fs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f", 0x47, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='co\x00\x00\x00\x00=0x0000000000000006,\x00']) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:15:19 executing program 2: pipe(0x0) r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r1 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r1, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r1, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(0xffffffffffffffff, 0x0, r1, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) [ 345.976580] BTRFS error (device loop3): open_ctree failed [ 346.048013] IPVS: ftp: loaded support on port[0] = 21 13:15:19 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:19 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d07000000000000000000500000000000001010000000000000000000000000000000000000000000000000010000000000d0000000000000060000000000000001000000000000000010000000100000001000000010000061000000040000000000000000000000000000000000000000000000450300000000000000000000000100000000000000000000010000000000007200000000000010000000100000001000000000000000000000000000000000000000000000000000000000000000001a8885d61aee4febb69bd33546bd0e04f90cac8b044b4fa88bee4b8d3da88dc2", 0x12b, 0x10000}, {&(0x7f0000010200)='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x00\a', 0x14, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e40000100000000000000040000000000002000000000000000000010000000000020000000000000000100000001000000010000001000000", 0x4c, 0x10320}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='c']) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) dup(r0) 13:15:19 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90", 0x1, 0x10000}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='c']) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) dup(r0) [ 346.107637] print_req_error: I/O error, dev loop5, sector 0 13:15:19 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, &(0x7f0000000080)={[{@fat=@check_relaxed='check=relaxed'}]}) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f00000018c0), &(0x7f0000001cc0)=0xc) fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000001880)='system.posix_acl_default\x00', &(0x7f0000001d00)={{}, {0x1, 0x1}, [{}, {0x2, 0x1}, {0x2, 0x0, 0xee00}]}, 0x3c, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x9) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:19 executing program 2: pipe(0x0) r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r1 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r1, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r1, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(0xffffffffffffffff, 0x0, r1, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) 13:15:19 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f", 0x47, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='co\x00\x00\x00\x00=0x0000000000000006,\x00']) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:15:19 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x0, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) 13:15:19 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f", 0x47, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='co\x00\x00\x00\x00=0x0000000000000006,\x00']) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) [ 346.291284] BTRFS error (device loop3): superblock checksum mismatch [ 346.308226] print_req_error: I/O error, dev loop0, sector 0 [ 346.316717] print_req_error: I/O error, dev loop4, sector 0 13:15:19 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90", 0x1, 0x10000}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='c']) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) dup(r0) [ 346.349168] BTRFS error (device loop3): open_ctree failed 13:15:19 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d07000000000000000000500000000000001010000000000000000000000000000000000000000000000000010000000000d000000000000006000000000000000100000000000000001000000010", 0x96, 0x10000}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='c']) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) dup(r0) 13:15:20 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='co\x00\x00\x00\x00=0x0000000000000006,\x00']) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:15:20 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d07000000", 0x4c, 0x10000}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='c']) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) dup(r0) 13:15:20 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f00000003c0)=@raw={'raw\x00', 0x9, 0x3, 0x348, 0x0, 0xffffffff, 0xffffffff, 0x180, 0xffffffff, 0x278, 0xffffffff, 0xffffffff, 0x278, 0xffffffff, 0x3, &(0x7f0000000080), {[{{@uncond, 0x0, 0x160, 0x180, 0x0, {}, [@common=@eui64={{0x28, 'eui64\x00'}}, @common=@srh1={{0x90, 'srh\x00'}, {0x3b, 0x80, 0x0, 0x40, 0x0, @ipv4={[], [], @dev={0xac, 0x14, 0x14, 0x32}}, @dev={0xfe, 0x80, [], 0x41}, @empty, [0xffffff00, 0xffffffff, 0xffffff00, 0xff], [0xff, 0x0, 0xffffff00, 0xff], [0xff, 0xffffff00, 0xff, 0xff000000], 0x80, 0x800}}]}, @unspec=@NOTRACK={0x20, 'NOTRACK\x00'}}, {{@uncond, 0x0, 0xd8, 0xf8, 0x0, {}, [@common=@ah={{0x30, 'ah\x00'}, {[0x4d3, 0x4d6], 0x800, 0xe0, 0x2}}]}, @unspec=@NOTRACK={0x20, 'NOTRACK\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3a8) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x7fffe, 0x0, 0x0, 0x41008, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) r2 = dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e26, 0x400000, @dev={0xfe, 0x80, [], 0x34}}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r2, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @private1={0xfc, 0x1, [], 0x1}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:20 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='co\x00\x00\x00\x00=0x0000000000000006,\x00']) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:15:20 executing program 3 (fault-call:0 fault-nth:0): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) [ 347.104479] FAULT_INJECTION: forcing a failure. [ 347.104479] name failslab, interval 1, probability 0, space 0, times 0 [ 347.119667] CPU: 0 PID: 29880 Comm: syz-executor.3 Not tainted 4.14.213-syzkaller #0 [ 347.127576] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 347.136947] Call Trace: [ 347.139553] dump_stack+0x1b2/0x283 [ 347.143191] should_fail.cold+0x10a/0x154 [ 347.147371] should_failslab+0xd6/0x130 [ 347.151390] __kmalloc+0x2c1/0x400 [ 347.154933] ? SyS_memfd_create+0xbc/0x3c0 [ 347.159282] SyS_memfd_create+0xbc/0x3c0 [ 347.163417] ? shmem_fcntl+0x120/0x120 [ 347.167289] ? __do_page_fault+0x159/0xad0 [ 347.171639] ? do_syscall_64+0x4c/0x640 [ 347.175683] ? shmem_fcntl+0x120/0x120 [ 347.179565] do_syscall_64+0x1d5/0x640 [ 347.183639] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 347.188859] RIP: 0033:0x45e219 [ 347.192040] RSP: 002b:00007fda58f1ca18 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 347.199911] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 000000000045e219 [ 347.207257] RDX: 0000000020000230 RSI: 0000000000000000 RDI: 00000000004c2c87 [ 347.214511] RBP: 0000000000020000 R08: 0000000020000230 R09: 0000000000000000 [ 347.221774] R10: fe03f80fe03f80ff R11: 0000000000000246 R12: 0000000000000002 [ 347.229030] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 13:15:20 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='co\x00\x00\x00\x00=0x0000000000000006,\x00']) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:15:20 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d07000000", 0x4c, 0x10000}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='c']) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) dup(r0) 13:15:20 executing program 3 (fault-call:0 fault-nth:1): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) 13:15:20 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f00000018c0), &(0x7f0000001cc0)=0xc) fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000001880)='system.posix_acl_default\x00', &(0x7f0000001d00)={{}, {0x1, 0x1}, [{}, {0x2, 0x1}, {0x2, 0x0, 0xee00}]}, 0x3c, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x9) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:20 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x0, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) [ 347.335056] FAULT_INJECTION: forcing a failure. [ 347.335056] name failslab, interval 1, probability 0, space 0, times 0 [ 347.350803] CPU: 0 PID: 29900 Comm: syz-executor.3 Not tainted 4.14.213-syzkaller #0 [ 347.358749] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 347.368118] Call Trace: [ 347.370727] dump_stack+0x1b2/0x283 [ 347.374370] should_fail.cold+0x10a/0x154 [ 347.378534] should_failslab+0xd6/0x130 [ 347.382517] kmem_cache_alloc+0x28e/0x3c0 [ 347.386675] __d_alloc+0x2a/0xa20 [ 347.390136] ? lock_downgrade+0x740/0x740 [ 347.394290] __shmem_file_setup.part.0+0xcb/0x3c0 [ 347.399139] ? shmem_create+0x30/0x30 [ 347.402943] ? __alloc_fd+0x1be/0x490 [ 347.406772] SyS_memfd_create+0x1fc/0x3c0 [ 347.410920] ? shmem_fcntl+0x120/0x120 [ 347.414896] ? __do_page_fault+0x159/0xad0 [ 347.419144] ? do_syscall_64+0x4c/0x640 [ 347.423120] ? shmem_fcntl+0x120/0x120 [ 347.427017] do_syscall_64+0x1d5/0x640 [ 347.430916] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 347.436112] RIP: 0033:0x45e219 [ 347.439305] RSP: 002b:00007fda58f1ca18 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 347.447014] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 000000000045e219 [ 347.454284] RDX: 0000000020000230 RSI: 0000000000000000 RDI: 00000000004c2c87 [ 347.461569] RBP: 0000000000020000 R08: 0000000020000230 R09: 0000000000000000 [ 347.468929] R10: fe03f80fe03f80ff R11: 0000000000000246 R12: 0000000000000002 [ 347.476202] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 13:15:21 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d07000000", 0x4c, 0x10000}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='c']) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) dup(r0) 13:15:21 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:15:21 executing program 3 (fault-call:0 fault-nth:2): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) 13:15:21 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) [ 347.723994] FAULT_INJECTION: forcing a failure. [ 347.723994] name failslab, interval 1, probability 0, space 0, times 0 [ 347.768419] CPU: 0 PID: 29940 Comm: syz-executor.3 Not tainted 4.14.213-syzkaller #0 [ 347.776356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 347.785715] Call Trace: [ 347.788331] dump_stack+0x1b2/0x283 [ 347.792064] should_fail.cold+0x10a/0x154 [ 347.796304] should_failslab+0xd6/0x130 [ 347.800280] kmem_cache_alloc+0x28e/0x3c0 [ 347.804438] ? shmem_destroy_callback+0xa0/0xa0 [ 347.809109] shmem_alloc_inode+0x18/0x40 [ 347.813166] ? shmem_destroy_callback+0xa0/0xa0 [ 347.817829] alloc_inode+0x5d/0x170 [ 347.821457] new_inode+0x1d/0xf0 [ 347.824912] shmem_get_inode+0x8b/0x890 [ 347.828894] __shmem_file_setup.part.0+0x104/0x3c0 [ 347.833821] ? shmem_create+0x30/0x30 [ 347.837619] ? __alloc_fd+0x1be/0x490 [ 347.841425] SyS_memfd_create+0x1fc/0x3c0 [ 347.845576] ? shmem_fcntl+0x120/0x120 [ 347.849470] ? __do_page_fault+0x159/0xad0 [ 347.853788] ? do_syscall_64+0x4c/0x640 [ 347.857755] ? shmem_fcntl+0x120/0x120 [ 347.861639] do_syscall_64+0x1d5/0x640 [ 347.865527] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 347.870714] RIP: 0033:0x45e219 [ 347.873983] RSP: 002b:00007fda58f1ca18 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 347.881694] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 000000000045e219 [ 347.888964] RDX: 0000000020000230 RSI: 0000000000000000 RDI: 00000000004c2c87 [ 347.896230] RBP: 0000000000020000 R08: 0000000020000230 R09: 0000000000000000 [ 347.903497] R10: fe03f80fe03f80ff R11: 0000000000000246 R12: 0000000000000002 [ 347.910800] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 13:15:21 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d0700000000000000000050000000000000101000"/113, 0x71, 0x10000}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='c']) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) dup(r0) 13:15:21 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:15:21 executing program 1: unshare(0x40000000) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(0xffffffffffffffff, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{}], 0x1, 0xef) close(0xffffffffffffffff) 13:15:21 executing program 3 (fault-call:0 fault-nth:3): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) [ 348.076589] FAULT_INJECTION: forcing a failure. [ 348.076589] name failslab, interval 1, probability 0, space 0, times 0 [ 348.108009] CPU: 1 PID: 29963 Comm: syz-executor.3 Not tainted 4.14.213-syzkaller #0 [ 348.115934] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 348.125439] Call Trace: [ 348.128039] dump_stack+0x1b2/0x283 [ 348.131674] should_fail.cold+0x10a/0x154 [ 348.135825] should_failslab+0xd6/0x130 [ 348.139804] kmem_cache_alloc+0x28e/0x3c0 [ 348.143955] get_empty_filp+0x86/0x3e0 [ 348.147840] alloc_file+0x23/0x440 [ 348.151380] __shmem_file_setup.part.0+0x198/0x3c0 [ 348.156303] ? shmem_create+0x30/0x30 [ 348.160123] ? __alloc_fd+0x1be/0x490 [ 348.163933] SyS_memfd_create+0x1fc/0x3c0 [ 348.168072] ? shmem_fcntl+0x120/0x120 [ 348.171969] ? __do_page_fault+0x159/0xad0 [ 348.176198] ? do_syscall_64+0x4c/0x640 [ 348.180182] ? shmem_fcntl+0x120/0x120 [ 348.184088] do_syscall_64+0x1d5/0x640 [ 348.187986] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 348.193170] RIP: 0033:0x45e219 [ 348.196349] RSP: 002b:00007fda58f1ca18 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 348.204095] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 000000000045e219 [ 348.211359] RDX: 0000000020000230 RSI: 0000000000000000 RDI: 00000000004c2c87 [ 348.218622] RBP: 0000000000020000 R08: 0000000020000230 R09: 0000000000000000 13:15:21 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x0, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) [ 348.225884] R10: fe03f80fe03f80ff R11: 0000000000000246 R12: 0000000000000002 [ 348.233145] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 13:15:21 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:15:21 executing program 3 (fault-call:0 fault-nth:4): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) 13:15:21 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000018c0), &(0x7f0000001cc0)=0xc) fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000001880)='system.posix_acl_default\x00', &(0x7f0000001d00)={{}, {0x1, 0x1}, [{}, {0x2, 0x1}, {0x2, 0x0, 0xee00}]}, 0x3c, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x9) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:22 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d0700000000000000000050000000000000101000"/113, 0x71, 0x10000}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='c']) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) dup(r0) [ 348.529919] FAULT_INJECTION: forcing a failure. [ 348.529919] name failslab, interval 1, probability 0, space 0, times 0 [ 348.551632] Buffer I/O error on dev loop4, logical block 0, async page read [ 348.588197] CPU: 0 PID: 29993 Comm: syz-executor.3 Not tainted 4.14.213-syzkaller #0 [ 348.596228] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 348.605601] Call Trace: [ 348.608195] dump_stack+0x1b2/0x283 [ 348.611829] should_fail.cold+0x10a/0x154 [ 348.615988] should_failslab+0xd6/0x130 [ 348.620059] kmem_cache_alloc_trace+0x29a/0x3d0 [ 348.624738] apparmor_file_alloc_security+0x129/0x800 [ 348.629966] security_file_alloc+0x66/0xa0 [ 348.634207] ? selinux_is_enabled+0x5/0x50 [ 348.638431] get_empty_filp+0x15c/0x3e0 [ 348.642392] alloc_file+0x23/0x440 [ 348.645928] __shmem_file_setup.part.0+0x198/0x3c0 [ 348.650844] ? shmem_create+0x30/0x30 [ 348.654648] ? __alloc_fd+0x1be/0x490 [ 348.658447] SyS_memfd_create+0x1fc/0x3c0 [ 348.662582] ? shmem_fcntl+0x120/0x120 [ 348.666453] ? __do_page_fault+0x159/0xad0 [ 348.670668] ? do_syscall_64+0x4c/0x640 [ 348.674621] ? shmem_fcntl+0x120/0x120 [ 348.678492] do_syscall_64+0x1d5/0x640 [ 348.682366] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 348.687556] RIP: 0033:0x45e219 [ 348.690726] RSP: 002b:00007fda58f1ca18 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 348.698443] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 000000000045e219 [ 348.705713] RDX: 0000000020000230 RSI: 0000000000000000 RDI: 00000000004c2c87 [ 348.712965] RBP: 0000000000020000 R08: 0000000020000230 R09: 0000000000000000 [ 348.720228] R10: fe03f80fe03f80ff R11: 0000000000000246 R12: 0000000000000002 [ 348.727520] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 13:15:22 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d0700000000000000000050000000000000101000"/113, 0x71, 0x10000}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='c']) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) dup(r0) 13:15:22 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:15:22 executing program 3 (fault-call:0 fault-nth:5): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) [ 348.845511] IPVS: ftp: loaded support on port[0] = 21 [ 348.898236] Buffer I/O error on dev loop5, logical block 0, async page read [ 348.903522] FAULT_INJECTION: forcing a failure. [ 348.903522] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 348.921993] CPU: 1 PID: 30023 Comm: syz-executor.3 Not tainted 4.14.213-syzkaller #0 [ 348.929997] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 348.939353] Call Trace: [ 348.941957] dump_stack+0x1b2/0x283 [ 348.945592] should_fail.cold+0x10a/0x154 [ 348.949752] __alloc_pages_nodemask+0x22c/0x2720 [ 348.954511] ? __lock_acquire+0x5fc/0x3f20 [ 348.958778] ? static_obj+0x50/0x50 [ 348.962441] ? trace_hardirqs_on+0x10/0x10 [ 348.967084] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 348.971926] ? __lock_acquire+0x5fc/0x3f20 [ 348.976141] ? __lock_acquire+0x5fc/0x3f20 [ 348.980396] ? __lock_acquire+0x5fc/0x3f20 [ 348.984630] alloc_pages_vma+0xd2/0x6d0 [ 348.988604] shmem_alloc_page+0xe0/0x180 [ 348.992731] ? shmem_swapin+0x180/0x180 [ 348.996695] ? __radix_tree_lookup+0x1b5/0x2e0 [ 349.001483] ? find_get_entry+0x312/0x630 [ 349.005630] ? check_preemption_disabled+0x35/0x240 [ 349.010647] ? __vm_enough_memory+0x261/0x520 [ 349.015149] shmem_alloc_and_acct_page+0x126/0x620 [ 349.020074] ? simple_xattr_get+0xe5/0x160 [ 349.024438] shmem_getpage_gfp+0x302/0x2810 [ 349.028850] ? simple_xattr_get+0xe5/0x160 [ 349.033086] ? shmem_alloc_and_acct_page+0x620/0x620 [ 349.038387] shmem_write_begin+0xeb/0x190 [ 349.042544] generic_perform_write+0x1c9/0x420 [ 349.047129] ? filemap_page_mkwrite+0x2d0/0x2d0 [ 349.051809] ? current_time+0xb0/0xb0 [ 349.055629] ? lock_acquire+0x170/0x3f0 [ 349.059619] __generic_file_write_iter+0x227/0x590 [ 349.064547] generic_file_write_iter+0x36f/0x650 [ 349.069288] __vfs_write+0x44c/0x630 [ 349.073048] ? do_truncate+0x129/0x1a0 [ 349.076924] ? kernel_read+0x110/0x110 [ 349.080816] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 349.085832] vfs_write+0x17f/0x4d0 [ 349.089470] SyS_pwrite64+0x116/0x140 [ 349.093311] ? SyS_pread64+0x140/0x140 [ 349.097198] ? fput+0xb/0x140 [ 349.100336] ? do_syscall_64+0x4c/0x640 [ 349.104298] ? SyS_pread64+0x140/0x140 [ 349.108232] do_syscall_64+0x1d5/0x640 [ 349.112139] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 349.117355] RIP: 0033:0x417d77 [ 349.120529] RSP: 002b:00007fda58f1ca10 EFLAGS: 00000293 ORIG_RAX: 0000000000000012 [ 349.128340] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000417d77 [ 349.135612] RDX: 0000000000000048 RSI: 0000000020010000 RDI: 0000000000000004 13:15:22 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d07000000000000000000500000000000001010000000000000000000000000000000000000000000000000010000000000d000000000000006000000", 0x84, 0x10000}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='c']) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) dup(r0) 13:15:22 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) [ 349.142861] RBP: 0000000000000000 R08: 0000000020000230 R09: 0000000000000000 [ 349.150126] R10: 0000000000010000 R11: 0000000000000293 R12: 0000000000000002 [ 349.157391] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000210 13:15:22 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:15:22 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d07000000000000000000500000000000001010000000000000000000000000000000000000000000000000010000000000d000000000000006000000", 0x84, 0x10000}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='c']) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) dup(r0) [ 349.282704] IPVS: ftp: loaded support on port[0] = 21 13:15:22 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f00000000c0)=""/6, 0x6) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x80000011e, 0x0, 0x0, 0xf8a11874cd0dd98a, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f00000001c0)={0x2000000000000012, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0xfffffde0, 0x5, 0x788) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x3c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f0000000080)='\x00', 0x1, 0x20000840, &(0x7f0000000240)={0xa, 0x1, 0x0, @ipv4={[], [], @private=0xa010102}}, 0x1c) poll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x80}], 0x1, 0xcf) close(r0) 13:15:22 executing program 3 (fault-call:0 fault-nth:6): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) [ 349.489561] FAULT_INJECTION: forcing a failure. [ 349.489561] name failslab, interval 1, probability 0, space 0, times 0 [ 349.500781] CPU: 0 PID: 30105 Comm: syz-executor.3 Not tainted 4.14.213-syzkaller #0 [ 349.508659] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 349.518010] Call Trace: [ 349.520602] dump_stack+0x1b2/0x283 [ 349.524235] should_fail.cold+0x10a/0x154 [ 349.528383] should_failslab+0xd6/0x130 [ 349.532346] kmem_cache_alloc+0x40/0x3c0 [ 349.536395] radix_tree_node_alloc.constprop.0+0x1b0/0x2f0 [ 349.542014] __radix_tree_create+0x323/0x4b0 [ 349.546411] __radix_tree_insert+0x98/0x4f0 [ 349.550715] ? __radix_tree_create+0x4b0/0x4b0 [ 349.555287] ? shmem_add_to_page_cache+0x1e7/0x730 [ 349.560213] shmem_add_to_page_cache+0x503/0x730 [ 349.564951] ? shmem_recalc_inode+0x2f0/0x2f0 [ 349.569427] ? __radix_tree_preload+0x1c3/0x250 [ 349.574095] shmem_getpage_gfp+0x115b/0x2810 [ 349.578488] ? simple_xattr_get+0xe5/0x160 [ 349.582713] ? shmem_alloc_and_acct_page+0x620/0x620 [ 349.587892] shmem_write_begin+0xeb/0x190 [ 349.592031] generic_perform_write+0x1c9/0x420 [ 349.596614] ? filemap_page_mkwrite+0x2d0/0x2d0 [ 349.601263] ? current_time+0xb0/0xb0 [ 349.605040] ? lock_acquire+0x170/0x3f0 [ 349.608994] __generic_file_write_iter+0x227/0x590 [ 349.614080] generic_file_write_iter+0x36f/0x650 [ 349.618819] __vfs_write+0x44c/0x630 [ 349.622529] ? do_truncate+0x129/0x1a0 [ 349.626395] ? kernel_read+0x110/0x110 [ 349.630279] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 349.635286] vfs_write+0x17f/0x4d0 [ 349.638810] SyS_pwrite64+0x116/0x140 [ 349.642596] ? SyS_pread64+0x140/0x140 [ 349.646475] ? fput+0xb/0x140 [ 349.649562] ? do_syscall_64+0x4c/0x640 [ 349.653516] ? SyS_pread64+0x140/0x140 [ 349.657390] do_syscall_64+0x1d5/0x640 [ 349.661272] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 349.666445] RIP: 0033:0x417d77 [ 349.669624] RSP: 002b:00007fda58f1ca10 EFLAGS: 00000293 ORIG_RAX: 0000000000000012 [ 349.677314] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000417d77 13:15:23 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:15:23 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000018c0), &(0x7f0000001cc0)=0xc) fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000001880)='system.posix_acl_default\x00', &(0x7f0000001d00)={{}, {0x1, 0x1}, [{}, {0x2, 0x1}, {0x2, 0x0, 0xee00}]}, 0x3c, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x9) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) [ 349.684562] RDX: 0000000000000048 RSI: 0000000020010000 RDI: 0000000000000004 [ 349.691811] RBP: 0000000000000000 R08: 0000000020000230 R09: 0000000000000000 [ 349.699156] R10: 0000000000010000 R11: 0000000000000293 R12: 0000000000000002 [ 349.706415] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000210 13:15:23 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d07000000000000000000500000000000001010000000000000000000000000000000000000000000000000010000000000d000000000000006000000", 0x84, 0x10000}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='c']) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) dup(r0) 13:15:23 executing program 3 (fault-call:0 fault-nth:7): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) 13:15:23 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, 0x0) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) [ 349.841592] print_req_error: 8 callbacks suppressed [ 349.841632] print_req_error: I/O error, dev loop5, sector 0 [ 349.933645] FAULT_INJECTION: forcing a failure. [ 349.933645] name failslab, interval 1, probability 0, space 0, times 0 [ 349.945724] CPU: 0 PID: 30137 Comm: syz-executor.3 Not tainted 4.14.213-syzkaller #0 [ 349.953691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 349.963053] Call Trace: [ 349.965651] dump_stack+0x1b2/0x283 [ 349.969307] should_fail.cold+0x10a/0x154 [ 349.973467] should_failslab+0xd6/0x130 [ 349.977450] kmem_cache_alloc+0x28e/0x3c0 [ 349.981601] getname_flags+0xc8/0x550 [ 349.985404] do_sys_open+0x1ce/0x410 [ 349.989124] ? filp_open+0x60/0x60 [ 349.992691] ? SyS_pwrite64+0xca/0x140 [ 349.996605] ? fput+0xb/0x140 [ 350.000060] ? do_syscall_64+0x4c/0x640 [ 350.004038] ? do_sys_open+0x410/0x410 [ 350.007931] do_syscall_64+0x1d5/0x640 [ 350.011844] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 350.017030] RIP: 0033:0x417d11 [ 350.020221] RSP: 002b:00007fda58f1ca10 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 13:15:23 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d07000000000000000000500000000000001010000000000000000000000000000000000000000000000000010000000000d000000000000006000000000000000100000000", 0x8d, 0x10000}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='c']) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) dup(r0) 13:15:23 executing program 3 (fault-call:0 fault-nth:8): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) [ 350.027931] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 0000000000417d11 [ 350.035205] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 00007fda58f1cad0 [ 350.042482] RBP: 0000000000000000 R08: 0000000020000230 R09: 0000000000000000 [ 350.049758] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 350.057122] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000240 [ 350.110059] FAULT_INJECTION: forcing a failure. [ 350.110059] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 350.121906] CPU: 1 PID: 30149 Comm: syz-executor.3 Not tainted 4.14.213-syzkaller #0 [ 350.129780] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 350.139127] Call Trace: [ 350.141707] dump_stack+0x1b2/0x283 [ 350.145317] should_fail.cold+0x10a/0x154 [ 350.149653] __alloc_pages_nodemask+0x22c/0x2720 [ 350.154400] ? __lock_acquire+0x5fc/0x3f20 [ 350.158629] ? generic_file_write_iter+0x437/0x650 [ 350.163729] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 350.168570] ? trace_hardirqs_on+0x10/0x10 [ 350.172796] ? lock_downgrade+0x740/0x740 [ 350.176939] ? up_write+0x17/0x60 [ 350.180376] ? generic_file_write_iter+0x2f8/0x650 [ 350.185284] ? iov_iter_init+0xa6/0x1c0 [ 350.189277] cache_grow_begin+0x8f/0x420 [ 350.193323] cache_alloc_refill+0x273/0x350 [ 350.197627] kmem_cache_alloc+0x333/0x3c0 [ 350.201776] getname_flags+0xc8/0x550 [ 350.205565] do_sys_open+0x1ce/0x410 [ 350.209280] ? filp_open+0x60/0x60 [ 350.212801] ? SyS_pwrite64+0xca/0x140 [ 350.216667] ? fput+0xb/0x140 [ 350.219753] ? do_syscall_64+0x4c/0x640 [ 350.223703] ? do_sys_open+0x410/0x410 [ 350.227569] do_syscall_64+0x1d5/0x640 [ 350.231440] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 350.236609] RIP: 0033:0x417d11 [ 350.239778] RSP: 002b:00007fda58f1ca10 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 350.247610] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 0000000000417d11 13:15:23 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) [ 350.254863] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 00007fda58f1cad0 [ 350.262111] RBP: 0000000000000000 R08: 0000000020000230 R09: 0000000000000000 [ 350.269362] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 350.276874] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000240 13:15:23 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, 0x0) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 13:15:23 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d07000000000000000000500000000000001010000000000000000000000000000000000000000000000000010000000000d000000000000006000000000000000100000000", 0x8d, 0x10000}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='c']) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) dup(r0) [ 350.348964] print_req_error: I/O error, dev loop4, sector 128 13:15:23 executing program 1: unshare(0x18000200) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r1 = creat(&(0x7f0000000080)='./file0\x00', 0x12a) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x0, &(0x7f0000000280)}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x240540c3, &(0x7f00000000c0)={0xa, 0x4e22, 0x0, @mcast1, 0x1}, 0x1c) sendto$inet6(r1, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @multicast1}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:24 executing program 3 (fault-call:0 fault-nth:9): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) [ 350.427531] print_req_error: I/O error, dev loop3, sector 128 [ 350.527339] FAULT_INJECTION: forcing a failure. [ 350.527339] name failslab, interval 1, probability 0, space 0, times 0 [ 350.561447] CPU: 0 PID: 30183 Comm: syz-executor.3 Not tainted 4.14.213-syzkaller #0 [ 350.569392] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 350.578783] Call Trace: [ 350.581399] dump_stack+0x1b2/0x283 [ 350.585053] should_fail.cold+0x10a/0x154 [ 350.589234] should_failslab+0xd6/0x130 [ 350.593227] kmem_cache_alloc+0x28e/0x3c0 [ 350.597383] get_empty_filp+0x86/0x3e0 [ 350.601271] path_openat+0x84/0x2970 [ 350.604997] ? trace_hardirqs_on+0x10/0x10 [ 350.609244] ? path_lookupat+0x780/0x780 [ 350.613313] ? trace_hardirqs_on+0x10/0x10 [ 350.617550] ? check_preemption_disabled+0x35/0x240 [ 350.622567] do_filp_open+0x179/0x3c0 [ 350.626379] ? may_open_dev+0xe0/0xe0 [ 350.630264] ? __alloc_fd+0x1be/0x490 [ 350.634068] ? lock_downgrade+0x740/0x740 [ 350.638213] ? do_raw_spin_unlock+0x164/0x220 [ 350.642705] ? _raw_spin_unlock+0x29/0x40 [ 350.646841] ? __alloc_fd+0x1be/0x490 [ 350.650630] do_sys_open+0x296/0x410 [ 350.654330] ? filp_open+0x60/0x60 [ 350.657854] ? do_syscall_64+0x4c/0x640 [ 350.661809] ? do_sys_open+0x410/0x410 [ 350.665691] do_syscall_64+0x1d5/0x640 [ 350.669570] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 350.674744] RIP: 0033:0x417d11 13:15:24 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, 0x0) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) [ 350.677916] RSP: 002b:00007fda58f1ca10 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 350.685622] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 0000000000417d11 [ 350.692935] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 00007fda58f1cad0 [ 350.700214] RBP: 0000000000000000 R08: 0000000020000230 R09: 0000000000000000 [ 350.707466] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 350.714720] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000240 13:15:24 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000001cc0)) fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000001880)='system.posix_acl_default\x00', &(0x7f0000001d00)={{}, {0x1, 0x1}, [{}, {0x2, 0x1}, {0x2, 0x0, 0xee00}]}, 0x3c, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x9) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:24 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d07000000000000000000500000000000001010000000000000000000000000000000000000000000000000010000000000d000000000000006000000000000000100000000", 0x8d, 0x10000}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='c']) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) dup(r0) 13:15:24 executing program 3 (fault-call:0 fault-nth:10): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) 13:15:24 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x7ffffe, 0x2010, 0xffffffffffffffff, 0x1f695000) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0xd4, 0x0, 0x0, 0x2000000, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x7fff}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback, 0x20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(0xffffffffffffffff, &(0x7f0000000080)="b7378d3a", 0x4, 0x80, &(0x7f0000000240)={0xa, 0xfffc, 0x2, @ipv4={[], [], @initdev={0xac, 0x1e, 0x4, 0x0}}}, 0x1c) poll(&(0x7f0000000000), 0x0, 0xef) close(r0) [ 350.782217] print_req_error: I/O error, dev loop4, sector 128 [ 350.839374] FAULT_INJECTION: forcing a failure. [ 350.839374] name failslab, interval 1, probability 0, space 0, times 0 [ 350.852151] CPU: 1 PID: 30210 Comm: syz-executor.3 Not tainted 4.14.213-syzkaller #0 [ 350.860148] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 350.869507] Call Trace: [ 350.872105] dump_stack+0x1b2/0x283 [ 350.875749] should_fail.cold+0x10a/0x154 [ 350.879911] should_failslab+0xd6/0x130 [ 350.883898] kmem_cache_alloc_trace+0x29a/0x3d0 [ 350.888580] apparmor_file_alloc_security+0x129/0x800 [ 350.893780] security_file_alloc+0x66/0xa0 [ 350.898028] ? selinux_is_enabled+0x5/0x50 [ 350.902274] get_empty_filp+0x15c/0x3e0 [ 350.906244] path_openat+0x84/0x2970 [ 350.909958] ? generic_file_write_iter+0x437/0x650 [ 350.914876] ? path_lookupat+0x780/0x780 [ 350.918942] ? trace_hardirqs_on+0x10/0x10 [ 350.923164] do_filp_open+0x179/0x3c0 [ 350.926953] ? may_open_dev+0xe0/0xe0 [ 350.930736] ? __alloc_fd+0x1be/0x490 [ 350.934518] ? lock_downgrade+0x740/0x740 [ 350.938647] ? do_raw_spin_unlock+0x164/0x220 [ 350.943126] ? _raw_spin_unlock+0x29/0x40 [ 350.947255] ? __alloc_fd+0x1be/0x490 [ 350.951057] do_sys_open+0x296/0x410 [ 350.954754] ? filp_open+0x60/0x60 [ 350.958276] ? SyS_pwrite64+0xca/0x140 [ 350.962146] ? fput+0xb/0x140 [ 350.965252] ? do_syscall_64+0x4c/0x640 [ 350.969209] ? do_sys_open+0x410/0x410 [ 350.973075] do_syscall_64+0x1d5/0x640 [ 350.976951] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 350.982131] RIP: 0033:0x417d11 13:15:24 executing program 3 (fault-call:0 fault-nth:11): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) [ 350.985320] RSP: 002b:00007fda58f1ca10 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 350.993023] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 0000000000417d11 [ 351.000277] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 00007fda58f1cad0 [ 351.007537] RBP: 0000000000000000 R08: 0000000020000230 R09: 0000000000000000 [ 351.014791] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 351.022043] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000240 13:15:24 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) [ 351.110689] FAULT_INJECTION: forcing a failure. [ 351.110689] name failslab, interval 1, probability 0, space 0, times 0 [ 351.124205] print_req_error: I/O error, dev loop3, sector 128 [ 351.125880] CPU: 1 PID: 30224 Comm: syz-executor.3 Not tainted 4.14.213-syzkaller #0 [ 351.137996] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 351.147435] Call Trace: [ 351.150015] dump_stack+0x1b2/0x283 [ 