659488][T25160]  ? security_file_permission+0x128/0x300
[ 2040.666476][T25160]  ? __sb_end_write+0xa4/0xf0
[ 2040.671878][T25160]  ? vfs_write+0x427/0x4f0
[ 2040.676712][T25160]  do_syscall_64+0xcb/0x150
[ 2040.681884][T25160]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2040.688073][T25160] RIP: 0033:0x45d5b9
[ 2040.692519][T25160] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2040.714042][T25160] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 2040.723581][T25160] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 2040.731755][T25160] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 2040.740811][T25160] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 2040.750295][T25160] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000047
[ 2040.759460][T25160] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
09:21:29 executing program 4 (fault-call:14 fault-nth:72):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:21:29 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r4 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
fcntl$addseals(r4, 0x409, 0x80000000a)
fcntl$F_SET_RW_HINT(r4, 0x40c, &(0x7f0000000080)=0x3)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x20, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x20}}, 0x0)

[ 2040.875630][T25148] loop3: p2 start 25 is beyond EOD, truncated
[ 2040.888263][T25139] lowmem_reserve[]: 0 0 3504 3504
[ 2040.913412][T25139] Normal free:12544kB min:5592kB low:9180kB high:12768kB active_anon:2681036kB inactive_anon:48316kB active_file:3624kB inactive_file:3632kB unevictable:16kB writepending:200kB present:4718592kB managed:3588928kB mlocked:16kB kernel_stack:39328kB pagetables:141748kB bounce:0kB free_pcp:2760kB local_pcp:1460kB free_cma:0kB
[ 2040.920935][T25148] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 2040.957521][T25139] lowmem_reserve[]: 0 0 0 0
[ 2040.962744][T25148] loop3: p4 size 2 extends beyond EOD, truncated
[ 2040.963392][T25148] loop3: p5 start 218103818 is beyond EOD, truncated
[ 2040.980434][T25139] DMA: 0*4kB 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (U) 3*4096kB (M) = 15904kB
[ 2041.006047][T25139] DMA32: 202*4kB (UMH) 176*8kB (UM) 60*16kB (UMH) 119*32kB (UMH) 124*64kB (UMH) 52*128kB (UMH) 4*256kB (UM) 0*512kB 1*1024kB (M) 1*2048kB (M) 0*4096kB = 25672kB
[ 2041.040895][T25139] Normal: 259*4kB (MEH) 250*8kB (MEH) 147*16kB (UMEH) 99*32kB (UMH) 29*64kB (UMH) 20*128kB (MH) 1*256kB (M) 1*512kB (M) 0*1024kB 0*2048kB 0*4096kB = 13740kB
[ 2041.062961][T25139] 10260 total pagecache pages
[ 2041.068742][T25139] 0 pages in swap cache
[ 2041.073864][T25139] Swap cache stats: add 0, delete 0, find 0/0
[ 2041.081761][T25139] Free swap  = 0kB
[ 2041.087711][T25139] Total swap = 0kB
[ 2041.094658][T25139] 1965979 pages RAM
[ 2041.100130][T25139] 0 pages HighMem/MovableOnly
[ 2041.106298][T25139] 318831 pages reserved
[ 2041.112078][T25139] 0 pages cma reserved
[ 2041.117075][T25139] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/,task=syz-executor.5,pid=23943,uid=0
[ 2041.175173][T25180] FAULT_INJECTION: forcing a failure.
[ 2041.175173][T25180] name failslab, interval 1, probability 0, space 0, times 0
[ 2041.189867][T25180] CPU: 0 PID: 25180 Comm: syz-executor.4 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2041.204991][T25180] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2041.216272][T25180] Call Trace:
[ 2041.219926][T25180]  dump_stack+0x1b0/0x21e
[ 2041.224656][T25180]  ? devkmsg_release+0x11c/0x11c
[ 2041.230477][T25180]  ? show_regs_print_info+0x12/0x12
[ 2041.236495][T25180]  ? cred_has_capability+0x18c/0x3f0
[ 2041.242801][T25180]  ? cred_has_capability+0x2b2/0x3f0
[ 2041.248479][T25180]  should_fail+0x6fb/0x860
[ 2041.253538][T25180]  ? setup_fault_attr+0x2b0/0x2b0
[ 2041.259167][T25180]  ? slab_free_freelist_hook+0xd0/0x150
[ 2041.265665][T25180]  ? cap_capable+0x23f/0x280
[ 2041.271263][T25180]  ? proc_pid_stack+0x1d5/0x1f0
[ 2041.277337][T25180]  ? proc_pid_stack+0x8e/0x1f0
[ 2041.283030][T25180]  should_failslab+0x5/0x20
[ 2041.288057][T25180]  kmem_cache_alloc_trace+0x39/0x270
[ 2041.294410][T25180]  proc_pid_stack+0x8e/0x1f0
[ 2041.299296][T25180]  proc_single_show+0xd3/0x130
[ 2041.304931][T25180]  seq_read+0x4aa/0xd30
[ 2041.314369][T25180]  do_iter_read+0x43b/0x550
[ 2041.319550][T25180]  do_preadv+0x1f4/0x330
[ 2041.324552][T25180]  ? do_writev+0x560/0x560
[ 2041.329729][T25180]  ? security_file_permission+0x128/0x300
[ 2041.336115][T25180]  ? __sb_end_write+0xa4/0xf0
[ 2041.341376][T25180]  ? vfs_write+0x427/0x4f0
[ 2041.346310][T25180]  do_syscall_64+0xcb/0x150
[ 2041.351727][T25180]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2041.358108][T25180] RIP: 0033:0x45d5b9
[ 2041.362085][T25180] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2041.384099][T25180] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 2041.393959][T25180] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 2041.402714][T25180] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 2041.412046][T25180] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 2041.421566][T25180] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000048
[ 2041.433065][T25180] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
[ 2041.551887][T25178] ==================================================================
[ 2041.559986][T25139] Out of memory: Killed process 23943 (syz-executor.5) total-vm:85348kB, anon-rss:16564kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:160kB oom_score_adj:1000
[ 2041.560980][T25178] BUG: KASAN: out-of-bounds in unwind_next_frame+0x151d/0x22b0
[ 2041.560986][T25178] Read of size 8 at addr ffff8881d76b6af8 by task syz-executor.1/25178
[ 2041.560987][T25178] 
[ 2041.560997][T25178] CPU: 0 PID: 25178 Comm: syz-executor.1 Not tainted 5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2041.561000][T25178] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2041.561002][T25178] Call Trace:
[ 2041.561015][T25178]  dump_stack+0x1b0/0x21e
[ 2041.629432][T25178]  ? show_regs_print_info+0x12/0x12
[ 2041.635807][T25178]  ? __schedule+0x8ae/0xe30
[ 2041.640996][T25178]  ? printk+0xc0/0x104
[ 2041.646508][T25178]  print_address_description+0x96/0x5d0
[ 2041.652505][T25178]  ? devkmsg_release+0x11c/0x11c
[ 2041.658752][T25178]  ? unwind_get_return_address+0x48/0x90
[ 2041.664371][T25178]  ? arch_stack_walk+0x98/0xe0
[ 2041.669205][T25178]  ? preempt_schedule+0xeb/0x110
[ 2041.678236][T25178]  ? schedule_preempt_disabled+0x20/0x20
[ 2041.684615][T25178]  __kasan_report+0x14b/0x1c0
[ 2041.690016][T25178]  ? unwind_next_frame+0x151d/0x22b0
[ 2041.695903][T25178]  kasan_report+0x27/0x50
[ 2041.700529][T25178]  unwind_next_frame+0x151d/0x22b0
[ 2041.706171][T25178]  ? retint_kernel+0x1b/0x1b
[ 2041.711581][T25178]  ? unwind_get_return_address_ptr+0x130/0x130
[ 2041.718361][T25178]  ? unwind_next_frame+0x22b0/0x22b0
[ 2041.724486][T25178]  ? retint_kernel+0x1b/0x1b
[ 2041.729430][T25178]  ? vsnprintf+0x1ba3/0x1c50
[ 2041.734213][T25178]  ? __schedule+0x8a6/0xe30
[ 2041.739196][T25178]  ? in_sched_functions+0x9/0x40
[ 2041.745572][T25178]  ? stack_trace_save_tsk+0x470/0x470
[ 2041.751429][T25178]  arch_stack_walk+0xb4/0xe0
[ 2041.756486][T25178]  ? retint_kernel+0x1b/0x1b
[ 2041.761339][T25178]  stack_trace_save_tsk+0x2d5/0x470
[ 2041.766959][T25178]  ? stack_trace_consume_entry+0x230/0x230
[ 2041.773249][T25178]  ? _raw_spin_lock+0xa1/0x170
[ 2041.778429][T25178]  ? __mutex_lock_interruptible_slowpath+0x10/0x10
[ 2041.785443][T25178]  ? __ptrace_may_access+0x287/0x4f0
[ 2041.791862][T25178]  proc_pid_stack+0x12f/0x1f0
[ 2041.797135][T25178]  proc_single_show+0xd3/0x130
[ 2041.802199][T25178]  seq_read+0x4aa/0xd30
[ 2041.806655][T25178]  do_iter_read+0x43b/0x550
[ 2041.811161][T25178]  do_preadv+0x1f4/0x330
[ 2041.816069][T25178]  ? do_writev+0x560/0x560
[ 2041.820705][T25178]  ? _copy_to_user+0x8e/0xb0
[ 2041.825648][T25178]  ? put_timespec64+0x106/0x150
[ 2041.830578][T25178]  ? ktime_get_raw+0x130/0x130
[ 2041.836107][T25178]  ? get_timespec64+0x1c0/0x1c0
[ 2041.841380][T25178]  ? __se_sys_futex+0x31d/0x440
[ 2041.846964][T25178]  ? __x64_sys_clock_gettime+0x1c5/0x220
[ 2041.854289][T25178]  do_syscall_64+0xcb/0x150
[ 2041.859040][T25178]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2041.865004][T25178] RIP: 0033:0x45d5b9
[ 2041.869090][T25178] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2041.890422][T25178] RSP: 002b:00007f91d3e54c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 2041.899953][T25178] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 2041.909043][T25178] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000005
[ 2041.917589][T25178] RBP: 000000000118d0d0 R08: 0000000000000000 R09: 0000000000000000
[ 2041.926665][T25178] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000118d08c
[ 2041.936402][T25178] R13: 00007ffdf5874a7f R14: 00007f91d3e559c0 R15: 000000000118d08c
[ 2041.950362][T25178] 
[ 2041.953720][T25178] The buggy address belongs to the page:
[ 2041.960552][T25178] page:ffffea00075dad80 refcount:0 mapcount:0 mapping:0000000000000000 index:0x0
[ 2041.970689][T25178] flags: 0x8000000000000000()
[ 2041.975730][T25178] raw: 8000000000000000 dead000000000100 dead000000000122 0000000000000000
[ 2041.984908][T25178] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 2041.994858][T25178] page dumped because: kasan: bad access detected
[ 2042.002607][T25178] 
[ 2042.005272][T25178] Memory state around the buggy address:
[ 2042.011147][T25178]  ffff8881d76b6980: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 2042.020602][T25178]  ffff8881d76b6a00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 2042.029587][T25178] >ffff8881d76b6a80: f1 f1 f1 f1 00 00 00 00 00 00 00 f3 f3 f3 f3 f3
[ 2042.039197][T25178]                                                                 ^
09:21:31 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x4000000)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:21:31 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f00000002c0)={'syz', 0x2, 0x6c}, 0x0, 0x0, 0xfffffffffffffffb)
keyctl$update(0x2, r3, 0x0, 0x0)
keyctl$setperm(0x5, r3, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x20, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x20}}, 0x0)