351.153714] should_fail.cold+0x10a/0x154 [ 351.157850] should_failslab+0xd6/0x130 [ 351.161855] kmem_cache_alloc+0x28e/0x3c0 [ 351.165992] __kernfs_new_node+0x6f/0x470 [ 351.170128] kernfs_create_dir_ns+0x8c/0x200 [ 351.174522] internal_create_group+0xe9/0x710 [ 351.179006] lo_ioctl+0x1137/0x1cd0 [ 351.182617] ? loop_set_status64+0xe0/0xe0 [ 351.186848] blkdev_ioctl+0x540/0x1830 [ 351.190720] ? blkpg_ioctl+0x8d0/0x8d0 [ 351.194588] ? trace_hardirqs_on+0x10/0x10 [ 351.198810] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 351.203895] ? debug_check_no_obj_freed+0x2c0/0x674 [ 351.208894] block_ioctl+0xd9/0x120 [ 351.212502] ? blkdev_fallocate+0x3a0/0x3a0 [ 351.216804] do_vfs_ioctl+0x75a/0xff0 [ 351.220606] ? ioctl_preallocate+0x1a0/0x1a0 [ 351.224993] ? lock_downgrade+0x740/0x740 [ 351.229126] ? __fget+0x225/0x360 [ 351.232568] ? do_vfs_ioctl+0xff0/0xff0 [ 351.236529] ? security_file_ioctl+0x83/0xb0 [ 351.240939] SyS_ioctl+0x7f/0xb0 [ 351.244373] ? do_vfs_ioctl+0xff0/0xff0 [ 351.248330] do_syscall_64+0x1d5/0x640 [ 351.252203] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 351.257385] RIP: 0033:0x45e087 13:15:24 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) [ 351.260646] RSP: 002b:00007fda58f1ca18 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 351.268339] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e087 [ 351.275608] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 351.282880] RBP: 0000000000000000 R08: 0000000020000230 R09: 0000000000000000 [ 351.290131] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 351.297393] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000240 13:15:24 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d07000000000000000000500000000000001010000000000000000000000000000000000000000000000000010000000000d0000000000000060000000000000001000000000000000010", 0x92, 0x10000}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='c']) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) dup(r0) [ 351.343855] print_req_error: I/O error, dev loop3, sector 128 13:15:24 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 13:15:24 executing program 3 (fault-call:0 fault-nth:12): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) 13:15:24 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d07000000000000000000500000000000001010000000000000000000000000000000000000000000000000010000000000d0000000000000060000000000000001000000000000000010", 0x92, 0x10000}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='c']) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) dup(r0) [ 351.429627] print_req_error: I/O error, dev loop3, sector 0 [ 351.511561] FAULT_INJECTION: forcing a failure. [ 351.511561] name failslab, interval 1, probability 0, space 0, times 0 [ 351.530357] CPU: 0 PID: 30254 Comm: syz-executor.3 Not tainted 4.14.213-syzkaller #0 [ 351.538269] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 351.547628] Call Trace: [ 351.550233] dump_stack+0x1b2/0x283 [ 351.553873] should_fail.cold+0x10a/0x154 [ 351.558032] should_failslab+0xd6/0x130 [ 351.562024] kmem_cache_alloc+0x28e/0x3c0 [ 351.566179] __kernfs_new_node+0x6f/0x470 [ 351.570424] kernfs_create_dir_ns+0x8c/0x200 [ 351.574839] internal_create_group+0xe9/0x710 [ 351.578960] print_req_error: I/O error, dev loop3, sector 128 [ 351.579343] lo_ioctl+0x1137/0x1cd0 [ 351.588834] ? loop_set_status64+0xe0/0xe0 [ 351.593065] blkdev_ioctl+0x540/0x1830 [ 351.596938] ? blkpg_ioctl+0x8d0/0x8d0 [ 351.600809] ? trace_hardirqs_on+0x10/0x10 [ 351.605039] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 351.610125] ? debug_check_no_obj_freed+0x2c0/0x674 [ 351.615127] block_ioctl+0xd9/0x120 [ 351.618737] ? blkdev_fallocate+0x3a0/0x3a0 [ 351.623068] do_vfs_ioctl+0x75a/0xff0 [ 351.626850] ? ioctl_preallocate+0x1a0/0x1a0 [ 351.631241] ? lock_downgrade+0x740/0x740 [ 351.635381] ? __fget+0x225/0x360 [ 351.638817] ? do_vfs_ioctl+0xff0/0xff0 [ 351.642776] ? security_file_ioctl+0x83/0xb0 [ 351.647254] SyS_ioctl+0x7f/0xb0 [ 351.650603] ? do_vfs_ioctl+0xff0/0xff0 [ 351.654560] do_syscall_64+0x1d5/0x640 [ 351.658435] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 351.663610] RIP: 0033:0x45e087 [ 351.666784] RSP: 002b:00007fda58f1ca18 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 351.674562] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e087 [ 351.681811] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 351.689077] RBP: 0000000000000000 R08: 0000000020000230 R09: 0000000000000000 [ 351.696340] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 351.703599] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000240 13:15:25 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000001cc0)) fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000001880)='system.posix_acl_default\x00', &(0x7f0000001d00)={{}, {0x1, 0x1}, [{}, {0x2, 0x1}, {0x2, 0x0, 0xee00}]}, 0x3c, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x9) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) [ 351.720272] print_req_error: I/O error, dev loop3, sector 128 13:15:25 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d07000000000000000000500000000000001010000000000000000000000000000000000000000000000000010000000000d0000000000000060000000000000001000000000000000010", 0x92, 0x10000}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='c']) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) dup(r0) 13:15:25 executing program 1: unshare(0x2000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x38, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(r1, 0x0, 0x0, 0x0, 0x2) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x200540c7, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @mcast2, 0x3}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) [ 351.783651] print_req_error: I/O error, dev loop4, sector 128 13:15:25 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 13:15:25 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(r0, &(0x7f0000000080)=""/6, 0x6) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(r0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0x2}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:25 executing program 3 (fault-call:0 fault-nth:13): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) 13:15:25 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d07000000000000000000500000000000001010000000000000000000000000000000000000000000000000010000000000d00000000000000600000000000000010000000000000000100000", 0x94, 0x10000}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='c']) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) dup(r0) [ 351.980176] FAULT_INJECTION: forcing a failure. [ 351.980176] name failslab, interval 1, probability 0, space 0, times 0 [ 352.011968] CPU: 1 PID: 30301 Comm: syz-executor.3 Not tainted 4.14.213-syzkaller #0 [ 352.019887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 352.029444] Call Trace: [ 352.030343] Buffer I/O error on dev loop3, logical block 0, async page read [ 352.032035] dump_stack+0x1b2/0x283 [ 352.032053] should_fail.cold+0x10a/0x154 [ 352.032067] should_failslab+0xd6/0x130 [ 352.040439] Buffer I/O error on dev loop3, logical block 0, async page read [ 352.042777] kmem_cache_alloc+0x28e/0x3c0 [ 352.042790] __kernfs_new_node+0x6f/0x470 [ 352.042802] kernfs_new_node+0x7b/0xe0 [ 352.050630] Buffer I/O error on dev loop3, logical block 0, async page read [ 352.050903] __kernfs_create_file+0x3d/0x320 [ 352.059274] Buffer I/O error on dev loop3, logical block 0, async page read [ 352.062116] sysfs_add_file_mode_ns+0x1e1/0x450 [ 352.062128] ? kernfs_create_dir_ns+0x171/0x200 [ 352.062139] internal_create_group+0x22b/0x710 [ 352.068202] Buffer I/O error on dev loop3, logical block 0, async page read [ 352.070168] lo_ioctl+0x1137/0x1cd0 [ 352.070183] ? loop_set_status64+0xe0/0xe0 [ 352.070196] blkdev_ioctl+0x540/0x1830 [ 352.078554] Buffer I/O error on dev loop3, logical block 0, async page read [ 352.081676] ? blkpg_ioctl+0x8d0/0x8d0 [ 352.081688] ? trace_hardirqs_on+0x10/0x10 [ 352.081700] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 352.081712] ? debug_check_no_obj_freed+0x2c0/0x674 [ 352.089004] Buffer I/O error on dev loop3, logical block 3, async page read [ 352.093481] block_ioctl+0xd9/0x120 [ 352.093491] ? blkdev_fallocate+0x3a0/0x3a0 [ 352.093502] do_vfs_ioctl+0x75a/0xff0 [ 352.093513] ? ioctl_preallocate+0x1a0/0x1a0 [ 352.170060] ? lock_downgrade+0x740/0x740 [ 352.174209] ? __fget+0x225/0x360 [ 352.177652] ? do_vfs_ioctl+0xff0/0xff0 [ 352.181607] ? security_file_ioctl+0x83/0xb0 [ 352.185999] SyS_ioctl+0x7f/0xb0 [ 352.189346] ? do_vfs_ioctl+0xff0/0xff0 [ 352.193315] do_syscall_64+0x1d5/0x640 [ 352.197203] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 352.202374] RIP: 0033:0x45e087 [ 352.205644] RSP: 002b:00007fda58f1ca18 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 352.213438] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e087 [ 352.220687] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 13:15:25 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) 13:15:25 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d07000000000000000000500000000000001010000000000000000000000000000000000000000000000000010000000000d0000000000000060000000000000001000000000000000010", 0x92, 0x10000}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='c']) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) dup(r0) [ 352.227969] RBP: 0000000000000000 R08: 0000000020000230 R09: 0000000000000000 [ 352.235221] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 352.242566] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000240 [ 352.266230] Buffer I/O error on dev loop3, logical block 0, async page read 13:15:25 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) 13:15:25 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d07000000000000000000500000000000001010000000000000000000000000000000000000000000000000010000000000d000000000000006000000000000000100000000000000", 0x90, 0x10000}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='c']) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) dup(r0) 13:15:26 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) 13:15:26 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000001cc0)) fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000001880)='system.posix_acl_default\x00', &(0x7f0000001d00)={{}, {0x1, 0x1}, [{}, {0x2, 0x1}, {0x2, 0x0, 0xee00}]}, 0x3c, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x9) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:26 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d07000000000000000000500000000000001010000000000000000000000000000000000000000000000000010000000000d00000000000000600000000000000010000000000", 0x8e, 0x10000}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='c']) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) dup(r0) 13:15:26 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) 13:15:26 executing program 3: r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/autofs\x00', 0x644800, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(r0, 0xc034564b, &(0x7f00000000c0)={0x0, 0x4745504d, 0x2, 0xffff, 0x2, @discrete={0x9, 0x2}}) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000100)="90e42e85000000000000000000000000000000000000000000000000002298d02d02044b4fa88bee4b8d3da88dc200000100000000000100d1c0bfc95bd88de6901d59865f04effe7cebfb4be4b0717644780b4f18c2f7f8b7a61eb46421d244d0fe8ecb4f1e18088725055598e2577a", 0x70, 0x10000}, {0x0, 0x0, 0x679}], 0x0, &(0x7f00000007c0)=ANY=[]) r1 = creat(&(0x7f0000000080)='./bus\x00', 0x0) ftruncate(r1, 0x208200) dup(r1) 13:15:26 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x1, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(r1, 0x0, 0x0, 0x0, 0xffffffff) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)="10", 0x1, 0x80c0, &(0x7f0000000240)={0xa, 0x0, 0x0, @empty}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:26 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d07000000000000000000500000000000001010000000000000000000000000000000000000000000000000010000000000d00000000000000600000000000000010000000000", 0x8e, 0x10000}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='c']) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) dup(r0) 13:15:26 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x0) 13:15:26 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) 13:15:26 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x4, 0x3, &(0x7f0000000140)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}, {&(0x7f0000000080)="6cf1bb6a270d9215bae493c51143db910a560af544d5b35260e450796ffb258ec35d4f595cd24731cce53818d9d2ec9d9ab19cdaead9471713f614ea4762eda892b92a02dceb36e2059e4d54bd13f5dd5e07732dfbb3e6dae48295fad4817fa4c94ec254751e1c79801033fbe229fefdcc8cea18f8426ebd75edb9999af0d24948afc8ad0b45b01f5517b7ef0b90", 0x8e, 0x7}], 0x200000, &(0x7f00000007c0)=ANY=[]) 13:15:26 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d07000000000000000000500000000000001010000000000000000000000000000000000000000000000000010000000000d00000000000000600000000000000010000000000", 0x8e, 0x10000}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='c']) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) dup(r0) 13:15:26 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x0) 13:15:26 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d07000000000000000000500000000000001010000000000000000000000000000000000000000000000000010000000000d0000000000000060000000000000001000000", 0x8c, 0x10000}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='c']) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) dup(r0) [ 353.562534] IPVS: ftp: loaded support on port[0] = 21 13:15:27 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000001880)='system.posix_acl_default\x00', &(0x7f0000001d00)={{}, {0x1, 0x1}, [{}, {0x2, 0x1}, {0x2, 0x0, 0xee00}]}, 0x3c, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x9) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:27 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x0) 13:15:27 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYRES64]) openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dlm-control\x00', 0x2000, 0x0) 13:15:27 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d07000000000000000000500000000000001010000000000000000000000000000000000000000000000000010000000000d0000000000000060000000000000001000000", 0x8c, 0x10000}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='c']) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) dup(r0) [ 353.611801] IPVS: ftp: loaded support on port[0] = 21 13:15:27 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d07000000000000000000500000000000001010000000000000000000000000000000000000000000000000010000000000d00000000000000600000000000000010000000000", 0x8e, 0x10000}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='c']) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) dup(r0) 13:15:27 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) unshare(0xc000500) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:27 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d07000000000000000000500000000000001010000000000000000000000000000000000000000000000000010000000000d0000000000000060000000000000001000000", 0x8c, 0x10000}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='c']) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) dup(r0) 13:15:27 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) 13:15:27 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d07000000000000000000500000000000001010000000000000000000000000000000000000000000000000010000000000d000000000000006000000000000000100000000", 0x8d, 0x10000}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='c']) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) dup(r0) 13:15:27 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d07000000000000000000500000000000001010000000000000000000000000000000000000000000000000010000000000d00000000000000600000000000000010000000000", 0x8e, 0x10000}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='c']) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) dup(r0) 13:15:27 executing program 3: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x800000, &(0x7f00000007c0)=ANY=[]) syz_mount_image$squashfs(&(0x7f0000000000)='squashfs\x00', &(0x7f00000000c0)='./file0\x00', 0xfffffffffffffbff, 0x4, &(0x7f0000001380)=[{&(0x7f0000000240)="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", 0x1000, 0x6}, {&(0x7f0000000100)="11fe9e368786736b7cbddf160312a09d862b4014fc6fb9e291367db8550f66738ea4dc6848e48b8e1072d0a48b4cca94159dc45873e319340e99ddf374b7e7de2c1621369161e4a638280d58d5ecb072ed605a556fad131a96112316d479c4f0d141294507a5e549214148fee00ac341073d46862e0eb02519df037e124b1560da7d3e3c7a21a9853626e4c3bc5091b1f982d534083bb2d145d985075a1d79e74223513d78fafc7d0c0d2122f1fa6c3428f66ea996ff5538a042b516f99e5c0e139d86be42bf4cd6c27ba19f7d0824", 0xcf, 0x7fffffff}, {&(0x7f0000001240)="81e93d5939e3f080f996a667b5da0eb3cf33aa08be34dbbc15ea74adb2ad6f84fdb910f4e345df52bd7a08d87a4b2f62f8872b151f573839304591062868c5a1cda87416556c7de8413f4d7bc0878ddfffcba82f70c21739bc7b69433a521382bbac34e24234c3f28a29256e10edd654cbe88071604dc2bbba67cbb37174d2fbaf3c8952e8121d4b45b3344f457943aa2e83cf9f526378a0eeb2ca970dc0f30ce8f5bd", 0xa3, 0x2}, {&(0x7f0000001300)="5d7da5691cfcbfbe6664d864d5bd8d9d493521a9ae3342ff7529ef77781f71d6e9012f07bc1a8a3a714a2be79538e99e0b3f2144d8a5193bfaed805b557c23082b23b6eccd77e3626ded7f302950861a274b7d19f6744344d472", 0x5a, 0x5}], 0x60050, &(0x7f0000001400)={[{'&#@-'}, {'\xf5['}], [{@appraise='appraise'}, {@appraise='appraise'}]}) ioctl$DRM_IOCTL_GET_CLIENT(0xffffffffffffffff, 0xc0286405, &(0x7f00000014c0)={0x3c, 0x8000, {0xffffffffffffffff}, {0xee00}, 0x2, 0x6}) newfstatat(0xffffffffffffff9c, &(0x7f0000000440)='./file0\x00', &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x7000) chown(&(0x7f0000000400)='./file0\x00', r1, 0xffffffffffffffff) read$FUSE(0xffffffffffffffff, &(0x7f0000001500)={0x2020, 0x0, 0x0, 0x0}, 0x2020) r3 = open(&(0x7f0000000400)='./bus\x00', 0x14103e, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, r3, 0x0) read(r3, &(0x7f0000000180)=""/19, 0xfffffe47) ioctl$BTRFS_IOC_GET_FEATURES(r3, 0x80189439, &(0x7f0000003680)) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, 0x0) setregid(r4, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, 0x0) setregid(r5, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000003540)={0x0, 0x0, 0x0}, &(0x7f0000003580)=0xc) lsetxattr$system_posix_acl(&(0x7f0000001440)='./file0/file0\x00', &(0x7f0000001480)='system.posix_acl_access\x00', &(0x7f00000035c0)={{}, {}, [{0x2, 0x5}, {0x2, 0x2, r0}, {0x2, 0x2, r1}, {0x2, 0x2, 0xee01}, {0x2, 0x1, 0xee01}, {0x2, 0x1, r2}], {0x4, 0x2}, [{0x8, 0x4, r4}, {0x8, 0x0, 0xffffffffffffffff}, {0x8, 0x4}, {0x8, 0x7, r5}, {0x8, 0x5, 0xee01}, {0x8, 0x2, r6}], {0x10, 0x5}, {0x20, 0x2}}, 0x84, 0x0) 13:15:27 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d07000000000000000000500000000000001010000000000000000000000000000000000000000000000000010000000000d0000000000000060000000000000001000000", 0x8c, 0x10000}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='c']) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) dup(r0) 13:15:28 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d07000000000000000000500000000000001010000000000000000000000000000000000000000000000000010000000000d000000000000006000000000000000100000000", 0x8d, 0x10000}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='c']) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) dup(r0) 13:15:28 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) r0 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vsock\x00', 0x82000, 0x0) getdents(r0, &(0x7f00000000c0)=""/189, 0xbd) 13:15:28 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, &(0x7f0000001d00)={{}, {0x1, 0x1}, [{}, {0x2, 0x1}, {0x2, 0x0, 0xee00}]}, 0x3c, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x9) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:28 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d07000000000000000000500000000000001010000000000000000000000000000000000000000000000000010000000000d0000000000000060000000000000001000000000000000010", 0x92, 0x10000}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='c']) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) dup(r0) 13:15:28 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d07000000000000000000500000000000001010000000000000000000000000000000000000000000000000010000000000d000000000000006000000000000000100000000", 0x8d, 0x10000}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='c']) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) dup(r0) 13:15:28 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d07000000", 0x4c, 0x10000}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='c']) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) dup(r0) 13:15:28 executing program 1: unshare(0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) [ 354.917444] print_req_error: 40 callbacks suppressed [ 354.917450] print_req_error: I/O error, dev loop4, sector 0 13:15:28 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000), 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) 13:15:28 executing program 3: ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x2400, 0x401) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cachefiles\x00', 0x10400, 0x0) sendmsg$AUDIT_MAKE_EQUIV(r0, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x94658baa1b744486}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x28, 0x3f7, 0x200, 0x70bd2c, 0x25dfdbfd, {0x7, 0x7, './file1', './file0'}, [""]}, 0x28}, 0x1, 0x0, 0x0, 0x40000}, 0x20004000) sendmsg$nl_route(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@bridge_delvlan={0x24, 0x71, 0x1, 0x70bd29, 0x25dfdbfb, {}, [@BRIDGE_VLANDB_ENTRY={0xc, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_INFO={0x8, 0x1, {0xa, 0x2}}}]}, 0x24}}, 0x40) 13:15:28 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x17, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x8000000, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @mcast2}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:28 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d07000000000000000000500000000000001010000000000000000000000000000000000000000000000000010000000000d00000000000000600000000000000010000000000", 0x8e}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='c']) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) dup(r0) 13:15:28 executing program 5 (fault-call:0 fault-nth:0): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) [ 355.032476] FAULT_INJECTION: forcing a failure. [ 355.032476] name failslab, interval 1, probability 0, space 0, times 0 [ 355.049795] CPU: 0 PID: 30656 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 355.057723] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 355.067083] Call Trace: [ 355.069686] dump_stack+0x1b2/0x283 [ 355.073353] should_fail.cold+0x10a/0x154 [ 355.077530] should_failslab+0xd6/0x130 [ 355.081493] __kmalloc+0x2c1/0x400 [ 355.085626] ? SyS_memfd_create+0xbc/0x3c0 [ 355.089854] SyS_memfd_create+0xbc/0x3c0 [ 355.093912] ? shmem_fcntl+0x120/0x120 [ 355.097964] ? __do_page_fault+0x159/0xad0 [ 355.102192] ? do_syscall_64+0x4c/0x640 [ 355.106152] ? shmem_fcntl+0x120/0x120 [ 355.110150] do_syscall_64+0x1d5/0x640 [ 355.114032] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 355.119209] RIP: 0033:0x45e219 [ 355.122383] RSP: 002b:00007fe27cb4fa18 EFLAGS: 00000246 ORIG_RAX: 000000000000013f 13:15:28 executing program 5 (fault-call:0 fault-nth:1): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) [ 355.130074] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 000000000045e219 [ 355.137349] RDX: 0000000020000218 RSI: 0000000000000000 RDI: 00000000004c2c87 [ 355.144614] RBP: 0000000000020000 R08: 0000000020000218 R09: 0000000000000000 [ 355.151869] R10: fe03f80fe03f80ff R11: 0000000000000246 R12: 0000000000000001 [ 355.159125] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 [ 355.237337] FAULT_INJECTION: forcing a failure. [ 355.237337] name failslab, interval 1, probability 0, space 0, times 0 [ 355.261482] CPU: 0 PID: 30673 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 355.269524] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 355.278884] Call Trace: [ 355.281486] dump_stack+0x1b2/0x283 [ 355.285227] should_fail.cold+0x10a/0x154 [ 355.289385] should_failslab+0xd6/0x130 [ 355.293365] kmem_cache_alloc+0x28e/0x3c0 [ 355.297526] __d_alloc+0x2a/0xa20 [ 355.300975] ? lock_downgrade+0x740/0x740 [ 355.305125] __shmem_file_setup.part.0+0xcb/0x3c0 [ 355.309965] ? shmem_create+0x30/0x30 [ 355.313760] ? __alloc_fd+0x1be/0x490 [ 355.317565] SyS_memfd_create+0x1fc/0x3c0 [ 355.321728] ? shmem_fcntl+0x120/0x120 [ 355.325612] ? __do_page_fault+0x159/0xad0 [ 355.329966] ? do_syscall_64+0x4c/0x640 [ 355.333931] ? shmem_fcntl+0x120/0x120 [ 355.337805] do_syscall_64+0x1d5/0x640 [ 355.341686] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 355.346859] RIP: 0033:0x45e219 [ 355.350043] RSP: 002b:00007fe27cb4fa18 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 355.357870] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 000000000045e219 [ 355.365139] RDX: 0000000020000218 RSI: 0000000000000000 RDI: 00000000004c2c87 [ 355.372416] RBP: 0000000000020000 R08: 0000000020000218 R09: 0000000000000000 [ 355.379685] R10: fe03f80fe03f80ff R11: 0000000000000246 R12: 0000000000000001 [ 355.386936] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 [ 355.487473] print_req_error: I/O error, dev loop3, sector 0 13:15:29 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x9) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:29 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d07000000000000000000500000000000001010000000000000000000000000000000000000000000000000010000000000d00000000000000600000000000000010000000000", 0x8e}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='c']) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) dup(r0) 13:15:29 executing program 5 (fault-call:0 fault-nth:2): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:15:29 executing program 3: prctl$PR_CAPBSET_DROP(0x18, 0x8) syz_genetlink_get_family_id$devlink(&(0x7f0000000180)='devlink\x00') syz_genetlink_get_family_id$devlink(&(0x7f0000000140)='devlink\x00') r0 = syz_genetlink_get_family_id$devlink(&(0x7f0000000100)='devlink\x00') r1 = creat(&(0x7f0000000080)='./bus\x00', 0x0) ftruncate(r1, 0x208200) sendmsg$DEVLINK_CMD_SB_PORT_POOL_GET(r1, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000040)={&(0x7f0000000300)=ANY=[@ANYBLOB="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", @ANYRES16=r0, @ANYBLOB="010025bd7000ffdbdf2513000000080001007063690011000200303030303a30303a31302e3000000000080003000000000008000b00800000000600110001000000"], 0x48}, 0x1, 0x0, 0x0, 0x4001}, 0x4000080) rename(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00') 13:15:29 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) unshare(0x200) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000000c0)="22aa5d86e1ba868d807d87f9b3be2d0cb915a5e33ffe4b3c248f30119acc726f801dca96b359caec9b4f9ed2b79fc20f1107cbd57d96595d3b0ff88b021494a269aae6fff6ac75d0a329399e6ee55b891c04038dc57ea3ea4795e2ed34b99ef496e7505d964b98b6451b6e8b376d9ce50000", 0x72, 0x20000805, &(0x7f0000000080)={0xa, 0x0, 0x8000000, @ipv4={[], [], @dev={0xac, 0x14, 0x14, 0x24}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) [ 355.598645] FAULT_INJECTION: forcing a failure. [ 355.598645] name failslab, interval 1, probability 0, space 0, times 0 [ 355.625210] CPU: 1 PID: 30697 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 355.633140] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 355.642499] Call Trace: [ 355.645099] dump_stack+0x1b2/0x283 13:15:29 executing program 3: ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'batadv_slave_1\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f00000000c0)={@private2, 0x0, r0}) sendmsg$ETHTOOL_MSG_LINKINFO_SET(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c010000", @ANYRES16, @ANYBLOB="000828bd7000ffdbdf25030000000c00018008000100", @ANYRES32=0x0, @ANYBLOB="050003000700000005000500020000007c0001800800030001000000140002006970766c616e310000000000000000001400020076657468305f746f5f626f6e640000001400020076657468315f766c616e00000000000008000100", @ANYRES32, @ANYBLOB="08000100", @ANYRES32, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="140002006d6163736563a5c6900a0000000000000500050000000000050003000600000060000180280003000200000008000100", @ANYRES32=r0, @ANYBLOB="14000200697036677265300000000000000000000800030001000000140002007767320000000000000000000000000008132d00", @ANYRES32=0x0, @ANYBLOB="140002007465616d5f736c6176655f3100000000"], 0x11c}, 0x1, 0x0, 0x0, 0x8000001}, 0x20044040) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f00000002c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=ANY=[@ANYBLOB="380000002400ffffff7f000000003c0005000000", @ANYRES32=r3, @ANYBLOB="00000000ffffffff00000000090001006866736300000000080002"], 0x38}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000005c0)=ANY=[@ANYBLOB="900000002c00270d00"/20, @ANYRES32=r3, @ANYBLOB="f7ff0000000000000e00000007000100667700005c00020058000400540001000b00010073696d706c650000280002800c0003007463696e6465780018000200"], 0x90}}, 0x0) ioctl$sock_ipv6_tunnel_SIOCADD6RD(0xffffffffffffffff, 0x89f9, &(0x7f00000001c0)={'syztnl2\x00', &(0x7f0000000240)={'syztnl1\x00', 0x0, 0x0, 0x6, 0xf8, 0x0, 0x6, @empty, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x1, 0x7, 0x1, 0x5}}) r5 = socket$netlink(0x10, 0x3, 0x0) r6 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r6, &(0x7f00000002c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r7, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=ANY=[@ANYBLOB="380000002400ffffff7f000000003c0005000000", @ANYRES32=r7, @ANYBLOB="00000000ffffffff00000000090001006866736300000000080002"], 0x38}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000005c0)=ANY=[@ANYBLOB="900000002c00270d00"/20, @ANYRES32=r7, @ANYBLOB="f7ff0000000000000e00000007000100667700005c00020058000400540001000b00010073696d706c650000280002800c0003007463696e6465780018000200"], 0x90}}, 0x0) sendmsg$ETHTOOL_MSG_COALESCE_GET(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000440)={&(0x7f00000002c0)={0x150, 0x0, 0x8, 0x70bd2b, 0x25dfdbfb, {}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x7c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6erspan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'sit0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6gre0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}, @HEADER={0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'tunl0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x7}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'nr0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_hsr\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'rose0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}]}, 0x150}, 0x1, 0x0, 0x0, 0x24008081}, 0x5) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) [ 355.648910] should_fail.cold+0x10a/0x154 [ 355.653072] should_failslab+0xd6/0x130 [ 355.657056] kmem_cache_alloc+0x28e/0x3c0 [ 355.661210] ? shmem_destroy_callback+0xa0/0xa0 [ 355.666173] shmem_alloc_inode+0x18/0x40 [ 355.670239] ? shmem_destroy_callback+0xa0/0xa0 [ 355.674910] alloc_inode+0x5d/0x170 [ 355.678622] new_inode+0x1d/0xf0 [ 355.681999] shmem_get_inode+0x8b/0x890 [ 355.685976] __shmem_file_setup.part.0+0x104/0x3c0 [ 355.686418] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'. [ 355.691010] ? shmem_create+0x30/0x30 [ 355.691019] ? __alloc_fd+0x1be/0x490 [ 355.691033] SyS_memfd_create+0x1fc/0x3c0 [ 355.691041] ? shmem_fcntl+0x120/0x120 [ 355.691050] ? __do_page_fault+0x159/0xad0 [ 355.691060] ? do_syscall_64+0x4c/0x640 [ 355.723372] ? shmem_fcntl+0x120/0x120 [ 355.727259] do_syscall_64+0x1d5/0x640 [ 355.731149] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 355.736331] RIP: 0033:0x45e219 [ 355.739517] RSP: 002b:00007fe27cb4fa18 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 355.739539] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'. [ 355.747218] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 000000000045e219 [ 355.747224] RDX: 0000000020000218 RSI: 0000000000000000 RDI: 00000000004c2c87 [ 355.747229] RBP: 0000000000020000 R08: 0000000020000218 R09: 0000000000000000 [ 355.747234] R10: fe03f80fe03f80ff R11: 0000000000000246 R12: 0000000000000001 [ 355.747240] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 [ 355.809169] print_req_error: I/O error, dev loop0, sector 0 [ 355.818725] print_req_error: I/O error, dev loop4, sector 0 13:15:29 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d07000000000000000000500000000000001010000000000000000000000000000000000000000000000000010000000000d00000000000000600000000000000010000000000", 0x8e}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='c']) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) dup(r0) 13:15:29 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000), 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) 13:15:29 executing program 5 (fault-call:0 fault-nth:3): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) [ 355.948887] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'. [ 355.991539] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'. [ 356.004201] FAULT_INJECTION: forcing a failure. [ 356.004201] name failslab, interval 1, probability 0, space 0, times 0 [ 356.018017] CPU: 1 PID: 30749 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 356.025912] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 356.035267] Call Trace: [ 356.037857] dump_stack+0x1b2/0x283 [ 356.041490] should_fail.cold+0x10a/0x154 [ 356.045646] should_failslab+0xd6/0x130 [ 356.049637] kmem_cache_alloc+0x28e/0x3c0 [ 356.053789] get_empty_filp+0x86/0x3e0 [ 356.057680] alloc_file+0x23/0x440 [ 356.061309] __shmem_file_setup.part.0+0x198/0x3c0 [ 356.066233] ? shmem_create+0x30/0x30 [ 356.070092] ? __alloc_fd+0x1be/0x490 [ 356.073910] SyS_memfd_create+0x1fc/0x3c0 [ 356.078053] ? shmem_fcntl+0x120/0x120 [ 356.081961] ? __do_page_fault+0x159/0xad0 [ 356.086565] ? do_syscall_64+0x4c/0x640 [ 356.090532] ? shmem_fcntl+0x120/0x120 [ 356.094411] do_syscall_64+0x1d5/0x640 [ 356.098321] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 356.104047] RIP: 0033:0x45e219 [ 356.107228] RSP: 002b:00007fe27cb4fa18 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 356.115004] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 000000000045e219 [ 356.122367] RDX: 0000000020000218 RSI: 0000000000000000 RDI: 00000000004c2c87 [ 356.129619] RBP: 0000000000020000 R08: 0000000020000218 R09: 0000000000000000 13:15:29 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d07000000000000000000500000000000001010000000000000000000000000000000000000000000000000010000000000d00000000000000600000000000000010000000000", 0x8e, 0x10000}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) dup(r0) [ 356.136878] R10: fe03f80fe03f80ff R11: 0000000000000246 R12: 0000000000000001 [ 356.144234] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 13:15:29 executing program 5 (fault-call:0 fault-nth:4): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:15:29 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x6000) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, 0x0) setregid(r1, 0x0) mount$fuse(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='fuse\x00', 