09:21:31 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000080)={0x3c, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x20, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @private0}]}]}, 0x3c}}, 0x2400c000)

09:21:31 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a000204ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:21:31 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a00000eff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:21:31 executing program 4 (fault-call:14 fault-nth:73):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

[ 2042.047923][T25178]  ffff8881d76b6b00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 2042.058249][T25178]  ffff8881d76b6b80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 2042.067983][T25178] ==================================================================
[ 2042.077087][T25178] Disabling lock debugging due to kernel taint
[ 2042.285992][T25207] FAULT_INJECTION: forcing a failure.
[ 2042.285992][T25207] name failslab, interval 1, probability 0, space 0, times 0
[ 2042.300460][T25207] CPU: 1 PID: 25207 Comm: syz-executor.4 Tainted: G    B             5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2042.313044][T25207] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2042.324548][T25207] Call Trace:
[ 2042.328446][T25207]  dump_stack+0x1b0/0x21e
[ 2042.333005][T25207]  ? retint_kernel+0x1b/0x1b
[ 2042.338519][T25207]  ? show_regs_print_info+0x12/0x12
[ 2042.344238][T25207]  should_fail+0x6fb/0x860
[ 2042.349058][T25207]  ? setup_fault_attr+0x2b0/0x2b0
[ 2042.354159][T25207]  ? slab_free_freelist_hook+0xd0/0x150
[ 2042.359867][T25207]  ? cap_capable+0x23f/0x280
[ 2042.365447][T25207]  ? proc_pid_stack+0x1d5/0x1f0
[ 2042.371077][T25207]  ? proc_pid_stack+0x8e/0x1f0
[ 2042.376254][T25207]  should_failslab+0x5/0x20
[ 2042.381756][T25207]  kmem_cache_alloc_trace+0x39/0x270
[ 2042.387480][T25207]  proc_pid_stack+0x8e/0x1f0
[ 2042.392259][T25207]  proc_single_show+0xd3/0x130
[ 2042.397503][T25207]  seq_read+0x4aa/0xd30
[ 2042.402005][T25207]  do_iter_read+0x43b/0x550
[ 2042.406990][T25207]  do_preadv+0x1f4/0x330
[ 2042.411623][T25207]  ? do_writev+0x560/0x560
[ 2042.416899][T25207]  ? vfs_write+0x3ea/0x4f0
[ 2042.422852][T25207]  ? __sb_end_write+0xa4/0xf0
[ 2042.429945][T25207]  ? vfs_write+0x427/0x4f0
[ 2042.436910][T25207]  do_syscall_64+0xcb/0x150
[ 2042.444453][T25207]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2042.453780][T25207] RIP: 0033:0x45d5b9
[ 2042.459241][T25207] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2042.484870][T25207] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 2042.494356][T25207] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 2042.504333][T25207] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 2042.512929][T25207] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 2042.521072][T25207] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000049
[ 2042.530786][T25207] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
[ 2042.624959][T25190] syz-executor.0 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=3, oom_score_adj=1000
[ 2042.639779][T25190] CPU: 1 PID: 25190 Comm: syz-executor.0 Tainted: G    B             5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2042.653285][T25190] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2042.665817][T25190] Call Trace:
[ 2042.670416][T25190]  dump_stack+0x1b0/0x21e
[ 2042.678276][T25190]  ? devkmsg_release+0x11c/0x11c
[ 2042.684469][T25190]  ? ___ratelimit+0x3bf/0x560
[ 2042.689606][T25190]  ? show_regs_print_info+0x12/0x12
[ 2042.694900][T25190]  ? _raw_spin_lock+0xa1/0x170
[ 2042.700414][T25190]  ? radix_tree_cpu_dead+0x160/0x160
[ 2042.706239][T25190]  dump_header+0xdb/0x700
[ 2042.711349][T25190]  oom_kill_process+0xd3/0x280
[ 2042.717113][T25190]  out_of_memory+0x5b6/0x890
[ 2042.721897][T25190]  ? unregister_oom_notifier+0x20/0x20
[ 2042.728022][T25190]  __alloc_pages_slowpath+0x17bc/0x1cb0
[ 2042.734110][T25190]  ? get_page_from_freelist+0x7c0/0x7c0
[ 2042.740197][T25190]  ? rmqueue+0x409/0x2230
[ 2042.745519][T25190]  ? __zone_watermark_ok+0x91/0x280
[ 2042.751905][T25190]  __alloc_pages_nodemask+0x5cb/0x7c0
[ 2042.759661][T25190]  ? __x64_sys_mprotect+0x7c/0x90
[ 2042.766181][T25190]  ? gfp_pfmemalloc_allowed+0x130/0x130
[ 2042.773774][T25190]  ? copy_process+0x5c9/0x52c0
[ 2042.779612][T25190]  ? kmem_cache_alloc+0x1d5/0x250
[ 2042.785340][T25190]  copy_process+0x612/0x52c0
[ 2042.791102][T25190]  ? __memcg_kmem_charge_memcg+0x130/0x130
[ 2042.797176][T25190]  ? get_mem_cgroup_from_mm+0x27b/0x2c0
[ 2042.803247][T25190]  ? mem_cgroup_commit_charge+0x198/0x240
[ 2042.809579][T25190]  ? _raw_spin_lock+0xa1/0x170
[ 2042.815099][T25190]  ? mem_cgroup_try_charge_delay+0x10/0x10
[ 2042.821477][T25190]  ? fork_idle+0x290/0x290
[ 2042.826419][T25190]  ? __lru_cache_add+0x1a1/0x1f0
[ 2042.831849][T25190]  ? _raw_spin_unlock+0x5/0x20
[ 2042.837840][T25190]  ? handle_mm_fault+0x916/0x4140
[ 2042.844252][T25190]  _do_fork+0x180/0x8f0
[ 2042.849958][T25190]  ? finish_fault+0x230/0x230
[ 2042.855402][T25190]  ? up_write+0xa1/0x190
[ 2042.861036][T25190]  ? dup_mm+0x300/0x300
[ 2042.865808][T25190]  __x64_sys_clone+0x246/0x2b0
[ 2042.872601][T25190]  ? __ia32_sys_vfork+0x110/0x110
[ 2042.878405][T25190]  ? do_user_addr_fault+0x55c/0x9f0
[ 2042.883924][T25190]  do_syscall_64+0xcb/0x150
[ 2042.888771][T25190]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2042.895385][T25190] RIP: 0033:0x45ff89
[ 2042.899684][T25190] Code: ff 48 85 f6 0f 84 87 8a fb ff 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 0f 8c 5e 8a fb ff 74 01 c3 31 ed 48 f7 c7 00 00 01 00 75
[ 2042.921460][T25190] RSP: 002b:00007ffd413078b8 EFLAGS: 00000202 ORIG_RAX: 0000000000000038
[ 2042.931149][T25190] RAX: ffffffffffffffda RBX: 00007fc344b06700 RCX: 000000000045ff89
[ 2042.939402][T25190] RDX: 00007fc344b069d0 RSI: 00007fc344b05db0 RDI: 00000000003d0f00
[ 2042.948692][T25190] RBP: 00007ffd41307ae0 R08: 00007fc344b06700 R09: 00007fc344b06700
[ 2042.957528][T25190] R10: 00007fc344b069d0 R11: 0000000000000202 R12: 0000000000000000
[ 2042.966374][T25190] R13: 00007ffd4130796f R14: 00007fc344b069c0 R15: 000000000118d12c
09:21:31 executing program 4 (fault-call:14 fault-nth:74):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