0x1000, &(0x7f0000000240)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=r0, @ANYBLOB=',group_id=', @ANYRESDEC=r1, @ANYBLOB="2c616c6c6ff389c8775f6f746865722c6d61785f726561643d3078303030303030303030303030303030362c6d61785f726561643d3078303030303030303030303030303030382c626c6b73697a653d3078303030303030303030303030303430302c6d61785f726561643d3078303030303030303030303030643430632c64656661756c745f7065726d697373696f6e732c6d61785f726561643d3078303030303030303030303030303030342c736d61636b66737472616e736d7574653d6274726673"]) r2 = open(&(0x7f0000000400)='./bus\x00', 0x14103e, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, r2, 0x0) read(r2, &(0x7f0000000180)=""/19, 0xfffffe47) r3 = open(&(0x7f0000000400)='./bus\x00', 0x14103e, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, r3, 0x0) read(r3, &(0x7f0000000180)=""/19, 0xfffffe47) dup2(r2, r3) [ 356.300315] FAULT_INJECTION: forcing a failure. [ 356.300315] name failslab, interval 1, probability 0, space 0, times 0 [ 356.349906] CPU: 1 PID: 30770 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 356.357822] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 356.367175] Call Trace: [ 356.369766] dump_stack+0x1b2/0x283 [ 356.373395] should_fail.cold+0x10a/0x154 [ 356.377631] should_failslab+0xd6/0x130 [ 356.381603] kmem_cache_alloc_trace+0x29a/0x3d0 [ 356.386271] apparmor_file_alloc_security+0x129/0x800 [ 356.391579] security_file_alloc+0x66/0xa0 [ 356.395818] ? selinux_is_enabled+0x5/0x50 [ 356.400044] get_empty_filp+0x15c/0x3e0 [ 356.404016] alloc_file+0x23/0x440 [ 356.407555] __shmem_file_setup.part.0+0x198/0x3c0 [ 356.412483] ? shmem_create+0x30/0x30 [ 356.416297] ? __alloc_fd+0x1be/0x490 [ 356.420101] SyS_memfd_create+0x1fc/0x3c0 [ 356.424257] ? shmem_fcntl+0x120/0x120 [ 356.428218] ? __do_page_fault+0x159/0xad0 [ 356.432470] ? do_syscall_64+0x4c/0x640 [ 356.436521] ? shmem_fcntl+0x120/0x120 [ 356.440400] do_syscall_64+0x1d5/0x640 [ 356.444277] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 356.449468] RIP: 0033:0x45e219 [ 356.452640] RSP: 002b:00007fe27cb4fa18 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 356.460335] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 000000000045e219 [ 356.467586] RDX: 0000000020000218 RSI: 0000000000000000 RDI: 00000000004c2c87 [ 356.474861] RBP: 0000000000020000 R08: 0000000020000218 R09: 0000000000000000 [ 356.482113] R10: fe03f80fe03f80ff R11: 0000000000000246 R12: 0000000000000001 [ 356.489364] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 [ 356.608926] IPVS: ftp: loaded support on port[0] = 21 [ 356.627129] print_req_error: I/O error, dev loop4, sector 0 [ 356.628764] print_req_error: I/O error, dev loop4, sector 128 [ 356.696851] IPVS: ftp: loaded support on port[0] = 21 13:15:30 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x9) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:30 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d07000000000000000000500000000000001010000000000000000000000000000000000000000000000000010000000000d00000000000000600000000000000010000000000", 0x8e, 0x10000}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) dup(r0) 13:15:30 executing program 5 (fault-call:0 fault-nth:5): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:15:30 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x10, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x4, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) r1 = dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r1, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @ipv4={[], [], @multicast1}}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0), 0x0, 0x1, &(0x7f0000000240)={0xa, 0x2, 0x4, @loopback}, 0x1c) close(r0) 13:15:30 executing program 3: r0 = syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) lstat(&(0x7f0000000180)='./file0\x00', &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) chown(&(0x7f0000000140)='./file0\x00', r1, 0xffffffffffffffff) renameat2(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000000100)='./file0\x00', 0x7) newfstatat(0xffffffffffffff9c, &(0x7f0000000440)='./file0\x00', &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x7000) chown(&(0x7f0000000400)='./file0\x00', r3, 0xffffffffffffffff) mount$fuse(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='fuse\x00', 0x4008, &(0x7f0000000500)=ANY=[@ANYBLOB="1a2e3d", @ANYRESHEX, @ANYBLOB="2c726f6f746d6f64653d30303030303030303030303030303030303130303030302c757365725f69643d21ecbb9b56c58afb353150d9de26b15c72a75791368de8750ad170ba8fe04f4380771f25bd02d865d2a274aa844da99a2133d2ceb0fb8bac2ac790f3d4b1106231396ec22c18fa42b030aa177805235c6181be42f30e54b49af5f4187b026ba9a735bfec73a9307664c3ad5f06c99ea3adba212d9f157e5d7542e7f86d20645b837231c56cde22645b3652f2782e1aafc17483760108392dfa02fa45caf754233cd2a625b89009c7a0fe40c9c06bdc78f6048a59036d35d76f2db03e7e05a635b82614e5b1", @ANYRESDEC=r1, @ANYBLOB=',group_id=', @ANYRESDEC=r2, @ANYBLOB=',max_read=0x0000000000000007,default_permissions,fowner>', @ANYRESDEC=r3, @ANYBLOB=',obj_user=btrfs\x00,\x00']) r4 = dup3(r0, r0, 0x0) r5 = creat(&(0x7f00000001c0)='./bus\x00', 0x0) truncate(&(0x7f0000000100)='./bus\x00', 0x1) r6 = open(&(0x7f0000000440)='./bus\x00', 0xe500, 0x0) dup3(r6, r5, 0x0) io_setup(0x5, &(0x7f0000000300)=0x0) io_submit(r7, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, r5, &(0x7f0000000000), 0x200a00}]) r8 = syz_mount_image$afs(&(0x7f00000002c0)='afs\x00', &(0x7f0000000300)='./file0\x00', 0x400, 0x1, &(0x7f0000000340)=[{&(0x7f00000006c0)="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", 0x1000}], 0x1040080, &(0x7f0000000380)={[{@flock_local='flock=local'}, {@autocell='autocell'}, {@flock_local='flock=local'}, {@flock_local='flock=local'}, {@flock_openafs='flock=openafs'}, {@flock_strict='flock=strict'}, {@autocell='autocell'}], [{@defcontext={'defcontext', 0x3d, 'staff_u'}}]}) fanotify_mark(r4, 0x84, 0x1, r8, &(0x7f00000016c0)='./file0\x00') statx(r4, &(0x7f0000001700)='./file0\x00', 0x4100, 0x80, &(0x7f0000001740)) [ 356.777479] FAULT_INJECTION: forcing a failure. [ 356.777479] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 356.790143] CPU: 1 PID: 30830 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 356.798144] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 356.807537] Call Trace: [ 356.810220] dump_stack+0x1b2/0x283 [ 356.813840] should_fail.cold+0x10a/0x154 [ 356.817996] __alloc_pages_nodemask+0x22c/0x2720 [ 356.822830] ? __lock_acquire+0x5fc/0x3f20 [ 356.827062] ? static_obj+0x50/0x50 [ 356.830776] ? trace_hardirqs_on+0x10/0x10 [ 356.834990] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 356.839816] ? __lock_acquire+0x5fc/0x3f20 [ 356.844120] ? __lock_acquire+0x5fc/0x3f20 [ 356.848338] ? __lock_acquire+0x5fc/0x3f20 [ 356.852570] alloc_pages_vma+0xd2/0x6d0 [ 356.856530] shmem_alloc_page+0xe0/0x180 [ 356.860581] ? shmem_swapin+0x180/0x180 [ 356.864543] ? __radix_tree_lookup+0x1b5/0x2e0 [ 356.869127] ? find_get_entry+0x312/0x630 [ 356.873260] ? check_preemption_disabled+0x35/0x240 [ 356.878262] ? __vm_enough_memory+0x261/0x520 [ 356.882773] shmem_alloc_and_acct_page+0x126/0x620 [ 356.887685] ? simple_xattr_get+0xe5/0x160 [ 356.891902] shmem_getpage_gfp+0x302/0x2810 [ 356.896225] ? simple_xattr_get+0xe5/0x160 [ 356.900441] ? shmem_alloc_and_acct_page+0x620/0x620 [ 356.905539] shmem_write_begin+0xeb/0x190 [ 356.909675] generic_perform_write+0x1c9/0x420 [ 356.914243] ? filemap_page_mkwrite+0x2d0/0x2d0 [ 356.918891] ? current_time+0xb0/0xb0 [ 356.922933] ? lock_acquire+0x170/0x3f0 [ 356.926889] __generic_file_write_iter+0x227/0x590 [ 356.931857] generic_file_write_iter+0x36f/0x650 [ 356.936599] __vfs_write+0x44c/0x630 [ 356.940297] ? do_truncate+0x129/0x1a0 [ 356.944192] ? kernel_read+0x110/0x110 [ 356.948077] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 356.953079] vfs_write+0x17f/0x4d0 [ 356.956616] SyS_pwrite64+0x116/0x140 [ 356.960409] ? SyS_pread64+0x140/0x140 [ 356.964285] ? fput+0xb/0x140 [ 356.967373] ? do_syscall_64+0x4c/0x640 [ 356.971329] ? SyS_pread64+0x140/0x140 [ 356.975200] do_syscall_64+0x1d5/0x640 [ 356.979076] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 356.984246] RIP: 0033:0x417d77 [ 356.987862] RSP: 002b:00007fe27cb4fa10 EFLAGS: 00000293 ORIG_RAX: 0000000000000012 [ 356.995553] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000417d77 [ 357.002803] RDX: 0000000000000048 RSI: 0000000020010000 RDI: 0000000000000004 [ 357.010054] RBP: 0000000000000000 R08: 0000000020000218 R09: 0000000000000000 [ 357.017308] R10: 0000000000010000 R11: 0000000000000293 R12: 0000000000000001 13:15:30 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000), 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) [ 357.024571] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000210 13:15:30 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x100010, 0xffffffffffffffff, 0xfffff000) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) r1 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) r2 = dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) ioctl$FIONREAD(r2, 0x541b, &(0x7f0000000000)) poll(&(0x7f00000000c0)=[{r0, 0x721}, {0xffffffffffffffff, 0x10c0}, {r1, 0x404}], 0x3, 0xef) close(r0) 13:15:30 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d07000000000000000000500000000000001010000000000000000000000000000000000000000000000000010000000000d00000000000000600000000000000010000000000", 0x8e, 0x10000}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) dup(r0) 13:15:30 executing program 5 (fault-call:0 fault-nth:6): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) [ 357.177375] print_req_error: I/O error, dev loop4, sector 128 [ 357.187021] FAULT_INJECTION: forcing a failure. [ 357.187021] name failslab, interval 1, probability 0, space 0, times 0 [ 357.198242] CPU: 1 PID: 30859 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 357.206131] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 357.215483] Call Trace: [ 357.218094] dump_stack+0x1b2/0x283 [ 357.221740] should_fail.cold+0x10a/0x154 [ 357.225893] should_failslab+0xd6/0x130 [ 357.229873] kmem_cache_alloc+0x40/0x3c0 [ 357.233930] radix_tree_node_alloc.constprop.0+0x1b0/0x2f0 [ 357.239544] __radix_tree_create+0x323/0x4b0 [ 357.243944] __radix_tree_insert+0x98/0x4f0 [ 357.248254] ? __radix_tree_create+0x4b0/0x4b0 [ 357.252820] ? shmem_add_to_page_cache+0x1e7/0x730 [ 357.257732] shmem_add_to_page_cache+0x503/0x730 [ 357.262467] ? shmem_recalc_inode+0x2f0/0x2f0 [ 357.267030] ? __radix_tree_preload+0x1c3/0x250 [ 357.271690] shmem_getpage_gfp+0x115b/0x2810 [ 357.276094] ? simple_xattr_get+0xe5/0x160 [ 357.280430] ? shmem_alloc_and_acct_page+0x620/0x620 [ 357.285516] shmem_write_begin+0xeb/0x190 [ 357.289645] generic_perform_write+0x1c9/0x420 [ 357.294212] ? filemap_page_mkwrite+0x2d0/0x2d0 [ 357.298859] ? current_time+0xb0/0xb0 [ 357.302639] ? lock_acquire+0x170/0x3f0 [ 357.306603] __generic_file_write_iter+0x227/0x590 [ 357.311525] generic_file_write_iter+0x36f/0x650 [ 357.316267] __vfs_write+0x44c/0x630 [ 357.319959] ? do_truncate+0x129/0x1a0 [ 357.323826] ? kernel_read+0x110/0x110 [ 357.327697] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 357.332693] vfs_write+0x17f/0x4d0 [ 357.336212] SyS_pwrite64+0x116/0x140 [ 357.340003] ? SyS_pread64+0x140/0x140 [ 357.343868] ? fput+0xb/0x140 [ 357.347044] ? do_syscall_64+0x4c/0x640 [ 357.350999] ? SyS_pread64+0x140/0x140 [ 357.354925] do_syscall_64+0x1d5/0x640 [ 357.359321] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 357.364491] RIP: 0033:0x417d77 [ 357.367660] RSP: 002b:00007fe27cb4fa10 EFLAGS: 00000293 ORIG_RAX: 0000000000000012 [ 357.375350] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000417d77 [ 357.382614] RDX: 0000000000000048 RSI: 0000000020010000 RDI: 0000000000000004 [ 357.389864] RBP: 0000000000000000 R08: 0000000020000218 R09: 0000000000000000 [ 357.397138] R10: 0000000000010000 R11: 0000000000000293 R12: 0000000000000001 [ 357.404449] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000210 [ 357.422932] audit: type=1804 audit(1609938930.936:42): pid=30870 uid=0 auid=0 ses=4 op="invalid_pcr" cause="open_writers" comm="syz-executor.3" name="/root/syzkaller-testdir116447189/syzkaller.H0tLmY/354/bus" dev="sda1" ino=16163 res=1 13:15:31 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d07000000000000000000500000000000001010000000000000000000000000000000000000000000000000010000000000d00000000000000600000000000000010000000000", 0x8e, 0x10000}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) dup(r0) [ 357.473993] audit: type=1800 audit(1609938930.936:43): pid=30870 uid=0 auid=0 ses=4 op="collect_data" cause="failed(directio)" comm="syz-executor.3" name="bus" dev="sda1" ino=16163 res=0 13:15:31 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:31 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0xaaaaaaaaaaaaac4, &(0x7f0000000200), 0x203020, &(0x7f00000007c0)=ANY=[]) r0 = socket$l2tp6(0xa, 0x2, 0x73) ioctl$INCFS_IOC_CREATE_FILE(r0, 0xc058671e, &(0x7f0000001400)={{[], 0x3}, {}, 0x40, 0x0, 0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)="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", 0x19a, 0x0, &(0x7f00000002c0)={0x2, 0x10f0, {0x0, 0xc, 0xe3, "9e58b0cc107da920f475281393ebe3954ba6d8ab2a4ea3d4bc45ac7e9cf6d158d2387c7971f1c3ece7b7ae82f4b3b175d7d14fe4d283264a1f639fecf0e05f5c586930e369e89a829b2070809af4ef511c27d614c9ff21489b8c1f3f03fd00700ef14351c5bbf05744ddf518a33240cc24561b81d806e7a20ebced95c6098d9c011b8e8213a3be3d4379033bbc8f514e2294289b3e5f79ce77a52cd0af3ad956f0346853ef36c3523ac72eb3ab15998a865d7669f0fd26aad2d33f139cb605c857fdf3f9d0491226e5ff10876130b46f2b9f073790b33335dbacecbff97f3a94178ca9", 0x1000, "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"}, 0x23, "d69929bf8f169d4bac60ffd63d313461c72ee94a893b3aca88116d4de9eb841fe74b55"}, 0x111f}) [ 357.511519] audit: type=1804 audit(1609938930.986:44): pid=30870 uid=0 auid=0 ses=4 op="invalid_pcr" cause="open_writers" comm="syz-executor.3" name="/root/syzkaller-testdir116447189/syzkaller.H0tLmY/354/bus" dev="sda1" ino=16163 res=1 [ 357.533073] audit: type=1800 audit(1609938930.986:45): pid=30870 uid=0 auid=0 ses=4 op="collect_data" cause="failed(directio)" comm="syz-executor.3" name="bus" dev="sda1" ino=16163 res=0 [ 357.621821] print_req_error: I/O error, dev loop4, sector 128 13:15:31 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x9) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:31 executing program 5 (fault-call:0 fault-nth:7): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:15:31 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d07000000000000000000500000000000001010000000000000000000000000000000000000000000000000010000000000d00000000000000600000000000000010000000000", 0x8e, 0x10000}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) dup(r0) 13:15:31 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) [ 358.030876] FAULT_INJECTION: forcing a failure. [ 358.030876] name failslab, interval 1, probability 0, space 0, times 0 [ 358.076380] CPU: 1 PID: 30909 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 358.084311] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 358.093666] Call Trace: [ 358.096278] dump_stack+0x1b2/0x283 [ 358.099921] should_fail.cold+0x10a/0x154 [ 358.104249] should_failslab+0xd6/0x130 [ 358.108239] kmem_cache_alloc+0x28e/0x3c0 [ 358.112478] getname_flags+0xc8/0x550 [ 358.116279] do_sys_open+0x1ce/0x410 [ 358.119994] ? filp_open+0x60/0x60 [ 358.123527] ? SyS_pwrite64+0xca/0x140 [ 358.127417] ? fput+0xb/0x140 [ 358.130528] ? do_syscall_64+0x4c/0x640 [ 358.134500] ? do_sys_open+0x410/0x410 [ 358.138373] do_syscall_64+0x1d5/0x640 [ 358.142247] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 358.147425] RIP: 0033:0x417d11 [ 358.151049] RSP: 002b:00007fe27cb4fa10 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 358.158750] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 0000000000417d11 [ 358.166006] RDX: 0000000000000048 RSI: 0000000000000002 RDI: 00007fe27cb4fad0 13:15:31 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d07000000000000000000500000000000001010000000000000000000000000000000000000000000000000010000000000d00000000000000600000000000000010000000000", 0x8e, 0x10000}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) dup(r0) [ 358.173255] RBP: 0000000000000000 R08: 0000000020000218 R09: 0000000000000000 [ 358.180501] R10: 0000000000010000 R11: 0000000000000293 R12: 0000000000000001 [ 358.187748] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000228 [ 358.214132] print_req_error: I/O error, dev loop0, sector 0 13:15:31 executing program 5 (fault-call:0 fault-nth:8): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:15:31 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d07000000000000000000500000000000001010000000000000000000000000000000000000000000000000010000000000d00000000000000600000000000000010000000000", 0x8e, 0x10000}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB]) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) dup(r0) [ 358.471870] FAULT_INJECTION: forcing a failure. [ 358.471870] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 358.483745] CPU: 0 PID: 30944 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 358.491634] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 358.500979] Call Trace: [ 358.503585] dump_stack+0x1b2/0x283 [ 358.507197] should_fail.cold+0x10a/0x154 [ 358.511344] __alloc_pages_nodemask+0x22c/0x2720 [ 358.516087] ? __lock_acquire+0x5fc/0x3f20 [ 358.520307] ? generic_file_write_iter+0x37a/0x650 [ 358.525230] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 358.530081] ? trace_hardirqs_on+0x10/0x10 [ 358.534298] ? lock_downgrade+0x740/0x740 [ 358.538449] ? up_write+0x17/0x60 [ 358.541883] ? generic_file_write_iter+0x2f8/0x650 [ 358.546802] cache_grow_begin+0x8f/0x420 [ 358.550849] cache_alloc_refill+0x273/0x350 [ 358.555154] kmem_cache_alloc+0x333/0x3c0 [ 358.559293] getname_flags+0xc8/0x550 [ 358.563078] do_sys_open+0x1ce/0x410 [ 358.566778] ? filp_open+0x60/0x60 [ 358.570322] ? SyS_pwrite64+0xca/0x140 [ 358.574192] ? fput+0xb/0x140 [ 358.577301] ? do_syscall_64+0x4c/0x640 [ 358.581259] ? do_sys_open+0x410/0x410 [ 358.585216] do_syscall_64+0x1d5/0x640 [ 358.589094] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 358.594265] RIP: 0033:0x417d11 [ 358.597436] RSP: 002b:00007fe27cb4fa10 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 358.605132] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 0000000000417d11 [ 358.612387] RDX: 0000000000000048 RSI: 0000000000000002 RDI: 00007fe27cb4fad0 13:15:32 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000080)=""/18, 0x12) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) [ 358.619648] RBP: 0000000000000000 R08: 0000000020000218 R09: 0000000000000000 [ 358.626906] R10: 0000000000010000 R11: 0000000000000293 R12: 0000000000000001 [ 358.634156] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000228 13:15:32 executing program 3: r0 = getpid() ioprio_get$pid(0x2, r0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001485266535f4d00"/72, 0x48, 0x10000}, {0x0}], 0x0, &(0x7f0000000400)=ANY=[@ANYRES64, @ANYBLOB="5566191da76083529491217b1e2cab35d0c2a4b82b064cdec3344cb701fccfcf58057e2cdc8a66b9ab1c8111d37ea14eb0c237e499ae19a8e01860ae050000000433b864b027ebe0175b2901720adb481a7e6da9e6e4bf97d2403105eef89c2b4b2339c227eb5c9fe86dd0524a08cdbf142be6c3185e8ffdcf347e76aa4b9985c072d32cffff0b41dd215867a4e2e41a73c6b70c034e9c9a4f66d9cf89d3bd9a5c82066e31360d1c5c378d0cbd8202a78b00"/189, @ANYBLOB="42a8d2da45acbe83c216c9cf6f097c683a6466025a4b8c0f26463296c87efe9b44b1d82399e2926fafcb4a0c10da796f88028e7a2e8f059b422c65eea50148e81b9b8393e015184955a36b39118e0674b3688e6a3410a14c714a5e2b2e9f20813f1bcdf31d6f4580f56e693ccdf4da0c9274daae86a75e921c83e95bc448eef42276a0fd705ae774f276f23ab3a908a20e2ddb2a584c370f962fee6ea7224d394d9a109f07b7ec8fa363a318abfc579c86f86bcb91dda3eee19ad5344135e64d57526c0043b64445375154cabbeb72a0fe693d40f6571b3643905d73", @ANYRES32, @ANYRES64=r0, @ANYRES64, @ANYRES64=r0]) bind$alg(0xffffffffffffffff, &(0x7f0000000100)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_sha1\x00'}, 0x58) getpgrp(r0) pivot_root(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00') 13:15:32 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d07000000000000000000500000000000001010000000000000000000000000000000000000000000000000010000000000d00000000000000600000000000000010000000000", 0x8e, 0x10000}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB]) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) dup(r0) 13:15:32 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bfd4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0xfffd}, {0x0, 0x0, 0xfffffffffffffffe}], 0x0, &(0x7f00000007c0)=ANY=[]) [ 358.747512] print_req_error: I/O error, dev loop3, sector 128 13:15:32 executing program 3: r0 = getpid() ioprio_get$pid(0x2, r0) r1 = getpid() syz_open_procfs(r0, &(0x7f00000000c0)='net/tcp6\x00') ioprio_get$pid(0x2, r1) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x2, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="d01f143fba6018cd879c7827f6293612f56207304b74220c9cf500dacab3137b9a7e24d1f6e274f7cde0002a61c7128417f4875ff12a0a09aadd64022866ca7e07dd972fc73550af3261d0be6baa4d0e404c063f92cba508eaf72b5564ed868a4e9037dd5ca15ac2a76adb2a5307e3ca43ff6c510dae87c14ae748f39514d1158576e2f89e8c4f9addc85de8c565a2751ffc5bc8bbd632c355e41719cb57cde989bd23746b5e633d9d8c94846587a0876ba6d51f4da5d8ec2bd72cbd267dd14392dd28f5199413fcce3eca104a64819664b8d28a7fe8", @ANYRES16=r1, @ANYRESDEC, @ANYRES32]) sched_setattr(r1, &(0x7f0000000080)={0x38, 0x2, 0x53, 0x0, 0x6c3300, 0x100, 0xe373, 0x55f2, 0x8000, 0x4}, 0x0) 13:15:32 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x9) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:32 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) 13:15:32 executing program 5 (fault-call:0 fault-nth:9): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:15:32 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d07000000000000000000500000000000001010000000000000000000000000000000000000000000000000010000000000d00000000000000600000000000000010000000000", 0x8e, 0x10000}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB]) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) dup(r0) [ 359.064922] FAULT_INJECTION: forcing a failure. [ 359.064922] name failslab, interval 1, probability 0, space 0, times 0 [ 359.080971] CPU: 0 PID: 31002 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 359.089050] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 359.098494] Call Trace: [ 359.101090] dump_stack+0x1b2/0x283 [ 359.104751] should_fail.cold+0x10a/0x154 [ 359.108906] should_failslab+0xd6/0x130 [ 359.112883] kmem_cache_alloc_trace+0x29a/0x3d0 [ 359.117562] apparmor_file_alloc_security+0x129/0x800 [ 359.122752] security_file_alloc+0x66/0xa0 [ 359.126993] ? selinux_is_enabled+0x5/0x50 [ 359.131248] get_empty_filp+0x15c/0x3e0 [ 359.135227] path_openat+0x84/0x2970 [ 359.138948] ? generic_file_write_iter+0x37a/0x650 [ 359.143880] ? path_lookupat+0x780/0x780 [ 359.147943] ? trace_hardirqs_on+0x10/0x10 [ 359.152175] ? __generic_file_write_iter+0x194/0x590 [ 359.157288] do_filp_open+0x179/0x3c0 [ 359.161207] ? may_open_dev+0xe0/0xe0 [ 359.165013] ? __alloc_fd+0x1be/0x490 [ 359.168820] ? lock_downgrade+0x740/0x740 [ 359.173141] ? do_raw_spin_unlock+0x164/0x220 [ 359.177629] ? _raw_spin_unlock+0x29/0x40 [ 359.181772] ? __alloc_fd+0x1be/0x490 [ 359.185747] do_sys_open+0x296/0x410 [ 359.189457] ? filp_open+0x60/0x60 [ 359.192979] ? SyS_pwrite64+0xca/0x140 [ 359.196963] ? fput+0xb/0x140 [ 359.200052] ? do_syscall_64+0x4c/0x640 [ 359.204005] ? do_sys_open+0x410/0x410 [ 359.207982] do_syscall_64+0x1d5/0x640 [ 359.211857] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 359.217029] RIP: 0033:0x417d11 [ 359.220200] RSP: 002b:00007fe27cb4fa10 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 359.227903] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 0000000000417d11 [ 359.235178] RDX: 0000000000000048 RSI: 0000000000000002 RDI: 00007fe27cb4fad0 [ 359.242430] RBP: 0000000000000000 R08: 0000000020000218 R09: 0000000000000000 [ 359.249693] R10: 0000000000010000 R11: 0000000000000293 R12: 0000000000000001 [ 359.257105] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000228 13:15:32 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) newfstatat(0xffffffffffffff9c, &(0x7f0000000440)='./file0\x00', &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x7000) chown(&(0x7f0000000400)='./file0\x00', r0, 0xffffffffffffffff) newfstatat(0xffffffffffffff9c, &(0x7f0000000440)='./file0\x00', &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x7000) chown(&(0x7f0000000400)='./file0\x00', r1, 0xffffffffffffffff) open(&(0x7f00000001c0)='./file0\x00', 0x601000, 0x11) r2 = getgid() chown(&(0x7f0000000180)='./file0\x00', r1, r2) syz_mount_image$jfs(&(0x7f0000000080)='jfs\x00', &(0x7f00000000c0)='./file0\x00', 0x4, 0x1, &(0x7f0000000140)=[{&(0x7f0000000100)="5ccbd7d7a4174290b2fdce6c2b411a26ba64d5401428a6fe11c34e0616bc5b20ca1d9f3d99128bb130e2cee0", 0x2c, 0x9}], 0x801004, &(0x7f0000000240)={[{@discard='discard'}, {@quota='quota'}, {@grpquota='grpquota'}, {@gid={'gid', 0x3d, 0xffffffffffffffff}}, {@nodiscard='nodiscard'}, {@noquota='noquota'}, {@uid={'uid', 0x3d, r0}}], [{@obj_role={'obj_role', 0x3d, 'btrfs\x00'}}, {@dont_measure='dont_measure'}, {@mask={'mask', 0x3d, 'MAY_APPEND'}}, {@obj_user={'obj_user', 0x3d, '*#{('}}, {@subj_type={'subj_type'}}]}) 13:15:32 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d07000000000000000000500000000000001010000000000000000000000000000000000000000000000000010000000000d00000000000000600000000000000010000000000", 0x8e, 0x10000}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='c']) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) dup(r0) 13:15:33 executing program 5 (fault-call:0 fault-nth:10): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) [ 359.544986] FAULT_INJECTION: forcing a failure. [ 359.544986] name failslab, interval 1, probability 0, space 0, times 0 [ 359.574407] CPU: 1 PID: 31036 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 359.582418] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 359.591891] Call Trace: [ 359.594483] dump_stack+0x1b2/0x283 [ 359.598112] should_fail.cold+0x10a/0x154 [ 359.602252] should_failslab+0xd6/0x130 [ 359.606218] kmem_cache_alloc_trace+0x29a/0x3d0 [ 359.610882] apparmor_file_alloc_security+0x129/0x800 [ 359.616059] security_file_alloc+0x66/0xa0 [ 359.620306] ? selinux_is_enabled+0x5/0x50 [ 359.624524] get_empty_filp+0x15c/0x3e0 [ 359.628479] path_openat+0x84/0x2970 [ 359.632176] ? generic_file_write_iter+0x37a/0x650 [ 359.637116] ? path_lookupat+0x780/0x780 [ 359.641160] ? trace_hardirqs_on+0x10/0x10 [ 359.645405] do_filp_open+0x179/0x3c0 [ 359.649188] ? may_open_dev+0xe0/0xe0 [ 359.652971] ? __alloc_fd+0x1be/0x490 [ 359.656755] ? lock_downgrade+0x740/0x740 [ 359.660903] ? do_raw_spin_unlock+0x164/0x220 [ 359.665403] ? _raw_spin_unlock+0x29/0x40 [ 359.669557] ? __alloc_fd+0x1be/0x490 [ 359.673342] do_sys_open+0x296/0x410 [ 359.677038] ? filp_open+0x60/0x60 [ 359.680575] ? SyS_pwrite64+0xca/0x140 [ 359.684453] ? fput+0xb/0x140 [ 359.687540] ? do_syscall_64+0x4c/0x640 [ 359.691495] ? do_sys_open+0x410/0x410 [ 359.695361] do_syscall_64+0x1d5/0x640 [ 359.699242] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 359.704499] RIP: 0033:0x417d11 [ 359.707680] RSP: 002b:00007fe27cb4fa10 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 359.715373] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 0000000000417d11 [ 359.722642] RDX: 0000000000000048 RSI: 0000000000000002 RDI: 00007fe27cb4fad0 [ 359.729892] RBP: 0000000000000000 R08: 0000000020000218 R09: 0000000000000000 [ 359.737143] R10: 0000000000010000 R11: 0000000000000293 R12: 0000000000000001 [ 359.744742] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000228 13:15:33 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x6, @local, 0x2}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:33 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d07000000000000000000500000000000001010000000000000000000000000000000000000000000000000010000000000d00000000000000600000000000000010000000000", 0x8e, 0x10000}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='c']) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) dup(r0) 13:15:33 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) 13:15:33 executing program 3: r0 = syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) r1 = getgid() chown(&(0x7f0000000240)='./file0\x00', 0xee01, r1) r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0) r3 = openat(r2, &(0x7f00000000c0)='./file0\x00', 0x4801, 0x0) ioctl$vim2m_VIDIOC_S_FMT(r3, 0xc0d05605, &(0x7f0000000100)={0x1, @sliced={0x555, [0x1, 0x54, 0x7, 0xf001, 0x2, 0x4e, 0x8, 0x6, 0xff54, 0x2b44, 0x4d, 0x2, 0x80f, 0x3, 0x6, 0x3, 0x5, 0x7, 0xe3, 0x8, 0x6, 0x0, 0x9, 0x5, 0x2, 0x2, 0x0, 0x399, 0x9, 0x900, 0xffe1, 0x81, 0x8, 0x0, 0x55, 0x7, 0x200, 0x401, 0xd4f, 0x7ff, 0xfff, 0x9, 0x33, 0x9, 0x4, 0x1, 0x4, 0x8], 0x7}}) ftruncate(r2, 0x208200) mount(&(0x7f0000000280)=@filename='./bus\x00', &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)='ext2\x00', 0x44084, 0x0) dup2(r2, r0) 13:15:33 executing program 5 (fault-call:0 fault-nth:11): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) [ 360.028176] print_req_error: 1 callbacks suppressed [ 360.028182] print_req_error: I/O error, dev loop3, sector 128 [ 360.102447] FAULT_INJECTION: forcing a failure. [ 360.102447] name failslab, interval 1, probability 0, space 0, times 0 [ 360.152014] CPU: 0 PID: 31083 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 360.159937] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 360.169284] Call Trace: [ 360.171865] dump_stack+0x1b2/0x283 [ 360.175480] should_fail.cold+0x10a/0x154 [ 360.179619] should_failslab+0xd6/0x130 [ 360.183688] kmem_cache_alloc_trace+0x29a/0x3d0 [ 360.188620] ? loop_get_status64+0x100/0x100 [ 360.193046] __kthread_create_on_node+0xbe/0x3a0 [ 360.197783] ? kthread_park+0x130/0x130 [ 360.201835] ? __fget+0x1fe/0x360 [ 360.205271] ? loop_get_status64+0x100/0x100 [ 360.209662] kthread_create_on_node+0xa8/0xd0 [ 360.214143] ? __kthread_create_on_node+0x3a0/0x3a0 [ 360.219142] ? __lockdep_init_map+0x100/0x560 [ 360.223621] ? __lockdep_init_map+0x100/0x560 [ 360.228117] lo_ioctl+0xcd9/0x1cd0 [ 360.231643] ? loop_set_status64+0xe0/0xe0 [ 360.235862] blkdev_ioctl+0x540/0x1830 [ 360.239822] ? blkpg_ioctl+0x8d0/0x8d0 [ 360.243715] ? retint_kernel+0x2d/0x2d [ 360.247586] ? trace_hardirqs_on+0x10/0x10 [ 360.251803] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 360.256818] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 360.261563] block_ioctl+0xd9/0x120 [ 360.265197] ? blkdev_fallocate+0x3a0/0x3a0 [ 360.269515] do_vfs_ioctl+0x75a/0xff0 [ 360.273314] ? ioctl_preallocate+0x1a0/0x1a0 [ 360.277845] ? lock_downgrade+0x740/0x740 [ 360.281995] ? __fget+0x225/0x360 [ 360.285443] ? do_vfs_ioctl+0xff0/0xff0 [ 360.289408] ? security_file_ioctl+0x83/0xb0 [ 360.293827] SyS_ioctl+0x7f/0xb0 [ 360.297177] ? do_vfs_ioctl+0xff0/0xff0 [ 360.301151] do_syscall_64+0x1d5/0x640 [ 360.305028] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 360.310201] RIP: 0033:0x45e087 [ 360.313370] RSP: 002b:00007fe27cb4fa18 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 360.321060] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e087 [ 360.328313] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 360.335565] RBP: 0000000000000000 R08: 0000000020000218 R09: 0000000000000000 [ 360.342978] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000001 [ 360.350245] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000228 13:15:33 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, 0x0, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x9) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:33 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000080)=[{0x6, 0xfd, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(0xffffffffffffffff, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @local}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:33 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d07000000000000000000500000000000001010000000000000000000000000000000000000000000000000010000000000d00000000000000600000000000000010000000000", 0x8e, 0x10000}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='c']) socketpair$unix(0x1, 0x0, 0x0, 0x0) dup(0xffffffffffffffff) [ 360.605226] IPVS: ftp: loaded support on port[0] = 21 13:15:34 executing program 5 (fault-call:0 fault-nth:12): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) [ 360.677400] IPVS: ftp: loaded support on port[0] = 21 [ 360.730327] FAULT_INJECTION: forcing a failure. [ 360.730327] name failslab, interval 1, probability 0, space 0, times 0 [ 360.757127] CPU: 0 PID: 31138 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 360.765067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 360.774436] Call Trace: [ 360.777029] dump_stack+0x1b2/0x283 [ 360.780662] should_fail.cold+0x10a/0x154 [ 360.784800] should_failslab+0xd6/0x130 [ 360.788860] kmem_cache_alloc+0x28e/0x3c0 [ 360.793005] __kernfs_new_node+0x6f/0x470 [ 360.797136] kernfs_create_dir_ns+0x8c/0x200 [ 360.801540] internal_create_group+0xe9/0x710 [ 360.806129] lo_ioctl+0x1137/0x1cd0 [ 360.809750] ? loop_set_status64+0xe0/0xe0 [ 360.814113] blkdev_ioctl+0x540/0x1830 [ 360.817991] ? blkpg_ioctl+0x8d0/0x8d0 [ 360.821860] ? trace_hardirqs_on+0x10/0x10 [ 360.826112] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 360.831193] ? debug_check_no_obj_freed+0x2c0/0x674 [ 360.836246] block_ioctl+0xd9/0x120 [ 360.839853] ? blkdev_fallocate+0x3a0/0x3a0 [ 360.844265] do_vfs_ioctl+0x75a/0xff0 [ 360.848243] ? ioctl_preallocate+0x1a0/0x1a0 [ 360.852666] ? lock_downgrade+0x740/0x740 [ 360.856916] ? __fget+0x225/0x360 [ 360.860356] ? do_vfs_ioctl+0xff0/0xff0 [ 360.864310] ? security_file_ioctl+0x83/0xb0 [ 360.868704] SyS_ioctl+0x7f/0xb0 [ 360.872055] ? do_vfs_ioctl+0xff0/0xff0 [ 360.876102] do_syscall_64+0x1d5/0x640 [ 360.880010] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 360.885186] RIP: 0033:0x45e087 [ 360.888370] RSP: 002b:00007fe27cb4fa18 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 360.896069] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e087 [ 360.903316] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 360.910581] RBP: 0000000000000000 R08: 0000000020000218 R09: 0000000000000000 [ 360.917839] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000001 13:15:34 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x1) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:34 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, 0x0, 0x0) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) 13:15:34 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x3) sendmsg$can_raw(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000140), 0x10, &(0x7f0000000240)={&(0x7f0000000180)=@canfd={{0x1}, 0x34, 0x1, 0x0, 0x0, "5db6e1a2e7448b9e6ba184be6852a8df7b441ee672592aa853d257f2b713db1cc5c9d0fe8bc8027085b92e21a3d0c1fe014dde929e4cc1b3298ce3d1f6af3118"}, 0x48}, 0x1, 0x0, 0x0, 0x40}, 0x4000000) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000080)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f0000000100)=ANY=[@ANYRESHEX]) sendmsg$can_raw(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f00000002c0), 0x10, &(0x7f0000000340)={&(0x7f0000000300)=@can={{0x1, 0x1, 0x1}, 0x2, 0x2, 0x0, 0x0, "3a725e97a716fb66"}, 0x10}, 0x1, 0x0, 0x0, 0x844}, 0x48800) r1 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f00000014c0)=0xffffffffffffffff, 0x4) pwrite64(r1, &(0x7f0000001500)="cf40d21682e8643bdb241b4e6e6bcec1a5c5ed16bc4882ed7e2f7d2c5a7c52f059a9070aa873814c", 0x28, 