[ 2043.061132][T25190] Mem-Info:
[ 2043.065061][T25190] active_anon:1405717 inactive_anon:12080 isolated_anon:0
[ 2043.065061][T25190]  active_file:571 inactive_file:686 isolated_file:70
[ 2043.065061][T25190]  unevictable:4 dirty:9 writeback:0 unstable:0
[ 2043.065061][T25190]  slab_reclaimable:8169 slab_unreclaimable:82048
[ 2043.065061][T25190]  mapped:57358 shmem:6893 pagetables:36022 bounce:0
[ 2043.065061][T25190]  free:12683 free_pcp:170 free_cma:0
09:21:32 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a000604ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:21:32 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a000011ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 2043.107413][T25190] Node 0 active_anon:5623068kB inactive_anon:48320kB active_file:2284kB inactive_file:2744kB unevictable:16kB isolated(anon):0kB isolated(file):280kB mapped:229432kB dirty:36kB writeback:0kB shmem:27572kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2043.219808][T25190] DMA free:15904kB min:24kB low:36kB high:48kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15904kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2043.250896][T25190] lowmem_reserve[]: 0 2912 6416 6416
[ 2043.276206][T25190] DMA32 free:18372kB min:4644kB low:7624kB high:10604kB active_anon:2938884kB inactive_anon:4kB active_file:628kB inactive_file:884kB unevictable:0kB writepending:152kB present:3129332kB managed:2983760kB mlocked:0kB kernel_stack:3648kB pagetables:2620kB bounce:0kB free_pcp:1492kB local_pcp:708kB free_cma:0kB
[ 2043.322745][T25190] lowmem_reserve[]: 0 0 3504 3504
[ 2043.358198][T25190] Normal free:12844kB min:9688kB low:13276kB high:16864kB active_anon:2687724kB inactive_anon:48316kB active_file:1736kB inactive_file:3000kB unevictable:16kB writepending:184kB present:4718592kB managed:3588928kB mlocked:16kB kernel_stack:39168kB pagetables:141468kB bounce:0kB free_pcp:260kB local_pcp:168kB free_cma:0kB
[ 2043.495629][T25190] lowmem_reserve[]: 0 0 0 0
[ 2043.508095][T25190] DMA: 0*4kB 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (U) 3*4096kB (M) = 15904kB
[ 2043.538164][T25190] DMA32: 32*4kB (UH) 8*8kB (UM) 24*16kB (UH) 35*32kB (UMH) 92*64kB (UMH) 52*128kB (UMH) 4*256kB (UM) 0*512kB 1*1024kB (M) 1*2048kB (M) 0*4096kB = 18336kB
[ 2043.575311][T25190] Normal: 346*4kB (UMEH) 145*8kB (UMEH) 92*16kB (UMEH) 37*32kB (UMH) 20*64kB (UMH) 15*128kB (UMH) 4*256kB (UM) 1*512kB (U) 0*1024kB 0*2048kB 0*4096kB = 9936kB
[ 2043.619971][T25190] 7596 total pagecache pages
[ 2043.626706][T25190] 0 pages in swap cache
[ 2043.640355][T25190] Swap cache stats: add 0, delete 0, find 0/0
[ 2043.648979][T25190] Free swap  = 0kB
[ 2043.653319][T25190] Total swap = 0kB
[ 2043.658077][T25190] 1965979 pages RAM
[ 2043.662603][T25190] 0 pages HighMem/MovableOnly
[ 2043.668232][T25190] 318831 pages reserved
[ 2043.674289][T25190] 0 pages cma reserved
[ 2043.679182][T25190] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/,task=syz-executor.4,pid=17714,uid=0
[ 2043.696756][T25190] Out of memory: Killed process 17714 (syz-executor.4) total-vm:85480kB, anon-rss:16560kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:164kB oom_score_adj:1000
[ 2043.800961][T25217]  loop3: p1 p2 < > p3 p4 < p5 >
[ 2043.808542][T25217] loop3: partition table partially beyond EOD, truncated
[ 2043.824979][T25217] loop3: p1 start 285212682 is beyond EOD, truncated
[ 2043.836727][T25217] loop3: p2 start 25 is beyond EOD, truncated
[ 2043.856254][T25217] loop3: p3 start 4293001441 is beyond EOD, truncated
[ 2043.872370][T25217] loop3: p4 size 2 extends beyond EOD, truncated
[ 2043.879752][T25217] loop3: p5 start 285212682 is beyond EOD, truncated
09:21:32 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x5000000)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

[ 2044.012812][T25230] FAULT_INJECTION: forcing a failure.
[ 2044.012812][T25230] name failslab, interval 1, probability 0, space 0, times 0
[ 2044.027115][T25230] CPU: 1 PID: 25230 Comm: syz-executor.4 Tainted: G    B             5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2044.039813][T25230] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2044.051420][T25230] Call Trace:
[ 2044.055177][T25230]  dump_stack+0x1b0/0x21e
[ 2044.059923][T25230]  ? devkmsg_release+0x11c/0x11c
[ 2044.065034][T25230]  ? show_regs_print_info+0x12/0x12
[ 2044.070224][T25230]  ? cred_has_capability+0x18c/0x3f0
[ 2044.076271][T25230]  ? cred_has_capability+0x2b2/0x3f0
[ 2044.082228][T25230]  should_fail+0x6fb/0x860
[ 2044.086970][T25230]  ? setup_fault_attr+0x2b0/0x2b0
[ 2044.092403][T25230]  ? slab_free_freelist_hook+0xd0/0x150
[ 2044.098369][T25230]  ? cap_capable+0x23f/0x280
[ 2044.103879][T25230]  ? proc_pid_stack+0x1d5/0x1f0
[ 2044.109023][T25230]  ? proc_pid_stack+0x8e/0x1f0
[ 2044.115171][T25230]  should_failslab+0x5/0x20
[ 2044.120360][T25230]  kmem_cache_alloc_trace+0x39/0x270
[ 2044.126400][T25230]  proc_pid_stack+0x8e/0x1f0
[ 2044.130982][T25230]  proc_single_show+0xd3/0x130
[ 2044.136310][T25230]  seq_read+0x4aa/0xd30
[ 2044.142267][T25230]  do_iter_read+0x43b/0x550
[ 2044.147646][T25230]  do_preadv+0x1f4/0x330
[ 2044.152316][T25230]  ? do_writev+0x560/0x560
[ 2044.157882][T25230]  ? security_file_permission+0x128/0x300
[ 2044.167149][T25230]  ? __sb_end_write+0xa4/0xf0
[ 2044.172449][T25230]  ? vfs_write+0x427/0x4f0
[ 2044.177687][T25230]  ? do_syscall_64+0x80/0x150
[ 2044.184589][T25230]  do_syscall_64+0xcb/0x150
[ 2044.190306][T25230]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2044.196942][T25230] RIP: 0033:0x45d5b9
[ 2044.201696][T25230] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2044.223723][T25230] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 2044.233911][T25230] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 2044.244063][T25230] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 2044.252803][T25230] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
09:21:33 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
r3 = creat(&(0x7f0000000080)='./file0\x00', 0x1)
ioctl$SNDRV_TIMER_IOCTL_STOP(r3, 0x54a1)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x20, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x20}}, 0x0)

09:21:33 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a000012ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 2044.261554][T25230] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000004a
[ 2044.270999][T25230] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
09:21:33 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r3, 0x0)
ioctl$KDSKBMETA(r3, 0x4b63, &(0x7f00000001c0)=0x4)
sched_setattr(0x0, 0x0, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f00000002c0)=@raw={'raw\x00', 0x9, 0x3, 0x278, 0x0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x1a8, 0xffffffff, 0xffffffff, 0x1a8, 0xffffffff, 0x3, &(0x7f0000000080), {[{{@ipv6={@private2, @loopback, [0x0, 0x0, 0xff000000], [0xff, 0xffffffff, 0xffffff00, 0xff000080], 'batadv_slave_0\x00', 'gre0\x00', {0xff}, {}, 0x2f, 0x1f, 0x4, 0x28}, 0x0, 0xa8, 0xd8}, @common=@unspec=@CONNMARK={0x30, 'CONNMARK\x00', 0x1, {0xfd, 0x8, 0x4}}}, {{@uncond, 0x0, 0xa8, 0xd0}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffb}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x2d8)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

[ 2044.605322][  T351] syz-executor.3 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=3, oom_score_adj=0
[ 2044.637401][  T351] CPU: 0 PID: 351 Comm: syz-executor.3 Tainted: G    B             5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2044.651355][  T351] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2044.661870][  T351] Call Trace:
[ 2044.665363][  T351]  dump_stack+0x1b0/0x21e
[ 2044.670121][  T351]  ? devkmsg_release+0x11c/0x11c
[ 2044.675912][  T351]  ? ___ratelimit+0x3bf/0x560
[ 2044.681075][  T351]  ? show_regs_print_info+0x12/0x12
[ 2044.687089][  T351]  ? _raw_spin_lock+0xa1/0x170
[ 2044.692494][  T351]  ? radix_tree_cpu_dead+0x160/0x160
[ 2044.698325][  T351]  dump_header+0xdb/0x700
[ 2044.703187][  T351]  oom_kill_process+0xd3/0x280
[ 2044.708360][  T351]  out_of_memory+0x5b6/0x890
[ 2044.713115][  T351]  ? unregister_oom_notifier+0x20/0x20
[ 2044.719399][  T351]  __alloc_pages_slowpath+0x17bc/0x1cb0
[ 2044.725199][  T351]  ? get_page_from_freelist+0x7c0/0x7c0
[ 2044.731986][  T351]  ? __zone_watermark_ok+0x91/0x280
[ 2044.738154][  T351]  __alloc_pages_nodemask+0x5cb/0x7c0
[ 2044.744063][  T351]  ? gfp_pfmemalloc_allowed+0x130/0x130
[ 2044.750658][  T351]  ? copy_process+0x5c9/0x52c0
[ 2044.756033][  T351]  ? kmem_cache_alloc+0x1d5/0x250
[ 2044.762205][  T351]  copy_process+0x612/0x52c0
[ 2044.767570][  T351]  ? reuse_swap_page+0x416/0x6f0
[ 2044.773834][  T351]  ? ptep_set_access_flags+0x69/0xa0
[ 2044.779626][  T351]  ? do_wp_page+0xae1/0x14b0
[ 2044.784872][  T351]  ? _raw_spin_lock+0xa1/0x170
[ 2044.789942][  T351]  ? __perf_event_task_sched_out+0x1127/0x1250
[ 2044.796594][  T351]  ? fork_idle+0x290/0x290
[ 2044.801392][  T351]  ? perf_pmu_sched_task+0x370/0x370
[ 2044.807080][  T351]  _do_fork+0x180/0x8f0
[ 2044.811726][  T351]  ? switch_mm+0xe0/0xe0
[ 2044.817222][  T351]  ? dup_mm+0x300/0x300
[ 2044.821773][  T351]  ? __schedule+0x8ae/0xe30
[ 2044.826394][  T351]  __x64_sys_clone+0x246/0x2b0
[ 2044.831156][  T351]  ? __ia32_sys_vfork+0x110/0x110
[ 2044.836746][  T351]  ? __fpregs_load_activate+0x2d3/0x390
[ 2044.842670][  T351]  do_syscall_64+0xcb/0x150
[ 2044.847376][  T351]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2044.853565][  T351] RIP: 0033:0x45bb8a
[ 2044.857642][  T351] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00
[ 2044.878527][  T351] RSP: 002b:00007ffd6f066740 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 2044.887786][  T351] RAX: ffffffffffffffda RBX: 00007ffd6f066740 RCX: 000000000045bb8a
[ 2044.896704][  T351] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[ 2044.905031][  T351] RBP: 00007ffd6f066780 R08: 0000000000000001 R09: 00000000029a1940
[ 2044.913870][  T351] R10: 00000000029a1c10 R11: 0000000000000246 R12: 0000000000000001
[ 2044.922603][  T351] R13: 0000000000000000 R14: 0000000000000000 R15: 00007ffd6f0667d0
[ 2044.939593][  T351] Mem-Info:
[ 2044.951271][  T351] active_anon:1406567 inactive_anon:12080 isolated_anon:0
[ 2044.951271][  T351]  active_file:119 inactive_file:317 isolated_file:38
[ 2044.951271][  T351]  unevictable:4 dirty:33 writeback:14 unstable:0
[ 2044.951271][  T351]  slab_reclaimable:8154 slab_unreclaimable:81950
[ 2044.951271][  T351]  mapped:56465 shmem:6894 pagetables:36196 bounce:0
[ 2044.951271][  T351]  free:12709 free_pcp:205 free_cma:0
[ 2045.008455][  T351] Node 0 active_anon:5626268kB inactive_anon:48320kB active_file:876kB inactive_file:1764kB unevictable:16kB isolated(anon):0kB isolated(file):268kB mapped:226460kB dirty:132kB writeback:56kB shmem:27576kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2045.037378][  T351] DMA free:15904kB min:24kB low:36kB high:48kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15904kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2045.066982][  T351] lowmem_reserve[]: 0 2912 6416 6416
[ 2045.074201][  T351] DMA32 free:21512kB min:4644kB low:7624kB high:10604kB active_anon:2936812kB inactive_anon:4kB active_file:8kB inactive_file:40kB unevictable:0kB writepending:24kB present:3129332kB managed:2983760kB mlocked:0kB kernel_stack:3520kB pagetables:2748kB bounce:0kB free_pcp:1460kB local_pcp:4kB free_cma:0kB
[ 2045.105923][  T351] lowmem_reserve[]: 0 0 3504 3504
[ 2045.111840][  T351] Normal free:22016kB min:13784kB low:17372kB high:20960kB active_anon:2679376kB inactive_anon:48316kB active_file:872kB inactive_file:1144kB unevictable:16kB writepending:164kB present:4718592kB managed:3588928kB mlocked:16kB kernel_stack:39232kB pagetables:142036kB bounce:0kB free_pcp:1668kB local_pcp:444kB free_cma:0kB
[ 2045.152184][  T351] lowmem_reserve[]: 0 0 0 0
[ 2045.158369][  T351] DMA: 0*4kB 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (U) 3*4096kB (M) = 15904kB
[ 2045.173814][  T351] DMA32: 350*4kB (UMH) 57*8kB (UM) 52*16kB (UMH) 67*32kB (UMH) 93*64kB (UMH) 52*128kB (UMH) 4*256kB (UM) 0*512kB 1*1024kB (M) 1*2048kB (M) 0*4096kB = 21536kB
[ 2045.192256][  T351] Normal: 461*4kB (UMEH) 545*8kB (UMEH) 192*16kB (UMEH) 76*32kB (UMEH) 70*64kB (MEH) 18*128kB (UMH) 4*256kB (M) 3*512kB (UM) 0*1024kB 0*2048kB 0*4096kB = 21052kB
[ 2045.210526][  T351] 8025 total pagecache pages
[ 2045.226922][  T351] 0 pages in swap cache
[ 2045.233231][  T351] Swap cache stats: add 0, delete 0, find 0/0
[ 2045.240980][  T351] Free swap  = 0kB
[ 2045.249573][  T351] Total swap = 0kB
[ 2045.255383][  T351] 1965979 pages RAM
[ 2045.260995][  T351] 0 pages HighMem/MovableOnly
09:21:34 executing program 4 (fault-call:14 fault-nth:75):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