0x2) setxattr$trusted_overlay_upper(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000400)='trusted.overlay.upper\x00', &(0x7f0000000440)={0x0, 0xfb, 0x1015, 0x3, 0x8, "1c3212ab91ed6178071693f73f1d5b87", "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"}, 0x1015, 0x3) ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000001480)={0x2, {0x2, 0x9, 0xfffa, 0x200, 0x101, 0x10}}) [ 360.925118] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000228 13:15:34 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, 0x0, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x9) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:34 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d07000000000000000000500000000000001010000000000000000000000000000000000000000000000000010000000000d00000000000000600000000000000010000000000", 0x8e, 0x10000}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='c']) socketpair$unix(0x1, 0x0, 0x0, 0x0) dup(0xffffffffffffffff) [ 361.006598] print_req_error: I/O error, dev loop4, sector 128 13:15:34 executing program 5 (fault-call:0 fault-nth:13): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) [ 361.116577] print_req_error: I/O error, dev loop4, sector 0 [ 361.116770] print_req_error: I/O error, dev loop4, sector 128 [ 361.138673] FAULT_INJECTION: forcing a failure. [ 361.138673] name failslab, interval 1, probability 0, space 0, times 0 [ 361.150450] CPU: 0 PID: 31200 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 361.158320] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 361.167661] Call Trace: [ 361.170238] dump_stack+0x1b2/0x283 [ 361.173949] should_fail.cold+0x10a/0x154 [ 361.178082] should_failslab+0xd6/0x130 [ 361.182039] kmem_cache_alloc+0x40/0x3c0 [ 361.186105] radix_tree_node_alloc.constprop.0+0x1b0/0x2f0 [ 361.191801] idr_get_free_cmn+0x595/0x8d0 [ 361.195938] idr_alloc_cmn+0xe8/0x1e0 [ 361.199721] ? __fprop_inc_percpu_max+0x1d0/0x1d0 [ 361.204544] ? kernfs_activate+0x2a/0x180 [ 361.208671] ? __mutex_lock+0x360/0x1310 [ 361.212718] ? fs_reclaim_release+0xd0/0x110 [ 361.217204] idr_alloc_cyclic+0xc2/0x1d0 [ 361.221278] ? idr_alloc_cmn+0x1e0/0x1e0 [ 361.225439] ? __radix_tree_preload+0x1c3/0x250 [ 361.230157] __kernfs_new_node+0xaf/0x470 [ 361.234302] kernfs_new_node+0x7b/0xe0 [ 361.238195] __kernfs_create_file+0x3d/0x320 [ 361.242723] sysfs_add_file_mode_ns+0x1e1/0x450 [ 361.247381] ? kernfs_create_dir_ns+0x171/0x200 [ 361.252274] internal_create_group+0x22b/0x710 [ 361.256851] lo_ioctl+0x1137/0x1cd0 [ 361.260464] ? loop_set_status64+0xe0/0xe0 [ 361.264679] blkdev_ioctl+0x540/0x1830 [ 361.268549] ? blkpg_ioctl+0x8d0/0x8d0 [ 361.272450] ? trace_hardirqs_on+0x10/0x10 [ 361.276672] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 361.281768] ? debug_check_no_obj_freed+0x2c0/0x674 [ 361.286770] block_ioctl+0xd9/0x120 [ 361.290397] ? blkdev_fallocate+0x3a0/0x3a0 [ 361.294709] do_vfs_ioctl+0x75a/0xff0 [ 361.298490] ? ioctl_preallocate+0x1a0/0x1a0 [ 361.302875] ? lock_downgrade+0x740/0x740 [ 361.307005] ? __fget+0x225/0x360 [ 361.310439] ? do_vfs_ioctl+0xff0/0xff0 [ 361.314390] ? security_file_ioctl+0x83/0xb0 [ 361.318777] SyS_ioctl+0x7f/0xb0 [ 361.322121] ? do_vfs_ioctl+0xff0/0xff0 [ 361.326112] do_syscall_64+0x1d5/0x640 [ 361.329987] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 361.335518] RIP: 0033:0x45e087 [ 361.338904] RSP: 002b:00007fe27cb4fa18 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 361.346605] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e087 [ 361.353854] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 13:15:34 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d07000000000000000000500000000000001010000000000000000000000000000000000000000000000000010000000000d00000000000000600000000000000010000000000", 0x8e, 0x10000}, {&(0x7f0000010200), 0x0, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e400001000000000000000400000000000020000000000000000000100000000000200000000000000001000000010000000100000010000000100000000", 0x51, 0x10320}], 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='c']) socketpair$unix(0x1, 0x0, 0x0, 0x0) dup(0xffffffffffffffff) [ 361.361102] RBP: 0000000000000000 R08: 0000000020000218 R09: 0000000000000000 [ 361.368356] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000001 [ 361.375610] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000228 13:15:34 executing program 3: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f0000000000)=ANY=[]) 13:15:35 executing program 5 (fault-call:0 fault-nth:14): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) [ 361.515706] print_req_error: I/O error, dev loop3, sector 128 [ 361.535745] print_req_error: I/O error, dev loop3, sector 0 [ 361.585908] FAULT_INJECTION: forcing a failure. [ 361.585908] name failslab, interval 1, probability 0, space 0, times 0 [ 361.589131] print_req_error: I/O error, dev loop5, sector 0 [ 361.603946] print_req_error: I/O error, dev loop5, sector 0 [ 361.607402] CPU: 0 PID: 31222 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 361.610602] buffer_io_error: 13 callbacks suppressed [ 361.610608] Buffer I/O error on dev loop5, logical block 0, async page read [ 361.617640] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 361.617645] Call Trace: [ 361.617661] dump_stack+0x1b2/0x283 [ 361.617678] should_fail.cold+0x10a/0x154 [ 361.617692] should_failslab+0xd6/0x130 [ 361.653582] kmem_cache_alloc+0x28e/0x3c0 [ 361.657733] __kernfs_new_node+0x6f/0x470 [ 361.661865] kernfs_new_node+0x7b/0xe0 [ 361.666083] __kernfs_create_file+0x3d/0x320 [ 361.670475] sysfs_add_file_mode_ns+0x1e1/0x450 [ 361.675211] ? kernfs_create_dir_ns+0x171/0x200 [ 361.679867] internal_create_group+0x22b/0x710 [ 361.684531] lo_ioctl+0x1137/0x1cd0 [ 361.688156] ? loop_set_status64+0xe0/0xe0 [ 361.692375] blkdev_ioctl+0x540/0x1830 [ 361.696259] ? blkpg_ioctl+0x8d0/0x8d0 [ 361.700139] ? trace_hardirqs_on+0x10/0x10 [ 361.704443] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 361.709615] ? debug_check_no_obj_freed+0x2c0/0x674 [ 361.714618] block_ioctl+0xd9/0x120 [ 361.718230] ? blkdev_fallocate+0x3a0/0x3a0 [ 361.722547] do_vfs_ioctl+0x75a/0xff0 [ 361.726345] ? ioctl_preallocate+0x1a0/0x1a0 [ 361.730753] ? lock_downgrade+0x740/0x740 [ 361.734884] ? __fget+0x225/0x360 [ 361.738424] ? do_vfs_ioctl+0xff0/0xff0 [ 361.742382] ? security_file_ioctl+0x83/0xb0 [ 361.746785] SyS_ioctl+0x7f/0xb0 [ 361.750264] ? do_vfs_ioctl+0xff0/0xff0 [ 361.754225] do_syscall_64+0x1d5/0x640 [ 361.758098] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 361.763291] RIP: 0033:0x45e087 [ 361.766474] RSP: 002b:00007fe27cb4fa18 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 361.774167] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e087 [ 361.781416] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 361.788680] RBP: 0000000000000000 R08: 0000000020000218 R09: 0000000000000000 [ 361.796016] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000001 [ 361.803265] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000228 [ 361.826652] print_req_error: I/O error, dev loop5, sector 0 [ 361.832395] Buffer I/O error on dev loop5, logical block 0, async page read 13:15:35 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, 0x0, 0x0) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) 13:15:35 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, 0x0, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x9) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:35 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(r0, 0x0, 0x0, 0x0, 0x1) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c2, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:35 executing program 4: openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0) write$RDMA_USER_CM_CMD_RESOLVE_IP(0xffffffffffffffff, &(0x7f0000000240)={0x4, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @loopback}, {0xa, 0x0, 0x0, @loopback={0xfe80000000000000, 0x300}}}}, 0x48) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop-control\x00', 0x40, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0) 13:15:35 executing program 5 (fault-call:0 fault-nth:15): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:15:35 executing program 4: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_inet_SIOCADDRT(r0, 0x8916, &(0x7f0000001740)={0x0, {0x2, 0x0, @dev}, {0x2, 0x0, @broadcast}, {0x2, 0x0, @remote}}) 13:15:35 executing program 3: r0 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dlm-monitor\x00', 0x200, 0x0) r1 = open(&(0x7f0000000180)='./file0\x00', 0x8000, 0x48) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000480)={0xffffffffffffffff, 0xc0, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)=0xffffffff80000000, 0x0, 0x0, 0x0, &(0x7f00000002c0)={0x0, 0x2}, 0x0, 0x0, &(0x7f0000000300)={0x5, 0x9, 0xefc, 0x1}, &(0x7f0000000340)=0x81, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000380)=0x1ff}}, 0x10) r3 = open(&(0x7f0000000400)='./bus\x00', 0x14103e, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, r3, 0x0) open(&(0x7f0000000640)='./bus\x00', 0x101040, 0x0) read(r3, &(0x7f0000000180)=""/19, 0xfffffe47) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xd, 0xa, &(0x7f00000000c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x95a}, [@btf_id={0x18, 0x3, 0x3, 0x0, 0x5}, @ldst={0x0, 0x1, 0x3, 0x3, 0x2, 0xfffffffffffffff4, 0x8}, @call={0x85, 0x0, 0x0, 0x2a}, @map={0x18, 0x6, 0x1, 0x0, r0}, @exit]}, &(0x7f0000000140)='GPL\x00', 0x4, 0x0, 0x0, 0x41000, 0x11, [], 0x0, 0x19, r1, 0x8, &(0x7f00000001c0)={0x9, 0x5}, 0x8, 0x10, &(0x7f0000000240)={0x1, 0xf, 0x9, 0x3}, 0x10, r2, r3}, 0x78) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) sendmsg$nl_route(r3, &(0x7f0000000600)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000005c0)={&(0x7f0000000580)=@mpls_newroute={0x3c, 0x18, 0x200, 0x70bd29, 0x25dfdbfe, {0x1c, 0x0, 0x10, 0x6, 0xff, 0x3, 0x0, 0xa, 0x100}, [@RTA_MULTIPATH={0xc, 0x9, {0x20, 0x1c, 0x3}}, @RTA_TTL_PROPAGATE={0x5, 0x1a, 0x7f}, @RTA_MULTIPATH={0xc, 0x9, {0x5, 0x2d, 0x6}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x20000881) [ 362.092342] FAULT_INJECTION: forcing a failure. [ 362.092342] name failslab, interval 1, probability 0, space 0, times 0 [ 362.130067] CPU: 0 PID: 31260 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 362.135398] print_req_error: I/O error, dev loop5, sector 0 [ 362.137982] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 362.137987] Call Trace: [ 362.138008] dump_stack+0x1b2/0x283 [ 362.138023] should_fail.cold+0x10a/0x154 [ 362.138037] should_failslab+0xd6/0x130 [ 362.149344] Buffer I/O error on dev loop5, logical block 0, async page read [ 362.153217] kmem_cache_alloc+0x28e/0x3c0 [ 362.153231] __kernfs_new_node+0x6f/0x470 [ 362.153245] kernfs_new_node+0x7b/0xe0 [ 362.153258] __kernfs_create_file+0x3d/0x320 13:15:35 executing program 4: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001100)={0x11, 0x4, &(0x7f0000001180)=@framed={{}, [@jmp]}, &(0x7f0000000040)='syzkaller\x00', 0x7, 0x1000, &(0x7f0000000080)=""/4096, 0x41000, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001080)={0x1, 0x4}, 0x8, 0x10, &(0x7f00000010c0)={0x3, 0xc, 0x0, 0x5}, 0x10}, 0x78) [ 362.157220] Buffer I/O error on dev loop5, logical block 0, async page read [ 362.159464] sysfs_add_file_mode_ns+0x1e1/0x450 [ 362.159476] ? kernfs_create_dir_ns+0x171/0x200 [ 362.159489] internal_create_group+0x22b/0x710 [ 362.159505] lo_ioctl+0x1137/0x1cd0 [ 362.159517] ? loop_set_status64+0xe0/0xe0 [ 362.163934] Buffer I/O error on dev loop5, logical block 0, async page read [ 362.167708] blkdev_ioctl+0x540/0x1830 [ 362.167719] ? blkpg_ioctl+0x8d0/0x8d0 [ 362.167730] ? trace_hardirqs_on+0x10/0x10 [ 362.167743] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 362.167753] ? debug_check_no_obj_freed+0x2c0/0x674 [ 362.167766] block_ioctl+0xd9/0x120 [ 362.167774] ? blkdev_fallocate+0x3a0/0x3a0 [ 362.167784] do_vfs_ioctl+0x75a/0xff0 [ 362.167796] ? ioctl_preallocate+0x1a0/0x1a0 [ 362.167802] ? lock_downgrade+0x740/0x740 [ 362.167814] ? __fget+0x225/0x360 [ 362.167823] ? do_vfs_ioctl+0xff0/0xff0 [ 362.175524] Buffer I/O error on dev loop5, logical block 0, async page read [ 362.179060] ? security_file_ioctl+0x83/0xb0 13:15:35 executing program 4: bpf$MAP_CREATE(0x0, &(0x7f0000000480)={0x1b, 0x0, 0x7}, 0x40) [ 362.179074] SyS_ioctl+0x7f/0xb0 [ 362.179083] ? do_vfs_ioctl+0xff0/0xff0 [ 362.179095] do_syscall_64+0x1d5/0x640 [ 362.179112] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 362.179121] RIP: 0033:0x45e087 [ 362.183524] Buffer I/O error on dev loop5, logical block 0, async page read [ 362.187247] RSP: 002b:00007fe27cb4fa18 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 362.187258] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e087 [ 362.187263] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 13:15:35 executing program 4: socketpair(0x25, 0x3, 0x0, &(0x7f00000001c0)) [ 362.187269] RBP: 0000000000000000 R08: 0000000020000218 R09: 0000000000000000 [ 362.187275] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000001 [ 362.187281] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000228 13:15:35 executing program 4: socket$inet_udp(0x2, 0x2, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000003080)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$sock_int(r0, 0x1, 0x2a, &(0x7f0000000040), 0xfd86) recvmsg(0xffffffffffffffff, 0x0, 0x0) write$binfmt_misc(0xffffffffffffffff, 0x0, 0x8) socket(0x0, 0x0, 0x0) [ 362.414448] audit: type=1804 audit(1609938935.926:46): pid=31270 uid=0 auid=0 ses=4 op="invalid_pcr" cause="open_writers" comm="syz-executor.3" name="/root/syzkaller-testdir116447189/syzkaller.H0tLmY/363/bus" dev="sda1" ino=16210 res=1 13:15:36 executing program 5 (fault-call:0 fault-nth:16): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) [ 362.502142] FAULT_INJECTION: forcing a failure. [ 362.502142] name failslab, interval 1, probability 0, space 0, times 0 [ 362.507297] Buffer I/O error on dev loop5, logical block 0, async page read [ 362.513629] CPU: 1 PID: 31304 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 362.521019] Buffer I/O error on dev loop5, logical block 0, async page read [ 362.528422] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 362.528427] Call Trace: [ 362.528442] dump_stack+0x1b2/0x283 [ 362.528455] should_fail.cold+0x10a/0x154 [ 362.528469] should_failslab+0xd6/0x130 [ 362.528480] kmem_cache_alloc+0x40/0x3c0 [ 362.528494] radix_tree_node_alloc.constprop.0+0x1b0/0x2f0 [ 362.536494] Buffer I/O error on dev loop5, logical block 0, async page read [ 362.544930] idr_get_free_cmn+0x595/0x8d0 [ 362.580351] idr_alloc_cmn+0xe8/0x1e0 [ 362.584157] ? __fprop_inc_percpu_max+0x1d0/0x1d0 [ 362.589008] ? kernfs_add_one+0x4c/0x3a0 [ 362.593075] ? fs_reclaim_release+0xd0/0x110 [ 362.597491] idr_alloc_cyclic+0xc2/0x1d0 [ 362.601670] ? idr_alloc_cmn+0x1e0/0x1e0 [ 362.605714] ? __radix_tree_preload+0x1c3/0x250 [ 362.610369] __kernfs_new_node+0xaf/0x470 [ 362.614538] kernfs_new_node+0x7b/0xe0 [ 362.618428] __kernfs_create_file+0x3d/0x320 [ 362.622832] sysfs_add_file_mode_ns+0x1e1/0x450 [ 362.627587] ? kernfs_create_dir_ns+0x171/0x200 [ 362.632259] internal_create_group+0x22b/0x710 [ 362.636827] lo_ioctl+0x1137/0x1cd0 [ 362.640438] ? loop_set_status64+0xe0/0xe0 [ 362.644667] blkdev_ioctl+0x540/0x1830 [ 362.648884] ? blkpg_ioctl+0x8d0/0x8d0 [ 362.652757] ? trace_hardirqs_on+0x10/0x10 [ 362.656978] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 362.662108] ? debug_check_no_obj_freed+0x2c0/0x674 [ 362.667112] block_ioctl+0xd9/0x120 [ 362.670728] ? blkdev_fallocate+0x3a0/0x3a0 [ 362.675037] do_vfs_ioctl+0x75a/0xff0 [ 362.678826] ? ioctl_preallocate+0x1a0/0x1a0 [ 362.683240] ? lock_downgrade+0x740/0x740 [ 362.687394] ? __fget+0x225/0x360 [ 362.690831] ? do_vfs_ioctl+0xff0/0xff0 [ 362.694801] ? security_file_ioctl+0x83/0xb0 [ 362.699206] SyS_ioctl+0x7f/0xb0 [ 362.702554] ? do_vfs_ioctl+0xff0/0xff0 [ 362.706511] do_syscall_64+0x1d5/0x640 [ 362.710388] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 362.715560] RIP: 0033:0x45e087 [ 362.718736] RSP: 002b:00007fe27cb4fa18 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 362.726443] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e087 [ 362.733710] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 362.740975] RBP: 0000000000000000 R08: 0000000020000218 R09: 0000000000000000 13:15:36 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, 0x0, 0x0) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) [ 362.748489] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000001 [ 362.755744] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000228 13:15:36 executing program 3: r0 = getpid() ioprio_get$pid(0x2, r0) r1 = open(&(0x7f0000000400)='./bus\x00', 0x14103e, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, r1, 0x0) read(r1, &(0x7f0000000180)=""/19, 0xfffffe47) r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0) ftruncate(r2, 0x208200) r3 = syz_open_dev$char_raw(&(0x7f00000001c0)='/dev/raw/raw#\x00', 0x0, 0x600880) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000480)={&(0x7f0000000440)=[0x8, 0x0, 0x4, 0x45, 0x1f, 0x2, 0x4, 0xfff, 0x401], 0x9, 0x800, 0x0, 0xffffffffffffffff}) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x6, 0x5, &(0x7f00000004c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@jmp={0x5, 0x1, 0x7, 0x5, 0x5, 0xffffffffffffffe0, 0x10}, @alu={0x5771dca3b91538cb, 0x0, 0xa, 0x4, 0x0, 0x8, 0x1}]}, &(0x7f0000000500)='syzkaller\x00', 0x80, 0x7b, &(0x7f0000000540)=""/123, 0x1f00, 0xd, [], 0x0, 0x3, 0xffffffffffffffff, 0x8, &(0x7f00000005c0)={0x4, 0x3}, 0x8, 0x10, &(0x7f0000000600)={0x1, 0xd, 0xfff}, 0x10}, 0x78) r6 = creat(&(0x7f0000000080)='./bus\x00', 0x0) ftruncate(r6, 0x208200) recvmmsg(0xffffffffffffffff, &(0x7f0000007a40)=[{{&(0x7f00000006c0)=@ax25={{0x3, @null}, [@remote, @netrom, @netrom, @bcast, @bcast, @default, @rose]}, 0x80, &(0x7f00000009c0)=[{&(0x7f0000000740)=""/189, 0xbd}, {&(0x7f0000000800)}, {&(0x7f0000000840)=""/91, 0x5b}, {&(0x7f00000008c0)=""/62, 0x3e}, {&(0x7f0000000900)=""/151, 0x97}], 0x5, &(0x7f0000000a40)=""/2, 0x2}}, {{&(0x7f0000000a80)=@alg, 0x80, &(0x7f0000000dc0)=[{&(0x7f0000000b00)=""/93, 0x5d}, {&(0x7f0000000b80)=""/139, 0x8b}, {&(0x7f0000000c40)=""/88, 0x58}, {&(0x7f0000000cc0)=""/18, 0x12}, {&(0x7f0000000d00)=""/32, 0x20}, {&(0x7f0000000d40)=""/89, 0x59}], 0x6, &(0x7f0000000e40)=""/14, 0xe}, 0x80000000}, {{&(0x7f0000000e80)=@hci, 0x80, &(0x7f0000002340)=[{&(0x7f0000000f00)=""/131, 0x83}, {&(0x7f0000000fc0)=""/110, 0x6e}, {&(0x7f0000001040)=""/57, 0x39}, {&(0x7f0000001080)=""/131, 0x83}, {&(0x7f0000001140)=""/74, 0x4a}, {&(0x7f00000011c0)=""/4096, 0x1000}, {&(0x7f00000021c0)=""/93, 0x5d}, {&(0x7f0000002240)=""/97, 0x61}, {&(0x7f00000022c0)=""/112, 0x70}], 0x9}, 0x7}, {{&(0x7f0000002400)=@pppoe={0x18, 0x0, {0x0, @dev}}, 0x80, &(0x7f0000004840)=[{&(0x7f0000002480)=""/82, 0x52}, {&(0x7f0000002500)=""/186, 0xba}, {&(0x7f00000025c0)=""/73, 0x49}, {&(0x7f0000002640)=""/4096, 0x1000}, {&(0x7f0000003640)=""/244, 0xf4}, {&(0x7f0000003740)=""/4096, 0x1000}, {&(0x7f0000004740)=""/250, 0xfa}], 0x7}, 0x8}, {{&(0x7f00000048c0)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, 0x80, &(0x7f0000004a80)=[{&(0x7f0000004940)=""/73, 0x49}, {&(0x7f00000049c0)=""/6, 0x6}, {&(0x7f0000004a00)=""/108, 0x6c}], 0x3, &(0x7f0000004ac0)=""/235, 0xeb}, 0xb8b0}, {{&(0x7f0000004bc0)=@rxrpc=@in6={0x21, 0x0, 0x2, 0x1c, {0xa, 0x0, 0x0, @empty}}, 0x80, &(0x7f0000005e40)=[{&(0x7f0000004c40)=""/198, 0xc6}, {&(0x7f0000004d40)=""/4096, 0x1000}, {&(0x7f0000005d40)=""/153, 0x99}, {&(0x7f0000005e00)}], 0x4, &(0x7f0000005e80)=""/2, 0x2}, 0x5}, {{&(0x7f0000005ec0)=@caif=@rfm, 0x80, &(0x7f00000061c0)=[{&(0x7f0000005f40)=""/7, 0x7}, {&(0x7f0000005f80)=""/156, 0x9c}, {&(0x7f0000006040)=""/113, 0x71}, {&(0x7f00000060c0)=""/14, 0xe}, {&(0x7f0000006100)=""/61, 0x3d}, {&(0x7f0000006140)=""/127, 0x7f}], 0x6, &(0x7f0000006240)=""/163, 0xa3}, 0x8}, {{&(0x7f0000006300)=@x25, 0x80, &(0x7f0000006500)=[{&(0x7f0000006380)=""/154, 0x9a}, {&(0x7f0000006440)=""/130, 0x82}], 0x2, &(0x7f0000006540)=""/4096, 0x1000}}, {{&(0x7f0000007540)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @broadcast}}}, 0x80, &(0x7f00000079c0)=[{&(0x7f00000075c0)=""/239, 0xef}, {&(0x7f00000076c0)=""/216, 0xd8}, {&(0x7f00000077c0)=""/129, 0x81}, {&(0x7f0000007880)=""/201, 0xc9}, {&(0x7f0000007980)=""/39, 0x27}], 0x5}, 0x6}], 0x9, 0x0, &(0x7f0000007c80)={0x77359400}) r8 = creat(&(0x7f0000000080)='./bus\x00', 0x0) ftruncate(r8, 0x208200) sendmsg$unix(0xffffffffffffffff, &(0x7f0000007d40)={&(0x7f0000000100)=@abs={0x1, 0x0, 0x101}, 0x6e, &(0x7f0000000180)=[{&(0x7f0000000240)="86d0bb457b354ad33f76a8eb81356fef148cb94d1c81c943852569da7f8e3aa8e31d23a08a3554d805e755b4aade37af6101559ca30ae182ee88afe7f34f0292a28da2bf9a30e951029c6c7ae2780bded835222121671366e11ca21d443391516ccd64de77e0ac3eca3fe8e4f43bdb967d8489176db841f5e55e1a0139525121ce49180a1545e1fc26e3684c6bd827342a04809eaa774f6ccbedc2777b30bf4fc7a6b345901cd50febfd336e1e99141cf82a59332be4614db10a8ca9d347987b1a8538635402e911e9eed2f6c8c154b91cc5c639aef171921f1f42", 0xdb}, {&(0x7f0000000340)="5b548173c6560992261ad7c558793583e118f72ea94f49d32f8dad4aceb6d07f92a5fa3b4173472ee33c7b858fdabcac31145e2d6b801bc7fa1303726c4ae263dadbc06896676745fad940ad541372e13792f2c92634f41611eb58b240e0761c32b07df2a3226c7ee2948887584a589bf2a6fbbfd328a6c87d3f01bc2411cc46ab86e90ba16137909ca75f34704bd5bba0acb8b02f6d135922bbce1fcffb9465f4265bdb8af727a54fca2ac8dd03b3482761b4639c734fbe3d07630c34da122d99ade0d01d03e4", 0xc7}], 0x2, &(0x7f0000007cc0)=[@cred={{0x1c, 0x1, 0x2, {r0, 0xffffffffffffffff, 0xffffffffffffffff}}}, @rights={{0x30, 0x1, 0x1, [r1, 0xffffffffffffffff, r2, r3, r4, r5, 0xffffffffffffffff, r6]}}, @rights={{0x18, 0x1, 0x1, [r7, r8]}}], 0x68, 0x20008054}, 0x2000c040) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x8, 0x2, &(0x7f0000000200)=[{&(0x7f0000000080)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) 13:15:36 executing program 4: bpf$ITER_CREATE(0xf, 0x0, 0x0) 13:15:36 executing program 5 (fault-call:0 fault-nth:17): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:15:36 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x0, 0x0}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x9) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:36 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x4, @mcast1, 0x100}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:36 executing program 4: process_vm_writev(0x0, &(0x7f0000000080)=[{&(0x7f0000000000)=""/84, 0x54}], 0x1, 0x0, 0x0, 0x0) [ 363.007053] FAULT_INJECTION: forcing a failure. [ 363.007053] name failslab, interval 1, probability 0, space 0, times 0 [ 363.031310] CPU: 1 PID: 31333 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 363.039245] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 363.048607] Call Trace: [ 363.051213] dump_stack+0x1b2/0x283 [ 363.054837] should_fail.cold+0x10a/0x154 [ 363.058980] should_failslab+0xd6/0x130 [ 363.062941] kmem_cache_alloc+0x28e/0x3c0 [ 363.067077] __kernfs_new_node+0x6f/0x470 [ 363.071210] kernfs_new_node+0x7b/0xe0 [ 363.075098] __kernfs_create_file+0x3d/0x320 [ 363.079491] sysfs_add_file_mode_ns+0x1e1/0x450 [ 363.084144] ? kernfs_create_dir_ns+0x171/0x200 [ 363.088815] internal_create_group+0x22b/0x710 [ 363.093400] lo_ioctl+0x1137/0x1cd0 [ 363.097034] ? loop_set_status64+0xe0/0xe0 [ 363.101260] blkdev_ioctl+0x540/0x1830 [ 363.105151] ? blkpg_ioctl+0x8d0/0x8d0 [ 363.109030] ? trace_hardirqs_on+0x10/0x10 [ 363.113253] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 363.118339] ? debug_check_no_obj_freed+0x2c0/0x674 [ 363.123342] block_ioctl+0xd9/0x120 [ 363.126955] ? blkdev_fallocate+0x3a0/0x3a0 [ 363.131262] do_vfs_ioctl+0x75a/0xff0 [ 363.135050] ? ioctl_preallocate+0x1a0/0x1a0 [ 363.139444] ? lock_downgrade+0x740/0x740 [ 363.143576] ? __fget+0x225/0x360 [ 363.147011] ? do_vfs_ioctl+0xff0/0xff0 [ 363.150970] ? security_file_ioctl+0x83/0xb0 [ 363.155369] SyS_ioctl+0x7f/0xb0 [ 363.158720] ? do_vfs_ioctl+0xff0/0xff0 [ 363.162683] do_syscall_64+0x1d5/0x640 [ 363.166557] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 363.171728] RIP: 0033:0x45e087 [ 363.174901] RSP: 002b:00007fe27cb4fa18 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 363.182593] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e087 [ 363.189853] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 363.197278] RBP: 0000000000000000 R08: 0000000020000218 R09: 0000000000000000 13:15:36 executing program 4: perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xb6, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$nvram(0xffffff9c, &(0x7f0000000080)='/dev/nvram\x00', 0xc001, 0x0) ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, 0xffffffffffffffff) [ 363.204529] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000001 [ 363.212024] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000228 13:15:36 executing program 4: bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000003940)=@bpf_tracing={0x1a, 0x0, 0x0, &(0x7f0000002840)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x74) 13:15:36 executing program 5 (fault-call:0 fault-nth:18): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:15:36 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) openat$zero(0xffffffffffffff9c, &(0x7f0000000080)='/dev/zero\x00', 0x208000, 0x0) 13:15:36 executing program 4: nanosleep(&(0x7f0000000000), 0x0) getresuid(&(0x7f0000000280), &(0x7f00000002c0), &(0x7f0000000300)) [ 363.413865] FAULT_INJECTION: forcing a failure. [ 363.413865] name failslab, interval 1, probability 0, space 0, times 0 [ 363.425881] CPU: 0 PID: 31376 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 363.433824] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 363.443180] Call Trace: [ 363.445764] dump_stack+0x1b2/0x283 [ 363.449387] should_fail.cold+0x10a/0x154 [ 363.453705] should_failslab+0xd6/0x130 [ 363.457673] kmem_cache_alloc+0x28e/0x3c0 [ 363.461808] __kernfs_new_node+0x6f/0x470 [ 363.465949] kernfs_new_node+0x7b/0xe0 [ 363.469829] __kernfs_create_file+0x3d/0x320 [ 363.474244] sysfs_add_file_mode_ns+0x1e1/0x450 [ 363.478898] ? kernfs_create_dir_ns+0x171/0x200 [ 363.483589] internal_create_group+0x22b/0x710 [ 363.488196] lo_ioctl+0x1137/0x1cd0 [ 363.491808] ? loop_set_status64+0xe0/0xe0 [ 363.496026] blkdev_ioctl+0x540/0x1830 [ 363.499895] ? blkpg_ioctl+0x8d0/0x8d0 [ 363.503768] ? trace_hardirqs_on+0x10/0x10 [ 363.507989] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 363.513074] ? debug_check_no_obj_freed+0x2c0/0x674 [ 363.518074] block_ioctl+0xd9/0x120 [ 363.521682] ? blkdev_fallocate+0x3a0/0x3a0 [ 363.525988] do_vfs_ioctl+0x75a/0xff0 [ 363.529772] ? ioctl_preallocate+0x1a0/0x1a0 [ 363.534162] ? lock_downgrade+0x740/0x740 [ 363.538297] ? __fget+0x225/0x360 [ 363.541738] ? do_vfs_ioctl+0xff0/0xff0 [ 363.545706] ? security_file_ioctl+0x83/0xb0 [ 363.550098] SyS_ioctl+0x7f/0xb0 [ 363.553446] ? do_vfs_ioctl+0xff0/0xff0 [ 363.557404] do_syscall_64+0x1d5/0x640 [ 363.561280] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 363.566467] RIP: 0033:0x45e087 [ 363.569651] RSP: 002b:00007fe27cb4fa18 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 363.577358] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e087 [ 363.584609] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 363.591878] RBP: 0000000000000000 R08: 0000000020000218 R09: 0000000000000000 [ 363.599132] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000001 [ 363.606387] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000228 13:15:37 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x0, 0x0}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) 13:15:37 executing program 4: faccessat(0xffffffffffffffff, 0x0, 0x10) 13:15:37 executing program 4: syz_mount_image$iso9660(&(0x7f0000000000)='iso9660\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000140)={[{@overriderock='overriderockperm'}]}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81e8943c, 0x0) 13:15:37 executing program 5 (fault-call:0 fault-nth:19): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) [ 363.801681] FAULT_INJECTION: forcing a failure. [ 363.801681] name failslab, interval 1, probability 0, space 0, times 0 [ 363.804122] ISOFS: Unable to identify CD-ROM format. [ 363.813220] CPU: 0 PID: 31406 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 363.826619] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 363.836319] Call Trace: [ 363.839090] dump_stack+0x1b2/0x283 [ 363.842719] should_fail.cold+0x10a/0x154 [ 363.846856] should_failslab+0xd6/0x130 [ 363.850815] kmem_cache_alloc+0x40/0x3c0 [ 363.854874] radix_tree_node_alloc.constprop.0+0x1b0/0x2f0 [ 363.860547] idr_get_free_cmn+0x595/0x8d0 [ 363.864682] idr_alloc_cmn+0xe8/0x1e0 [ 363.868465] ? __fprop_inc_percpu_max+0x1d0/0x1d0 [ 363.873287] ? kernfs_add_one+0x4c/0x3a0 [ 363.877333] ? fs_reclaim_release+0xd0/0x110 [ 363.881722] idr_alloc_cyclic+0xc2/0x1d0 [ 363.885764] ? idr_alloc_cmn+0x1e0/0x1e0 [ 363.889805] ? __radix_tree_preload+0x1c3/0x250 [ 363.894455] __kernfs_new_node+0xaf/0x470 [ 363.898588] kernfs_new_node+0x7b/0xe0 [ 363.902457] __kernfs_create_file+0x3d/0x320 [ 363.906860] sysfs_add_file_mode_ns+0x1e1/0x450 [ 363.911513] ? kernfs_create_dir_ns+0x171/0x200 [ 363.916167] internal_create_group+0x22b/0x710 [ 363.920733] lo_ioctl+0x1137/0x1cd0 [ 363.924340] ? loop_set_status64+0xe0/0xe0 [ 363.928570] blkdev_ioctl+0x540/0x1830 [ 363.932437] ? blkpg_ioctl+0x8d0/0x8d0 [ 363.936308] ? trace_hardirqs_on+0x10/0x10 [ 363.940534] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 363.945618] ? debug_check_no_obj_freed+0x2c0/0x674 [ 363.950617] block_ioctl+0xd9/0x120 [ 363.954237] ? blkdev_fallocate+0x3a0/0x3a0 [ 363.958540] do_vfs_ioctl+0x75a/0xff0 [ 363.962328] ? ioctl_preallocate+0x1a0/0x1a0 [ 363.966713] ? lock_downgrade+0x740/0x740 [ 363.970843] ? __fget+0x225/0x360 [ 363.974292] ? do_vfs_ioctl+0xff0/0xff0 [ 363.978247] ? security_file_ioctl+0x83/0xb0 [ 363.982648] SyS_ioctl+0x7f/0xb0 [ 363.985995] ? do_vfs_ioctl+0xff0/0xff0 [ 363.989965] do_syscall_64+0x1d5/0x640 [ 363.993839] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 363.999018] RIP: 0033:0x45e087 [ 364.002185] RSP: 002b:00007fe27cb4fa18 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 364.009877] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e087 [ 364.017140] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 364.024390] RBP: 0000000000000000 R08: 0000000020000218 R09: 0000000000000000 [ 364.031743] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000001 [ 364.038999] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000228 13:15:37 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x0, 0x0}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x9) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:37 executing program 3: open(0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, &(0x7f0000000180)='stack\x00') syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x80000, 0x25, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000600100000f000000000000000000000004000000000002000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d6f4655f000000000000000001000000000000000b0000000001000008000000d2420000120300000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e31333638353234303200"/179, 0xb3, 0x400}, {&(0x7f0000010100)="0000000000000000000000008395006fb905454792d9f392427055b701004000", 0x20, 0x4e0}, {&(0x7f0000010200)="00000000000000000000000000000000000000000000000000000000200020000100"/52, 0x34, 0xdf42}, {&(0x7f0000010300)="0300", 0x2, 0x640}, {&(0x7f0000010400)="03000000040000000500000016000f000300040000000000000000000f00698c", 0x20, 0x800}, {&(0x7f0000010e00)="ed41000000040000d6f4655fd7f4655fd7f4655f00000000000004002000", 0x1e, 0x1500}, {&(0x7f0000010f00)="2000000098a2e27a98a2e27a00000000", 0x10, 0x1580}, {&(0x7f0000011000)="8081000000180000d6f4655fd6f4655fd6f4655f00000000000001002000000010000800000000000af3020004000000000000000000000002000000300000000200000004000000320000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000d6f4655f00"/160, 0xa0, 0x1600}, {&(0x7f0000011100)="8081000000180000d6f4655fd6f4655fd6f4655f00000000000001002000000010000800000000000af3020004000000000000000000000002000000400000000200000004000000420000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000d6f4655f00"/160, 0xa0, 0x1700}, {&(0x7f0000011200)="c041000000300000d6f4655fd6f4655fd6f4655f00000000000002002000000000000800000000000af301000400000000000000000000000c00000020000000", 0x40, 0x1e00}, {0x0}, {&(0x7f0000011500), 0x0, 0x2000}, {&(0x7f0000011600)="ffa1000026000000d7f4655fd7f4655fd7f4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3133363835323430322f66696c65302f66696c6530000000000000000000000000000000000000000000008a6df6170000000000000000000000000000000000000000000000002000000098a2e27a98a2e27a98a2e27ad7f4655f98a2e27a0000000000000000", 0xa0, 0x2100}, {&(0x7f0000011700)="ed8100000a000000d7f4655fd7f4655fd7f4655f00000000000001002000000000000800010000000af30100040000000000000000000000010000007000"/98, 0x62, 0x2200}, {0x0, 0x0, 0x2400}, {&(0x7f0000011a00)}, {0x0, 0x0, 0x8000}, {&(0x7f0000011d00)="0000000000040000", 0x8}, {&(0x7f0000011f00), 0x0, 0x9000}, {0x0, 0x0, 0x9800}, {&(0x7f0000012200), 0x0, 0x9c00}, {0x0, 0x0, 0xa000}, {&(0x7f0000012400)="000000000004000000000000000000", 0xf}, {&(0x7f0000012600)}, {&(0x7f0000012700)="111fc0d901000000803a0900803a090000000000060000", 0x17, 0xc000}, {&(0x7f0000012900)="0300"/32, 0x20}, {&(0x7f0000012b00)}, {0x0, 0x0, 0xd400}, {&(0x7f0000012d00)="2719c0d901000000803a0900803a0900000000000600", 0x16, 0x10000}, {&(0x7f0000012e00), 0x0, 0x10400}, {0x0}, {0x0, 0x0, 0x11000}, {&(0x7f0000013200), 0x0, 0x11400}, {0x0, 0x0, 0x14000}, {&(0x7f0000013400)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkalle', 0x3dd}, {&(0x7f0000000180)='syzkallers', 0xa}, {&(0x7f0000013a00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallekallersyzkallers\x00'/105, 0x69, 0x24003}], 0x0, &(0x7f0000000800)=ANY=[@ANYBLOB="004e4d23dddefe1e0e811a8881f0e64786998ef2cf09c931d64cb1afe34b54b74514ae59e46ae885d2976aaa7d16be562d7dbb87119460063d3cd69c74aa2c3ab246c59b0c242a4419e77253f1ceae8eeef0d1fe55a06c114e5a7a5f923fe6237117e5a555ccdbee854cc90c5dc90861efc1492d06941a500ab6da98c3b725b7ef958be8ea0702ba4c7c8bb53f13639a12c68109fdb91339ff16c6a255c5dfa4eaf68552d9b0f92ef7b9e762aecadffafc297b8c110494a662acd801bd89be7c312e885d5a9dff586a8e8f7c77f53e70966d4094cf403070"]) r0 = openat(0xffffffffffffff9c, &(0x7f00000020c0)='./file0/file0\x00', 0x0, 0x0) renameat(0xffffffffffffffff, 0x0, r0, &(0x7f0000000780)='./file0\x00') dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(0xffffffffffffffff, 0xc02064b2, 0x0) socket$bt_cmtp(0x1f, 0x3, 0x5) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000120000000000000000000000000000000000000000f90cac8b044b4fa88fee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0xc000, &(0x7f00000007c0)=ANY=[]) mount$bpf(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='bpf\x00', 0x400, &(0x7f0000000100)={[{@mode={'mode', 0x3d, 0x8}}, {@mode={'mode', 0x3d, 0x10001}}, {@mode={'mode', 0x3d, 0x1}}], [{@smackfstransmute={'smackfstransmute', 0x3d, 'btrfs\x00'}}, {@audit='audit'}, {@dont_appraise='dont_appraise'}, {@audit='audit'}, {@obj_role={'obj_role', 0x3d, 'btrfs\x00'}}, {@obj_user={'obj_user', 0x3d, 'btrfs\x00'}}]}) 13:15:37 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x5, 0x0, 0x0, 0x2011000, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000100)={0x0, &(0x7f0000000140)}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(0xffffffffffffffff, &(0x7f0000000080)="41b81a07c14500c8d7046cb5f504b6cba8103223b14877bc5fad332d504c01fa22394441e3887adc12568dc53fa1a2aa33abdbb503b862bffd43f2b21bd2007157b91e5b427884", 0x47, 0x800, &(0x7f0000000240)={0xa, 0x0, 0x101, @ipv4={[], [], @dev={0xac, 0x14, 0x14, 0x2c}}}, 0xfffffefc) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) [ 364.176918] ISOFS: Unable to identify CD-ROM format. 