[ 2045.329403][  T351] 318831 pages reserved
[ 2045.341797][  T351] 0 pages cma reserved
[ 2045.356639][  T351] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/,task=syz-executor.4,pid=25222,uid=0
[ 2045.625792][T25232] syz-executor.0 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=3, oom_score_adj=1000
[ 2045.660102][T25232] CPU: 0 PID: 25232 Comm: syz-executor.0 Tainted: G    B             5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2045.671805][T25232] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2045.682023][T25232] Call Trace:
[ 2045.685312][T25232]  dump_stack+0x1b0/0x21e
[ 2045.689634][T25232]  ? devkmsg_release+0x11c/0x11c
[ 2045.694563][T25232]  ? ___ratelimit+0x3bf/0x560
[ 2045.699228][T25232]  ? show_regs_print_info+0x12/0x12
[ 2045.704514][T25232]  ? _raw_spin_lock+0xa1/0x170
[ 2045.709288][T25232]  ? radix_tree_cpu_dead+0x160/0x160
[ 2045.714701][T25232]  dump_header+0xdb/0x700
[ 2045.719022][T25232]  oom_kill_process+0xd3/0x280
[ 2045.723793][T25232]  out_of_memory+0x5b6/0x890
[ 2045.728968][T25232]  ? unregister_oom_notifier+0x20/0x20
[ 2045.734424][T25232]  __alloc_pages_slowpath+0x17bc/0x1cb0
[ 2045.739974][T25232]  ? get_page_from_freelist+0x7c0/0x7c0
[ 2045.745530][T25232]  ? __zone_watermark_ok+0x91/0x280
[ 2045.750726][T25232]  __alloc_pages_nodemask+0x5cb/0x7c0
[ 2045.756093][T25232]  ? gfp_pfmemalloc_allowed+0x130/0x130
[ 2045.761669][T25232]  ? copy_process+0x5c9/0x52c0
[ 2045.767445][T25232]  ? kmem_cache_alloc+0x1d5/0x250
[ 2045.772468][T25232]  copy_process+0x612/0x52c0
[ 2045.777058][T25232]  ? __memcg_kmem_charge_memcg+0x130/0x130
[ 2045.782859][T25232]  ? get_mem_cgroup_from_mm+0x27b/0x2c0
[ 2045.788405][T25232]  ? mem_cgroup_commit_charge+0x198/0x240
[ 2045.794119][T25232]  ? _raw_spin_lock+0xa1/0x170
[ 2045.798875][T25232]  ? mem_cgroup_try_charge_delay+0x10/0x10
[ 2045.804672][T25232]  ? fork_idle+0x290/0x290
[ 2045.809083][T25232]  ? __lru_cache_add+0x1a1/0x1f0
[ 2045.814009][T25232]  ? _raw_spin_unlock+0x5/0x20
[ 2045.818770][T25232]  ? handle_mm_fault+0x916/0x4140
[ 2045.823788][T25232]  _do_fork+0x180/0x8f0
[ 2045.828028][T25232]  ? finish_fault+0x230/0x230
[ 2045.834795][T25232]  ? dup_mm+0x300/0x300
[ 2045.838943][T25232]  __x64_sys_clone+0x246/0x2b0
[ 2045.843786][T25232]  ? __ia32_sys_vfork+0x110/0x110
[ 2045.848801][T25232]  ? do_user_addr_fault+0x55c/0x9f0
[ 2045.854252][T25232]  do_syscall_64+0xcb/0x150
[ 2045.858748][T25232]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2045.864715][T25232] RIP: 0033:0x45ff89
[ 2045.868605][T25232] Code: Bad RIP value.
09:21:34 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a008004ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 2045.872744][T25232] RSP: 002b:00007ffd413078b8 EFLAGS: 00000202 ORIG_RAX: 0000000000000038
[ 2045.881596][T25232] RAX: ffffffffffffffda RBX: 00007fc344b27700 RCX: 000000000045ff89
[ 2045.891825][T25232] RDX: 00007fc344b279d0 RSI: 00007fc344b26db0 RDI: 00000000003d0f00
[ 2045.900599][T25232] RBP: 00007ffd41307ae0 R08: 00007fc344b27700 R09: 00007fc344b27700
[ 2045.908562][T25232] R10: 00007fc344b279d0 R11: 0000000000000202 R12: 0000000000000000
[ 2045.916529][T25232] R13: 00007ffd4130796f R14: 00007fc344b279c0 R15: 000000000118d08c
[ 2045.999524][T25232] Mem-Info:
[ 2046.004941][T25232] active_anon:1407671 inactive_anon:12080 isolated_anon:0
[ 2046.004941][T25232]  active_file:691 inactive_file:727 isolated_file:64
[ 2046.004941][T25232]  unevictable:4 dirty:10 writeback:0 unstable:0
[ 2046.004941][T25232]  slab_reclaimable:8147 slab_unreclaimable:81945
[ 2046.004941][T25232]  mapped:57554 shmem:6894 pagetables:36224 bounce:0
[ 2046.004941][T25232]  free:10627 free_pcp:43 free_cma:0
[ 2046.046104][T25232] Node 0 active_anon:5630984kB inactive_anon:48320kB active_file:2400kB inactive_file:1532kB unevictable:16kB isolated(anon):0kB isolated(file):256kB mapped:228716kB dirty:40kB writeback:0kB shmem:27576kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2046.072490][T25232] DMA free:15904kB min:24kB low:36kB high:48kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15904kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2046.105768][T25232] lowmem_reserve[]: 0 2912 6416 6416
[ 2046.111390][T25232] DMA32 free:18192kB min:4644kB low:7624kB high:10604kB active_anon:2939024kB inactive_anon:8kB active_file:556kB inactive_file:316kB unevictable:0kB writepending:0kB present:3129332kB managed:2983760kB mlocked:0kB kernel_stack:3520kB pagetables:2752kB bounce:0kB free_pcp:1412kB local_pcp:892kB free_cma:0kB
[ 2046.140903][T25232] lowmem_reserve[]: 0 0 3504 3504
[ 2046.146411][T25232] Normal free:7660kB min:9688kB low:13276kB high:16864kB active_anon:2691668kB inactive_anon:48312kB active_file:1276kB inactive_file:652kB unevictable:16kB writepending:40kB present:4718592kB managed:3588928kB mlocked:16kB kernel_stack:39360kB pagetables:142144kB bounce:0kB free_pcp:2756kB local_pcp:1460kB free_cma:0kB
[ 2046.177420][T25232] lowmem_reserve[]: 0 0 0 0
[ 2046.182247][T25232] DMA: 0*4kB 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (U) 3*4096kB (M) = 15904kB
[ 2046.203500][T25232] DMA32: 5*4kB (MH) 0*8kB 16*16kB (UMH) 39*32kB (UMH) 93*64kB (UMH) 52*128kB (UMH) 4*256kB (UM) 0*512kB 1*1024kB (M) 1*2048kB (M) 0*4096kB = 18228kB
[ 2046.230393][T25232] Normal: 644*4kB (UMEH) 238*8kB (UMEH) 140*16kB (UMEH) 29*32kB (UMEH) 17*64kB (MEH) 5*128kB (MH) 0*256kB 2*512kB (U) 0*1024kB 0*2048kB 0*4096kB = 10400kB
[ 2046.247281][T25232] 7119 total pagecache pages
[ 2046.252395][T25232] 0 pages in swap cache
[ 2046.257188][T25232] Swap cache stats: add 0, delete 0, find 0/0
[ 2046.264064][T25232] Free swap  = 0kB
[ 2046.268176][T25232] Total swap = 0kB
[ 2046.272249][T25232] 1965979 pages RAM
[ 2046.276558][T25232] 0 pages HighMem/MovableOnly
[ 2046.281565][T25232] 318831 pages reserved
[ 2046.286038][T25232] 0 pages cma reserved
[ 2046.290542][T25232] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/,task=syz-executor.3,pid=31992,uid=0
[ 2046.306340][T25232] Out of memory: Killed process 31992 (syz-executor.3) total-vm:85480kB, anon-rss:16364kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:160kB oom_score_adj:1000
[ 2046.330976][   T23] oom_reaper: reaped process 31992 (syz-executor.3), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
09:21:35 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x6000000)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

[ 2046.588825][T25261] FAULT_INJECTION: forcing a failure.
[ 2046.588825][T25261] name failslab, interval 1, probability 0, space 0, times 0
[ 2046.601657][T25261] CPU: 0 PID: 25261 Comm: syz-executor.4 Tainted: G    B             5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2046.613174][T25261] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2046.623297][T25261] Call Trace:
[ 2046.626564][T25261]  dump_stack+0x1b0/0x21e
[ 2046.630954][T25261]  ? devkmsg_release+0x11c/0x11c
[ 2046.635880][T25261]  ? show_regs_print_info+0x12/0x12
[ 2046.641072][T25261]  should_fail+0x6fb/0x860
[ 2046.645464][T25261]  ? setup_fault_attr+0x2b0/0x2b0
[ 2046.650465][T25261]  ? slab_free_freelist_hook+0xd0/0x150
[ 2046.655982][T25261]  ? cap_capable+0x23f/0x280
[ 2046.660554][T25261]  ? proc_pid_stack+0x1d5/0x1f0
[ 2046.665374][T25261]  ? proc_pid_stack+0x8e/0x1f0
[ 2046.670543][T25261]  should_failslab+0x5/0x20
[ 2046.675040][T25261]  kmem_cache_alloc_trace+0x39/0x270
[ 2046.680295][T25261]  proc_pid_stack+0x8e/0x1f0
[ 2046.684855][T25261]  proc_single_show+0xd3/0x130
[ 2046.689599][T25261]  seq_read+0x4aa/0xd30
[ 2046.693783][T25261]  do_iter_read+0x43b/0x550
[ 2046.698255][T25261]  do_preadv+0x1f4/0x330
[ 2046.702466][T25261]  ? do_writev+0x560/0x560
[ 2046.706854][T25261]  ? security_file_permission+0x128/0x300
[ 2046.712542][T25261]  ? __sb_end_write+0xa4/0xf0
[ 2046.717189][T25261]  ? vfs_write+0x427/0x4f0
[ 2046.721577][T25261]  do_syscall_64+0xcb/0x150
[ 2046.726049][T25261]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2046.731932][T25261] RIP: 0033:0x45d5b9
[ 2046.735810][T25261] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2046.755557][T25261] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 2046.763937][T25261] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 2046.771968][T25261] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 2046.780098][T25261] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 2046.788039][T25261] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000004b
[ 2046.796065][T25261] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
[ 2047.130300][T28136] syz-fuzzer invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2047.141982][T28136] CPU: 0 PID: 28136 Comm: syz-fuzzer Tainted: G    B             5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2047.153280][T28136] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2047.163421][T28136] Call Trace:
[ 2047.166695][T28136]  dump_stack+0x1b0/0x21e
[ 2047.171003][T28136]  ? devkmsg_release+0x11c/0x11c
[ 2047.176795][T28136]  ? ___ratelimit+0x3bf/0x560
[ 2047.181440][T28136]  ? show_regs_print_info+0x12/0x12
[ 2047.186639][T28136]  ? _raw_spin_lock+0xa1/0x170
[ 2047.191398][T28136]  ? radix_tree_cpu_dead+0x160/0x160
[ 2047.196669][T28136]  dump_header+0xdb/0x700
[ 2047.200974][T28136]  oom_kill_process+0xd3/0x280
[ 2047.205711][T28136]  out_of_memory+0x5b6/0x890
[ 2047.210634][T28136]  ? unregister_oom_notifier+0x20/0x20
[ 2047.216067][T28136]  __alloc_pages_slowpath+0x17bc/0x1cb0
[ 2047.221756][T28136]  ? get_page_from_freelist+0x7c0/0x7c0
[ 2047.227272][T28136]  __alloc_pages_nodemask+0x5cb/0x7c0
[ 2047.232615][T28136]  ? gfp_pfmemalloc_allowed+0x130/0x130
[ 2047.238172][T28136]  pagecache_get_page+0x522/0x8a0
[ 2047.243170][T28136]  filemap_fault+0x1435/0x1990
[ 2047.247920][T28136]  ? __down_read+0xf1/0x210
[ 2047.252406][T28136]  ? generic_file_read_iter+0x20a0/0x20a0
[ 2047.258126][T28136]  ? ___preempt_schedule+0x16/0x20
[ 2047.263214][T28136]  ext4_filemap_fault+0x7b/0x90
[ 2047.268039][T28136]  handle_mm_fault+0x291e/0x4140
[ 2047.272970][T28136]  ? finish_fault+0x230/0x230
[ 2047.277628][T28136]  ? down_read_trylock+0x17a/0x1d0
[ 2047.282708][T28136]  ? vmacache_find+0x205/0x4b0
[ 2047.287459][T28136]  do_user_addr_fault+0x48a/0x9f0
[ 2047.292558][T28136]  page_fault+0x2f/0x40
[ 2047.296683][T28136] RIP: 0033:0x417260
[ 2047.300637][T28136] Code: Bad RIP value.
[ 2047.304763][T28136] RSP: 002b:000000c0048cf020 EFLAGS: 00010246
[ 2047.310810][T28136] RAX: 00007ff4a2f9f7d0 RBX: 0000000000000200 RCX: 0000000000000005
[ 2047.319274][T28136] RDX: 0000000000000200 RSI: 0000000000000000 RDI: 0000000000000010
[ 2047.327236][T28136] RBP: 000000c0048cf050 R08: 00000000008c8a80 R09: 0000000000203001
[ 2047.335274][T28136] R10: 0000000000000005 R11: 0000000000000000 R12: 0000000000000040
[ 2047.343233][T28136] R13: 0000000000000040 R14: 00000000000001ff R15: 0000000000000200
[ 2047.362749][T28136] Mem-Info:
[ 2047.369398][T28136] active_anon:1408364 inactive_anon:12080 isolated_anon:0
[ 2047.369398][T28136]  active_file:518 inactive_file:502 isolated_file:103
[ 2047.369398][T28136]  unevictable:4 dirty:8 writeback:0 unstable:0
[ 2047.369398][T28136]  slab_reclaimable:8140 slab_unreclaimable:81964
[ 2047.369398][T28136]  mapped:57065 shmem:6893 pagetables:36190 bounce:0
[ 2047.369398][T28136]  free:10229 free_pcp:156 free_cma:0
[ 2047.412838][T28136] Node 0 active_anon:5633456kB inactive_anon:48320kB active_file:2072kB inactive_file:2008kB unevictable:16kB isolated(anon):0kB isolated(file):340kB mapped:228160kB dirty:32kB writeback:0kB shmem:27572kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2047.437685][T28136] DMA free:15904kB min:24kB low:36kB high:48kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15904kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2047.479603][T28136] lowmem_reserve[]: 0 2912 6416 6416
[ 2047.490104][T28136] DMA32 free:17420kB min:4644kB low:7624kB high:10604kB active_anon:2941540kB inactive_anon:4kB active_file:8kB inactive_file:24kB unevictable:0kB writepending:64kB present:3129332kB managed:2983760kB mlocked:0kB kernel_stack:3552kB pagetables:2764kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2047.518888][T28136] lowmem_reserve[]: 0 0 3504 3504
[ 2047.524110][T28136] Normal free:9104kB min:9688kB low:13276kB high:16864kB active_anon:2691252kB inactive_anon:48316kB active_file:1860kB inactive_file:1896kB unevictable:16kB writepending:324kB present:4718592kB managed:3588928kB mlocked:16kB kernel_stack:39328kB pagetables:141996kB bounce:0kB free_pcp:184kB local_pcp:0kB free_cma:0kB
[ 2047.554611][T28136] lowmem_reserve[]: 0 0 0 0
[ 2047.559264][T28136] DMA: 0*4kB 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (U) 3*4096kB (M) = 15904kB
[ 2047.580054][T28136] DMA32: 29*4kB (UMH) 6*8kB (UM) 26*16kB (UMH) 34*32kB (UMH) 84*64kB (UMH) 52*128kB (UMH) 4*256kB (UM) 0*512kB 1*1024kB (M) 1*2048kB (M) 0*4096kB = 17796kB
[ 2047.601977][T28136] Normal: 700*4kB (UMEH) 164*8kB (UMEH) 109*16kB (UMEH) 29*32kB (UMEH) 32*64kB (UMEH) 11*128kB (UMH) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 10240kB
[ 2047.618370][T28136] 7604 total pagecache pages
[ 2047.623288][T28136] 0 pages in swap cache
[ 2047.627683][T28136] Swap cache stats: add 0, delete 0, find 0/0
[ 2047.634003][T28136] Free swap  = 0kB
[ 2047.639082][T28136] Total swap = 0kB
[ 2047.657526][T28136] 1965979 pages RAM
[ 2047.664180][T28136] 0 pages HighMem/MovableOnly
[ 2047.670309][T28136] 318831 pages reserved
[ 2047.675469][T28136] 0 pages cma reserved
09:21:36 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a000013ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 2047.680299][T28136] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/,task=syz-executor.1,pid=24304,uid=0
[ 2047.695468][T28136] Out of memory: Killed process 24304 (syz-executor.1) total-vm:85612kB, anon-rss:16584kB, file-rss:34504kB, shmem-rss:0kB, UID:0 pgtables:152kB oom_score_adj:1000
09:21:36 executing program 4 (fault-call:14 fault-nth:76):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:21:36 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0)
sendmsg$ETHTOOL_MSG_FEATURES_GET(r1, &(0x7f0000000300)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000002c0)={&(0x7f00000001c0)={0x34, 0x0, 0x2, 0x70bd2a, 0x25dfdbfe, {}, [@HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'nr0\x00'}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x8010}, 0x800c094)
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:21:36 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a000005ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:21:36 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
getsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, &(0x7f0000000080), &(0x7f00000001c0)=0x8)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
sendmsg$TIPC_NL_BEARER_DISABLE(r3, &(0x7f0000000540)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000500)={&(0x7f0000000300)={0x1e4, 0x0, 0x400, 0x70bd2d, 0x3800000, {}, [@TIPC_NLA_LINK={0xac, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfffffff7}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x19}]}, @TIPC_NLA_LINK_PROP={0x4c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7fff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x40}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1b}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xbb35}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}]}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xb}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}]}]}, @TIPC_NLA_MON={0x24, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x81}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x7}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x2f8}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x7}]}, @TIPC_NLA_NET={0x28, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x2}, @TIPC_NLA_NET_NODEID={0xc}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x8}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x800}]}, @TIPC_NLA_PUBL={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x8}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x21}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xfef8}, @TIPC_NLA_PUBL_UPPER={0x8}, @TIPC_NLA_PUBL_UPPER={0x8}]}, @TIPC_NLA_BEARER={0xac, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x8}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e21, @rand_addr=0x64010102}}, {0x20, 0x2, @in6={0xa, 0x4e24, 0x3, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x5}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz1\x00'}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @l2={'eth', 0x3a, 'batadv0\x00'}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x1}, @TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @loopback}}, {0x14, 0x2, @in={0x2, 0x4e24, @rand_addr=0x64010102}}}}, @TIPC_NLA_BEARER_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xbfe}]}]}]}, 0x1e4}, 0x1, 0x0, 0x0, 0x20008001}, 0x20040040)
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