13:15:37 executing program 4: r0 = syz_open_pts(0xffffffffffffffff, 0x0) poll(&(0x7f0000000040)=[{r0, 0x40}], 0x1, 0x0) poll(0x0, 0x0, 0x401) poll(&(0x7f00000000c0)=[{r0, 0x171}], 0x1, 0x0) [ 364.243064] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue 13:15:37 executing program 3: r0 = syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x5}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) inotify_add_watch(0xffffffffffffffff, &(0x7f00000001c0)='./file0\x00', 0x0) accept4(0xffffffffffffffff, &(0x7f0000000100)=@alg, &(0x7f0000000180)=0x80, 0x80800) r1 = creat(&(0x7f0000000080)='./bus\x00', 0x0) ftruncate(r1, 0x208200) mount$9p_virtio(&(0x7f00000014c0)='syz\x00', &(0x7f0000001500)='./file0\x00', &(0x7f0000001540)='9p\x00', 0x20000, &(0x7f0000001580)={'trans=virtio,', {[{@cachetag={'cachetag', 0x3d, '\\('}}, {@cache_fscache='cache=fscache'}, {@access_any='access=any'}, {@afid={'afid', 0x3d, 0x9}}, {@debug={'debug', 0x3d, 0xfffffffffffffffa}}], [{@fowner_lt={'fowner<'}}]}}) newfstatat(0xffffffffffffff9c, &(0x7f0000000440)='./file0\x00', &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x7000) chown(&(0x7f0000000400)='./file0\x00', r2, 0xffffffffffffffff) mount$9p_unix(&(0x7f0000001600)='.\x00', &(0x7f0000001640)='./file1\x00', &(0x7f0000001680)='9p\x00', 0x100000, &(0x7f00000016c0)={'trans=unix,', {[{@mmap='mmap'}, {@access_any='access=any'}, {@cache_mmap='cache=mmap'}, {@cache_none='cache=none'}, {@cache_mmap='cache=mmap'}, {@version_L='version=9p2000.L'}], [{@measure='measure'}, {@uid_gt={'uid>', r2}}]}}) fstat(r0, &(0x7f00000012c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) mount$fuse(0x0, &(0x7f0000001240)='./file0\x00', &(0x7f0000001280)='fuse\x00', 0x200000, &(0x7f0000001340)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0xa000}, 0x2c, {'user_id', 0x3d, 0xee00}, 0x2c, {'group_id', 0x3d, r3}, 0x2c, {[{@blksize={'blksize', 0x3d, 0x200}}, {@max_read={'max_read', 0x3d, 0x101}}, {@max_read={'max_read', 0x3d, 0x10000}}], [{@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffe62}}, {@smackfstransmute={'smackfstransmute', 0x3d, 'btrfs\x00'}}, {@mask={'mask', 0x3d, '^MAY_READ'}}, {@mask={'mask', 0x3d, 'MAY_APPEND'}}]}}) recvfrom$unix(0xffffffffffffffff, &(0x7f0000000240)=""/4096, 0x1000, 0x20, &(0x7f0000000080)=@abs={0x0, 0x0, 0x4e22}, 0x6e) r4 = openat$cgroup_int(r1, &(0x7f0000001480)='io.bfq.weight\x00', 0x2, 0x0) sendfile(r0, r4, 0x0, 0x5) 13:15:38 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0, 0x0, 0x8}], 0x0, &(0x7f0000000080)=ANY=[@ANYRESHEX=0x0]) 13:15:38 executing program 5 (fault-call:0 fault-nth:20): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) [ 364.522363] FAULT_INJECTION: forcing a failure. [ 364.522363] name failslab, interval 1, probability 0, space 0, times 0 [ 364.560426] CPU: 0 PID: 31460 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 364.568346] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 364.577703] Call Trace: [ 364.580295] dump_stack+0x1b2/0x283 [ 364.584109] should_fail.cold+0x10a/0x154 [ 364.588346] should_failslab+0xd6/0x130 [ 364.592327] kmem_cache_alloc_trace+0x29a/0x3d0 [ 364.597029] ? dev_uevent_filter+0xd0/0xd0 [ 364.601269] kobject_uevent_env+0x20c/0xf40 [ 364.605591] ? internal_create_group+0x48f/0x710 [ 364.610366] lo_ioctl+0x11a6/0x1cd0 [ 364.614000] ? loop_set_status64+0xe0/0xe0 [ 364.618235] blkdev_ioctl+0x540/0x1830 [ 364.622127] ? blkpg_ioctl+0x8d0/0x8d0 [ 364.626013] ? trace_hardirqs_on+0x10/0x10 [ 364.630265] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 364.635366] ? debug_check_no_obj_freed+0x2c0/0x674 [ 364.640382] block_ioctl+0xd9/0x120 [ 364.644017] ? blkdev_fallocate+0x3a0/0x3a0 [ 364.648426] do_vfs_ioctl+0x75a/0xff0 [ 364.652222] ? ioctl_preallocate+0x1a0/0x1a0 [ 364.656626] ? lock_downgrade+0x740/0x740 [ 364.660774] ? __fget+0x225/0x360 [ 364.664226] ? do_vfs_ioctl+0xff0/0xff0 [ 364.668230] ? security_file_ioctl+0x83/0xb0 [ 364.672642] SyS_ioctl+0x7f/0xb0 [ 364.676000] ? do_vfs_ioctl+0xff0/0xff0 [ 364.679971] do_syscall_64+0x1d5/0x640 [ 364.683859] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 364.689039] RIP: 0033:0x45e087 [ 364.692256] RSP: 002b:00007fe27cb4fa18 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 364.699981] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e087 [ 364.707247] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 364.714510] RBP: 0000000000000000 R08: 0000000020000218 R09: 0000000000000000 13:15:38 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x0, 0x0}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) [ 364.721777] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000001 [ 364.729150] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000228 13:15:38 executing program 5 (fault-call:0 fault-nth:21): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:15:38 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) newfstatat(0xffffffffffffff9c, &(0x7f0000000440)='./file0\x00', &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x7000) chown(&(0x7f0000000400)='./file0\x00', r0, 0xffffffffffffffff) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000880)={{{@in6=@loopback, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@dev}, 0x0, @in6=@remote}}, &(0x7f0000000980)=0xe8) syz_mount_image$omfs(&(0x7f0000000080)='omfs\x00', &(0x7f00000000c0)='./file0\x00', 0x4, 0xa, &(0x7f0000000780)=[{&(0x7f0000000100)="e2a2a40f227fd1a9f35a4ac9f759e69fab8a86dae2976d96aa0df7c8c72590d2ca73705e2eaa613a2d9ad94d23dfad94c23a3d5595d042d5786cd8efbd2b919df050304fa22a6b42a166d9406850a068f479ddaf39930c784bd97a1016a33c1b93141fd9021d3e6133609800ad25c93cbe169a3488a434abe2606764760d353f15bddad8785dbecdcd997bdc424b6d1e4662aa715b0ca4366ee6041b11c9d88fa3614e355195e07e60268b3ecbdd5f63c0e3554db4f728222fb4860384a7c839d2", 0xc1, 0x9}, {&(0x7f0000000240)="5c7f09b44a0f888b2883cd9b2b1909861b9d124f48a954ca86b04743ce37f36c531cc9bba3f7ba4401be355241130897f7ffc19dbb61dd138967ce96f7b5f61d20b740b9c6fadf18c920509350fe2729f7a3627e298116aa61e7e831a87ebf31b3378e0003d2faa1586e33df26e479765a6ef0a7a27ba182c4716e91988a8c1899fdb6791ec5d1e7d9c0c9aa", 0x8c, 0x7}, {&(0x7f0000000300)="7d502285ecf3d73ae5db9fb47d6df2f3a7b72d8edcc0b156951f708e27f7313e3be0f06e41518992808425d5b1a546a4a98b347ccb7401dc183acd96b02ae12bd7a3ecd97d85921709abaae197745cbc09dbe706da0b77bacbae61117425eab4ed0021c5ba3547d2773dad982111250fe78ee166b363a2226b62597ac37956cd6b23b87918c4ac097a05f95e89fc8564221b553afc883684adec478a59df8089c28a55dab4728c52", 0xa8, 0x200000006}, {&(0x7f00000003c0)="812fe13042586e048e8758308ffe9adb10645f71252e89bd8e2ffda280a4d84b2e71c74fead1c336a9026bd0c0be5ff0cd6626f55f663c26e951795cc7f4a8bb00f55ba2f4f5ec6d232fc6a8cfa27486b29140d287b3897dd0eb2afbf693529cd19fd637c130767ab11c7d48355f8a65babbcc47ff59503010844081", 0x7c}, {&(0x7f0000000440)="8d84317b8fdf2750c6fa4e1e7e3561d51dd26d1ba5507e43a60f38", 0x1b, 0x1ff}, {&(0x7f0000000480)="6342509db7232d70ef6cd2ad170399ef2b50bce9ecc245d5bdeb6212c95d84d0cf7c5a1b71597b82798986f5c3207c713e7a9ac82127485df5330fb690d7bf7b6e1d6487aa30cc6f01a075ecf3e4dd5dd66cd543ccc5ea7f6bbf54a0eab89a97c7da079acfd17a99ae7f05d7aa69154ef4b6318e6ebceb7da48f5a74e7fc4db15758ba4806299b41eb9a771b1c1a70810b7a783a5e3c13db29ab705ee139602472792b6582f3bef46a58bc5639b67d5cbb041be5bdc6f05ab53f788c20ea50d3da1020ea5125ed37b51afb21ede223175fab5a9b3d7ae8961965bd8dc7e958c784103668baf80629b27921ddbc1049a2ea2078b1ddde94", 0xf7}, {&(0x7f0000000580)="e44f7bcbe49e613fbf8273b6ac3047a532481def5234911f639624003cf4c34b45c0702d7714ba7614f9cb52810b", 0x2e, 0xff}, {&(0x7f00000005c0)="c1272215ba718e957d4d57b5685fd1522a89ccd6fc900e5c529278c80f6941a4292c0a7b5df2ceef5418a21a365441ebd53459bf7565a4eee26a3f17b533f1e3a0a8960de73d5dcdb87060198b083236414b0fb212ed00c1f9bbd25eb3a6902521a50db5cc5518a2a605b966bfc4b71c9464ec36c53896abed771521dbb1671b3a759939ed99912482ea425c4b74bb61cb6a1a9feab14e740e61090ec26af6fd396527e24a0bbfa55ac062162a5bfbdad964808cb3ed2d257fb1d5899230aea0c12aa7d4c4d2b2fcb7c619e620807f531afd653826ae598e29fed07976c278f1fe105e59ab78dda7c1574ec66625b2bff6d91f636b009545f45bca01f2d8", 0xfe}, {&(0x7f00000006c0)="d7b2863eed8aa0c67a3f417cf789f7338ddfaa3acecc9a5b7797e8574c1df41a505e05bf94e315803296b19396ffb893608cbd1ba5d48b07f99a17a8c0976b88d3ea75bd5ec45b890eae735c2a2e8cd107bace0b320b293b", 0x58, 0xffffffffffffea09}, {&(0x7f0000000740)="17205908e4730026c11bf9a9b132767912dbfc3385af378854b98c217ed22e73c87fb0f0ad2c00caba7b71e357afe0", 0x2f, 0x9}], 0x180084, &(0x7f00000009c0)={[{'btrfs\x00'}, {'btrfs\x00'}, {'btrfs\x00'}], [{@euid_eq={'euid', 0x3d, r0}}, {@smackfsfloor={'smackfsfloor', 0x3d, 'btrfs\x00'}}, {@fscontext={'fscontext', 0x3d, 'staff_u'}}, {@uid_gt={'uid>', r1}}, {@fowner_lt={'fowner<', 0xee00}}, {@hash='hash'}]}) [ 364.926031] FAULT_INJECTION: forcing a failure. [ 364.926031] name failslab, interval 1, probability 0, space 0, times 0 [ 364.970509] CPU: 1 PID: 31481 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 364.978433] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 364.987825] Call Trace: [ 364.990416] dump_stack+0x1b2/0x283 [ 364.994045] should_fail.cold+0x10a/0x154 [ 364.998227] should_failslab+0xd6/0x130 [ 365.002218] __kmalloc+0x2c1/0x400 [ 365.005761] ? kobject_get_path+0xb5/0x230 [ 365.009989] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 365.015520] kobject_get_path+0xb5/0x230 [ 365.019739] kobject_uevent_env+0x230/0xf40 [ 365.024050] ? internal_create_group+0x48f/0x710 [ 365.028881] lo_ioctl+0x11a6/0x1cd0 [ 365.032496] ? loop_set_status64+0xe0/0xe0 [ 365.036847] blkdev_ioctl+0x540/0x1830 [ 365.040720] ? blkpg_ioctl+0x8d0/0x8d0 [ 365.044593] ? trace_hardirqs_on+0x10/0x10 [ 365.048820] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 365.053920] ? debug_check_no_obj_freed+0x2c0/0x674 [ 365.058944] block_ioctl+0xd9/0x120 [ 365.062583] ? blkdev_fallocate+0x3a0/0x3a0 [ 365.066917] do_vfs_ioctl+0x75a/0xff0 [ 365.070735] ? ioctl_preallocate+0x1a0/0x1a0 [ 365.075165] ? lock_downgrade+0x740/0x740 [ 365.079319] ? __fget+0x225/0x360 [ 365.082766] ? do_vfs_ioctl+0xff0/0xff0 [ 365.086753] ? security_file_ioctl+0x83/0xb0 [ 365.091166] SyS_ioctl+0x7f/0xb0 [ 365.094670] ? do_vfs_ioctl+0xff0/0xff0 [ 365.098657] do_syscall_64+0x1d5/0x640 [ 365.102543] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 365.107731] RIP: 0033:0x45e087 [ 365.110902] RSP: 002b:00007fe27cb4fa18 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 365.118602] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e087 [ 365.125859] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 365.133109] RBP: 0000000000000000 R08: 0000000020000218 R09: 0000000000000000 [ 365.140364] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000001 [ 365.147627] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000228 13:15:38 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x0, 0x0}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x9) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:38 executing program 4: symlink(&(0x7f0000000000)='./file0/file0\x00', &(0x7f0000000040)='.\x00') 13:15:38 executing program 1: unshare(0x42000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) r1 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(r1, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:38 executing program 5 (fault-call:0 fault-nth:22): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:15:38 executing program 4: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$unix(r0, &(0x7f0000003dc0)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000600)="e0", 0x1}], 0x1}, 0x0) read(r1, 0x0, 0x0) [ 365.327261] FAULT_INJECTION: forcing a failure. [ 365.327261] name failslab, interval 1, probability 0, space 0, times 0 [ 365.340481] CPU: 1 PID: 31513 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 365.348515] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 365.357896] Call Trace: [ 365.360482] dump_stack+0x1b2/0x283 [ 365.364097] should_fail.cold+0x10a/0x154 [ 365.368247] should_failslab+0xd6/0x130 [ 365.372209] kmem_cache_alloc_node_trace+0x25a/0x400 [ 365.377296] __kmalloc_node_track_caller+0x38/0x70 [ 365.382206] __alloc_skb+0x96/0x510 [ 365.385831] kobject_uevent_env+0x882/0xf40 [ 365.390148] lo_ioctl+0x11a6/0x1cd0 [ 365.393769] ? loop_set_status64+0xe0/0xe0 [ 365.398229] blkdev_ioctl+0x540/0x1830 [ 365.402114] ? blkpg_ioctl+0x8d0/0x8d0 [ 365.405997] ? trace_hardirqs_on+0x10/0x10 [ 365.410233] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 365.415319] ? debug_check_no_obj_freed+0x2c0/0x674 [ 365.420320] block_ioctl+0xd9/0x120 [ 365.423926] ? blkdev_fallocate+0x3a0/0x3a0 [ 365.428231] do_vfs_ioctl+0x75a/0xff0 [ 365.432027] ? ioctl_preallocate+0x1a0/0x1a0 [ 365.436425] ? lock_downgrade+0x740/0x740 [ 365.440555] ? __fget+0x225/0x360 [ 365.443990] ? do_vfs_ioctl+0xff0/0xff0 [ 365.447947] ? security_file_ioctl+0x83/0xb0 [ 365.452357] SyS_ioctl+0x7f/0xb0 [ 365.455704] ? do_vfs_ioctl+0xff0/0xff0 [ 365.459659] do_syscall_64+0x1d5/0x640 [ 365.463550] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 365.468734] RIP: 0033:0x45e087 13:15:39 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000080)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x33, 0x10000}, {0x0}], 0x1021008, &(0x7f00000007c0)=ANY=[]) 13:15:39 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$unix(r0, &(0x7f0000003dc0)={0x0, 0x0, &(0x7f0000003c80)=[{0x0, 0x39}, {&(0x7f0000000880)="c0", 0x1}], 0x2}, 0x0) [ 365.471902] RSP: 002b:00007fe27cb4fa18 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 365.479601] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e087 [ 365.487197] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 365.494444] RBP: 0000000000000000 R08: 0000000020000218 R09: 0000000000000000 [ 365.501902] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000001 [ 365.509151] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000228 13:15:39 executing program 4: r0 = syz_open_pts(0xffffffffffffffff, 0x0) ioctl$TIOCSWINSZ(r0, 0x80087467, &(0x7f0000000040)) 13:15:39 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x0, 0x0}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) 13:15:39 executing program 4: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r1 = dup(r0) sendmsg$unix(r1, &(0x7f0000003dc0)={0x0, 0xffffffffffffffdb, &(0x7f0000000040), 0x10000000000000e2}, 0x0) 13:15:39 executing program 4: r0 = openat$vimc1(0xffffff9c, &(0x7f0000000000)='/dev/video1\x00', 0x2, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, &(0x7f000006d3c0)={0x0, [], 0x0, "e7f18097357ff2"}) 13:15:39 executing program 4: r0 = openat$dlm_plock(0xffffff9c, &(0x7f0000000180)='/dev/dlm_plock\x00', 0x0, 0x0) ioctl$PPPIOCSMRU1(r0, 0x40047452, 0x0) [ 365.782618] IPVS: ftp: loaded support on port[0] = 21 [ 365.905975] IPVS: ftp: loaded support on port[0] = 21 13:15:39 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x0, &(0x7f0000000280)}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x9) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:39 executing program 4: r0 = openat$dlm_plock(0xffffff9c, &(0x7f0000000180)='/dev/dlm_plock\x00', 0x0, 0x0) sendmsg$WG_CMD_GET_DEVICE(r0, 0x0, 0x0) [ 365.938086] print_req_error: 39 callbacks suppressed [ 365.938092] print_req_error: I/O error, dev loop3, sector 0 13:15:39 executing program 4: r0 = openat$null(0xffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x0, 0x0) setsockopt$RDS_RECVERR(r0, 0x114, 0x5, 0x0, 0x0) 13:15:39 executing program 5 (fault-call:0 fault-nth:23): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:15:39 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(r1, 0x0, 0x0, 0x57, 0x1) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f0000000080)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:39 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x401, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000001280)=ANY=[@ANYBLOB="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", @ANYRES32, @ANYRES16, @ANYBLOB="49916d11effd80b3de840eb842fedf3a4538cc2ba20a8c6e47686d24651ba0a28d96330a2a9ca640e313d8b79862f834ccfb"]) 13:15:39 executing program 4: r0 = openat$dlm_plock(0xffffff9c, &(0x7f0000000400)='/dev/dlm_plock\x00', 0x0, 0x0) sendmsg$TEAM_CMD_PORT_LIST_GET(r0, 0x0, 0x0) 13:15:39 executing program 4: r0 = openat$null(0xffffff9c, &(0x7f0000000040)='/dev/null\x00', 0x0, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, 0x0) [ 366.082977] FAULT_INJECTION: forcing a failure. [ 366.082977] name failslab, interval 1, probability 0, space 0, times 0 [ 366.102382] CPU: 1 PID: 31618 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 366.110335] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 366.119689] Call Trace: [ 366.122286] dump_stack+0x1b2/0x283 [ 366.125922] should_fail.cold+0x10a/0x154 [ 366.130074] should_failslab+0xd6/0x130 [ 366.134053] kmem_cache_alloc_node_trace+0x25a/0x400 [ 366.139180] __kmalloc_node_track_caller+0x38/0x70 [ 366.144104] __alloc_skb+0x96/0x510 [ 366.147748] kobject_uevent_env+0x882/0xf40 [ 366.152060] lo_ioctl+0x11a6/0x1cd0 [ 366.155673] ? loop_set_status64+0xe0/0xe0 [ 366.159904] blkdev_ioctl+0x540/0x1830 [ 366.163791] ? blkpg_ioctl+0x8d0/0x8d0 [ 366.167668] ? trace_hardirqs_on+0x10/0x10 [ 366.171886] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 366.176968] ? debug_check_no_obj_freed+0x2c0/0x674 [ 366.181988] block_ioctl+0xd9/0x120 [ 366.185594] ? blkdev_fallocate+0x3a0/0x3a0 [ 366.189898] do_vfs_ioctl+0x75a/0xff0 [ 366.193675] ? ioctl_preallocate+0x1a0/0x1a0 [ 366.198206] ? lock_downgrade+0x740/0x740 [ 366.202343] ? __fget+0x225/0x360 [ 366.205776] ? do_vfs_ioctl+0xff0/0xff0 [ 366.209735] ? security_file_ioctl+0x83/0xb0 [ 366.214123] SyS_ioctl+0x7f/0xb0 [ 366.217470] ? do_vfs_ioctl+0xff0/0xff0 [ 366.221426] do_syscall_64+0x1d5/0x640 [ 366.225300] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 366.230480] RIP: 0033:0x45e087 [ 366.233667] RSP: 002b:00007fe27cb4fa18 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 366.241353] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e087 [ 366.248602] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 366.255868] RBP: 0000000000000000 R08: 0000000020000218 R09: 0000000000000000 [ 366.263116] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000001 [ 366.270369] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000228 [ 366.327264] print_req_error: I/O error, dev loop3, sector 0 13:15:40 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x0, &(0x7f0000000340)}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) 13:15:40 executing program 4: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZE(r0, 0x5609, &(0x7f0000000080)={0x1ff}) 13:15:40 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0) ftruncate(r0, 0x208200) name_to_handle_at(r0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)={0xa4, 0x8, "6ca8f830382251979d85b6a193990a4b1bc582e38bc409b8fbb746fe7a27ef94480a3ba478041956f8854f16c6bbd5b133a42e17bf2dbab95b23da9e71c49a8a5a7cd05666a4cb27327db4ba0005125a364c129aafd73251d23d9cc3e56e0e836c22ee08a3f10e92c84320b5f45e0b2df3d2be7bc34955042a3e7b75280040d33cdcefcc2d2a1d05a3538b3d7a6baf0f1a82be0ccdafd15801708f7e"}, &(0x7f0000000180), 0x400) 13:15:40 executing program 5 (fault-call:0 fault-nth:24): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) [ 366.519284] FAULT_INJECTION: forcing a failure. [ 366.519284] name failslab, interval 1, probability 0, space 0, times 0 [ 366.537887] CPU: 1 PID: 31652 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 366.537895] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 366.537899] Call Trace: [ 366.537915] dump_stack+0x1b2/0x283 [ 366.537931] should_fail.cold+0x10a/0x154 [ 366.537946] should_failslab+0xd6/0x130 [ 366.537958] kmem_cache_alloc_node+0x263/0x410 [ 366.537973] __alloc_skb+0x5c/0x510 [ 366.537985] kobject_uevent_env+0x882/0xf40 [ 366.538005] lo_ioctl+0x11a6/0x1cd0 [ 366.538018] ? loop_set_status64+0xe0/0xe0 [ 366.538029] blkdev_ioctl+0x540/0x1830 [ 366.538040] ? blkpg_ioctl+0x8d0/0x8d0 [ 366.538051] ? trace_hardirqs_on+0x10/0x10 [ 366.538063] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 366.538073] ? debug_check_no_obj_freed+0x2c0/0x674 [ 366.538088] block_ioctl+0xd9/0x120 [ 366.538097] ? blkdev_fallocate+0x3a0/0x3a0 [ 366.538114] do_vfs_ioctl+0x75a/0xff0 [ 366.538128] ? ioctl_preallocate+0x1a0/0x1a0 [ 366.538137] ? lock_downgrade+0x740/0x740 [ 366.538170] ? __fget+0x225/0x360 [ 366.538181] ? do_vfs_ioctl+0xff0/0xff0 [ 366.538191] ? security_file_ioctl+0x83/0xb0 [ 366.538203] SyS_ioctl+0x7f/0xb0 [ 366.538211] ? do_vfs_ioctl+0xff0/0xff0 [ 366.538222] do_syscall_64+0x1d5/0x640 [ 366.538238] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 366.538246] RIP: 0033:0x45e087 [ 366.538251] RSP: 002b:00007fe27cb4fa18 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 366.538261] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e087 [ 366.538267] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 366.538272] RBP: 0000000000000000 R08: 0000000020000218 R09: 0000000000000000 [ 366.538278] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000001 [ 366.538283] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000228 [ 366.630305] print_req_error: I/O error, dev loop3, sector 0 13:15:40 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x0, &(0x7f0000000280)}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x9) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:40 executing program 5 (fault-call:0 fault-nth:25): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:15:40 executing program 3: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f00000000c0)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d6cf24658e6f709a5f5092dfb6dea1bb3bb5c002970e3d96417c0c39df88c362eace656bc2d52a26bdafe08e323", 0x75, 0x10001}, {0x0}], 0x888020, &(0x7f00000007c0)=ANY=[]) 13:15:40 executing program 4: r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000280)="2e0000001e008105e00fc0ecdbc0b9f207c804a01e000000302e20000000a3030e00160002000000da1b40d80589", 0x2e}], 0x1, 0x0, 0x0, 0xf000}, 0x0) [ 366.930705] FAULT_INJECTION: forcing a failure. [ 366.930705] name failslab, interval 1, probability 0, space 0, times 0 [ 366.944458] CPU: 1 PID: 31695 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 366.952378] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 366.961720] Call Trace: [ 366.964298] dump_stack+0x1b2/0x283 [ 366.967912] should_fail.cold+0x10a/0x154 [ 366.972042] should_failslab+0xd6/0x130 [ 366.976009] kmem_cache_alloc_node_trace+0x25a/0x400 [ 366.981093] __kmalloc_node_track_caller+0x38/0x70 [ 366.986015] __alloc_skb+0x96/0x510 [ 366.989626] kobject_uevent_env+0x882/0xf40 [ 366.993944] lo_ioctl+0x11a6/0x1cd0 [ 366.997554] ? loop_set_status64+0xe0/0xe0 [ 367.001777] blkdev_ioctl+0x540/0x1830 [ 367.005643] ? blkpg_ioctl+0x8d0/0x8d0 [ 367.009511] ? trace_hardirqs_on+0x10/0x10 [ 367.013726] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 367.018822] ? debug_check_no_obj_freed+0x2c0/0x674 [ 367.023849] block_ioctl+0xd9/0x120 [ 367.027456] ? blkdev_fallocate+0x3a0/0x3a0 [ 367.031759] do_vfs_ioctl+0x75a/0xff0 [ 367.035541] ? ioctl_preallocate+0x1a0/0x1a0 [ 367.039927] ? lock_downgrade+0x740/0x740 [ 367.044055] ? __fget+0x225/0x360 [ 367.047488] ? do_vfs_ioctl+0xff0/0xff0 [ 367.051469] ? security_file_ioctl+0x83/0xb0 [ 367.055855] SyS_ioctl+0x7f/0xb0 [ 367.059213] ? do_vfs_ioctl+0xff0/0xff0 [ 367.063305] do_syscall_64+0x1d5/0x640 [ 367.067183] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 367.072351] RIP: 0033:0x45e087 [ 367.075527] RSP: 002b:00007fe27cb4fa18 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 367.083215] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e087 [ 367.090459] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 367.097706] RBP: 0000000000000000 R08: 0000000020000218 R09: 0000000000000000 [ 367.104974] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000001 [ 367.112221] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000228 13:15:40 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f00002fe000/0x3000)=nil, 0x3000, 0x0, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendmsg$nl_route_sched(r1, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)=@getchain={0x2c, 0x66, 0x200, 0x70bd2b, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, {0x4, 0x4}, {0x3, 0xffe0}, {0xfffa, 0x4}}, [{0x8, 0xb, 0x9}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20020000}, 0x20004040) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @rand_addr=0x64010102}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:40 executing program 4: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0xd, 0x4, &(0x7f0000000280)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x6b}]}, &(0x7f0000000000)='GPL\x00', 0x2, 0xa6, &(0x7f0000000400)=""/166, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) 13:15:40 executing program 3: connect$vsock_stream(0xffffffffffffffff, &(0x7f00000000c0)={0x28, 0x0, 0x2711, @my=0x1}, 0x10) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000100)=[{&(0x7f0000000140)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0xfffd}, {0x0, 0x0, 0x3}], 0x0, &(0x7f00000007c0)=ANY=[]) creat(&(0x7f0000000080)='./file0\x00', 0x160) [ 367.140284] print_req_error: I/O error, dev loop5, sector 0 [ 367.141813] print_req_error: I/O error, dev loop3, sector 0 [ 367.151942] print_req_error: I/O error, dev loop0, sector 0 [ 367.154491] print_req_error: I/O error, dev loop5, sector 0 [ 367.163559] buffer_io_error: 25 callbacks suppressed [ 367.163565] Buffer I/O error on dev loop5, logical block 0, async page read 13:15:40 executing program 4: r0 = socket$vsock_stream(0x28, 0x1, 0x0) connect$vsock_stream(r0, &(0x7f0000000000)={0x28, 0x0, 0x0, @hyper}, 0x10) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x18, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00}, 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='virtio_transport_alloc_pkt\x00', r1}, 0x10) setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r0, 0x28, 0x1, &(0x7f0000000100)=0xfffffffffffffffe, 0x112) 13:15:40 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x0, &(0x7f0000000340)}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) 13:15:40 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) r0 = syz_mount_image$qnx6(&(0x7f0000000080)='qnx6\x00', &(0x7f00000000c0)='./file0\x00', 0x9, 0x4, &(0x7f0000000500)=[{&(0x7f0000000100)="52cd82d3e58ff6af004e3735e82ec72a67b72efdb684f23f804c8b8bfcd13559ece21597e0fc460ca029d1742c030adede9e8b1d5ffaad84becef57c13ffcb240cb54fca883da37d28a3", 0x4a, 0x8001}, {&(0x7f0000000180)="fcff1f193062256b7053994cbcdd4d3c6ecddf63b81b9f37576223c65dc59f136d46687fc466229132b7094b9a7d9bd603d762ab7d08f528032875aa041c42e0525cdc765c5ba7b563444af8e25959", 0x4f, 0x61db}, {&(0x7f0000000240)="9e214c2a8ed42278085b6ed3c8ffc49acaf2fdab0cc66bf607fce4c6f5b8722f676a03a0d40de2f930b4089d6d6a44dd1cd60302ec1ca0fa7daee0257beb4acc28494b13264cda0952de92fea249e38c239df1f4059954da21b6b1f5b34c5144b89ac8ef1ef4b4519a49f6b512a96e81fbc877019909003a5247d8ae8fcff7adeadad84bfb75dedb01b13a6bab56c547eb7fcd2734a2b55bdb70d685ffa1315903cb", 0xa2, 0x8}, {&(0x7f0000000300)="7b1de9d7b2225b6b422137c582516d8e9d6c10", 0x13, 0x8}], 0x4000, &(0x7f00000003c0)={[{'btrfs\x00'}, {',{{\\'}, {'{'}, {'$\xc4)-\xe2}(\\'}, {}, {'btrfs\x00'}, {'\xb6\x88'}, {'T'}, {'btrfs\x00'}], [{@subj_role={'subj_role', 0x3d, 'smackfstransmute'}}, {@fowner_eq={'fowner', 0x3d, 0xee01}}, {@context={'context', 0x3d, 'sysadm_u'}}, {@smackfstransmute={'smackfstransmute', 0x3d, 'btrfs\x00'}}]}) futimesat(r0, &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0)={{0x77359400}}) 13:15:40 executing program 5 (fault-call:0 fault-nth:26): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:15:40 executing program 4: r0 = socket$vsock_stream(0x28, 0x1, 0x0) connect$vsock_stream(r0, &(0x7f0000000000)={0x28, 0x0, 0x0, @hyper}, 0x10) connect$vsock_stream(r0, &(0x7f0000000900), 0x10) listen(r0, 0x0) [ 367.423293] FAULT_INJECTION: forcing a failure. [ 367.423293] name failslab, interval 1, probability 0, space 0, times 0 [ 367.446769] CPU: 1 PID: 31738 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 367.454780] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 367.464164] Call Trace: [ 367.466765] dump_stack+0x1b2/0x283 [ 367.470379] should_fail.cold+0x10a/0x154 [ 367.474506] should_failslab+0xd6/0x130 [ 367.478473] kmem_cache_alloc_node_trace+0x25a/0x400 [ 367.483559] __kmalloc_node_track_caller+0x38/0x70 [ 367.488468] __alloc_skb+0x96/0x510 [ 367.492078] kobject_uevent_env+0x882/0xf40 [ 367.496387] lo_ioctl+0x11a6/0x1cd0 [ 367.500003] ? loop_set_status64+0xe0/0xe0 [ 367.504233] blkdev_ioctl+0x540/0x1830 [ 367.508116] ? blkpg_ioctl+0x8d0/0x8d0 [ 367.512070] ? trace_hardirqs_on+0x10/0x10 [ 367.516285] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 367.521455] ? debug_check_no_obj_freed+0x2c0/0x674 [ 367.526454] block_ioctl+0xd9/0x120 [ 367.530072] ? blkdev_fallocate+0x3a0/0x3a0 [ 367.534641] do_vfs_ioctl+0x75a/0xff0 [ 367.538422] ? ioctl_preallocate+0x1a0/0x1a0 [ 367.542819] ? lock_downgrade+0x740/0x740 [ 367.546966] ? __fget+0x225/0x360 [ 367.550399] ? do_vfs_ioctl+0xff0/0xff0 [ 367.554352] ? security_file_ioctl+0x83/0xb0 [ 367.558829] SyS_ioctl+0x7f/0xb0 [ 367.562187] ? do_vfs_ioctl+0xff0/0xff0 [ 367.566140] do_syscall_64+0x1d5/0x640 [ 367.570011] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 367.575178] RIP: 0033:0x45e087 [ 367.578360] RSP: 002b:00007fe27cb4fa18 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 367.586072] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e087 [ 367.593323] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 367.600573] RBP: 0000000000000000 R08: 0000000020000218 R09: 0000000000000000 [ 367.607834] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000001 [ 367.615083] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000228 [ 367.647174] print_req_error: I/O error, dev loop5, sector 0 [ 367.688733] print_req_error: I/O error, dev loop5, sector 0 [ 367.694571] Buffer I/O error on dev loop5, logical block 0, async page read [ 367.703225] print_req_error: I/O error, dev loop5, sector 0 [ 367.709158] Buffer I/O error on dev loop5, logical block 0, async page read [ 367.716475] Buffer I/O error on dev loop5, logical block 0, async page read [ 367.723784] Buffer I/O error on dev loop5, logical block 0, async page read [ 367.731618] Buffer I/O error on dev loop5, logical block 0, async page read [ 367.739074] Buffer I/O error on dev loop5, logical block 0, async page read [ 367.746562] Buffer I/O error on dev loop5, logical block 3, async page read 13:15:41 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x0, &(0x7f0000000280)}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x9) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:41 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x10, 0x80002, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000000)={'batadv0\x00', 0x0}) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket(0x10, 0x803, 0x0) sendmsg$WG_CMD_GET_DEVICE(r4, &(0x7f0000000440)={0x0, 0xffffffffffffffc0, &(0x7f0000000400)={0x0, 0x48}}, 0x0) getsockname$packet(r4, &(0x7f0000000480)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=@newlink={0x44, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x38483}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb, 0x1, 'ipvlan\x00'}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r5}]}, 0x44}}, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@ipv6_newroute={0x38, 0x18, 0x0, 0x0, 0x0, {}, [@RTA_EXPIRES={0x8, 0x1e}, @RTA_GATEWAY={0x14, 0x5, @mcast1}]}, 0x38}}, 0x0) 13:15:41 executing program 5 (fault-call:0 fault-nth:27): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:15:41 executing program 3: r0 = open(&(0x7f0000000400)='./bus\x00', 0x14103e, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, r0, 0x0) read(r0, &(0x7f0000000180)=""/19, 0xfffffe47) getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(r0, 0x84, 0xf, &(0x7f0000000640)={0x0, @in={{0x2, 0x4e24, @initdev={0xac, 0x1e, 0x1, 0x0}}}, 0x61a, 0x8, 0x3125, 0xfff, 0x9}, &(0x7f0000000300)=0x98) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x7, &(0x7f0000000500)=[{&(0x7f00000000c0)="b2b99866c3f2cdfb3abb8b0f361d3e33926fc7c69eac15dd2a4360f939abdba6dc3fb0a150d32eb151bc9d80f8e7ce2c7f78a6a7447ed21a944b4b78b1caad21ebe9ce9c0b89977bc88975ba4d1dc5d1fda08215c27b6c200d9a502395", 0x5d, 0x9251}, {&(0x7f0000000140)="a29a7601c133f9a1a075a0ae3e111856b3314c361c8d7685b499f47984e2ec220dde0156cbfaf19d744cdcd41edd8708760a18e2cb03b71a62fb12b38c05f407910f93723b4c04c4c055dfc54ca59c8c6bfa88ef77c4741e3ac75febc3a22a5a11ecfb558c2f85dd53d832436f7ddc287dd98b1d5cf38fbe5848aa1cf384e7f42f5e9b937ca38282f3f01007299be339983eb920780fca044ff4e2", 0x9b, 0x100000001}, {&(0x7f0000000200)="0724c990c8a8c1954b89e7866d6923f513d7f24c168b9f7bcf3c197f22076036fd3c98f746d7bc5e81754e19fb1de4e7cb0b0d1a0689ca853a42201bfd206ee96aa6cf4776c50a854d003de4cd0c4210833c3cba864e3acc0b778d158e8e95189a9743e166fd8b1d377cad8893508450d90c2e6f7f7c7752e9aabd6f1bfa1ccc0444c1193b0f75644f09e18e5466e2cd4f1b24ac8f936057f107b5392bd1755b0303c83a6ccf89b01f9d1d92ab5d77d989c6569968288750b4d1e4a2d5973936c7715bae1705c68308f033f55c9d92e990dad94a7c8478e8286f1a390b0b1c99aa27598bb1f2a44d", 0xe8, 0x8001}, {&(0x7f00000005c0)="05f60b8255849a047eaf7b9dc158b8f583dc4afcbaf41eec0bf4d20ea4f914d20e75ca60609a367b4b02989cdfc2fa43f0ddde1abc22c8bc0e0832d0bca1aa5fa4aa5f13ddb49a6074b65100"/91, 0x5b, 0x8}, {&(0x7f0000000380)="f48f5d0c5b58188db3f32ae7a6340382010f2bce771bfc779f581c792dc170ce294d14d9782155b859ef88cfc4753e2021179fdcf1662dff4530d07d38a839ade72524bbd1bcc451ba6773ce97b165ac0209ab80ede685a918c9212fea14ed224c11a822d25e27c2d47bf40b05dc698b73422f57ced839c02d225e380c8368f70e09d7c661cd2798d3", 0x89, 0x8}, {&(0x7f0000000040)="480b7e4a65f51340d45ef45ee48177", 0xf, 0x5}, {&(0x7f0000000440)="78904323eee89c6241bb87c4a63153e19536b381c717584ec9b760611ad13fa00a1b7626b0cf7d69a116125ba6b8c0166505bf09fa864357ecc9a393a30ab357737f7127fd1eeed2ae3527c5d9154da40338906c501d4e08279e4f24f7def8e1dc6528ef19c2daed00877dd6749f21f974b29515db320c70c5cb2ac2a476575ea269e0c24e2f51200e865ac8c9e41591a077bfba26860b5c4d85f8dd7521513f80291d2a189c8945c34036b2ab5efdf1", 0xb0}], 0x10000, &(0x7f00000007c0)=ANY=[]) 13:15:41 executing program 1: unshare(0x40000000) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(0xffffffffffffffff, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{}], 0x1, 0xef) close(0xffffffffffffffff) [ 368.121776] FAULT_INJECTION: forcing a failure. [ 368.121776] name failslab, interval 1, probability 0, space 0, times 0 [ 368.164981] CPU: 1 PID: 31770 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 368.172894] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 368.182249] Call Trace: [ 368.184839] dump_stack+0x1b2/0x283 [ 368.188470] should_fail.cold+0x10a/0x154 [ 368.192619] should_failslab+0xd6/0x130 [ 368.196593] kmem_cache_alloc_node+0x263/0x410 [ 368.201179] __alloc_skb+0x5c/0x510 [ 368.204808] kobject_uevent_env+0x882/0xf40 [ 368.209138] lo_ioctl+0x11a6/0x1cd0 [ 368.212755] ? loop_set_status64+0xe0/0xe0 [ 368.216971] blkdev_ioctl+0x540/0x1830 [ 368.220846] ? blkpg_ioctl+0x8d0/0x8d0 [ 368.224717] ? trace_hardirqs_on+0x10/0x10 [ 368.228940] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 368.234075] ? debug_check_no_obj_freed+0x2c0/0x674 [ 368.239075] block_ioctl+0xd9/0x120 [ 368.242685] ? blkdev_fallocate+0x3a0/0x3a0 [ 368.247016] do_vfs_ioctl+0x75a/0xff0 [ 368.250798] ? ioctl_preallocate+0x1a0/0x1a0 [ 368.255184] ? lock_downgrade+0x740/0x740 [ 368.259325] ? __fget+0x225/0x360 [ 368.262858] ? do_vfs_ioctl+0xff0/0xff0 [ 368.266815] ? security_file_ioctl+0x83/0xb0 [ 368.271203] SyS_ioctl+0x7f/0xb0 [ 368.274554] ? do_vfs_ioctl+0xff0/0xff0 [ 368.278645] do_syscall_64+0x1d5/0x640 [ 368.282534] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 368.287724] RIP: 0033:0x45e087 [ 368.290901] RSP: 002b:00007fe27cb4fa18 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 368.298590] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e087 [ 368.305843] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 13:15:41 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x0, &(0x7f0000000340)}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) [ 368.313117] RBP: 0000000000000000 R08: 0000000020000218 R09: 0000000000000000 [ 368.320391] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000001 [ 368.327845] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000228 [ 368.396457] Buffer I/O error on dev loop5, logical block 0, async page read [ 368.403934] 8021q: adding VLAN 0 to HW filter on device ipvlan2 [ 368.404083] Buffer I/O error on dev loop5, logical block 0, async page read 13:15:42 executing program 3: r0 = syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) r1 = open(&(0x7f0000000400)='./bus\x00', 0x14103e, 0x0) fstat(r0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0}) syz_mount_image$ocfs2(&(0x7f0000000140)='ocfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x4, 0x1, &(0x7f00000002c0)=[{&(0x7f0000000240)="f66ba4021fe9bd21e7ee0ea9c22fa20cd305d8806585b210a26bfa696a815d7802595a286c44e9112d26770de9795ee10c5b901e1bd673d0305c4ac710ef490d53d06c683c143db611586c9f7924a4da9748527458d8cb49020356ed476e3f8d741825c46e55514d2028ab995e98edb1d000aa72d907", 0x76, 0x900}], 0x0, &(0x7f0000000380)={[], [{@subj_user={'subj_user', 0x3d, 'btrfs\x00'}}, {@appraise='appraise'}, {@smackfstransmute={'smackfstransmute', 0x3d, 'btrfs\x00'}}, {@dont_appraise='dont_appraise'}, {@fowner_eq={'fowner', 0x3d, r2}}, {@euid_lt={'euid<', 0xffffffffffffffff}}]}) mmap(&(0x7f00003da000/0x2000)=nil, 0x2000, 0x27ffff7, 0x11, r1, 0x2000000) read(r1, &(0x7f0000000180)=""/19, 0xfffffe47) accept4(r1, &(0x7f0000000080)=@in6={0xa, 0x0, 0x0, @initdev}, &(0x7f0000000100)=0x80, 0x0) 13:15:42 executing program 5 (fault-call:0 fault-nth:28): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) [ 368.524379] 8021q: adding VLAN 0 to HW filter on device ipvlan2 13:15:42 executing program 4: add_key$keyring(&(0x7f0000000000)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffe) r0 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffc) keyctl$search(0xa, r0, &(0x7f0000000080)='syzkaller\x00', &(0x7f00000000c0)={'syz', 0x0}, 0x0) 13:15:42 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$netlink_NETLINK_NO_ENOBUFS(r0, 0x10e, 0x3, 0x0, 0x0) [ 368.624744] FAULT_INJECTION: forcing a failure. [ 368.624744] name failslab, interval 1, probability 0, space 0, times 0 [ 368.665881] CPU: 0 PID: 31819 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 368.673806] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 368.683170] Call Trace: [ 368.685866] dump_stack+0x1b2/0x283 [ 368.689509] should_fail.cold+0x10a/0x154 [ 368.693672] should_failslab+0xd6/0x130 [ 368.697692] kmem_cache_alloc_node+0x263/0x410 [ 368.702277] __alloc_skb+0x5c/0x510 [ 368.705896] kobject_uevent_env+0x882/0xf40 [ 368.710220] lo_ioctl+0x11a6/0x1cd0 [ 368.713833] ? loop_set_status64+0xe0/0xe0 [ 368.718054] blkdev_ioctl+0x540/0x1830 [ 368.721937] ? blkpg_ioctl+0x8d0/0x8d0 [ 368.725819] ? trace_hardirqs_on+0x10/0x10 [ 368.730056] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 368.735210] ? debug_check_no_obj_freed+0x2c0/0x674 [ 368.740224] block_ioctl+0xd9/0x120 [ 368.743874] ? blkdev_fallocate+0x3a0/0x3a0 [ 368.748183] do_vfs_ioctl+0x75a/0xff0 [ 368.751968] ? ioctl_preallocate+0x1a0/0x1a0 [ 368.756354] ? lock_downgrade+0x740/0x740 [ 368.760497] ? __fget+0x225/0x360 [ 368.763942] ? do_vfs_ioctl+0xff0/0xff0 [ 368.767901] ? security_file_ioctl+0x83/0xb0 [ 368.772292] SyS_ioctl+0x7f/0xb0 [ 368.775742] ? do_vfs_ioctl+0xff0/0xff0 [ 368.779696] do_syscall_64+0x1d5/0x640 [ 368.783587] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 368.788785] RIP: 0033:0x45e087 [ 368.791967] RSP: 002b:00007fe27cb4fa18 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 368.799702] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e087 [ 368.806953] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 13:15:42 executing program 4: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000080)={{0xeb9f, 0x1, 0x0, 0x18, 0xf2000000, 0x0, 0x0, 0x2}}, &(0x7f0000000180)=""/243, 0x1a, 0xf3, 0x1}, 0x20) [ 368.814206] RBP: 0000000000000000 R08: 0000000020000218 R09: 0000000000000000 [ 368.821569] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000001 [ 368.828821] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000228 13:15:42 executing program 3: creat(&(0x7f0000000080)='./file0/file0\x00', 0x23) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x5, 0x1, &(0x7f0000000180)=[{&(0x7f00000000c0)="4fd85050828a3879b7d09c6eedc724d7ec32740ea85d1215e5a272d92f4a47941d8a74410cc1780d78ce5c455a5e1c5311afae7b5488c2e8d484ca45a9b13e6ffe44e5601da69469c2d0a8e079835dcfecf5a3473917ab057a775e283855197bee402e4e7da15250978cea52421005421e268d65521af547f963cb7ff87e76e875a0ec9e27d7e3044b4fd19e977dabf804c3118d747d", 0x96, 0x4}], 0x0, &(0x7f00000000c0)=ANY=[]) [ 369.150594] IPVS: ftp: loaded support on port[0] = 21 13:15:42 executing program 5 (fault-call:0 fault-nth:29): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:15:42 executing program 4: pselect6(0x0, 0x0, 0x0, 0xfffffffffffffffd, &(0x7f00000000c0)={0x0, 0x3938700}, 0x0) 13:15:42 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4c22, 0x4, @remote, 0xffffffff}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:42 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x4000, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x89a1, &(0x7f0000000300)={@local={0xfe, 0x80, [0x600, 0x3ef, 0x0, 0x3f00000000000000, 0x100000000000000, 0x0, 0x1103, 0x0, 0x0, 0x0, 0x0, 0x6]}}) ioctl$sock_inet6_SIOCADDRT(r1, 0x89a0, &(0x7f0000000440)={@local={0xfe, 0x80, [0x0, 0xfeff0000]}, @mcast1, @loopback}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r1, 0x81f8943c, &(0x7f00000004c0)={0x0, ""/256, 0x0}) ioctl$BTRFS_IOC_TREE_SEARCH_V2(0xffffffffffffffff, 0xc0709411, &(0x7f00000010c0)=ANY=[@ANYRES64=r2]) ioctl$BTRFS_IOC_INO_LOOKUP(r0, 0xd0009412, &(0x7f0000000040)={r2, 0x3}) r3 = open(&(0x7f0000000400)='./bus\x00', 0x14103e, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, r3, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, r3) read(r3, &(0x7f0000000180)=""/19, 0xfffffe47) r4 = open(&(0x7f0000000400)='./bus\x00', 0x14103e, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, r4, 0x0) read(r4, &(0x7f0000000180)=""/19, 0xfffffe47) ioctl$PERF_EVENT_IOC_SET_FILTER(r4, 0x40082406, &(0x7f0000001080)='/dev/ptmx\x00') ioctl$TCSETSW(r3, 0x5403, &(0x7f0000001040)={0x0, 0x6, 0x4, 0x3, 0x13, "5cb6786063074928d2bf65a0534e2c06ce2a3e"}) 13:15:42 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x0, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x9) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:42 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x0, 0x0, 0x0, 0x67b}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) [ 369.304527] FAULT_INJECTION: forcing a failure. [ 369.304527] name failslab, interval 1, probability 0, space 0, times 0 [ 369.328916] CPU: 1 PID: 31887 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 369.337068] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 369.346425] Call Trace: [ 369.349025] dump_stack+0x1b2/0x283 [ 369.352787] should_fail.cold+0x10a/0x154 [ 369.356941] should_failslab+0xd6/0x130 [ 369.360930] kmem_cache_alloc_node_trace+0x25a/0x400 [ 369.366026] __kmalloc_node_track_caller+0x38/0x70 [ 369.370986] __alloc_skb+0x96/0x510 [ 369.374612] kobject_uevent_env+0x882/0xf40 [ 369.379014] lo_ioctl+0x11a6/0x1cd0 [ 369.382737] ? loop_set_status64+0xe0/0xe0 [ 369.386955] blkdev_ioctl+0x540/0x1830 [ 369.390840] ? blkpg_ioctl+0x8d0/0x8d0 [ 369.394711] ? trace_hardirqs_on+0x10/0x10 [ 369.398931] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 369.404019] ? debug_check_no_obj_freed+0x2c0/0x674 [ 369.409020] block_ioctl+0xd9/0x120 [ 369.412652] ? blkdev_fallocate+0x3a0/0x3a0 [ 369.416972] do_vfs_ioctl+0x75a/0xff0 [ 369.420755] ? ioctl_preallocate+0x1a0/0x1a0 [ 369.425158] ? lock_downgrade+0x740/0x740 [ 369.429377] ? __fget+0x225/0x360 [ 369.432897] ? do_vfs_ioctl+0xff0/0xff0 [ 369.436874] ? security_file_ioctl+0x83/0xb0 [ 369.441272] SyS_ioctl+0x7f/0xb0 [ 369.444626] ? do_vfs_ioctl+0xff0/0xff0 [ 369.448583] do_syscall_64+0x1d5/0x640 13:15:43 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000280)}, 0xffffff0e) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0xfff, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x2}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) [ 369.452456] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 369.457625] RIP: 0033:0x45e087 [ 369.460793] RSP: 002b:00007fe27cb4fa18 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 369.468481] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e087 [ 369.475733] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 369.482986] RBP: 0000000000000000 R08: 0000000020000218 R09: 0000000000000000 [ 369.490253] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000001 [ 369.497515] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000228 13:15:43 executing program 4: r0 = socket$netlink(0x10, 0x3, 0x8) setsockopt$netlink_NETLINK_NO_ENOBUFS(r0, 0x10e, 0x2, 0x0, 0x0) 13:15:43 executing program 4: setitimer(0x2, &(0x7f0000000040)={{0x0, 0x2710}}, &(0x7f0000000100)) 13:15:43 executing program 5 (fault-call:0 fault-nth:30): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:15:43 executing program 3: ioctl$F2FS_IOC_FLUSH_DEVICE(0xffffffffffffffff, 0x4008f50a, &(0x7f0000000000)={0x0, 0x39f}) ioctl$VIDIOC_G_AUDOUT(0xffffffffffffffff, 0x80345631, &(0x7f0000000040)) ioctl$VIDIOC_G_STD(0xffffffffffffffff, 0x80085617, &(0x7f0000000280)) r0 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000200)='/dev/vsock\x00', 0x258881, 0x0) bind$inet(r0, &(0x7f0000000240)={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10) ioctl$FS_IOC_GETFSLABEL(0xffffffffffffffff, 0x81009431, &(0x7f0000000080)) ioctl$DRM_IOCTL_RES_CTX(0xffffffffffffffff, 0xc0106426, &(0x7f00000001c0)={0x3, &(0x7f0000000180)=[{}, {}, {}]}) 13:15:43 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) syz_mount_image$squashfs(&(0x7f0000000080)='squashfs\x00', &(0x7f00000000c0)='./file0\x00', 0x8000, 0x5, &(0x7f0000000380)=[{&(0x7f0000000100)="ac3e88ebf7f48c91b65c2a987122a2fa44d49b5ce4e1457c2fc8fcff81f05a4d3aa34872aa2f080c18816965545c643c97530f1cbae11b054593267b04e8bce0a23ff99f93f862d0b85bcfe7ffacd5bccc35e223545a2064b2068f96e0e576e90ead", 0x62, 0x5}, {&(0x7f0000000180)="0b19cd12ec14de92b1662623b542e07e", 0x10, 0x8}, {&(0x7f00000001c0)="874cdda6aa357ee5ed8077db1e38d7ff6d88f4b8c494bb72089014938ade26830e99f646f9cfc155516809fcde8e7514a04619dfac0065d28f2b43ef", 0x3c, 0x5}, {&(0x7f0000000240)="1db84d66", 0x4}, {&(0x7f0000000280)="868c269dd1befafadbf3e6e6298dde42713036989d68aa0d47d370df146537b7bf79749dcb1139f5131a36d856abddc4656aa9ef66b514c1826a59e67d88d19bdf46348e588a2ca9a0a0ea7b7759553e36390c99ccab9dc23ccdbd894b36943260a3635b7670433410a3a2fb1452ef9c63933359ace0836fb1b92417db5049012e3387ad7be77599c7bb39b565be5e43c33245f405abe0625f74ced5f56ff5c1149a1a7a96ffd30e3999f6f304b2b94543685d621a998b9e3b4c4d0923e6a103a879a4f68172cece6c381924b7a43b991718e91fb3d1aa5cda6df74fe54094d4d2a56d90df8a24eaf3fa47fbba3b", 0xee, 0x101}], 0x2000, &(0x7f0000000400)={[{'btrfs\x00'}, {}], [{@appraise_type='appraise_type=imasig'}, {@mask={'mask', 0x3d, 'MAY_EXEC'}}]}) 13:15:43 executing program 4: r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000400)='/dev/rtc0\x00', 0x0, 0x0) ioctl$RTC_WKALM_SET(r0, 0x7001, 0x0) [ 369.702658] FAULT_INJECTION: forcing a failure. [ 369.702658] name failslab, interval 1, probability 0, space 0, times 0 [ 369.714697] CPU: 1 PID: 31929 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 369.722714] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 369.732071] Call Trace: [ 369.734674] dump_stack+0x1b2/0x283 [ 369.738318] should_fail.cold+0x10a/0x154 [ 369.742481] should_failslab+0xd6/0x130 [ 369.746465] kmem_cache_alloc_node_trace+0x25a/0x400 13:15:43 executing program 4: socketpair(0x2c, 0x3, 0x0, &(0x7f00000009c0)) 13:15:43 executing program 4: r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer2\x00', 0x0, 0x0) ioctl$SNDCTL_SEQ_TESTMIDI(r0, 0x40045108, 0x0) [ 369.751580] __kmalloc_node_track_caller+0x38/0x70 [ 369.756514] __alloc_skb+0x96/0x510 [ 369.760154] kobject_uevent_env+0x882/0xf40 [ 369.764487] lo_ioctl+0x11a6/0x1cd0 [ 369.768133] ? loop_set_status64+0xe0/0xe0 [ 369.772372] blkdev_ioctl+0x540/0x1830 [ 369.776263] ? blkpg_ioctl+0x8d0/0x8d0 [ 369.780151] ? trace_hardirqs_on+0x10/0x10 [ 369.784387] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 369.789492] ? debug_check_no_obj_freed+0x2c0/0x674 [ 369.794519] block_ioctl+0xd9/0x120 [ 369.798186] ? blkdev_fallocate+0x3a0/0x3a0 [ 369.802501] do_vfs_ioctl+0x75a/0xff0 [ 369.806286] ? ioctl_preallocate+0x1a0/0x1a0 [ 369.810680] ? lock_downgrade+0x740/0x740 [ 369.814813] ? __fget+0x225/0x360 [ 369.818247] ? do_vfs_ioctl+0xff0/0xff0 [ 369.822211] ? security_file_ioctl+0x83/0xb0 [ 369.826609] SyS_ioctl+0x7f/0xb0 [ 369.829955] ? do_vfs_ioctl+0xff0/0xff0 [ 369.833913] do_syscall_64+0x1d5/0x640 [ 369.837787] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 369.842956] RIP: 0033:0x45e087 13:15:43 executing program 4: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_JOIN_MCAST(r0, &(0x7f0000000040)={0x16, 0x98, 0xfa00, {0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}}}, 0xa0) [ 369.846131] RSP: 002b:00007fe27cb4fa18 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 369.853917] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e087 [ 369.861177] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 369.868442] RBP: 0000000000000000 R08: 0000000020000218 R09: 0000000000000000 [ 369.875691] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000001 [ 369.882944] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000228 13:15:43 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x0, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x9) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:43 executing program 4: r0 = socket$rds(0x15, 0x5, 0x0) connect$rds(r0, &(0x7f0000000140)={0x2, 0x0, @rand_addr=0x64010102}, 0x10) bind$rds(r0, &(0x7f0000000100)={0x2, 0x4e20, @private=0xa010102}, 0x10) [ 370.152155] RDS: rds_bind could not find a transport for 10.1.1.2, load rds_tcp or rds_rdma? [ 370.164951] RDS: rds_bind could not find a transport for 10.1.1.2, load rds_tcp or rds_rdma? 13:15:43 executing program 5 (fault-call:0 fault-nth:31): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:15:43 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000240)="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", 0x20d, 0xfffc}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) 13:15:43 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x0, 0x0, 0x0, 0x67b}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) 13:15:43 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:43 executing program 4: socketpair(0x0, 0x0, 0x0, &(0x7f0000001340)) [ 370.471558] FAULT_INJECTION: forcing a failure. [ 370.471558] name failslab, interval 1, probability 0, space 0, times 0 [ 370.493758] CPU: 0 PID: 31983 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 370.501679] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 370.511154] Call Trace: [ 370.513750] dump_stack+0x1b2/0x283 [ 370.517387] should_fail.cold+0x10a/0x154 [ 370.521541] should_failslab+0xd6/0x130 [ 370.525515] kmem_cache_alloc_node+0x263/0x410 [ 370.530125] __alloc_skb+0x5c/0x510 [ 370.533776] kobject_uevent_env+0x882/0xf40 [ 370.538115] lo_ioctl+0x11a6/0x1cd0 [ 370.541761] ? loop_set_status64+0xe0/0xe0 [ 370.546007] blkdev_ioctl+0x540/0x1830 [ 370.549924] ? blkpg_ioctl+0x8d0/0x8d0 [ 370.553833] ? trace_hardirqs_on+0x10/0x10 [ 370.558069] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 370.563174] ? debug_check_no_obj_freed+0x2c0/0x674 [ 370.568201] block_ioctl+0xd9/0x120 [ 370.571828] ? blkdev_fallocate+0x3a0/0x3a0 [ 370.576150] do_vfs_ioctl+0x75a/0xff0 [ 370.579953] ? ioctl_preallocate+0x1a0/0x1a0 [ 370.584373] ? lock_downgrade+0x740/0x740 [ 370.588524] ? __fget+0x225/0x360 [ 370.592009] ? do_vfs_ioctl+0xff0/0xff0 [ 370.596159] ? security_file_ioctl+0x83/0xb0 [ 370.600818] SyS_ioctl+0x7f/0xb0 [ 370.604257] ? do_vfs_ioctl+0xff0/0xff0 [ 370.608223] do_syscall_64+0x1d5/0x640 [ 370.612190] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 370.617390] RIP: 0033:0x45e087 13:15:44 executing program 4: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$sock(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000003c0)="d38866fdaf901bea40178d7e5c2b0e", 0xf}, {&(0x7f0000000240)="976a070045c36b604d758050f17581131701da092c203d0aaee52fb9b91efd883dfe2fe29fd76944c5324e0799f162b3d3f157359b5a13ec468fe888c477bf7b378bc228ef57b6ab84c7811e013df42cdb876b2603b9e3440b6cc07632406771592e5f8bc50022b8ff34c964018fbdf87d61176c0e5b43b67bed1143b11b6dc742cbe281ccabd29e5d5815", 0x8b}, {&(0x7f0000000000)="469a8e354dc7c56b6e21f7f2d6e71a3b3918c162ee506f0ab8bc3a80e3f5d7023267fba8ca41bc63b6522747b9392bdf1b23ce76a27bbfc2866a12aa7980d6af4eac3ad8c206ee0a96bbd788089a8a561888c4d67bf0679b19aa2ab73401741ea1c81767191d6c8e7d4f7b5839c71822d0b530d0df01cc1250d916514cd88a95dcb462f604907235ff8e0c14f12872416250a331a5b3b91f05c34601e1b20ef1023869073a357aecc06059b3e9251e65a67155c41e7414ba5ab41ca71256349c0374d4994723c856cda29777e7f1cd68bbbf831bc0d4dd29e91ac33115a6c3371ea422fe6fd171e70537cb5e43828a183c84ba50215363e8", 0xf8}, {&(0x7f0000000100)="6a5014f2d4ca42b0062c3157a3fd079d7cdb113e99dc4d9f2c1b8e35d6d91b7945cfee61d0a2346fe6997571f803cad4a5459ed4439915729df1dcd6fc96e4543e98d8aff3afbc5932ed271c63215c7e78b237a27d616764d3b7375aba5683a969d63a47fa559f9e3601550cb0b592fcce8a10c92431e23eff667ded9de719d24541d2a653d0c46a5f2585b66af9ebdecc7c6a1e01ec63a0635cac53cb5e252425c66793532405751e653abea99b59eb", 0xb0}], 0x4}, 0x80) ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r0, 0x8982, &(0x7f0000000200)={0x0, 'team_slave_0\x00', {0x3}, 0x59fe}) [ 370.620559] RSP: 002b:00007fe27cb4fa18 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 370.628249] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e087 [ 370.635499] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 370.642754] RBP: 0000000000000000 R08: 0000000020000218 R09: 0000000000000000 [ 370.650021] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000001 [ 370.657282] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000228 13:15:44 executing program 4: openat$vmci(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/vmci\x00', 0x2, 0x0) 13:15:44 executing program 3: sendto$inet(0xffffffffffffffff, &(0x7f00000000c0)="56af0a94a2a99bea63dbece6b24658381984d5278a77ce224fbcdd58a19bc6a3f077a17e808f0bde6c7cf6553f86ef8a5e6227f5c3ea", 0x36, 0x40, &(0x7f0000000100)={0x2, 0x4e21, @multicast1}, 0x10) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x40000, 0x8) 13:15:44 executing program 5 (fault-call:0 fault-nth:32): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:15:44 executing program 4: r0 = socket$rds(0x15, 0x5, 0x0) sendmsg$rds(r0, &(0x7f00000005c0)={&(0x7f0000000000)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}, 0x0) [ 370.830354] FAULT_INJECTION: forcing a failure. [ 370.830354] name failslab, interval 1, probability 0, space 0, times 0 [ 370.879351] CPU: 1 PID: 32020 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 370.887401] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 370.896760] Call Trace: [ 370.899353] dump_stack+0x1b2/0x283 [ 370.902983] should_fail.cold+0x10a/0x154 [ 370.907144] should_failslab+0xd6/0x130 [ 370.911119] kmem_cache_alloc_node+0x263/0x410 [ 370.915701] __alloc_skb+0x5c/0x510 [ 370.919330] kobject_uevent_env+0x882/0xf40 [ 370.923654] lo_ioctl+0x11a6/0x1cd0 [ 370.927487] ? loop_set_status64+0xe0/0xe0 [ 370.931724] blkdev_ioctl+0x540/0x1830 [ 370.935611] ? blkpg_ioctl+0x8d0/0x8d0 [ 370.939494] ? trace_hardirqs_on+0x10/0x10 [ 370.943734] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 370.948933] ? debug_check_no_obj_freed+0x2c0/0x674 [ 370.953960] block_ioctl+0xd9/0x120 [ 370.957587] ? blkdev_fallocate+0x3a0/0x3a0 [ 370.961911] do_vfs_ioctl+0x75a/0xff0 [ 370.965715] ? ioctl_preallocate+0x1a0/0x1a0 [ 370.970116] ? lock_downgrade+0x740/0x740 [ 370.974261] ? __fget+0x225/0x360 [ 370.977815] ? do_vfs_ioctl+0xff0/0xff0 [ 370.981817] ? security_file_ioctl+0x83/0xb0 [ 370.986921] SyS_ioctl+0x7f/0xb0 [ 370.990282] ? do_vfs_ioctl+0xff0/0xff0 [ 370.994705] do_syscall_64+0x1d5/0x640 [ 370.998597] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 371.003813] RIP: 0033:0x45e087 [ 371.006994] RSP: 002b:00007fe27cb4fa18 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 371.014693] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e087 [ 371.021984] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 371.029255] RBP: 0000000000000000 R08: 0000000020000218 R09: 0000000000000000 [ 371.036530] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000001 [ 371.043791] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000228 13:15:44 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x0, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x9) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:44 executing program 4: timer_create(0x2, &(0x7f0000000000)={0x0, 0x0, 0x1, @tid=0xffffffffffffffff}, &(0x7f0000000200)) 13:15:44 executing program 4: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000640)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000940)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000900)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000140)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x0, 0x0}, 0xffff}, r1}}, 0x30) 13:15:44 executing program 3: r0 = syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) dup(r0) setxattr$trusted_overlay_upper(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='trusted.overlay.upper\x00', &(0x7f0000000240)={0x0, 0xfb, 0x72, 0x2, 0x2, "c630f81cfd18ef2cf6deaf7dadeb2c4b", "563321ac964af29b989171fd960ec88b91d2e883ca3cc28c106a5ff145800548055a839a4b62d7e1f7a9ec41cc365033fcf1adb01e80a09abbbfe3d5dacea66a2d90e3a544271a24274778c5a4d8463afc2b49e91924a97199c8a13a73"}, 0x72, 0x1) getdents(r0, &(0x7f0000000080)=""/222, 0xde) 13:15:44 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x0, 0x0, 0x0, 0x67b}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) 13:15:44 executing program 4: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$sock(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)="d38866fdaf901bea40178d7e5c2b0e", 0xf}, {&(0x7f0000000780)='`', 0x1}], 0x2}, 0x0) 13:15:44 executing program 5 (fault-call:0 fault-nth:33): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:15:44 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x2, 0x9, @ipv4={[], [], @broadcast}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:44 executing program 4: r0 = socket(0x2, 0x5, 0x0) setsockopt$IP_VS_SO_SET_TIMEOUT(r0, 0x0, 0x28, &(0x7f0000000380), 0xc) 13:15:45 executing program 4: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) getsockname$unix(r0, 0x0, &(0x7f0000000600)) [ 371.438602] FAULT_INJECTION: forcing a failure. [ 371.438602] name failslab, interval 1, probability 0, space 0, times 0 [ 371.460616] CPU: 1 PID: 32073 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 371.468555] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 371.478483] Call Trace: [ 371.481078] dump_stack+0x1b2/0x283 [ 371.484726] should_fail.cold+0x10a/0x154 13:15:45 executing program 4: unshare(0x40000080) sendmsg$SEG6_CMD_GET_TUNSRC(0xffffffffffffffff, 0x0, 0x0) pipe(0x0) syz_genetlink_get_family_id$team(&(0x7f00000005c0)='team\x00') ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000600)={'team0\x00'}) ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000680)={'veth1_macvtap\x00'}) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, 0x0) sendmsg$TEAM_CMD_PORT_LIST_GET(0xffffffffffffffff, 0x0, 0x0) [ 371.488897] should_failslab+0xd6/0x130 [ 371.492881] kmem_cache_alloc_node_trace+0x25a/0x400 [ 371.497996] __kmalloc_node_track_caller+0x38/0x70 [ 371.502945] __alloc_skb+0x96/0x510 [ 371.506579] kobject_uevent_env+0x882/0xf40 [ 371.510891] lo_ioctl+0x11a6/0x1cd0 [ 371.514502] ? loop_set_status64+0xe0/0xe0 [ 371.518721] blkdev_ioctl+0x540/0x1830 [ 371.522593] ? blkpg_ioctl+0x8d0/0x8d0 [ 371.526469] ? trace_hardirqs_on+0x10/0x10 [ 371.530689] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 371.535774] ? debug_check_no_obj_freed+0x2c0/0x674 [ 371.540777] block_ioctl+0xd9/0x120 [ 371.544388] ? blkdev_fallocate+0x3a0/0x3a0 [ 371.548692] do_vfs_ioctl+0x75a/0xff0 [ 371.552474] ? ioctl_preallocate+0x1a0/0x1a0 [ 371.556880] ? lock_downgrade+0x740/0x740 [ 371.561013] ? __fget+0x225/0x360 [ 371.564447] ? do_vfs_ioctl+0xff0/0xff0 [ 371.568420] ? security_file_ioctl+0x83/0xb0 [ 371.572826] SyS_ioctl+0x7f/0xb0 [ 371.576176] ? do_vfs_ioctl+0xff0/0xff0 [ 371.580131] do_syscall_64+0x1d5/0x640 [ 371.584006] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 371.589177] RIP: 0033:0x45e087 [ 371.592355] RSP: 002b:00007fe27cb4fa18 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 371.600131] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e087 [ 371.607395] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 371.614645] RBP: 0000000000000000 R08: 0000000020000218 R09: 0000000000000000 [ 371.621894] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000001 [ 371.629233] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000228 13:15:45 executing program 4: syz_genetlink_get_family_id$devlink(&(0x7f00000081c0)='devlink\x00') [ 371.832405] print_req_error: 59 callbacks suppressed [ 371.832412] print_req_error: I/O error, dev loop3, sector 0 [ 371.915699] print_req_error: I/O error, dev loop5, sector 0 13:15:45 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x9) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:45 executing program 4: r0 = syz_genetlink_get_family_id$batadv(&(0x7f0000000240)='batadv\x00') r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(r1, &(0x7f0000005b00)={0x0, 0x0, &(0x7f0000005ac0)={&(0x7f0000005a80)={0x24, r0, 0x381, 0x0, 0x0, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_ISOLATION_MARK={0x8}]}, 0x24}}, 0x0) 13:15:45 executing program 3: r0 = getuid() mount$overlay(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='overlay\x00', 0x100010, &(0x7f0000000280)={[{@xino_off='xino=off'}, {@metacopy_on='metacopy=on'}, {@index_on='index=on'}], [{@fowner_gt={'fowner>', r0}}, {@subj_user={'subj_user', 0x3d, ']'}}]}) r1 = getpid() ioprio_get$pid(0x2, r1) r2 = getpid() ioprio_get$pid(0x2, r2) r3 = getpid() ioprio_get$pid(0x2, r3) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f0000000140)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x2000000000fffd}, {0x0}, {&(0x7f0000000080)="3525695e9e83bbf237a3b2ace9a2e3ca05942aba38082ce1dd9a2830fd1793c0b84b59cd242c270b8d469029a8bca546d9064a9fc01cee40f9e9a260d1b477adc252dbd629434dd867e4d730b58ca6f3546acb228a698d180f5c68233a63ee9a00075147b63880cc70aa0a071a36a482da599676dfbee642ee494ed5c688753db87a85a19df9be257b43cd12b963a0cc6142554ce99f0f6c4cc81bb3e97096f20e54c14cb25e516b6113f6d280ae0c7b2511359a", 0xb4, 0x8}], 0x0, &(0x7f00000001c0)=ANY=[@ANYRES64=r1, @ANYRESOCT=r3, @ANYRESOCT=r1]) 13:15:45 executing program 5 (fault-call:0 fault-nth:34): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) [ 372.073828] FAULT_INJECTION: forcing a failure. [ 372.073828] name failslab, interval 1, probability 0, space 0, times 0 [ 372.085432] CPU: 1 PID: 32109 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 372.093413] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 372.102775] Call Trace: [ 372.105391] dump_stack+0x1b2/0x283 [ 372.109025] should_fail.cold+0x10a/0x154 [ 372.113180] should_failslab+0xd6/0x130 [ 372.117208] kmem_cache_alloc_node_trace+0x25a/0x400 [ 372.122335] __kmalloc_node_track_caller+0x38/0x70 [ 372.127295] __alloc_skb+0x96/0x510 [ 372.130920] kobject_uevent_env+0x882/0xf40 [ 372.135240] lo_ioctl+0x11a6/0x1cd0 [ 372.138963] ? loop_set_status64+0xe0/0xe0 [ 372.143201] blkdev_ioctl+0x540/0x1830 [ 372.147086] ? blkpg_ioctl+0x8d0/0x8d0 [ 372.151098] ? trace_hardirqs_on+0x10/0x10 [ 372.155356] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 372.160489] ? debug_check_no_obj_freed+0x2c0/0x674 [ 372.165517] block_ioctl+0xd9/0x120 [ 372.169127] ? blkdev_fallocate+0x3a0/0x3a0 [ 372.173440] do_vfs_ioctl+0x75a/0xff0 [ 372.177231] ? ioctl_preallocate+0x1a0/0x1a0 [ 372.181622] ? lock_downgrade+0x740/0x740 [ 372.185764] ? __fget+0x225/0x360 [ 372.189221] ? do_vfs_ioctl+0xff0/0xff0 [ 372.193260] ? security_file_ioctl+0x83/0xb0 [ 372.197757] SyS_ioctl+0x7f/0xb0 [ 372.201116] ? do_vfs_ioctl+0xff0/0xff0 [ 372.205103] do_syscall_64+0x1d5/0x640 [ 372.209011] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 372.214206] RIP: 0033:0x45e087 [ 372.217377] RSP: 002b:00007fe27cb4fa18 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 372.225065] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e087 [ 372.232317] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 372.239668] RBP: 0000000000000000 R08: 0000000020000218 R09: 0000000000000000 [ 372.246924] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000001 [ 372.254179] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000228 13:15:45 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) 13:15:45 executing program 4: sendmsg$NLBL_CALIPSO_C_LIST(0xffffffffffffffff, 0x0, 0x0) r0 = socket$inet_sctp(0x2, 0x1, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000003dc0)=[@in6={0xa, 0x0, 0x0, @local}], 0x1c) 13:15:45 executing program 4: syz_emit_ethernet(0x4e, &(0x7f00000000c0)={@local, @random="c84b119bbc9a", @val={@void}, {@ipv6={0x86dd, @tcp={0x0, 0x6, "7f0020", 0x14, 0x2c, 0x0, @remote, @local, {[], {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0) [ 372.275220] print_req_error: I/O error, dev loop3, sector 128 [ 372.313857] IPVS: ftp: loaded support on port[0] = 21 [ 372.411790] syz-executor.4 (32136) used greatest stack depth: 24208 bytes left 13:15:46 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x17ffff9, 0x11, r0, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0, 0x8080}], 0x1, 0xef) close(r0) 13:15:46 executing program 3: r0 = getpid() ioprio_get$pid(0x2, r0) r1 = syz_open_procfs(r0, &(0x7f0000000080)='sched\x00') r2 = socket$nl_generic(0x10, 0x3, 0x10) ioprio_get$pid(0x2, 0x0) sched_setattr(0x0, &(0x7f0000000540)={0x38, 0xb40582870ea6c35, 0xa, 0x43cb79db, 0x7, 0x20, 0x8, 0x8, 0x7fffffff, 0x7f}, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000240)={'wlan1\x00', 0x0}) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040)='nl80211\x00') sendmsg$NL80211_CMD_SET_CQM(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000002c0)=ANY=[@ANYBLOB, @ANYRES16=r5, @ANYBLOB="010000000000000000003f00000008000300", @ANYRES32=r3, @ANYBLOB="04005ee8a02c3be3a52e4b28bb131718668c9080"], 0x20}}, 0x0) r6 = open(&(0x7f0000000400)='./bus\x00', 0x14103e, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, r6, 0x0) read(r6, &(0x7f0000000180)=""/19, 0xfffffe47) r7 = socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$tipc2(&(0x7f00000000c0)='TIPCv2\x00') sendmsg$TIPC_NL_MON_SET(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)={0x20, r8, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_MON={0xc, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8}]}]}, 0x20}}, 0x0) sendmsg$TIPC_NL_BEARER_GET(r6, &(0x7f0000000500)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000300)={0x1c0, r8, 0x400, 0x70bd29, 0x25dfdbff, {}, [@TIPC_NLA_SOCK={0x90, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_CON={0x24, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0xb0}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x200}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x6}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x7ff}]}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0xffffff81}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0xfffffff9}, @TIPC_NLA_SOCK_CON={0x54, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x1}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x5}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x39b}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xffffffff}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x5}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x4}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x6}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x9f7a}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x4}]}]}, @TIPC_NLA_MON={0x1c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x2400}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xfff}, @TIPC_NLA_MON_REF={0x8}]}, @TIPC_NLA_MON={0x4}, @TIPC_NLA_NET={0x3c, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x4}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x10000004}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x8001}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x3}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x40}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x100}]}, @TIPC_NLA_LINK={0x80, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3f}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}]}, @TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}]}, @TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}]}]}, @TIPC_NLA_NET={0x40, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0xcca}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x16aae2bf}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x10001}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x9}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x7ff}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x3}]}]}, 0x1c0}, 0x1, 0x0, 0x0, 0x1}, 0x0) sendmsg$NL80211_CMD_LEAVE_OCB(r1, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r3}, @void}}, ["", "", "", "", "", ""]}, 0x1c}}, 0x48800) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000001c0)={'wlan0\x00'}) 13:15:46 executing program 5 (fault-call:0 fault-nth:35): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:15:46 executing program 4: r0 = syz_open_dev$ttys(0xc, 0x2, 0x0) ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x5429, 0x0) [ 372.528180] IPVS: ftp: loaded support on port[0] = 21 [ 372.607474] FAULT_INJECTION: forcing a failure. [ 372.607474] name failslab, interval 1, probability 0, space 0, times 0 [ 372.629338] CPU: 0 PID: 32175 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 372.637432] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 372.642588] print_req_error: I/O error, dev loop5, sector 0 [ 372.646870] Call Trace: [ 372.646889] dump_stack+0x1b2/0x283 [ 372.646903] should_fail.cold+0x10a/0x154 [ 372.646917] should_failslab+0xd6/0x130 [ 372.646929] kmem_cache_alloc_node_trace+0x25a/0x400 [ 372.646942] __kmalloc_node_track_caller+0x38/0x70 [ 372.646952] __alloc_skb+0x96/0x510 [ 372.646964] kobject_uevent_env+0x882/0xf40 [ 372.670576] print_req_error: I/O error, dev loop5, sector 0 [ 372.672170] lo_ioctl+0x11a6/0x1cd0 [ 372.672185] ? loop_set_status64+0xe0/0xe0 [ 372.677185] buffer_io_error: 40 callbacks suppressed 13:15:46 executing program 4: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_ifreq(r0, 0x8948, &(0x7f0000000540)={'bond0\x00', @ifru_map}) [ 372.677190] Buffer I/O error on dev loop5, logical