[ 2047.945110][T25282] FAULT_INJECTION: forcing a failure.
[ 2047.945110][T25282] name failslab, interval 1, probability 0, space 0, times 0
[ 2047.958150][T25282] CPU: 0 PID: 25282 Comm: syz-executor.4 Tainted: G    B             5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2047.969690][T25282] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2047.979927][T25282] Call Trace:
[ 2047.983211][T25282]  dump_stack+0x1b0/0x21e
[ 2047.987528][T25282]  ? devkmsg_release+0x11c/0x11c
[ 2047.992442][T25282]  ? show_regs_print_info+0x12/0x12
[ 2047.997612][T25282]  should_fail+0x6fb/0x860
[ 2048.002020][T25282]  ? setup_fault_attr+0x2b0/0x2b0
[ 2048.007015][T25282]  ? slab_free_freelist_hook+0xd0/0x150
[ 2048.012533][T25282]  ? cap_capable+0x23f/0x280
[ 2048.017092][T25282]  ? proc_pid_stack+0x1d5/0x1f0
[ 2048.021910][T25282]  ? proc_pid_stack+0x8e/0x1f0
[ 2048.027097][T25282]  should_failslab+0x5/0x20
[ 2048.031669][T25282]  kmem_cache_alloc_trace+0x39/0x270
[ 2048.037043][T25282]  proc_pid_stack+0x8e/0x1f0
[ 2048.041608][T25282]  proc_single_show+0xd3/0x130
[ 2048.046342][T25282]  seq_read+0x4aa/0xd30
[ 2048.050471][T25282]  do_iter_read+0x43b/0x550
[ 2048.054942][T25282]  do_preadv+0x1f4/0x330
[ 2048.059152][T25282]  ? do_writev+0x560/0x560
[ 2048.063549][T25282]  ? security_file_permission+0x128/0x300
[ 2048.069694][T25282]  ? __sb_end_write+0xa4/0xf0
[ 2048.074349][T25282]  ? vfs_write+0x427/0x4f0
[ 2048.078736][T25282]  do_syscall_64+0xcb/0x150
[ 2048.083222][T25282]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2048.089081][T25282] RIP: 0033:0x45d5b9
[ 2048.093080][T25282] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2048.112922][T25282] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 2048.121388][T25282] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 2048.129590][T25282] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 2048.137555][T25282] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 2048.145498][T25282] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000004c
[ 2048.153451][T25282] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
[ 2048.413380][    T2] kthreadd invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=3, oom_score_adj=0
[ 2048.450784][    T2] CPU: 1 PID: 2 Comm: kthreadd Tainted: G    B             5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2048.461502][    T2] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2048.471549][    T2] Call Trace:
[ 2048.474880][    T2]  dump_stack+0x1b0/0x21e
[ 2048.479286][    T2]  ? devkmsg_release+0x11c/0x11c
[ 2048.484213][    T2]  ? ___ratelimit+0x3bf/0x560
[ 2048.490798][    T2]  ? show_regs_print_info+0x12/0x12
[ 2048.495992][    T2]  ? _raw_spin_lock+0xa1/0x170
[ 2048.500755][    T2]  ? radix_tree_cpu_dead+0x160/0x160
[ 2048.506031][    T2]  dump_header+0xdb/0x700
[ 2048.510354][    T2]  oom_kill_process+0xd3/0x280
[ 2048.515109][    T2]  out_of_memory+0x5b6/0x890
[ 2048.519692][    T2]  ? unregister_oom_notifier+0x20/0x20
[ 2048.525171][    T2]  __alloc_pages_slowpath+0x17bc/0x1cb0
[ 2048.530715][    T2]  ? get_page_from_freelist+0x7c0/0x7c0
[ 2048.536397][    T2]  ? __zone_watermark_ok+0x91/0x280
[ 2048.541609][    T2]  __alloc_pages_nodemask+0x5cb/0x7c0
[ 2048.547058][    T2]  ? gfp_pfmemalloc_allowed+0x130/0x130
[ 2048.552857][    T2]  ? copy_process+0x5c9/0x52c0
[ 2048.557819][    T2]  ? kmem_cache_alloc+0x1d5/0x250
[ 2048.562834][    T2]  copy_process+0x612/0x52c0
[ 2048.567443][    T2]  ? enqueue_entity+0x74f/0xd80
[ 2048.572912][    T2]  ? __perf_event_task_sched_out+0x1127/0x1250
[ 2048.579054][    T2]  ? fork_idle+0x290/0x290
[ 2048.583557][    T2]  ? perf_pmu_sched_task+0x370/0x370
[ 2048.588829][    T2]  _do_fork+0x180/0x8f0
[ 2048.593068][    T2]  ? switch_mm+0xe0/0xe0
[ 2048.597298][    T2]  ? dup_mm+0x300/0x300
[ 2048.601442][    T2]  kernel_thread+0x148/0x1b0
[ 2048.606023][    T2]  ? kthread_destroy_worker+0x270/0x270
[ 2048.611558][    T2]  ? legacy_clone_args_valid+0x50/0x50
[ 2048.617005][    T2]  ? kthread_destroy_worker+0x270/0x270
[ 2048.622556][    T2]  kthreadd+0x3bd/0x500
[ 2048.626708][    T2]  ? kthread_stop+0x3d0/0x3d0
[ 2048.631377][    T2]  ? recalc_sigpending+0x199/0x220
[ 2048.636683][    T2]  ? kthread_stop+0x3d0/0x3d0
[ 2048.641344][    T2]  ret_from_fork+0x1f/0x30
[ 2048.647391][    T2] Mem-Info:
[ 2048.650801][    T2] active_anon:1404726 inactive_anon:12081 isolated_anon:0
[ 2048.650801][    T2]  active_file:139 inactive_file:251 isolated_file:32
[ 2048.650801][    T2]  unevictable:4 dirty:42 writeback:0 unstable:0
[ 2048.650801][    T2]  slab_reclaimable:8140 slab_unreclaimable:81834
[ 2048.650801][    T2]  mapped:56551 shmem:6894 pagetables:36222 bounce:0
[ 2048.650801][    T2]  free:13957 free_pcp:698 free_cma:0
[ 2048.691057][    T2] Node 0 active_anon:5618804kB inactive_anon:48324kB active_file:656kB inactive_file:1656kB unevictable:16kB isolated(anon):0kB isolated(file):76kB mapped:226204kB dirty:168kB writeback:0kB shmem:27576kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2048.717803][    T2] DMA free:15904kB min:24kB low:36kB high:48kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15904kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2048.745629][    T2] lowmem_reserve[]: 0 2912 6416 6416
09:21:37 executing program 4 (fault-call:14 fault-nth:77):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

[ 2048.798000][    T2] DMA32 free:24244kB min:8740kB low:11720kB high:14700kB active_anon:2933848kB inactive_anon:4kB active_file:48kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2983760kB mlocked:0kB kernel_stack:3520kB pagetables:2756kB bounce:0kB free_pcp:1344kB local_pcp:0kB free_cma:0kB
[ 2048.850203][    T2] lowmem_reserve[]: 0 0 3504 3504
[ 2048.855532][    T2] Normal free:15692kB min:9688kB low:13276kB high:16864kB active_anon:2679480kB inactive_anon:48320kB active_file:1448kB inactive_file:6188kB unevictable:16kB writepending:0kB present:4718592kB managed:3588928kB mlocked:16kB kernel_stack:39552kB pagetables:142160kB bounce:0kB free_pcp:964kB local_pcp:748kB free_cma:0kB
[ 2048.886536][    T2] lowmem_reserve[]: 0 0 0 0
09:21:37 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a000014ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:21:37 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a002e05ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 2048.904635][    T2] DMA: 0*4kB 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (U) 3*4096kB (M) = 15904kB
[ 2048.919897][    T2] DMA32: 557*4kB (UMEH) 214*8kB (UME) 69*16kB (UMEH) 64*32kB (UMEH) 98*64kB (UMEH) 53*128kB (UMEH) 4*256kB (UM) 1*512kB (M) 1*1024kB (M) 1*2048kB (E) 0*4096kB = 24756kB
[ 2048.937050][    T2] Normal: 309*4kB (UMEH) 100*8kB (UMEH) 105*16kB (UMEH) 32*32kB (UMEH) 66*64kB (UMEH) 24*128kB (MH) 4*256kB (M) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 13060kB
09:21:37 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="002ad538", @ANYRES16=0x0, @ANYBLOB="000227bd7000ffdbdf250b0000000c0003800600040000000000"], 0x20}}, 0x0)

[ 2048.953025][    T2] 8614 total pagecache pages
[ 2048.957606][    T2] 0 pages in swap cache
[ 2048.961967][    T2] Swap cache stats: add 0, delete 0, find 0/0
[ 2048.968024][    T2] Free swap  = 0kB
[ 2048.973298][    T2] Total swap = 0kB
[ 2048.977132][    T2] 1965979 pages RAM
[ 2048.982220][    T2] 0 pages HighMem/MovableOnly
[ 2048.987837][    T2] 318831 pages reserved
[ 2048.992203][    T2] 0 pages cma reserved
[ 2048.996263][    T2] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/,task=syz-executor.4,pid=25266,uid=0
09:21:38 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x7000000)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:21:38 executing program 1:
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
getpid()
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x1, 0x0, 0x0, 0x9, 0x0, 0x0, 0x5, 0x8}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
write(r1, &(0x7f0000000340), 0x41395527)
vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getsockopt$inet_tcp_buf(r0, 0x6, 0xe, &(0x7f0000000380)=""/176, &(0x7f0000000080)=0xb0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r2, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000227bd7002ffdbdf250b000003800600040000000000e9a42bee545a04fc28957aff01fb530f07c415166d549247516bd74211fa0ec3f808304a898777d797954fcec171aedae0d182456efc17ad5a0f5b8acc8c60d2f3e79b710cb278f1bf7a9f6c7f9deb97a66c12b2ca424429c1448dbf42be4840ccc52ad4fb887afdc03fdef8d6fde53caed5f295570845a082a9033d2af81eb4db7234138aaec67277ab"], 0x20}}, 0x0)

[ 2049.535774][T25318] FAULT_INJECTION: forcing a failure.
[ 2049.535774][T25318] name failslab, interval 1, probability 0, space 0, times 0
[ 2049.549186][T25318] CPU: 1 PID: 25318 Comm: syz-executor.4 Tainted: G    B             5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2049.560743][T25318] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2049.570895][T25318] Call Trace:
[ 2049.574189][T25318]  dump_stack+0x1b0/0x21e
[ 2049.578496][T25318]  ? devkmsg_release+0x11c/0x11c
[ 2049.583674][T25318]  ? show_regs_print_info+0x12/0x12
[ 2049.588953][T25318]  ? cred_has_capability+0x18c/0x3f0
[ 2049.594231][T25318]  ? cred_has_capability+0x2b2/0x3f0
[ 2049.599512][T25318]  should_fail+0x6fb/0x860
[ 2049.603926][T25318]  ? setup_fault_attr+0x2b0/0x2b0
[ 2049.608941][T25318]  ? slab_free_freelist_hook+0xd0/0x150
[ 2049.614545][T25318]  ? cap_capable+0x23f/0x280
[ 2049.619113][T25318]  ? proc_pid_stack+0x1d5/0x1f0
[ 2049.623938][T25318]  ? proc_pid_stack+0x8e/0x1f0
[ 2049.628934][T25318]  should_failslab+0x5/0x20
[ 2049.633502][T25318]  kmem_cache_alloc_trace+0x39/0x270
[ 2049.638903][T25318]  proc_pid_stack+0x8e/0x1f0
[ 2049.643476][T25318]  proc_single_show+0xd3/0x130
[ 2049.648218][T25318]  seq_read+0x4aa/0xd30
[ 2049.652362][T25318]  do_iter_read+0x43b/0x550
[ 2049.656909][T25318]  do_preadv+0x1f4/0x330
[ 2049.661148][T25318]  ? do_writev+0x560/0x560
[ 2049.665550][T25318]  ? security_file_permission+0x128/0x300
[ 2049.671244][T25318]  ? __sb_end_write+0xa4/0xf0
[ 2049.675896][T25318]  ? vfs_write+0x427/0x4f0
[ 2049.680306][T25318]  do_syscall_64+0xcb/0x150
[ 2049.684897][T25318]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2049.690980][T25318] RIP: 0033:0x45d5b9
[ 2049.694859][T25318] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2049.714497][T25318] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 2049.722896][T25318] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 2049.731000][T25318] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 2049.738974][T25318] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 2049.746936][T25318] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000004d
[ 2049.754889][T25318] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
[ 2049.808497][T28136] syz-fuzzer invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 2049.827621][T28136] CPU: 1 PID: 28136 Comm: syz-fuzzer Tainted: G    B             5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2049.838826][T28136] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2049.848877][T28136] Call Trace:
[ 2049.852167][T28136]  dump_stack+0x1b0/0x21e
[ 2049.856556][T28136]  ? devkmsg_release+0x11c/0x11c
[ 2049.861462][T28136]  ? ___ratelimit+0x3bf/0x560
[ 2049.866105][T28136]  ? show_regs_print_info+0x12/0x12
[ 2049.871283][T28136]  ? _raw_spin_lock+0xa1/0x170
[ 2049.876013][T28136]  ? radix_tree_cpu_dead+0x160/0x160
[ 2049.881267][T28136]  dump_header+0xdb/0x700
[ 2049.885565][T28136]  oom_kill_process+0xd3/0x280
[ 2049.890297][T28136]  out_of_memory+0x5b6/0x890
[ 2049.894892][T28136]  ? unregister_oom_notifier+0x20/0x20
[ 2049.900319][T28136]  __alloc_pages_slowpath+0x17bc/0x1cb0
[ 2049.905846][T28136]  ? get_page_from_freelist+0x7c0/0x7c0
[ 2049.911362][T28136]  __alloc_pages_nodemask+0x5cb/0x7c0
[ 2049.916704][T28136]  ? gfp_pfmemalloc_allowed+0x130/0x130
[ 2049.922218][T28136]  pagecache_get_page+0x522/0x8a0
[ 2049.927224][T28136]  filemap_fault+0x1435/0x1990
[ 2049.931959][T28136]  ? __down_read+0xf1/0x210
[ 2049.936430][T28136]  ? generic_file_read_iter+0x20a0/0x20a0
[ 2049.942118][T28136]  ? ___preempt_schedule+0x16/0x20
[ 2049.947205][T28136]  ext4_filemap_fault+0x7b/0x90
[ 2049.952198][T28136]  handle_mm_fault+0x291e/0x4140
[ 2049.957117][T28136]  ? finish_fault+0x230/0x230
[ 2049.961772][T28136]  ? get_timespec64+0x108/0x1c0
[ 2049.966594][T28136]  ? down_read_trylock+0x17a/0x1d0
[ 2049.971772][T28136]  ? retint_kernel+0x1b/0x1b
[ 2049.976331][T28136]  ? vmacache_find+0x205/0x4b0
[ 2049.981065][T28136]  do_user_addr_fault+0x48a/0x9f0
[ 2049.986060][T28136]  page_fault+0x2f/0x40
[ 2049.990188][T28136] RIP: 0033:0x455d0a
[ 2049.994140][T28136] Code: 89 04 24 e8 88 50 fb ff 48 8b 44 24 28 48 89 04 24 48 8b 44 24 38 48 89 44 24 08 48 8b 44 24 20 48 89 44 24 10 48 8b 54 24 30 <48> 8b 02 ff d0 48 8b 44 24 40 48 89 04 24 e8 b3 4e fb ff 48 8b 6c
[ 2050.013724][T28136] RSP: 002b:000000c024257d70 EFLAGS: 00010202
[ 2050.019797][T28136] RAX: 0000000000000000 RBX: 000000c0000801e8 RCX: 0000000000000000
[ 2050.027746][T28136] RDX: 0000000000a63570 RSI: 000001dd74c30f02 RDI: 000000c019485500
[ 2050.035810][T28136] RBP: 000000c024257db8 R08: 0000000000000000 R09: 0000000000000003
[ 2050.043854][T28136] R10: 000001eb18c0e45b R11: 0000000000000001 R12: 000001eb18c0e45b
[ 2050.051822][T28136] R13: 0000000000000001 R14: 000001eb18c0e45b R15: 0000000000000000
[ 2050.089186][T28136] Mem-Info:
[ 2050.097328][T28136] active_anon:1408581 inactive_anon:12081 isolated_anon:0
[ 2050.097328][T28136]  active_file:594 inactive_file:474 isolated_file:81
[ 2050.097328][T28136]  unevictable:4 dirty:41 writeback:25 unstable:0
[ 2050.097328][T28136]  slab_reclaimable:8146 slab_unreclaimable:81753
[ 2050.097328][T28136]  mapped:57260 shmem:6895 pagetables:36355 bounce:0
[ 2050.097328][T28136]  free:10039 free_pcp:27 free_cma:0
[ 2050.143606][T28136] Node 0 active_anon:5634324kB inactive_anon:48324kB active_file:2228kB inactive_file:1784kB unevictable:16kB isolated(anon):0kB isolated(file):384kB mapped:228940kB dirty:164kB writeback:100kB shmem:27580kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2050.169342][T28136] DMA free:15904kB min:24kB low:36kB high:48kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15904kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2050.195982][T28136] lowmem_reserve[]: 0 2912 6416 6416
[ 2050.202043][T28136] DMA32 free:16852kB min:4644kB low:7624kB high:10604kB active_anon:2942272kB inactive_anon:8kB active_file:4kB inactive_file:72kB unevictable:0kB writepending:4kB present:3129332kB managed:2983760kB mlocked:0kB kernel_stack:3680kB pagetables:2800kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2050.231331][T28136] lowmem_reserve[]: 0 0 3504 3504
[ 2050.236800][T28136] Normal free:7904kB min:9688kB low:13276kB high:16864kB active_anon:2692052kB inactive_anon:48316kB active_file:2488kB inactive_file:1676kB unevictable:16kB writepending:260kB present:4718592kB managed:3588928kB mlocked:16kB kernel_stack:39392kB pagetables:142620kB bounce:0kB free_pcp:228kB local_pcp:0kB free_cma:0kB
[ 2050.269342][T28136] lowmem_reserve[]: 0 0 0 0
[ 2050.274271][T28136] DMA: 0*4kB 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (U) 3*4096kB (M) = 15904kB
[ 2050.304740][T28136] DMA32: 20*4kB (UMEH) 11*8kB (UME) 27*16kB (UMEH) 26*32kB (MEH) 75*64kB (UMEH) 47*128kB (UMEH) 4*256kB (UM) 1*512kB (M) 1*1024kB (M) 1*2048kB (E) 0*4096kB = 16856kB
[ 2050.337312][T28136] Normal: 899*4kB (UMEH) 156*8kB (UMEH) 96*16kB (UMEH) 34*32kB (UMEH) 19*64kB (UMEH) 6*128kB (MH) 1*256kB (M) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 9708kB
[ 2050.364649][T28136] 7506 total pagecache pages
[ 2050.369444][T28136] 0 pages in swap cache
[ 2050.373893][T28136] Swap cache stats: add 0, delete 0, find 0/0
[ 2050.380219][T28136] Free swap  = 0kB
[ 2050.384180][T28136] Total swap = 0kB
[ 2050.388116][T28136] 1965979 pages RAM
[ 2050.392230][T28136] 0 pages HighMem/MovableOnly
[ 2050.397334][T28136] 318831 pages reserved
[ 2050.401915][T28136] 0 pages cma reserved
[ 2050.406205][T28136] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/,task=syz-executor.4,pid=8144,uid=0
[ 2050.420640][T28136] Out of memory: Killed process 8144 (syz-executor.4) total-vm:85744kB, anon-rss:16588kB, file-rss:34496kB, shmem-rss:0kB, UID:0 pgtables:156kB oom_score_adj:1000
[ 2050.439346][   T23] oom_reaper: reaped process 8144 (syz-executor.4), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
09:21:39 executing program 4 (fault-call:14 fault-nth:78):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