block 0, async page read [ 372.680801] blkdev_ioctl+0x540/0x1830 [ 372.694831] print_req_error: I/O error, dev loop5, sector 0 [ 372.698708] ? blkpg_ioctl+0x8d0/0x8d0 [ 372.698718] ? trace_hardirqs_on+0x10/0x10 [ 372.698731] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 372.698741] ? debug_check_no_obj_freed+0x2c0/0x674 [ 372.698755] block_ioctl+0xd9/0x120 [ 372.698765] ? blkdev_fallocate+0x3a0/0x3a0 [ 372.698775] do_vfs_ioctl+0x75a/0xff0 [ 372.698787] ? ioctl_preallocate+0x1a0/0x1a0 [ 372.698794] ? lock_downgrade+0x740/0x740 [ 372.698806] ? __fget+0x225/0x360 [ 372.703897] Buffer I/O error on dev loop5, logical block 0, async page read [ 372.710975] ? do_vfs_ioctl+0xff0/0xff0 [ 372.710986] ? security_file_ioctl+0x83/0xb0 [ 372.710996] SyS_ioctl+0x7f/0xb0 [ 372.711003] ? do_vfs_ioctl+0xff0/0xff0 [ 372.711015] do_syscall_64+0x1d5/0x640 [ 372.711029] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 372.711036] RIP: 0033:0x45e087 [ 372.711041] RSP: 002b:00007fe27cb4fa18 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 372.711050] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e087 [ 372.711057] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 372.723444] print_req_error: I/O error, dev loop5, sector 0 [ 372.724490] RBP: 0000000000000000 R08: 0000000020000218 R09: 0000000000000000 [ 372.724496] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000001 [ 372.724501] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000228 [ 372.848786] Buffer I/O error on dev loop5, logical block 0, async page read 13:15:46 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_emit_ethernet(0x46, &(0x7f0000000200)={@local, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x10, 0x3a, 0x0, @dev, @mcast2, {[], @ndisc_ra}}}}}, 0x0) 13:15:46 executing program 5 (fault-call:0 fault-nth:36): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:15:46 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x9) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:46 executing program 3: syz_mount_image$btrfs(&(0x7f00000000c0)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e850000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x46, 0x10000}, {0x0}], 0x0, &(0x7f0000000080)=ANY=[@ANYRES32]) 13:15:46 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) 13:15:46 executing program 4: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$sock_ifreq(r0, 0x8931, &(0x7f0000000080)={'veth1_to_batadv\x00', @ifru_data=0x0}) [ 373.226019] FAULT_INJECTION: forcing a failure. [ 373.226019] name failslab, interval 1, probability 0, space 0, times 0 [ 373.248452] CPU: 1 PID: 32237 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 373.256388] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 373.265736] Call Trace: [ 373.268329] dump_stack+0x1b2/0x283 [ 373.271943] should_fail.cold+0x10a/0x154 [ 373.276095] should_failslab+0xd6/0x130 [ 373.280058] kmem_cache_alloc_node+0x263/0x410 [ 373.284633] __alloc_skb+0x5c/0x510 [ 373.288245] kobject_uevent_env+0x882/0xf40 [ 373.292552] lo_ioctl+0x11a6/0x1cd0 [ 373.296167] ? loop_set_status64+0xe0/0xe0 [ 373.300385] blkdev_ioctl+0x540/0x1830 [ 373.304261] ? blkpg_ioctl+0x8d0/0x8d0 [ 373.308149] ? trace_hardirqs_on+0x10/0x10 [ 373.312364] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 373.317463] ? debug_check_no_obj_freed+0x2c0/0x674 [ 373.322466] block_ioctl+0xd9/0x120 [ 373.326100] ? blkdev_fallocate+0x3a0/0x3a0 [ 373.330400] do_vfs_ioctl+0x75a/0xff0 [ 373.334184] ? ioctl_preallocate+0x1a0/0x1a0 [ 373.338580] ? lock_downgrade+0x740/0x740 [ 373.342710] ? __fget+0x225/0x360 [ 373.346149] ? do_vfs_ioctl+0xff0/0xff0 [ 373.350108] ? security_file_ioctl+0x83/0xb0 [ 373.354506] SyS_ioctl+0x7f/0xb0 [ 373.357868] ? do_vfs_ioctl+0xff0/0xff0 [ 373.361824] do_syscall_64+0x1d5/0x640 [ 373.365695] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 373.370869] RIP: 0033:0x45e087 13:15:46 executing program 4: perf_event_open(&(0x7f00000003c0)={0x2, 0x70, 0x7f, 0x8000000000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x4e, &(0x7f00000000c0)={@local, @random="c84b119bbc9a", @val={@void}, {@ipv6={0x86dd, @tcp={0x0, 0x9, "7f0020", 0x14, 0x2c, 0x0, @remote, @local, {[], {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0) [ 373.374048] RSP: 002b:00007fe27cb4fa18 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 373.381737] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e087 [ 373.388988] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 373.396637] RBP: 0000000000000000 R08: 0000000020000218 R09: 0000000000000000 [ 373.403900] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000001 [ 373.411177] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000228 [ 373.514404] print_req_error: I/O error, dev loop3, sector 128 13:15:47 executing program 4: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000700)={0x1c, 0x1, 0x4, 0x401, 0x0, 0x0, {}, [@NFULA_CFG_CMD={0x5, 0x1, 0x1}]}, 0x1c}}, 0x0) 13:15:47 executing program 3: r0 = getpid() ioprio_get$pid(0x2, r0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000001080)='./file0/../file0\x00', 0x4, 0x5, &(0x7f0000000380)=[{&(0x7f0000000040)="c9bab6070f63205c81bce32cf44137b1f6854d1852a99c8d30844d7a03c15ebf4d505e179d56bef940b51f166e6c77d349e92ccb6d6ebc5b3f374ba9251b0a2f63538374a84213e5af3fbbbb46ce71f976c5e6a24360f09d8373dd1640b7e14807f2f9d46b6397b82d934a233cf38fe2ca3d2ea74271b1342333bc83fea769b878affb6f10d8a37ecbe02d028c6cd80f1c356f217a723bb808cd487a51462c4e544aa0ec76dff6", 0xa7, 0xf3}, {&(0x7f0000000100)="8ffdb02cf0e0e33030b5101869bd7328a5c7cc6ded5cf0d7ef572e20314d15cbd74cadf825063dab330b3f79d99bfe92d3f506bb83bd48d5f468bd5a90faca44aaca11f9fe225e0a42c17d63e8181495755e5ab63c95cc4b20b4dbca30442e27469100c6fa4ef2051c0f8c01f0352484744b94ea7bbb72f9ac7c7ed7aba8bf9d8892c02546c5", 0x86, 0xffff}, {&(0x7f0000000280)="8d4d4c21f4332dd3923351cf1d557cacce771ce2167ceb9e8c1d0702c13b81e83758f819e45cfcf3dd0e8fd74ec837613e8a439a59d80a1499db170b7446bf", 0x3f, 0x100000000}, {&(0x7f0000000200)="cb598d81", 0x4, 0xbec4}, {&(0x7f0000000240)="4602cc58359843fa611bf196738a25ef913f7054", 0x14, 0x8e}], 0x81, &(0x7f00000010c0)=ANY=[@ANYRES64=r0]) 13:15:47 executing program 5 (fault-call:0 fault-nth:37): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:15:47 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f00000000c0)=""/24, 0x18) clock_gettime(0x6, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x1, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0xfffffcda, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x24044000, &(0x7f0000000380)={0xa, 0x4e24, 0x80000001, @private2, 0xd}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @multicast1}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:47 executing program 4: r0 = socket$vsock_stream(0x28, 0x1, 0x0) setsockopt$SO_VM_SOCKETS_BUFFER_SIZE(r0, 0x28, 0x0, &(0x7f0000000000)=0xfffffffffffffffe, 0x8) [ 373.696659] FAULT_INJECTION: forcing a failure. [ 373.696659] name failslab, interval 1, probability 0, space 0, times 0 [ 373.722461] CPU: 0 PID: 32284 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 373.730425] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 373.739786] Call Trace: [ 373.742387] dump_stack+0x1b2/0x283 [ 373.746027] should_fail.cold+0x10a/0x154 [ 373.750242] should_failslab+0xd6/0x130 [ 373.754216] kmem_cache_alloc_node+0x263/0x410 [ 373.758799] __alloc_skb+0x5c/0x510 [ 373.762428] kobject_uevent_env+0x882/0xf40 [ 373.766757] lo_ioctl+0x11a6/0x1cd0 [ 373.770387] ? loop_set_status64+0xe0/0xe0 [ 373.774736] blkdev_ioctl+0x540/0x1830 [ 373.778613] ? blkpg_ioctl+0x8d0/0x8d0 [ 373.782506] ? trace_hardirqs_on+0x10/0x10 [ 373.786728] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 373.791825] ? debug_check_no_obj_freed+0x2c0/0x674 [ 373.796934] block_ioctl+0xd9/0x120 [ 373.800553] ? blkdev_fallocate+0x3a0/0x3a0 [ 373.804855] do_vfs_ioctl+0x75a/0xff0 [ 373.808648] ? ioctl_preallocate+0x1a0/0x1a0 [ 373.813041] ? lock_downgrade+0x740/0x740 [ 373.817177] ? __fget+0x225/0x360 [ 373.820619] ? do_vfs_ioctl+0xff0/0xff0 [ 373.824615] ? security_file_ioctl+0x83/0xb0 [ 373.829178] SyS_ioctl+0x7f/0xb0 [ 373.832537] ? do_vfs_ioctl+0xff0/0xff0 [ 373.836495] do_syscall_64+0x1d5/0x640 [ 373.840367] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 373.845538] RIP: 0033:0x45e087 [ 373.848724] RSP: 002b:00007fe27cb4fa18 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 373.856432] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e087 [ 373.863681] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 373.870931] RBP: 0000000000000000 R08: 0000000020000218 R09: 0000000000000000 [ 373.878272] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000001 [ 373.885543] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000228 13:15:47 executing program 3: r0 = getpid() ioprio_get$pid(0x2, r0) ioctl$DRM_IOCTL_GET_CLIENT(0xffffffffffffffff, 0xc0286405, &(0x7f0000000300)={0x9, 0x29880, {r0}, {0x0}, 0x7fffffff, 0x40}) perf_event_open(&(0x7f0000000280)={0x5, 0x70, 0x3, 0x4, 0x1, 0x3, 0x0, 0x1d, 0x4080, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x5, 0x1, @perf_bp={&(0x7f0000000240), 0x8}, 0xe112, 0x2, 0x401, 0x0, 0x8, 0x2377272d, 0x9}, r1, 0x8, 0xffffffffffffffff, 0x2) r3 = getpid() ioctl$DRM_IOCTL_GET_CLIENT(0xffffffffffffffff, 0xc0286405, &(0x7f0000000340)={0x2, 0xffffffff, {r3}, {r2}, 0x200, 0x4}) sched_setscheduler(r4, 0x6, &(0x7f0000000380)=0x9e6) ioprio_get$pid(0x2, r3) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000b30d77a278ba37a900000000000000f90cac8b044b4fa88bee4b8d3da88dc200000100006eeaaffd64fe51b8afcdb85f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f0000000080)=ANY=[@ANYRES64=r0, @ANYRES64=r0, @ANYBLOB="63c09dc7168b7ee2a790aaa073cc3a07041d6a8de01cc0ca3aafc5beb2402dbdd96a8e6a2e6644fb56a0129a18800260f2944fa2e73160bc424b0f32e0705fc45f38cdb0cd069fa0f4a787a5f5fe825e2abe3e5f1a8fe6b432e1be08e374f9b0155862ce7b7dc5439910378472a560500854c809174f", @ANYRESHEX, @ANYBLOB="128b4e32d3331abdfa9ead95341496c492d7ac0d7f3a500c6e16b4bc5cd9f11bce5e7e5d7779618c8b0ee01e7e1b306c71f3caf081ae892f5431c3145aaf8142d94600be911e584c65c8cef1232b81d9e125fd7e7539c53766514fe12d4f1cd3a414493161bc81278d05b25b107cb84b39aed76b8b924f62fdecf59156a2549c0e33dcc2cb04965f2b692b5907e80c29f6676bd3", @ANYRES64=r0, @ANYRES32, @ANYRESHEX=r3]) 13:15:47 executing program 4: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_opts(r0, 0x0, 0x5, 0x0, 0x0) [ 374.037416] print_req_error: I/O error, dev loop3, sector 0 13:15:47 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x9) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:47 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) r1 = dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r1, &(0x7f00000002c0), 0x0, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:47 executing program 4: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)={0x14, 0x2, 0x1, 0x201}, 0x14}}, 0x0) 13:15:47 executing program 5 (fault-call:0 fault-nth:38): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:15:47 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) 13:15:47 executing program 3: r0 = syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) faccessat(r0, &(0x7f0000000440)='./bus/file0\x00', 0x72) setxattr$security_capability(&(0x7f0000000380)='./bus\x00', &(0x7f00000003c0)='security.capability\x00', &(0x7f0000000400)=@v2={0x2000000, [{0x2, 0x1ff}, {0x400, 0x2}]}, 0x14, 0x2) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000004c0)={{{@in=@remote, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6}, 0x0, @in6=@ipv4={[], [], @initdev}}}, &(0x7f00000005c0)=0xe8) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, 0x0) r4 = syz_mount_image$romfs(&(0x7f0000000600)='romfs\x00', &(0x7f0000000640)='./bus\x00', 0x3f, 0x5, &(0x7f0000000980)=[{&(0x7f0000000680)="22f9d64c4df1892f2a8c1863f40e30e627a2ca940fa8d3cd6e2018e55fe707463376befe6446a4c27cc9d6661431eeab01babc89593b7d945590ef521a715de7c1bb474c6a6c2d2bc68de5e923718563219cc3d39f6257edc32512418ee94ce642eaf50fab9856926844", 0x6a, 0x6}, {&(0x7f0000000700)="57705416193cf9e36ca0e3e4bc336e783d41e0dce99c340a0660a9d0d8002e163488c5db6aeadf1d2bb7e9eec033c83530bdf7131a9c11a0654410da32e091c1659c7f0eb5e3c41b883a8b2e839f45cc732c9f54183897f804b2e88f9166ee4446f6be562531a82e30581c316104f86a49a928b3785bbfc441947020ce2d27838f50345b2c806d2397a792e90c9db70434a16e0b71c63a3916fe824c2e63280302c01dfe4c69dc2f29505dabcf1c7cd50f3156", 0xb3, 0x401}, {&(0x7f00000007c0)="5244e6c31dd8bb042baaaeb805ebe5ad22bee3fb77a74d65a1c159b816cad434035edeaa5147e24a1d3e882567d596e0405dbf896ecee6cb79c17c86b2cf617def4c2a400463ce522c298bc0b10a62c438ae3a93756ca2b4471bf8f1293be77734aef068cf0eda0af8e554bd6afdd5445be0b3ba7ae7210d869337dbb941832776a41f90dcbf97282fbbf7c7427bd71bf5c03b33854b78ea4dfd60b9f2631cfd6f70", 0xa2, 0x7ff}, {&(0x7f0000000880)="f2cbf6a05bfa0fd88eaf35c52db36b5e9ef5b21bad48883f2e4c5cd08b2587f075903f4f733f353de5dc8eff91f3dfa38e98f1d84f5f9c2432117f601fc48cdfe40cc9c40756bc445629eca0f7", 0x4d, 0xffffffffffffffff}, {&(0x7f0000000900)="4d3fa2731bdbe308acf42b18d72c92168214fa4ba47228708d61b3da6e75b758e38cacce66f5c61fe12209ad3b9a9214116e81d8819d95d4d44d69153ecac9a4102785625303dd8f9e462f9c9f", 0x4d}], 0x1, &(0x7f0000000a00)={[{}, {}, {'group_id'}, {'euid<'}, {'allow_other'}, {'-'}, {'}'}, {'7'}], [{@uid_lt={'uid<', r2}}, {@fowner_lt={'fowner<', r1}}, {@subj_user={'subj_user', 0x3d, 'default_permissions'}}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}, {@fscontext={'fscontext', 0x3d, 'unconfined_u'}}, {@uid_lt={'uid<', r2}}, {@obj_type={'obj_type', 0x3d, 'blksize'}}]}) dup(r4) setregid(r3, 0x0) chown(&(0x7f0000000480)='./bus/file0\x00', r1, r3) ftruncate(0xffffffffffffffff, 0x208200) r5 = getgid() getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000100)={{{@in6=@mcast2, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@initdev}, 0x0, @in6=@private0}}, &(0x7f0000000240)=0xe8) mount$fuse(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='fuse\x00', 0xa2c800, &(0x7f0000000280)={{'fd'}, 0x2c, {'rootmode', 0x3d, 0x2000}, 0x2c, {'user_id', 0x3d, 0xee00}, 0x2c, {'group_id', 0x3d, r5}, 0x2c, {[{@blksize={'blksize'}}, {@default_permissions='default_permissions'}, {@allow_other='allow_other'}], [{@euid_lt={'euid<', r6}}, {@obj_user={'obj_user', 0x3d, ')\xe0:\\'}}, {@seclabel='seclabel'}]}}) 13:15:47 executing program 4: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)={0x1c, 0x2, 0x3, 0x807, 0x0, 0x0, {}, [@NFQA_CFG_CMD={0x8}]}, 0x1c}}, 0x0) [ 374.475464] FAULT_INJECTION: forcing a failure. [ 374.475464] name failslab, interval 1, probability 0, space 0, times 0 [ 374.494035] CPU: 1 PID: 32323 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 374.502032] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 374.511382] Call Trace: [ 374.513962] dump_stack+0x1b2/0x283 [ 374.517601] should_fail.cold+0x10a/0x154 [ 374.521732] should_failslab+0xd6/0x130 [ 374.525688] kmem_cache_alloc_node+0x263/0x410 [ 374.530253] __alloc_skb+0x5c/0x510 [ 374.533866] kobject_uevent_env+0x882/0xf40 [ 374.538182] lo_ioctl+0x11a6/0x1cd0 [ 374.541792] ? loop_set_status64+0xe0/0xe0 [ 374.546006] blkdev_ioctl+0x540/0x1830 [ 374.549875] ? blkpg_ioctl+0x8d0/0x8d0 [ 374.553743] ? trace_hardirqs_on+0x10/0x10 [ 374.557965] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 374.563048] ? debug_check_no_obj_freed+0x2c0/0x674 [ 374.568050] block_ioctl+0xd9/0x120 [ 374.571662] ? blkdev_fallocate+0x3a0/0x3a0 [ 374.575964] do_vfs_ioctl+0x75a/0xff0 [ 374.579745] ? ioctl_preallocate+0x1a0/0x1a0 [ 374.584134] ? lock_downgrade+0x740/0x740 [ 374.588355] ? __fget+0x225/0x360 [ 374.591790] ? do_vfs_ioctl+0xff0/0xff0 [ 374.595754] ? security_file_ioctl+0x83/0xb0 [ 374.600152] SyS_ioctl+0x7f/0xb0 [ 374.603497] ? do_vfs_ioctl+0xff0/0xff0 [ 374.607453] do_syscall_64+0x1d5/0x640 [ 374.611327] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 374.616494] RIP: 0033:0x45e087 [ 374.619664] RSP: 002b:00007fe27cb4fa18 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 374.627365] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e087 [ 374.634702] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 374.641964] RBP: 0000000000000000 R08: 0000000020000218 R09: 0000000000000000 [ 374.649224] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000001 [ 374.656484] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000228 13:15:48 executing program 4: socketpair(0xa, 0x3, 0x0, 0x0) [ 374.692407] print_req_error: I/O error, dev loop5, sector 0 [ 374.709924] Buffer I/O error on dev loop5, logical block 0, async page read [ 374.725639] Buffer I/O error on dev loop5, logical block 0, async page read [ 374.734310] Buffer I/O error on dev loop5, logical block 0, async page read 13:15:48 executing program 4: munmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000) r0 = socket$vsock_stream(0x28, 0x1, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x20852, r0, 0x0) 13:15:48 executing program 4: r0 = add_key$keyring(&(0x7f0000000040)='keyring\x00', &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) r1 = add_key$keyring(&(0x7f0000000140)='keyring\x00', &(0x7f0000000180)={'syz', 0x0}, 0x0, 0x0, r0) keyctl$chown(0x4, r1, 0xee01, 0x0) keyctl$setperm(0x5, r0, 0x0) add_key$user(&(0x7f00000001c0)='user\x00', 0x0, 0x0, 0x0, r1) [ 374.743326] Buffer I/O error on dev loop5, logical block 0, async page read [ 374.751371] Buffer I/O error on dev loop5, logical block 0, async page read [ 374.759357] Buffer I/O error on dev loop5, logical block 0, async page read [ 374.767468] Buffer I/O error on dev loop5, logical block 3, async page read 13:15:48 executing program 4: r0 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFCONF(r0, 0x8912, &(0x7f0000000040)) 13:15:48 executing program 5 (fault-call:0 fault-nth:39): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) [ 375.001312] FAULT_INJECTION: forcing a failure. [ 375.001312] name failslab, interval 1, probability 0, space 0, times 0 [ 375.013625] CPU: 0 PID: 32376 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 375.021523] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 375.030878] Call Trace: [ 375.033457] dump_stack+0x1b2/0x283 [ 375.037080] should_fail.cold+0x10a/0x154 [ 375.041211] should_failslab+0xd6/0x130 [ 375.045167] kmem_cache_alloc_node+0x263/0x410 [ 375.049733] __alloc_skb+0x5c/0x510 [ 375.053343] kobject_uevent_env+0x882/0xf40 [ 375.057647] lo_ioctl+0x11a6/0x1cd0 [ 375.061275] ? loop_set_status64+0xe0/0xe0 [ 375.065503] blkdev_ioctl+0x540/0x1830 [ 375.069374] ? blkpg_ioctl+0x8d0/0x8d0 [ 375.073278] ? trace_hardirqs_on+0x10/0x10 [ 375.077517] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 375.082607] ? debug_check_no_obj_freed+0x2c0/0x674 [ 375.087619] block_ioctl+0xd9/0x120 [ 375.091232] ? blkdev_fallocate+0x3a0/0x3a0 [ 375.095537] do_vfs_ioctl+0x75a/0xff0 [ 375.099325] ? ioctl_preallocate+0x1a0/0x1a0 [ 375.103714] ? lock_downgrade+0x740/0x740 [ 375.107851] ? __fget+0x225/0x360 [ 375.111288] ? do_vfs_ioctl+0xff0/0xff0 [ 375.115411] ? security_file_ioctl+0x83/0xb0 [ 375.119803] SyS_ioctl+0x7f/0xb0 [ 375.123164] ? do_vfs_ioctl+0xff0/0xff0 [ 375.127133] do_syscall_64+0x1d5/0x640 [ 375.131110] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 375.136281] RIP: 0033:0x45e087 [ 375.139453] RSP: 002b:00007fe27cb4fa18 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 375.147146] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e087 [ 375.154491] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 375.161745] RBP: 0000000000000000 R08: 0000000020000218 R09: 0000000000000000 [ 375.169257] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000001 [ 375.176511] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000228 [ 375.254341] IPVS: ftp: loaded support on port[0] = 21 [ 375.368091] IPVS: ftp: loaded support on port[0] = 21 13:15:49 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:49 executing program 4: perf_event_open(&(0x7f0000000980)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000400)=@raw={'raw\x00', 0x2, 0x3, 0x2d8, 0x190, 0x190, 0x95ffffff, 0x77, 0x93ffffff, 0x240, 0x240, 0x221, 0x240, 0x240, 0x3, 0x0, {[{{@uncond=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6], 0x59000000, 0x130, 0x190, 0x0, {}, [@common=@unspec=@string={{0xc0, 'string\x00'}, {0x0, 0x0, 'bm\x00', "bdc74c01369df17d17ac76fa5f9b3bfa0c34430d864040bc25b2b73a59aa6ecab6b1d2cc05e3182f64694d7d05fb8b8c8f56627a54f905d564eeeb8334f650ca0f3c44f7fda4d20a55050342ea85ecc8838e7088de33582f36a0a375bb7008adc297a5ece1bb2df53d17bef26bb6f800", 0x7f, 0x2}}]}, @common=@SET={0x60, 'SET\x00'}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2, 0x0, 0x0, 'veth0_to_batadv\x00', 'ip6gretap0\x00'}, 0x0, 0x70, 0xb0}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}], {{[], 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x338) getsockname$packet(0xffffffffffffffff, 0x0, 0x0) 13:15:49 executing program 3: r0 = syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vsock\x00', 0x101000, 0x0) lstat(&(0x7f0000002480)='./file1\x00', &(0x7f00000024c0)={0x0, 0x0, 0x0, 0x0, 0x0}) lstat(&(0x7f0000002540)='./file0\x00', &(0x7f0000002580)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) socket$nl_route(0x10, 0x3, 0x0) newfstatat(0xffffffffffffff9c, &(0x7f0000000440)='./file0\x00', &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x7000) chown(&(0x7f0000000400)='./file0\x00', r4, 0xffffffffffffffff) fstat(r0, &(0x7f0000002740)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000027c0)={{{@in=@remote, @in6=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@ipv4={[], [], @private}}, 0x0, @in=@remote}}, &(0x7f00000028c0)=0xe8) ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000002900)=0x0) r8 = open(&(0x7f0000000400)='./bus\x00', 0x14103e, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, r8, 0x0) read(r8, &(0x7f0000000180)=""/19, 0xfffffe47) getdents(r8, &(0x7f0000003180)=""/97, 0x61) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, 0x0) setregid(r9, 0x0) ioctl$TIOCGETD(r1, 0x5424, &(0x7f0000003140)) lstat(&(0x7f0000002940)='./file0\x00', &(0x7f0000002980)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) statx(r0, &(0x7f0000002e80)='./file0\x00', 0x100, 0x8, &(0x7f0000002ec0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_fuse_handle_req(r1, &(0x7f0000000240)="7511301792898a56dfa1dbe111be70ec4370eb27372756b9a0198253d1f7a3815c9cb474b8fa2bc8241f5ceea568985fb0d478575b84e397f558556d45008b4de743c528234e09cd1fa6955146aaec1d438e5c636cb86dac484d6143aa978a9bd8ce54f1fb854a81015ec3f59a90e06fd50137e51c5c1facbee7c1773a7183989f9ce13db07c92659b7698c18cfc9493aae4b6a4725b42576b3a808d6bf99d7aba07f4bfa5a7ab407cc5415296df279c9d64669f8b948753b6af59b8b3c6c1f393669584bf4914b7393361a489486f1e64190045e1fa082b4e78c0b99e9dea6d543e98590a82d5462fc17daa30fde8ff468eaaad20390a08424c7c882146b861bb7fc9e731ade65028b921580fe4a0f4388297c34e6d42ccda06177f01a29a30836b9fa71ffe6ad191bb0f428f047deef947eab1d471ec8fe5218fcc0445fd8c78f28feaa54e50da3850536546d3b0c01214f63187c244bce8cdef1e9174f648edceb4e354e149acfcbb8c96818f74199a69c23394891d3c5951be5f1acda260d0f4c5c3c40168e870c53d7dbc919a6f39961701162580089ae9c3d86300186f77b291aad08a326eea81bc9588b79d10a22b9555737f1620f7d5a8cdfe64461d62bc4588a938cf22e5cac1c7398c485f88673ae2edd587df80de448829eb9c73fcf3b846747e99a05997fdf539409ced366a3486fe5f19ec66c475605a254ee7c425c0851ea81a855e9b2198f9cdf6d3d902b6ed9313503a716f84e05a5f62ee7bbce70b1aab5b3e9c477974660b27879bb3e960cb5bcb67168cb279b522a857518b6e3292a1ccc2d7bf526cb55826725d7acf7e66f8a1c5a0b0ac7d8b53ea26d1432c88ba1118235dc4af01dc016139b8d8f6eb0baa9be9c67e0e5d8e2410d0b64fde7a2ebf52415cb64063c7b22d5334494c2047a8985e41c632827e47de82b2ffbf3b5020f2a0ae2f3b0982501e5bfed415fd633d377bbb4bc5662d125376def61c90dbbe00177ebaca425edfd41b1e99a261e5c9e48d09a742fc39bc25e7fc6aa4eb5f803a2355199fd185be7f4658b2982aa1b7d605dada2469eed7bb57f42a2ada2eaa9f95b1a7160b4082c1ec4c2ac44b19a6fbd135b754d55ebbc0893a6f877636a7cb8a6ed3140e29ca7ec6087c01c90523d6aab65c00181151797cc5330cf3e2a0a2fb299337e2779e22efe5fb388e6c9da90e0f544874b26db9e2f12761012b4d49ca7fc209bc612b4822a869067bf6fdddf3297443b0a37732e4a5588015ea757b2ca5d5c09e620b120a17a101b2eb1b4f3863eb8245a8c53fa545c333f16f9782d0ae952b79562f08f197a93046fd94dcdb6e9e4ecc7e78980b2ab2b869dfacea333648e246f5a12ceee0a02ab01af8fb5a693d1ae510013fa40fe35d67624eb254524624fe8dd42c5e7d136cbb10e088d40c19f203d29d2ef6f8e95d68b5d425c0879770ac208ce75d828a809d5a44ca976b5a751570879f24a891b36e83e9c8e19bf67f8e62a61b49f07452754bbe864b68b25b3ef9c53d7abac0c276479fc33041b4523959ae3eafe7faba0b53fc8d09bf9ef49108c586e614a6815737862208aa30ed4241a94192e4a814f5157c87ba3a03a2641cc31ac4de90742126513b7a3aa3e8aabbcbfecd978fb84b71b6dd92b9584f76c10b62649586d39453b8de26f7b658389dcf379d1f14419ae9105d23815b12b7cd4155d934c331eb5716b73a9f1d9f2acedfb251e4209ec3137a96b1b245a6706a0672e23dbe1a59706c3a5710aaa0e2973d5473ee5b04a410fbacf31b85c9a3466c56de5d3c4fbcdb0281370447227454f0f82cca0ee7c0a6ed4fe10c4cfd9dbf7402c6549e1b5b5b5a5c4952359dd4f444a2bdbe4bf399376776d189ddf2b84a878e17b4955fb2f586e1dc650884e1fd780c952d52eb632d1da49e0b661e4110140633da11d4e9b5f2923fb0d6aa3514cab1d211d9f19bfd335857c0ff064bfd02327b026b1f4a9de006f58e4e11cb2e9a892240e0597a44fcfbf2d63abcfafb3547c301a4839bec13b10725f03ac614e3fb485fcd143f31fdc6ed7b402a0ba656b129c480166de833dbdce58b1774e21564fe433b3e28e83409e0afe2cd42a100c458a9643589398fa63b8772e3087c7d1089843e700675bfa49d4393ef49a7d6e29a36224d733c93cc5b8946ff20d24e5ded878e834d51b8ddefd55314a1edecfb22df8277c66c9021862aef93f33feb62e2667f4f355457b5c6866c1badd633e9b2a01bb256e7e9bcc918addc808c77e50b2b20516f927e5beef5570b567e2b6f057f8bbba13853de2b357b123ecdf77288bd5aae2f2d808afd9926eb1abcb3ee5a64c4477484c615f34e3f8d68f2194c23f054e16b08242b6ea8e98d0b916b1543e20357a119082d3da6297315a939e42ebebcafd6977a1c71a61982438c9bc90feee0244cc65406711e68826cb4e7e996d2d8762be96fed15e088f03337fcd9438eb75c657924af4384988c890da0ce5ce862b0a63f16215f94d6e8a514dee1a50f57d3c4bf53e69c539ccb8d19df7302af78bd368499b64eb69cfecc61272891b1b979da6408f37d0c757de2819f3ee0437e468b410241d3cbd060fdf9b1cea0a081d8bfa28fafc670274eb2eb2ba7d70ea4bfc35293ddd74fe25022ece35543487add2c7214b5603618cb5f4677583a14664b618e8735eb773318d2b3d0bdc627d8b60a898acadc3336fbdf5e5e71aca6575e7fdcfb989ed040f8d8f0803100b94f07d6f1ea0091762dcb8a849e014396ce6685bfbda638a3c46a832aaf6cbf3f93a565c929b9cd47504e960d3e6ddae9df7b227f1eabc67024b47f6fe663eb01f123130bf0657c64f2541ecec11e1a23e832a0617516857e409287bf5564cf006bfd9cbaf11e4750cf9cfd880f264173249704c2854061dc7ea771e4ca083882c5e6a5695f769cd9cd10e0e1c5256cccf0e1610f6ee9a25fdab71fe245f7e84578087f1be83ec945afd8dc7b0a3b52df11884d7e462df2596071f689cdc5ddfa5b18fc561eee661e4e02227149d1ddd1ccc82ee550038ab34abab84c429a38bd8c2db8f2af0e5fda0b2658bd15b22445760d0b613f5051484ee4d113481011c859ad456899c4b14badc1854fd58c5c210abf99544cd8f5e882834ab6f3a480ce516f9fd89ee9dcb4b603387b9c382a19eec2d3e5532653f4336a0b4afc98d19f315400e89412fa06fd8da699bb0a5340e35c2c37375e0e65f1fee68ae305011d7b894ba98fb3bdaff1553bc1a384228cb0429417d763c461d2122998511f152298705e58c8f75eca5eeb5b59cd60da10f9f0d01457745724ca0148ddbb08b42328555b85beb26d3aec64c5c0b0a2e04af61f48963d47d29f2e54edbb5daf4baab2d647a065e3808f25ed8ad5fcd07456b7929c960d6ca5031c1a644a9adb83974aa72c37d8cd0fff312c3b588b23ddb703176eba3382d92f3b081f098bb553a61e36af9a1005c1789700cffcba1f1fb6871c00d9467014939cd0ad69a419d5d7ff3731ae0aac0e0eb4e2cac10e2eb8e719b2fe270d89610fcd89b60839625f02d0f94c5db030598aef13c969bba93e29fdb031fb8132e33bfed57d27cabcc4a347b94e1637c8d53b317c82848b269cd08400480950c7578219757feb2e62c4b531150cbed0a5ab14b0682067062c08f59dbbf07d048e67837ede5a42bdb962cc330cfcc07ad3d94a78e8cf0afcd52c9c55c9b7d19c4430adcd74231b2480a24b4793da3ab48498a13c2bddfce29e236f41b698cde1c7bfff3697d155de35523a3c5cfcfb0da9467213fdfc2a7006a77478acb69a217b2deab7500e8150736956bf833356f9fdc8890817842944de94652f6bb5f6c7035f21ea8e8a9dc2981a7ace84721ec7ad8f6296bf41f63a82eba1a02e1d82b1946058c86d2f0c5c46eb4414d2a4ad356c646c352546ccbb5ea8d610db5b8bae0179a86fc126127acc7197d74319cabf327e90fc842553b327ddce62e10e9aef2db158bf7b3276290cf4ed3f23d8e7f22c7b0e8651f11c23587cb37705fb5fe42499de7fbbb21cffd8cc39499da4848ffe9465102578164d11fa45296044341f8839ca495e73b210fef3a725a173478559f322030935c79f460c538edcaab19d78e66ab365c42e1bf7c0bce0a00f61c43f911eea92f19fb6b9454c2b0d71547064cd10745cdab733242ad0cad432754c8eb61a4e7d10bf2330bd5f760719709ecc9cf6def5d3e1d99088473b770c1ada4893840e7463866d36efd10d6b1a7f8b6cb0ac7dfb09dcd1be193548cc65f64fc194918503c6ba303afdef5c838dd8300e9ca075552ed2810f05c60cc0766c916f7a10a83ebde1329983f9b4d71c603bd4c61a60a9eeca6d88ffdc06938f1847fd3b663b893d41a4e1f30ea03d4ae670533c48973c5a2b7f825b4dacc363ab8f3eae89f249246dc53e01caea7b9825b7723a933b8e4c42d211b441ff77767bfdf5c46b47cbe3fed9acce77a76eaac30fdcdb0d9783f4642a63fb3e689a9a7b57498d96d3d4cccb5b24ec5e77d01d13ef2cc210fd45d4ae591985795827cdeb2749af45f94366d68d60c0809a82a6ceba7c3c838e71983540c67c05f25041cef5376dd822bbf1b580fdffcafdd344ede19948ca1be0c942bcc0712c2d09662729d1dfc4a9792679e3793292e2ff6687717dab4ce29485162e9991bd738fda86d5f898a4b8f97f73b016743432c1b73e70f090649e32dc7f7a4c14527d27f5e40dcb365cd9a2a0284c582a9f0a231640ada75603d46a969a88902608e045eb7f53d5bf726ede09158927586c29084f11ad08e61d4a185b9f3a37d6d80d044558583503361860e20069b0e017220e1165a9ae4d83e67a420c0bce9a0d9b80559cef8bea625f899f17bca616734464f97f9ff1280c5186f0cca3275d36fc1b55ac128492d335755b22c0535eaed99c5bed746114f8a46cf676d48108e5210dc92b28ae9e408dc438377b4d190ae19c02df47dba1213ee7ea0dad41b9e06a0c34092d73b8325c0c7f80fb010c9c399e5dd78cf6e2542184315a9d0d4afc661475b3162897facaf353a847ebf807c48dff795272ef77998bdb5904395dafab3fdb918603759fd802b94ab6691d21bd98a78051be77b457e37f72e6658d726b701965024239db079a25c6d48680828c6d1e1b8eef7534c79db08b258fee652c9f75e18127198f5c08fa8d39be308ab02964812d1e4f64e0062a4f89688de6abb2275963e415880d23bbe7eefedc3b4be666c6ef2bd3829ebab41e9a17f4c337a70f89be4e7a1a5676f3b60ba5f248b195410c1f4c18cd6282b72e3375945e26501858e238cc5bc4876bd023a3f9af54cbd0d80704bc36c38128629b778c82a47b175a28d47174f50ab2453199a031b087202436f083b57831bbd899817b65c4078a85203b3cdb98875abfba5d8ee57e0de2303052ac266b6228936fc3f0ea58065bf4b0c04b12328b405b5603035b83f02cbd2bcfcd917fa244750a27954a2a23bfd0523082202e7e5d62ec19f86f72d2f78ae3ad8f1b708cb154606643f31166f4f41427932d2d471161a199c42126e4dde5d1118bb8c2398874d94d10aeb2a60e724c647a2907802f77a7b3089809c1f3d501bae8e9f3a3bd43781407bd803666b99cae9d4260a8cf3e46f3831dcc87b8bd92a46cc533b1152eede27eff4cf7ee99412383312e448221df138cb76d37b6c1072fbbb3d60694769ebdb09430aa68c063f2661cc06399e509b2ebd0e69efab74b50e1c2fae6d7566d8fd09c4d053432a9c8c3b92ad4537c2bf73055011ff4fee73533e1488ffe2f40c243aff248380adecf9239eaa49aa3e188ced2875be5a2d052e189f91c98ee9d10e46d68b8fa5930e3022a9eff22407717c4cfe988fb4bc63585a3a45fd8fb7036155f84e7860eb27aa7590ec335f83f586d088011e04667049e2db909a0159aff497060027564e947b164bb7c833fdef66fcd4659275f30c318d20d86f316dd352673082227f5183a96ef84196a92caf896932b9f52f4a812e365df1133f4ce3558b0bd41683ae4ac34c9ce2d3f4eed1e6d2e29b1791bb79187633759930c8a6cf93869949119a61db8c8d791ed82757af8fc7a977057ec377505d6758233fcfe762277f628b806c56b3738ee9ce2fb5fd782318e11537fc296253be20287f2c05656a51a78d736b491f769b35f22d23a72987bc320400f9b0656bb1307361b6d0a724d9fb50e7741c6d794ac62ca873d4294f488dd3049b3997a5b59d8bbc1f27c88d6730d1c8703101d2bff1f9259fe1b946c6717b6605fa013bc3757a4bc3043c60fdc069007b217d1b8fa65f7189e5acd608dbfa133b7d8300700f18d6773419af106297990b3e446506ae8df2fd5a5994600ac0aa3a755067c356dcaf80deca8fa1f94671c3c4011adf072d48e92567f949b273a4b7065f60256a2189cfdcc1fd43723c57f31bb8ee467d03abf920402f95d6a92d48f06ac6c94d566967d387933e0500c068a79d5ada6b4c827801b42a930b3bb5d728b9ee94e1d8ac47a5f24792027537702f3c569be04e19b7e77c38e5bdc8007f26767fefd2afddf83cea342e484843375b7c6b954f811e8063df0114857005f5804c1bd6b02d05958d98f9a28bb87f90d6cc44eafd604b3f1477ea7cb71f451bbe459ac2a2f60559dae0edca472f685f3988bb856da382c8a03cb21f57fd6e2e93b10ee51e80208fc0bc2865be7f08535e17630294069a52b432b22ec51f0ae155789a62865581645342980cc0e5f854b0164cab12ead2266156dbada66fb6cba69f91a4d050dd4d802b7820a001181fdd420728596810f0ccb1378fb9754899704c814d77dad6fe6060d25205282cc6a7e8bc5d6279f5e2d10631885d5f91fe9f059e7e09a82fe7f31d983126a9767923c59cc289d0aa831a889d6f33bdee4fe662a1efdca8e4e94b7e1581f75829dbfba3ef9ec7fa078d87f493ab23b71bca87a8d3c3b88f50f5e28b5e639015dc6ca903cb05a4efe3031da0b1dac7c3a499033a8a65136c8c40a47ed9920a2a8a8e3b34d0c0c4d019ac8352ad2fde581918b49539ec08df6a537fd506ad703f618a9c0cfbd501b70404a91ff4b648b31a41eb03dd008e5015c22b3199e2f08d9f3bf328388c6bbbf5731daa09098826fbe265fbd9b2255ebdd662d2549c06b6dad838c22f37f451eab2ea5624441ac33c8592edb216413fdf451a6bc19a17527076ede5533fdb6ac83157f4d0ed22bf52a2271fac132a120ad4ad60b83acedf2365ffa9d4959b5291455ffc674ab4cb607cd883eb06e403a0875517dc1fab9ba109f8d4a91ef388a215297b03ec2b14a11a46c27d3cf52161db151b22a8abf42fc357e2733f004af752ba0d2e59af55fd05168798bcee413789056542b44fff33d3c569d67ab33d1473ccdd54975a1aa9a0f4ab14a37092c85696b770e578219f6485103a896d175fce3280f99c1d7624f1c6b7e3bc02175c81ad92c2806eb853e11e2feeda60d99f3a4a15be510235a94d819dfadb726115c0540b745028f086357b11714765a8275e0314e1ac8974d56e9947a74db824d1bb7f12cbe2b323169aacf5e0561ceb829387cc8a96b91243d5ff7847d9956ccf2b73e00191c31b1412b873babefe0c487c3b790e6e9a859aca05814eb4e678901170c81d174bccdb3dcedfbc346ef5046d388c979584e43521468a1220f9da8702860bcd191447eb4903031fefa6eb1442e146a38ff84df2bec8e6508ce73022fa70424e550315cf10caa34a128d98d4521192c476723e4f1a467749a31398166fe1e26f5bff73f69554e449dcad7820504b2a52a4ac83ec170d58e3e308be1d424980e489b1e9d2de0591cd989be52a6a325f6d8a441341672b98950236fd1a33a913a7c88b9cc3d472525ebfab9c1d9913013b42a832093adaa4fd8a16c00b973319b261dbfaff717b851cb904bc297adb63c90495cd64f19e8a067eb632adbdc511bf8b24485e470e27f4a3958adfecc57cf989c8cf0d7a0e9225d01dabe2ab4e80151515755dc38c34c94306d13b8a77a50c37da88527e1b80e60d744e4a1ec90a26aee7f56b130699b9fd8bc20bdef756e8efd876ea1268bf1649f1b1bfc1a39981726f1bb3e258ad8bfbdf788572e6d78d0310739297a4a5aa3e262e103969eda26002133837feef964d2bb5bd4feaf5de8a70909e3d67c2113f0e1f43356b7dc30ea8cc5734098087e43e0010d75f77ea93efaeeee9559e4eabe9d37e2fcf7513bd8987f716c0f203483f5b60e7110dbaf1d3253db88f8705df5273e2a44083e6b36437a69e5b053e6aa1768e3e182cb5dfd800fcb6296f411ec0514dc71d9df437bcf9be73218d546748456ce7c37372c1c0cd95dfd4f9037714ab4b33f839dd128a4ef4888b8fe99b883509f5b0302cae89fae3e70b33827167d88caa9d4387bf5ae1230f740be702e906d1c1eb5390dfc13bcb5a8b5e734f5a5aed7fbef8f8bc0aec89a286137e04463a2dfb3aa2081bf7f9e5b973a75272747f99f64b03eed8dffba1617760ea19332a8b58c5f173375447448eb211008027a2c8434bb80ee2d25be9913077a1c82a1252348c1f0dcb5c9b7b102a6a1d7f14510a9119adccfda9aecfa99cafb0cc34ce258fb283fb85ebc8a23d9e1aa526e045cb42c97059aa75c9ca829cc963b34782c43ddea3388337505eb3f73ef83728beb8d7cf0cb677c9badef257e707ed03eacb70268b28484b0e50da1bb68f9b646279160b6b3bfe5e84a2083233b8af0322345e35338c85548379cf2d890a006b83dc3d0f7291f8a9896c6f7c27ec873d9153581e66482d8ccfd2c1997a7a9d3596b496e39aeeb5281f72d972800218ca3a47b2fca882b17b18568844bbf38bb028e56c7b5fb71d9145cd71ee3cea5943affa119b473bc9512269ccf26d6e5e578d495452eca06b2cbf5a5b187c0e9c422381bf9a24a7d769cc7e425056c19379e9d3f5de0d816ce7007dd3bdb665ece799d3f168a6a0ed614c46745f36ede6fa54f78f6d64f40da92400911d2457c0ecad85a648a80ada3b04072254be0861c29ac83fbb91a1e15f8e9468448f1326474996185fb9909616b8a434909692e1b0720a8ae53a38a1c0322511cc1f0ecee6c5498a23b65d1f239c4d319f38030b22f5d684e21be6f0ccfb21d4d45bf3ab76e9c1e469c5527a09964f95cecd46ace88b5870f6029e05173b33044efde1c2d2928e881a665caf82bdef47c2760726b4056e4fecd9cb0cf07f90e2082e477bc0ca1ea59c97fe4118753cc8a560be5231d04a9755130696aa8431ddd8d9605765295f24b7e3cc6196f819e5a99bbb68f73fa330b882d0b2c3e36ef455ce6b07dd97d51ea7d6298966dcc9f18b0028da6c81902ef5578f70e912bdcdd53940111175adbd80e09c4844fda2c2a22db47f73a4e0d16e478add2614a547a9f676227424cf545ec96cfe7cdaaebed251fe378741daafb62ca74a44e66230e44162c7afd5f1cd1ee0c0247a627fb32c6145ff04b21812fa8d60d2e8ee1eea0af2fb4a9df723a5282aaf2e412bbf1903dc931c6a3fc190f1103d1c24e898978cd6aa4a97a3fb8efc1e4ad91378054ecade8946254bb899e35664bb2434c6218b7b251a58f8639373795f1f907a4ece7b022eb30f9d072e182e9097ca84e4a8f081f7ebf3853858fd9d4093568d45db584366a5ee29c042cf96a8e48119c19c65bba485934ee2afe93b445bdb1a7ba3b0494a1b30b2f4406e5ee3cacf244eb82e75696c7a56a32b763110e0a342dfa02b4397a79e5ada009a215bc9079f48cb3ea0c9f6a2f5648af6162ee499a457059e6b99f00c581a9d61d036440efaae6c75384ee5d16b434356570a08968b5ab177c2285d2ca7656f3212ee79488af39cd78432329c9a6850baf5579be6e00073980364cdd55636ef46ca0c0ebcd593f39826f2ea65f048214a91a653c4c92d292e1fb86acca23ee0c934c00b1b3899d16dc9ad700b7ed5dc4040658847717655598e8658002f7d45bf5a6a1c1ac24f232a6ebda59cd18160e37a98aa3e1a1ab366373ee0775c062e6b8ba257ce898194c93a1649487ca1eaa92c463ba2706194126cd2689af18edf79b44834cb6c0c73d207c51ae55f5890e86ca00c400bfcf418dcc79b4cc4edf84e7cc7cb64e520a8799b9b0cd0fd8f81f46692e2c12174f256fa09c13656362d0dd6c8e2d80898bcc3f9737787e166b2638b699d10c8ec397c9e12ab67618a389ad5d7f31b44593ffac7e339c2ca54e65fce6b2366eb4d95ba8c03b5e78d6bc6a845d28da09c37aa7a1e35e8e2a4aa85a8a3c878d95b946645965e8a3c309ffe4de1dbeb4a370a016a80e76840ce7f5dc199694a6d8aebb642b3c8a2222381c059a1134e66665b715854c9145f33d4a5705e88bb47c9db42ffcd8b17e56e6282712096cd82c6a1a78a1071c68462daf24ca664b5dfd3d84c7342703b84f10685310dd77a706891ed1f47773b50fe850248d8d3e8bf1a3a778600bac4a7ec7d70bf79047a8124b4ed8610c8cb20752deb958f001e48aab078fbe041892691304f289d5b240c92bdeaae0b7f9d0018f62f684222940d43bc59061e14a42a8c21d511575628c16f710aaed60a9cf20a9cf069bbb68b35faf47473826f8194acdaff17ab9762c2bfb68c468482b6bb5c0861dcc73a6c220791d616040e4230fd320c65def7c77387c809ae847c3ff57f73f65557ea727694e871d392de040fa62da160a002a1c56127c34a84e6554c8a844cc5b14cfa3e76d9e384bd12ae6a86132b6f7c5d3580dbcd7379f2a7e1083d8fbd1427746b96afefdfb7327b4e78c34394370cb18ffe69a5361610b28bba5add56d5a6861eebe6bdfb6b959f875ace44346cb2f4eeaafe3d54e633b65796395d60eb581332849bd82b24b4f130172693896737e6de97ca4f79b3122989f5c88bd96b7ed8fd946e26c05780640a9e9ee87fd3a086fe0009c78e50cb2909f3831d0a31c1539634ce5399e776614751e002db7d31771b7066a36e100e8f307f143ecf55aa9e589437a20d865045b90cf1790638a5ba0274cab455df898b9623a7bfa597cf7c18905fb134a7b12fd3917fb81ecc3d4b05c6cfc4d339c6dca0de549c8d7fdbd3799d1306e25f4e3acdd2b8512c82983efd9666214401baa5f543151bcbcf37f5369125320309d87cd421a83bdd9ef012be9290b15a50ae9abc0ce821153d90472f1ada2fe7e9dec2e4af3c2b2707e8e4ec853758164034b9eebb3f63b492e56e3cb876412d12615babb608bbde818215a5f92633523ba68b85a2f218e02fdbfdc6a26016b2cc235dbe7b0c4dbcd742e94966364b4607decbb50923913148a79936183a814d9f0b9fd0f670f3dc83363bd4bae9abd9aab03191bc7fcb986a8d4fcfc620efaf5e5197b5d1af63575ca0ce9afb42225018f5fd55d1f310d1586b39b7462113ba63f43da612457cd10cedf83d78016a500aa24e21ee2e7021ca82b880f0bb443865a948614da953a429074e9639439f5d66e1f4f619eb1a2de3bd0450f5283c3758000ce6f2851171aac", 