09:21:39 executing program 5:
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
socket$nl_netfilter(0x10, 0x3, 0xc)
recvmmsg(0xffffffffffffffff, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
lsetxattr$security_selinux(&(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='security.selinux\x00', &(0x7f00000002c0)='system_u:object_r:hugetlbfs_t:s0\x00', 0x21, 0x1)
preadv(r3, &(0x7f00000017c0), 0x375, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}]}]}, 0x28}}, 0x400c040)

09:21:39 executing program 3:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a5ffffff0a00001fff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

09:21:39 executing program 0:
write(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x8}, 0x0)
clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x8000000)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, 0x0, 0x400c040)

09:21:39 executing program 2:
syz_read_part_table(0x0, 0xb784, &(0x7f0000000040)=[{&(0x7f0000000000)="0201bfffffff0a000006ff45ac0000ffffff8500e93119000000000000068000000063000000e100e2ff877700720030070085ffffff00000000008000da55aa", 0x40, 0x1c0}])

[ 2050.773754][T25340] FAULT_INJECTION: forcing a failure.
[ 2050.773754][T25340] name failslab, interval 1, probability 0, space 0, times 0
[ 2050.786482][T25340] CPU: 0 PID: 25340 Comm: syz-executor.4 Tainted: G    B             5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2050.798272][T25340] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2050.808396][T25340] Call Trace:
[ 2050.811947][T25340]  dump_stack+0x1b0/0x21e
[ 2050.816685][T25340]  ? devkmsg_release+0x11c/0x11c
[ 2050.821591][T25340]  ? show_regs_print_info+0x12/0x12
[ 2050.826765][T25340]  ? cred_has_capability+0x18c/0x3f0
[ 2050.832021][T25340]  ? cred_has_capability+0x2b2/0x3f0
[ 2050.837369][T25340]  should_fail+0x6fb/0x860
[ 2050.841771][T25340]  ? setup_fault_attr+0x2b0/0x2b0
[ 2050.846785][T25340]  ? slab_free_freelist_hook+0xd0/0x150
[ 2050.852345][T25340]  ? cap_capable+0x23f/0x280
[ 2050.856907][T25340]  ? proc_pid_stack+0x1d5/0x1f0
[ 2050.861729][T25340]  ? proc_pid_stack+0x8e/0x1f0
[ 2050.866462][T25340]  should_failslab+0x5/0x20
[ 2050.870942][T25340]  kmem_cache_alloc_trace+0x39/0x270
[ 2050.876199][T25340]  proc_pid_stack+0x8e/0x1f0
[ 2050.880762][T25340]  proc_single_show+0xd3/0x130
[ 2050.885624][T25340]  seq_read+0x4aa/0xd30
[ 2050.889766][T25340]  do_iter_read+0x43b/0x550
[ 2050.894327][T25340]  do_preadv+0x1f4/0x330
[ 2050.898739][T25340]  ? do_writev+0x560/0x560
[ 2050.903392][T25340]  ? security_file_permission+0x128/0x300
[ 2050.909080][T25340]  ? __sb_end_write+0xa4/0xf0
[ 2050.913908][T25340]  ? vfs_write+0x427/0x4f0
[ 2050.918295][T25340]  ? __x64_sys_open+0x19/0x90
[ 2050.922945][T25340]  do_syscall_64+0xcb/0x150
[ 2050.927507][T25340]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2050.934792][T25340] RIP: 0033:0x45d5b9
[ 2050.939368][T25340] Code: 5d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 2b b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2050.959056][T25340] RSP: 002b:00007f5525aa1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[ 2050.967535][T25340] RAX: ffffffffffffffda RBX: 0000000000025880 RCX: 000000000045d5b9
[ 2050.975489][T25340] RDX: 0000000000000375 RSI: 00000000200017c0 RDI: 0000000000000006
[ 2050.983523][T25340] RBP: 00007f5525aa1ca0 R08: 0000000000000000 R09: 0000000000000000
[ 2050.991651][T25340] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000004e
[ 2050.999700][T25340] R13: 00007ffd8cac604f R14: 00007f5525aa29c0 R15: 000000000118d12c
[ 2051.075980][  T350] syz-executor.2 invoked oom-killer: gfp_mask=0x40cc0(GFP_KERNEL|__GFP_COMP), order=1, oom_score_adj=0
[ 2051.106578][  T350] CPU: 0 PID: 350 Comm: syz-executor.2 Tainted: G    B             5.4.63-syzkaller-00006-g80d830d79a4d #0
[ 2051.117973][  T350] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2051.128910][  T350] Call Trace:
[ 2051.132280][  T350]  dump_stack+0x1b0/0x21e
[ 2051.136601][  T350]  ? devkmsg_release+0x11c/0x11c
[ 2051.141534][  T350]  ? ___ratelimit+0x3bf/0x560
[ 2051.146238][  T350]  ? show_regs_print_info+0x12/0x12
[ 2051.151424][  T350]  ? _raw_spin_lock+0xa1/0x170
[ 2051.156675][  T350]  ? radix_tree_cpu_dead+0x160/0x160
[ 2051.162099][  T350]  dump_header+0xdb/0x700
[ 2051.166448][  T350]  oom_kill_process+0xd3/0x280
[ 2051.171213][  T350]  out_of_memory+0x5b6/0x890
[ 2051.176005][  T350]  ? unregister_oom_notifier+0x20/0x20
[ 2051.181551][  T350]  __alloc_pages_slowpath+0x17bc/0x1cb0
[ 2051.187708][  T350]  ? get_page_from_freelist+0x7c0/0x7c0
[ 2051.193260][  T350]  ? __zone_watermark_ok+0x91/0x280
[ 2051.198753][  T350]  __alloc_pages_nodemask+0x5cb/0x7c0
[ 2051.204126][  T350]  ? gfp_pfmemalloc_allowed+0x130/0x130
[ 2051.209667][  T350]  ? avc_has_perm_noaudit+0x2fc/0x3f0
[ 2051.215041][  T350]  ? avc_denied+0x1c0/0x1c0
[ 2051.219591][  T350]  alloc_slab_page+0x3a/0x390
[ 2051.224268][  T350]  ? filemap_fault+0x1990/0x1990
[ 2051.229198][  T350]  new_slab+0x408/0x450
[ 2051.233522][  T350]  ? should_fail+0x18e/0x860
[ 2051.238143][  T350]  ? getname_flags+0xb8/0x610
[ 2051.242817][  T350]  ___slab_alloc+0x2e0/0x450
[ 2051.247491][  T350]  ? _raw_spin_unlock+0x5/0x20
[ 2051.252252][  T350]  ? handle_mm_fault+0x916/0x4140
[ 2051.257274][  T350]  ? getname_flags+0xb8/0x610
[ 2051.261947][  T350]  ? getname_flags+0xb8/0x610
[ 2051.266732][  T350]  kmem_cache_alloc+0x230/0x250
[ 2051.271980][  T350]  getname_flags+0xb8/0x610
[ 2051.276518][  T350]  user_path_mountpoint_at+0x22/0x40
[ 2051.281803][  T350]  ksys_umount+0x159/0x10b0
[ 2051.286301][  T350]  ? __down_read+0x210/0x210
[ 2051.290883][  T350]  ? namespace_unlock+0x4f0/0x4f0
[ 2051.295904][  T350]  ? do_user_addr_fault+0x55c/0x9f0
[ 2051.301114][  T350]  __x64_sys_umount+0x56/0x60
[ 2051.306221][  T350]  do_syscall_64+0xcb/0x150
[ 2051.311254][  T350]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[ 2051.317145][  T350] RIP: 0033:0x45ffe7
[ 2051.321130][  T350] Code: 64 89 04 25 d0 02 00 00 58 5f ff d0 48 89 c7 e8 2f be ff ff 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 a6 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 fd 89 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 2051.340834][  T350] RSP: 002b:00007ffd88ff38b8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 2051.349239][  T350] RAX: ffffffffffffffda RBX: 00000000001f49a4 RCX: 000000000045ffe7
[ 2051.357229][  T350] RDX: 000000000000000c RSI: 0000000000000002 RDI: 00007ffd88ff49f0
[ 2051.365192][  T350] RBP: 0000000000001f6b R08: 0000000000000001 R09: 000000000270a940
09:21:40 executing program 4 (fault-call:14 fault-nth:79):
write(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
prctl$PR_GET_THP_DISABLE(0x2a)
recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1b}, 0x1de5}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x8}, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='stack\x00')
preadv(r4, &(0x7f00000017c0), 0x375, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0)
sendmsg$IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x30, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}]}, 0x30}}, 0x400c040)

[ 2051.373183][  T350] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd88ff49f0
[ 2051.381145][  T350] R13: 00007ffd88ff49e0 R14: 0000000000000000 R15: 00007ffd88ff49f0
[ 2051.402435][  T350] Mem-Info:
[ 2051.447887][  T350] active_anon:1405081 inactive_anon:12081 isolated_anon:0
[ 2051.447887][  T350]  active_file:849 inactive_file:1277 isolated_file:62
[ 2051.447887][  T350]  unevictable:4 dirty:16 writeback:0 unstable:0
[ 2051.447887][  T350]  slab_reclaimable:8146 slab_unreclaimable:81761
[ 2051.447887][  T350]  mapped:57910 shmem:6895 pagetables:36355 bounce:0
[ 2051.447887][  T350]  free:12154 free_pcp:483 free_cma:0