0x2000, &(0x7f00000030c0)={&(0x7f00000000c0)={0x50, 0x0, 0x2, {0x7, 0x20, 0x2, 0x800000, 0x2, 0x0, 0x8, 0xffff7fff}}, &(0x7f0000000140)={0x18, 0xffffffffffffffda, 0x6c9, {0x100}}, &(0x7f0000000180)={0x18, 0x0, 0x1000, {0x5}}, &(0x7f00000001c0)={0x18, 0x0, 0x5, {0x3}}, &(0x7f0000002240)={0x18, 0x0, 0x4, {0x7fff}}, &(0x7f0000002280)={0x28, 0xfffffffffffffff5, 0xfffffffffffffead, {{0x119, 0x6}}}, &(0x7f00000022c0)={0x60, 0x0, 0x10000, {{0xf98, 0x7, 0x28f0, 0x0, 0x100, 0xd8, 0x8, 0x4}}}, &(0x7f0000002340)={0x18, 0xfffffffffffffff5, 0x3f, {0x4}}, &(0x7f0000002380)={0x11, 0x0, 0x4, {'\x00'}}, &(0x7f00000023c0)={0x20, 0x0, 0x0, {0x0, 0x2}}, &(0x7f0000002400)={0x78, 0xfffffffffffffff5, 0x1, {0x6, 0x8000000, 0x0, {0x2, 0x200, 0x7, 0x7c3b, 0x7, 0xbc4, 0x401, 0x2, 0x401, 0x2000, 0x10000, 0xee00, 0xee00, 0x1, 0x8}}}, &(0x7f0000002600)={0x90, 0x0, 0x80, {0x1, 0x0, 0x1000, 0x1ff, 0x80, 0x1000, {0x0, 0xcf, 0x40, 0x0, 0x9, 0x7fff, 0x6, 0x8, 0x9, 0x4000, 0x0, r2, r3, 0x7cef, 0x80000001}}}, &(0x7f00000026c0)={0x48, 0x0, 0xa058, [{0x5, 0xbf9d, 0x0, 0xfffffbff}, {0x3, 0x100000001, 0x6, 0x2, 'btrfs\x00'}]}, &(0x7f0000002a00)={0x468, 0x0, 0x3, [{{0x0, 0x1, 0xff, 0x7, 0x0, 0x1f, {0x2, 0x7c58, 0x1000, 0x3202fa5a, 0x100000000, 0x4, 0xfff, 0x0, 0x0, 0x6000, 0x3, r4, 0xee00, 0x1, 0x3ff}}, {0x6, 0x1a9, 0x0, 0x9}}, {{0x6, 0x1, 0x0, 0x8, 0x10000, 0x9, {0x3, 0x2, 0x80, 0x8, 0xffffffffffffffff, 0x9, 0x7, 0x2, 0xd7, 0x1000, 0xd8df, 0x0, r5, 0xffffffff}}, {0x4, 0x3, 0x6, 0x7, 'btrfs\x00'}}, {{0x5, 0x2, 0x854, 0x3, 0x8001, 0x4, {0x0, 0x7fffffff0000000, 0x4, 0x6, 0x7ff, 0x0, 0xdc2, 0x3, 0x80000000, 0x6000, 0x2, r6, 0xffffffffffffffff, 0x5, 0x2}}, {0x0, 0x1, 0x6, 0xfaf, 'btrfs\x00'}}, {{0x3, 0x2, 0x8, 0x80, 0x3, 0xffff8318, {0x6, 0x8, 0x100000001, 0x5, 0x9, 0x1000, 0x400, 0xffff, 0x4, 0x8000, 0x10000, 0x0, 0xffffffffffffffff, 0xf90f, 0x80000000}}, {0x1, 0x4, 0x6, 0x0, 'btrfs\x00'}}, {{0x6, 0x1, 0x4, 0x0, 0x4, 0x9, {0x4, 0xff, 0x7, 0x1ff, 0x87f, 0x1000, 0x6, 0x3, 0x3f, 0x6000, 0x8000, r7, r9, 0x2, 0x8001}}, {0x2, 0x2, 0x5, 0x8, '++%^,'}}, {{0x5, 0x0, 0x5, 0x4, 0x667d, 0x80000000, {0x0, 0x8, 0xb216, 0x1, 0x5, 0x7, 0x1d, 0x412b, 0x3ca, 0x1000, 0xbb65, 0x0, 0xffffffffffffffff, 0x1000, 0x3a}}, {0x0, 0x100000001, 0x1, 0x8000, ':'}}, {{0x1, 0x2, 0x86, 0x7, 0x40, 0x8, {0x4, 0x0, 0x1ff, 0x25, 0x10b, 0x7ff, 0x363, 0xfffffffa, 0xf1, 0x1000, 0x1, 0xee01, r10}}, {0x1, 0x5, 0x8, 0xfa01, '\'*#,+-\xd7:'}}]}, &(0x7f0000002fc0)={0xa0, 0x0, 0x8, {{0x6, 0x1, 0x5fb, 0x4, 0x9, 0x7fffffff, {0x6, 0xbd4, 0x80000000, 0x6, 0x468c, 0x10000, 0x66, 0x6, 0x7, 0x6000, 0xff, 0xffffffffffffffff, r11, 0x8000, 0xffffcfeb}}, {0x0, 0x2}}}, &(0x7f0000003080)={0x20, 0xfffffffffffffff5, 0x125c, {0x37, 0x0, 0x85eb, 0x80000000}}}) 13:15:49 executing program 5 (fault-call:0 fault-nth:40): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:15:49 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) 13:15:49 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) [ 375.779303] Cannot find add_set index 0 as target [ 375.779931] FAULT_INJECTION: forcing a failure. [ 375.779931] name failslab, interval 1, probability 0, space 0, times 0 [ 375.798451] CPU: 1 PID: 32445 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 375.806353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 375.815718] Call Trace: [ 375.818318] dump_stack+0x1b2/0x283 [ 375.821936] should_fail.cold+0x10a/0x154 [ 375.826079] should_failslab+0xd6/0x130 [ 375.830047] kmem_cache_alloc_node_trace+0x25a/0x400 [ 375.835146] __kmalloc_node_track_caller+0x38/0x70 [ 375.840161] __alloc_skb+0x96/0x510 [ 375.843802] kobject_uevent_env+0x882/0xf40 [ 375.848117] lo_ioctl+0x11a6/0x1cd0 [ 375.851725] ? loop_set_status64+0xe0/0xe0 [ 375.855941] blkdev_ioctl+0x540/0x1830 [ 375.859806] ? blkpg_ioctl+0x8d0/0x8d0 [ 375.863672] ? trace_hardirqs_on+0x10/0x10 [ 375.867888] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 375.872972] ? debug_check_no_obj_freed+0x2c0/0x674 [ 375.877973] block_ioctl+0xd9/0x120 [ 375.881602] ? blkdev_fallocate+0x3a0/0x3a0 [ 375.885912] do_vfs_ioctl+0x75a/0xff0 [ 375.889694] ? ioctl_preallocate+0x1a0/0x1a0 [ 375.894110] ? lock_downgrade+0x740/0x740 [ 375.898252] ? __fget+0x225/0x360 [ 375.901773] ? do_vfs_ioctl+0xff0/0xff0 [ 375.905815] ? security_file_ioctl+0x83/0xb0 [ 375.910396] SyS_ioctl+0x7f/0xb0 [ 375.913739] ? do_vfs_ioctl+0xff0/0xff0 [ 375.917698] do_syscall_64+0x1d5/0x640 [ 375.921571] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 375.926738] RIP: 0033:0x45e087 13:15:49 executing program 4: perf_event_open(&(0x7f0000000980)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000400)=@raw={'raw\x00', 0x2, 0x3, 0x2d8, 0x190, 0x190, 0x95ffffff, 0x77, 0x93ffffff, 0x240, 0x240, 0x221, 0x240, 0x240, 0x3, 0x0, {[{{@uncond=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6], 0x59000000, 0x130, 0x190, 0x0, {}, [@common=@unspec=@string={{0xc0, 'string\x00'}, {0x0, 0x0, 'bm\x00', "bdc74c01369df17d17ac76fa5f9b3bfa0c34430d864040bc25b2b73a59aa6ecab6b1d2cc05e3182f64694d7d05fb8b8c8f56627a54f905d564eeeb8334f650ca0f3c44f7fda4d20a55050342ea85ecc8838e7088de33582f36a0a375bb7008adc297a5ece1bb2df53d17bef26bb6f800", 0x7f, 0x2}}]}, @common=@SET={0x60, 'SET\x00'}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2, 0x0, 0x0, 'veth0_to_batadv\x00', 'ip6gretap0\x00'}, 0x0, 0x70, 0xb0}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}], {{[], 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x338) getsockname$packet(0xffffffffffffffff, 0x0, 0x0) [ 375.929906] RSP: 002b:00007fe27cb4fa18 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 375.937695] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e087 [ 375.944953] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 375.952201] RBP: 0000000000000000 R08: 0000000020000218 R09: 0000000000000000 [ 375.959450] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000001 [ 375.966714] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000228 [ 376.008510] Unknown ioctl 21540 13:15:49 executing program 4: perf_event_open(&(0x7f0000000980)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000400)=@raw={'raw\x00', 0x2, 0x3, 0x2d8, 0x190, 0x190, 0x95ffffff, 0x77, 0x93ffffff, 0x240, 0x240, 0x221, 0x240, 0x240, 0x3, 0x0, {[{{@uncond=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6], 0x59000000, 0x130, 0x190, 0x0, {}, [@common=@unspec=@string={{0xc0, 'string\x00'}, {0x0, 0x0, 'bm\x00', "bdc74c01369df17d17ac76fa5f9b3bfa0c34430d864040bc25b2b73a59aa6ecab6b1d2cc05e3182f64694d7d05fb8b8c8f56627a54f905d564eeeb8334f650ca0f3c44f7fda4d20a55050342ea85ecc8838e7088de33582f36a0a375bb7008adc297a5ece1bb2df53d17bef26bb6f800", 0x7f, 0x2}}]}, @common=@SET={0x60, 'SET\x00'}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2, 0x0, 0x0, 'veth0_to_batadv\x00', 'ip6gretap0\x00'}, 0x0, 0x70, 0xb0}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}], {{[], 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x338) getsockname$packet(0xffffffffffffffff, 0x0, 0x0) [ 376.048005] Cannot find add_set index 0 as target 13:15:49 executing program 4: perf_event_open(&(0x7f0000000980)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000400)=@raw={'raw\x00', 0x2, 0x3, 0x2d8, 0x190, 0x190, 0x95ffffff, 0x77, 0x93ffffff, 0x240, 0x240, 0x221, 0x240, 0x240, 0x3, 0x0, {[{{@uncond=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6], 0x59000000, 0x130, 0x190, 0x0, {}, [@common=@unspec=@string={{0xc0, 'string\x00'}, {0x0, 0x0, 'bm\x00', "bdc74c01369df17d17ac76fa5f9b3bfa0c34430d864040bc25b2b73a59aa6ecab6b1d2cc05e3182f64694d7d05fb8b8c8f56627a54f905d564eeeb8334f650ca0f3c44f7fda4d20a55050342ea85ecc8838e7088de33582f36a0a375bb7008adc297a5ece1bb2df53d17bef26bb6f800", 0x7f, 0x2}}]}, @common=@SET={0x60, 'SET\x00'}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2, 0x0, 0x0, 'veth0_to_batadv\x00', 'ip6gretap0\x00'}, 0x0, 0x70, 0xb0}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}], {{[], 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x338) getsockname$packet(0xffffffffffffffff, 0x0, 0x0) [ 376.141602] Cannot find add_set index 0 as target 13:15:49 executing program 5 (fault-call:0 fault-nth:41): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:15:49 executing program 4: socket(0x10, 0x0, 0x8) [ 376.205224] Cannot find add_set index 0 as target [ 376.210098] Unknown ioctl 21540 13:15:49 executing program 3: r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0) ftruncate(r0, 0x208200) ioctl$BTRFS_IOC_SUBVOL_CREATE(0xffffffffffffffff, 0x5000940e, &(0x7f0000000240)={{r0}, "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"}) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e85000000000000000000f6ffffff00000000000000df7827996e116287f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x40000, &(0x7f00000007c0)=ANY=[]) lsetxattr$security_capability(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='security.capability\x00', &(0x7f0000000100)=@v1={0x1000000, [{0x4, 0x7}]}, 0xc, 0x0) [ 376.270597] FAULT_INJECTION: forcing a failure. [ 376.270597] name failslab, interval 1, probability 0, space 0, times 0 [ 376.296141] CPU: 0 PID: 32500 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 376.304071] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 376.313520] Call Trace: [ 376.316113] dump_stack+0x1b2/0x283 [ 376.319750] should_fail.cold+0x10a/0x154 [ 376.323892] should_failslab+0xd6/0x130 [ 376.327853] kmem_cache_alloc_node+0x263/0x410 [ 376.332439] __alloc_skb+0x5c/0x510 [ 376.336073] kobject_uevent_env+0x882/0xf40 [ 376.340487] lo_ioctl+0x11a6/0x1cd0 [ 376.344251] ? loop_set_status64+0xe0/0xe0 [ 376.348497] blkdev_ioctl+0x540/0x1830 [ 376.352367] ? blkpg_ioctl+0x8d0/0x8d0 [ 376.356240] ? trace_hardirqs_on+0x10/0x10 [ 376.360459] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 376.365550] ? debug_check_no_obj_freed+0x2c0/0x674 [ 376.370578] block_ioctl+0xd9/0x120 [ 376.374197] ? blkdev_fallocate+0x3a0/0x3a0 [ 376.378500] do_vfs_ioctl+0x75a/0xff0 [ 376.382288] ? ioctl_preallocate+0x1a0/0x1a0 [ 376.386678] ? lock_downgrade+0x740/0x740 [ 376.390823] ? __fget+0x225/0x360 [ 376.394302] ? do_vfs_ioctl+0xff0/0xff0 [ 376.398296] ? security_file_ioctl+0x83/0xb0 [ 376.402690] SyS_ioctl+0x7f/0xb0 [ 376.406039] ? do_vfs_ioctl+0xff0/0xff0 [ 376.409995] do_syscall_64+0x1d5/0x640 [ 376.413867] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 376.419038] RIP: 0033:0x45e087 [ 376.422209] RSP: 002b:00007fe27cb4fa18 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 376.429896] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e087 [ 376.437165] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 376.444423] RBP: 0000000000000000 R08: 0000000020000218 R09: 0000000000000000 [ 376.451683] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000001 [ 376.458936] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000228 13:15:50 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:50 executing program 4: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCOUTQNSD(r0, 0x891e, &(0x7f0000000000)) 13:15:50 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) mount$9p_rdma(&(0x7f0000000080)='127.0.0.1\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='9p\x00', 0x1800000, &(0x7f0000000240)={'trans=rdma,', {'port', 0x3d, 0x4e22}, 0x2c, {[{@rq={'rq', 0x3d, 0x9}}, {@common=@aname={'aname', 0x3d, 'btrfs\x00'}}, {@rq={'rq', 0x3d, 0x7fff}}, {@rq={'rq', 0x3d, 0x3f}}, {@common=@privport='privport'}, {@sq={'sq', 0x3d, 0x5}}, {@sq={'sq', 0x3d, 0x6}}, {@rq={'rq', 0x3d, 0x800}}, {@common=@version_L='version=9p2000.L'}], [{@rootcontext={'rootcontext', 0x3d, 'staff_u'}}, {@fowner_eq={'fowner', 0x3d, 0xffffffffffffffff}}, {@obj_user={'obj_user', 0x3d, 'btrfs\x00'}}, {@dont_appraise='dont_appraise'}, {@context={'context', 0x3d, 'sysadm_u'}}, {@appraise_type='appraise_type=imasig'}, {@euid_gt={'euid>'}}]}}) r0 = syz_mount_image$ubifs(&(0x7f0000000180)='ubifs\x00', &(0x7f00000001c0)='./file0\x00', 0x7fff, 0x7, &(0x7f0000000780)=[{&(0x7f00000003c0)="2cc2ec9003", 0x5, 0x200}, {&(0x7f0000000400)="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", 0xfd}, {&(0x7f0000000500)="22bccfa36ac791fd6bf7759f1c0df983a9efe27d8bc68e5267b767d7f250022d1c7eaff2b05e4e7f35daf815e4c6b1a3297300fa43f10590331e5cb7725507c3691282974119ec35511364fcb6f06e760129a7aa29107bb42e446550537b63463daed3e1961a451308453c30474cf059d538581fe50b00d2732d6b11981516d6b08c3bd045d74a9246b61b94e23a40314e5e218be5a5bfc76078369a8ff2f129825adf1296c40f65ce7fa8fb85c8020c2c36b5", 0xb3, 0xfffffffffffffff8}, {&(0x7f00000005c0)="68bc736b993bff0b07355a227845bf6233f04ab0b0a48245958429e3f3473d69b1256fa0d8175233011a1993762f66fc0ca9043602f2c0c051603f7f4ea97b96752220432a4b90683b3dc78a366f45ff90f8704784b2c7b77d6069a214f9f31d49ed9a55b5ee5ac5d76f19b92a20cfced94d6896685af4db2180523e0f54e0af7f6484149bd81029c114dfae12f4d42389795fe60acace485dde5312a432cc256f2e3fb232485655d2d964f4a54aa80b906943e2c70ac5d075d0e76f327247ecd1adb4250ddcad6f872bda1feb7c4f", 0xcf, 0x9}, {&(0x7f00000006c0)="613fee8a36", 0x5, 0x6}, {&(0x7f0000000700)="159d20e44ce4d4858d1c6f43585e7ff30c41edbf094f8ba3e4c42f46b3220bfb18e2e1364f3b85", 0x27, 0x2}, {&(0x7f0000000740)="b0fdac22f1a76d54a2e6c4cc89af84edf0bcafb7edd6579a51c11b0effff8f2f7534f76a81920f07a23cba3d", 0x2c, 0x7fff}], 0x180000, &(0x7f0000000840)={[{@fast_unmount='fast_unmount'}, {@compr_lzo='compr=lzo'}, {@fast_unmount='fast_unmount'}], [{@fsname={'fsname', 0x3d, '@'}}, {@smackfsroot={'smackfsroot', 0x3d, '127.0.0.1\x00'}}, {@pcr={'pcr', 0x3d, 0x15}}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@subj_role={'subj_role', 0x3d, 'version=9p2000.L'}}]}) getdents(r0, &(0x7f0000000900)=""/36, 0x24) write$binfmt_script(0xffffffffffffffff, &(0x7f0000000940)={'#! ', './file0', [{0x20, 'privport'}, {}, {0x20, 'sysadm_u'}, {}, {0x20, '@'}, {}], 0xa, "f58284a87088ea1208c79972b2256f507e9ba86c427d28c35c212bd3e19867b75c5db27ffde16b71ff46bab781d31f67a5"}, 0x53) open(&(0x7f0000000140)='./file0\x00', 0x98500, 0x16) 13:15:50 executing program 5 (fault-call:0 fault-nth:42): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:15:50 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) 13:15:50 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0xffffffff, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) [ 377.043298] FAULT_INJECTION: forcing a failure. [ 377.043298] name failslab, interval 1, probability 0, space 0, times 0 [ 377.058470] print_req_error: 27 callbacks suppressed [ 377.058477] print_req_error: I/O error, dev loop5, sector 0 [ 377.071570] print_req_error: I/O error, dev loop5, sector 0 [ 377.078539] print_req_error: I/O error, dev loop5, sector 0 [ 377.084502] CPU: 1 PID: 32537 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 377.084627] print_req_error: I/O error, dev loop5, sector 0 [ 377.092477] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 377.092481] Call Trace: [ 377.092496] dump_stack+0x1b2/0x283 [ 377.092511] should_fail.cold+0x10a/0x154 [ 377.092525] should_failslab+0xd6/0x130 [ 377.092539] kmem_cache_alloc_node_trace+0x25a/0x400 [ 377.092555] __kmalloc_node_track_caller+0x38/0x70 [ 377.092566] __alloc_skb+0x96/0x510 [ 377.092591] kobject_uevent_env+0x882/0xf40 [ 377.092609] lo_ioctl+0x11a6/0x1cd0 [ 377.092639] ? loop_set_status64+0xe0/0xe0 [ 377.104320] print_req_error: I/O error, dev loop5, sector 0 [ 377.107714] blkdev_ioctl+0x540/0x1830 [ 377.107725] ? blkpg_ioctl+0x8d0/0x8d0 [ 377.107735] ? trace_hardirqs_on+0x10/0x10 [ 377.107749] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 377.107758] ? debug_check_no_obj_freed+0x2c0/0x674 [ 377.107771] block_ioctl+0xd9/0x120 [ 377.107779] ? blkdev_fallocate+0x3a0/0x3a0 [ 377.107789] do_vfs_ioctl+0x75a/0xff0 [ 377.107801] ? ioctl_preallocate+0x1a0/0x1a0 [ 377.107808] ? lock_downgrade+0x740/0x740 [ 377.107823] ? __fget+0x225/0x360 [ 377.107838] ? do_vfs_ioctl+0xff0/0xff0 [ 377.107847] ? security_file_ioctl+0x83/0xb0 [ 377.107856] SyS_ioctl+0x7f/0xb0 [ 377.107863] ? do_vfs_ioctl+0xff0/0xff0 [ 377.107876] do_syscall_64+0x1d5/0x640 [ 377.112870] print_req_error: I/O error, dev loop5, sector 0 [ 377.114169] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 377.114177] RIP: 0033:0x45e087 [ 377.114182] RSP: 002b:00007fe27cb4fa18 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 13:15:50 executing program 4: openat$incfs(0xffffffffffffff9c, &(0x7f0000000040)='.pending_reads\x00', 0x0, 0x0) waitid(0x0, 0x0, &(0x7f0000000080), 0x0, 0x0) [ 377.118880] print_req_error: I/O error, dev loop5, sector 0 [ 377.122306] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e087 [ 377.122311] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 377.122316] RBP: 0000000000000000 R08: 0000000020000218 R09: 0000000000000000 [ 377.122321] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000001 [ 377.122326] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000228 [ 377.258620] print_req_error: I/O error, dev loop0, sector 0 13:15:50 executing program 5 (fault-call:0 fault-nth:43): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:15:50 executing program 4: r0 = socket(0x10, 0x2, 0x0) accept4$nfc_llcp(r0, 0x0, 0x0, 0x0) 13:15:50 executing program 4: r0 = socket(0x2, 0x3, 0x2) ioctl$sock_SIOCDELRT(r0, 0x890c, &(0x7f00000000c0)={0x0, @in={0x2, 0x0, @broadcast}, @xdp, @nfc, 0xd4a5}) [ 377.440467] FAULT_INJECTION: forcing a failure. [ 377.440467] name failslab, interval 1, probability 0, space 0, times 0 [ 377.472943] print_req_error: I/O error, dev loop5, sector 0 [ 377.485412] print_req_error: I/O error, dev loop5, sector 0 [ 377.501730] CPU: 1 PID: 32572 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 377.509732] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 377.519087] Call Trace: [ 377.521682] dump_stack+0x1b2/0x283 [ 377.525313] should_fail.cold+0x10a/0x154 [ 377.529480] should_failslab+0xd6/0x130 [ 377.533460] kmem_cache_alloc_node_trace+0x25a/0x400 [ 377.538561] __kmalloc_node_track_caller+0x38/0x70 [ 377.543476] __alloc_skb+0x96/0x510 [ 377.547087] kobject_uevent_env+0x882/0xf40 [ 377.551410] lo_ioctl+0x11a6/0x1cd0 [ 377.555032] ? loop_set_status64+0xe0/0xe0 [ 377.559262] blkdev_ioctl+0x540/0x1830 [ 377.563129] ? blkpg_ioctl+0x8d0/0x8d0 [ 377.566998] ? trace_hardirqs_on+0x10/0x10 [ 377.571215] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 377.576312] ? debug_check_no_obj_freed+0x2c0/0x674 [ 377.581307] block_ioctl+0xd9/0x120 [ 377.584931] ? blkdev_fallocate+0x3a0/0x3a0 [ 377.589251] do_vfs_ioctl+0x75a/0xff0 [ 377.593036] ? ioctl_preallocate+0x1a0/0x1a0 [ 377.597508] ? lock_downgrade+0x740/0x740 [ 377.601644] ? __fget+0x225/0x360 [ 377.605074] ? do_vfs_ioctl+0xff0/0xff0 [ 377.609028] ? security_file_ioctl+0x83/0xb0 [ 377.613441] SyS_ioctl+0x7f/0xb0 [ 377.616786] ? do_vfs_ioctl+0xff0/0xff0 [ 377.620740] do_syscall_64+0x1d5/0x640 [ 377.624609] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 377.629864] RIP: 0033:0x45e087 [ 377.633043] RSP: 002b:00007fe27cb4fa18 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 13:15:51 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000180)='gid_map\x00') lseek(r0, 0x1, 0x0) [ 377.640729] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000045e087 [ 377.647999] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 377.655252] RBP: 0000000000000000 R08: 0000000020000218 R09: 0000000000000000 [ 377.662502] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000001 [ 377.669770] R13: 0000000000000004 R14: 0000000000000004 R15: 0000000020000228 13:15:51 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)=@ipv4_getnexthop={0x2c, 0x6a, 0x400, 0x70bd27, 0x25dfdbfb, {}, [@NHA_GROUPS={0x4}, @NHA_OIF={0x8}, @NHA_ID={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40000}, 0x2040) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) [ 377.851296] IPVS: ftp: loaded support on port[0] = 21 [ 377.986400] IPVS: ftp: loaded support on port[0] = 21 13:15:51 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) 13:15:51 executing program 4: linkat(0xffffffffffffff9c, 0x0, 0xffffffffffffff9c, 0x0, 0x1400) 13:15:51 executing program 5 (fault-call:0 fault-nth:44): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:15:51 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x5, &(0x7f0000001240)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}, {&(0x7f0000000080)="561240ca19d02afce1054bf7e37ff780e36f77362abe682521eddc71219d664c200ba82fdd13366511b45340bec26807", 0x30, 0x81d}, {&(0x7f00000000c0)="db46a78bfe0d708e58fd2468b218c525d8dc927705ab7509a0f6368e9f8797d3ef143d1559b7f5b3007661b86a7d01aec1e4917cc1dd26e02cc3f8e44ee702be2e7dbad9d6cbe7a03a8114a1e0cf6fc4d07f16d21bc8834971b9f159dcd2ddb1b6e60243fa5191d72c2c8ccc6577d4cbf421dc37d3112ebb85bceac255adfa305fa99ebc9226435f262d6280da4626c2ac41e5d7d3191a9eab9d7b5d8f01c8d4f5a05dcf72d9a58bf3be3911f6dd1e5e446d09bbcd151b6a146155911e7cf94e6689169afbb0d2ea1b5717d9f93af98734bdd0c8d00795fe44d8", 0xda, 0xd44}, {&(0x7f0000000240)="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", 0x1000, 0x6a2}], 0x0, &(0x7f00000007c0)=ANY=[]) r0 = open(&(0x7f0000000400)='./bus\x00', 0x14103e, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, r0, 0x0) read(r0, &(0x7f0000000180)=""/19, 0xfffffe47) openat(r0, &(0x7f00000001c0)='./file0\x00', 0x2000, 0x9) 13:15:51 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:51 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0x13) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x1, 0x2) setsockopt$inet_sctp6_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0, 0x623}, 0x8) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) close(r0) 13:15:51 executing program 4: r0 = socket(0x2, 0x3, 0x2) sendmsg$nfc_llcp(r0, &(0x7f0000001340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x20}, 0x0) [ 378.142710] FAULT_INJECTION: forcing a failure. [ 378.142710] name failslab, interval 1, probability 0, space 0, times 0 [ 378.161439] CPU: 1 PID: 32654 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 378.169375] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 378.178734] Call Trace: [ 378.181314] dump_stack+0x1b2/0x283 [ 378.184934] should_fail.cold+0x10a/0x154 [ 378.189074] should_failslab+0xd6/0x130 [ 378.193033] kmem_cache_alloc+0x28e/0x3c0 [ 378.197179] getname_flags+0xc8/0x550 [ 378.200963] SyS_mkdirat+0x83/0x270 [ 378.204588] ? SyS_mknod+0x30/0x30 [ 378.208111] ? fput+0xb/0x140 [ 378.211204] ? do_syscall_64+0x4c/0x640 [ 378.215175] ? SyS_mkdirat+0x270/0x270 [ 378.219131] do_syscall_64+0x1d5/0x640 [ 378.223003] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 378.228229] RIP: 0033:0x45d637 [ 378.231494] RSP: 002b:00007fe27cb4fa78 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 378.239206] RAX: ffffffffffffffda RBX: 00007fe27cb4fb10 RCX: 000000000045d637 [ 378.246469] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000040 [ 378.253727] RBP: 00007fe27cb4fad0 R08: 0000000020000218 R09: 0000000000000000 [ 378.261171] R10: 0000000000010000 R11: 0000000000000213 R12: 0000000020000000 [ 378.268514] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 13:15:51 executing program 4: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_RTHDRDSTOPTS(r0, 0x29, 0x22, &(0x7f0000000040), 0x8) 13:15:51 executing program 5 (fault-call:0 fault-nth:45): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:15:51 executing program 4: ioctl$NBD_SET_SOCK(0xffffffffffffffff, 0xab00, 0xffffffffffffffff) socket$inet6(0xa, 0x6, 0x8) [ 378.439070] FAULT_INJECTION: forcing a failure. [ 378.439070] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 378.450926] CPU: 1 PID: 32688 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 378.458817] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 378.468182] Call Trace: [ 378.470785] dump_stack+0x1b2/0x283 [ 378.474430] should_fail.cold+0x10a/0x154 [ 378.478601] ? lock_downgrade+0x740/0x740 [ 378.482739] __alloc_pages_nodemask+0x22c/0x2720 [ 378.487479] ? __lock_acquire+0x5fc/0x3f20 [ 378.491826] ? lo_ioctl+0x8ae/0x1cd0 [ 378.495522] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 378.500357] ? trace_hardirqs_on+0x10/0x10 [ 378.504574] ? blkpg_ioctl+0x8d0/0x8d0 [ 378.508452] ? trace_hardirqs_on+0x10/0x10 [ 378.512672] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 378.517757] ? debug_check_no_obj_freed+0x2c0/0x674 [ 378.522778] cache_grow_begin+0x8f/0x420 [ 378.526830] cache_alloc_refill+0x273/0x350 [ 378.531140] kmem_cache_alloc+0x333/0x3c0 [ 378.535273] getname_flags+0xc8/0x550 [ 378.539063] SyS_mkdirat+0x83/0x270 [ 378.542674] ? SyS_mknod+0x30/0x30 [ 378.546196] ? fput+0xb/0x140 [ 378.549285] ? do_syscall_64+0x4c/0x640 [ 378.553240] ? SyS_mkdirat+0x270/0x270 [ 378.557105] do_syscall_64+0x1d5/0x640 [ 378.560984] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 378.566155] RIP: 0033:0x45d637 [ 378.569323] RSP: 002b:00007fe27cb4fa78 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 378.577037] RAX: ffffffffffffffda RBX: 00007fe27cb4fb10 RCX: 000000000045d637 13:15:52 executing program 4: r0 = openat$binder_debug(0xffffff9c, &(0x7f0000000000)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0) ioctl$DRM_IOCTL_AGP_FREE(r0, 0x40106435, 0x0) [ 378.584287] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000040 [ 378.591537] RBP: 00007fe27cb4fad0 R08: 0000000020000218 R09: 0000000000000000 [ 378.598885] R10: 0000000000010000 R11: 0000000000000213 R12: 0000000020000000 [ 378.606134] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 13:15:52 executing program 4: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000000440)={{{@in6=@ipv4={[], [], @remote}, @in=@remote}}, {{@in=@loopback}, 0x0, @in6=@loopback}}, 0xe4) 13:15:52 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff}) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r2 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r2, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r2, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r2, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) 13:15:52 executing program 4: socket$kcm(0x29, 0xd, 0x0) 13:15:52 executing program 5 (fault-call:0 fault-nth:46): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:15:52 executing program 3: r0 = openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000080)='net_prio.ifpriomap\x00', 0x2, 0x0) r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000280)='/proc/sys/net/ipv4/vs/lblcr_expiration\x00', 0x2, 0x0) r2 = open(&(0x7f0000000400)='./bus\x00', 0x14103e, 0x0) r3 = syz_mount_image$bfs(&(0x7f0000000340)='bfs\x00', &(0x7f0000000380)='./bus/file0\x00', 0x3ea3, 0x1, &(0x7f00000003c0)=[{&(0x7f0000000440)="9f06a3fef81548bc78bdee766f24c74041e47db93609cfbd407e70905f8d7c30fd54d2efcc5a79b0f0bce8e8c53cdb80fe68117875dba51f169745083068c5adc1c718bb05a17596bb07b2aaabc12e888c0599f88f13b0b2c22a11faa863df8e127d65294dfe0922f6cebdf6d3ee37c5ba1ca03af7dc6eadbd48bf20bbf864dc006e872751218f5bccbbe491415e44ffe25c2b71281d7475", 0x98, 0x2}], 0x10000, &(0x7f0000000500)={[{'\''}, {'-'}, {'/proc/sys/net/ipv4/vs/lblcr_expiration\x00'}, {'/proc/sys/net/ipv4/vs/lblcr_expiration\x00'}], [{@permit_directio='permit_directio'}, {@obj_role={'obj_role', 0x3d, '*:[(\\#.}'}}, {@euid_eq={'euid'}}, {@euid_lt={'euid<', 0xee00}}, {@uid_eq={'uid', 0x3d, 0xee01}}]}) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, r3, 0xeedf0000) read(r2, &(0x7f0000000180)=""/19, 0xfffffe47) ioctl$DRM_IOCTL_CONTROL(r2, 0x40086414, &(0x7f0000000300)={0x3, 0x2d}) bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000002c0)={@cgroup=r1, r2, 0x11, 0x2}, 0x14) write$binfmt_elf64(r0, &(0x7f0000001800)={{0x7f, 0x45, 0x4c, 0x46, 0xe3, 0x8, 0x0, 0x7, 0x46, 0x2, 0x6, 0x2, 0x1bc, 0x40, 0x30d, 0x5, 0xbd6, 0x38, 0x2, 0x7, 0x1b0, 0x1}, [{0x70000000, 0xee, 0xa, 0x8, 0x7, 0x8, 0x3, 0x1f7}, {0x5, 0x5, 0x1, 0x8, 0x0, 0x6, 0x3, 0x40}], "eb7bb54df92a9332b5245d7f344e4d194b5fea4d7c43ea475d60804f985224f65582372254e48a90d366ddea29ec7171c2b3091a505bb05ff35fc60ccef4b413b43fcbd32493aeecedf76f2d35b85cd72c9d8a"}, 0x103) r4 = bpf$ITER_CREATE(0x21, &(0x7f0000000240), 0x8) ioctl$NBD_SET_TIMEOUT(r4, 0xab09, 0x9) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x6, &(0x7f0000001740)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10004}, {0x0}, {&(0x7f0000000600)="00470bfb1f3f3a1e4ca66a35c49d9e651c1c362f55cd13448b1e9932f9cd3fcd77e23a180df63cd8245b54ea1bea970df8", 0x31, 0x4}, {&(0x7f0000000640)="f79fd17f0cd48e480db51a2a902e278bc77a813b1832dca5600daf8a0ee3059b5f11554d7accdd32e35705c06f51500adeff55c91d0cc7c35ad97d505e", 0x3d, 0x4}, {&(0x7f0000000680)="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", 0x1000, 0x7}, {&(0x7f0000001680)="2b7c43c7344e2eaf4bcff45b3d38d60ba1b38404ba270f9e2dc5b64da0db1882ec88de5925c884633171b2d21ce6ba094915de44cc9f58e52b51209d86bcca2267766373d35719113baeda6852c6924e35048625e5bb605b403f90f6ca0b0443d1f1c5f0946492632080c8040202a5344ce7d0793d5f8f29198887e063d9ebd41e72f80df57da602c51967b72490b91cf1bb22228bf01635f271ca043374debb361c3d6c146e08616c814d9837ffbec4be52d3f6037bec19cff407b1", 0xbc, 0x401}], 0x0, &(0x7f00000007c0)=ANY=[]) [ 379.041678] FAULT_INJECTION: forcing a failure. [ 379.041678] name failslab, interval 1, probability 0, space 0, times 0 [ 379.058471] CPU: 0 PID: 32726 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 379.066401] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 379.075742] Call Trace: [ 379.078328] dump_stack+0x1b2/0x283 [ 379.081941] should_fail.cold+0x10a/0x154 [ 379.086078] should_failslab+0xd6/0x130 [ 379.090040] kmem_cache_alloc+0x28e/0x3c0 [ 379.094198] __d_alloc+0x2a/0xa20 [ 379.097635] ? d_lookup+0x172/0x220 [ 379.101240] d_alloc+0x46/0x240 [ 379.104619] __lookup_hash+0x101/0x270 [ 379.108497] filename_create+0x156/0x3f0 [ 379.112567] ? kern_path_mountpoint+0x40/0x40 [ 379.117066] SyS_mkdirat+0x95/0x270 [ 379.120680] ? SyS_mknod+0x30/0x30 [ 379.124199] ? do_syscall_64+0x4c/0x640 [ 379.128171] ? SyS_mkdirat+0x270/0x270 [ 379.132047] do_syscall_64+0x1d5/0x640 [ 379.136095] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 379.141268] RIP: 0033:0x45d637 [ 379.144438] RSP: 002b:00007fe27cb4fa78 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 379.152126] RAX: ffffffffffffffda RBX: 00007fe27cb4fb10 RCX: 000000000045d637 [ 379.159900] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000040 [ 379.167154] RBP: 00007fe27cb4fad0 R08: 0000000020000218 R09: 0000000000000000 [ 379.174422] R10: 0000000000010000 R11: 0000000000000213 R12: 0000000020000000 [ 379.181884] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 13:15:52 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:52 executing program 4: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r0, 0x0, 0x0, 0x0) 13:15:52 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='Q', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x6, @private2, 0x1}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0x7) close(r0) 13:15:52 executing program 4: r0 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$ARPT_SO_GET_ENTRIES(r0, 0x0, 0x61, 0x0, &(0x7f0000001500)) 13:15:52 executing program 5 (fault-call:0 fault-nth:47): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:15:52 executing program 4: openat$binder_debug(0xffffffffffffff9c, &(0x7f0000002ac0)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0) [ 379.334119] FAULT_INJECTION: forcing a failure. [ 379.334119] name failslab, interval 1, probability 0, space 0, times 0 13:15:52 executing program 3: r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0) ftruncate(r0, 0x208200) r1 = socket(0x80000000000000a, 0x2, 0x0) r2 = creat(&(0x7f0000000080)='./bus\x00', 0x0) ftruncate(r2, 0x208200) ioctl$SNDRV_PCM_IOCTL_WRITEN_FRAMES(r2, 0x40184152, &(0x7f0000000500)={0x0, &(0x7f00000004c0)=[&(0x7f0000000400)="0115d9ce9757cb9d8ebb5bb57afbbddad5d492256deb3904413f09f81226e68a4d9c558ae1662c3c905ee2019902c7c833ca3750ccfd39e4251e6459e71068adf8c84054a341fa372227c6786a1761727a03d90f582b15bc71bde7bcb01987aa5edf411c59a2639aa37a7406bc8335479e8589fb4a97d64e610d9758ca043d9c026a283329c56c3c22d1ee0f30d082bdcb4fba6970f3d0868047557c0f9e40da1eba03133795c9ac53fe4c27c3a8cbfd"], 0x2800000000}) clone(0x13102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r3 = perf_event_open(&(0x7f0000000000)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x2000201ac, 0x3d}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) mount(0x0, &(0x7f00000001c0)='.\x00', &(0x7f00000000c0)='nfs\x00', 0x0, &(0x7f0000000000)) setsockopt$inet6_group_source_req(r1, 0x29, 0x2c, &(0x7f0000000080)={0x0, {{0xa, 0x0, 0x0, @empty}}, {{0xa, 0x0, 0x0, @mcast1, 0x4000000}}}, 0x108) setsockopt$inet6_group_source_req(r1, 0x29, 0x2c, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108) r4 = signalfd4(r3, &(0x7f0000000380)={[0x81]}, 0x8, 0x800) ioctl$INCFS_IOC_PERMIT_FILL(r4, 0x40046721, &(0x7f00000003c0)={r3}) ioctl$SNDCTL_SYNTH_MEMAVL(r0, 0xc004510e, &(0x7f0000000080)=0x40000000) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) r5 = creat(&(0x7f0000000080)='./bus\x00', 0x0) ftruncate(r5, 0x208200) r6 = openat(0xffffffffffffff9c, &(0x7f0000000540)='./bus\x00', 0x21a082, 0x0) write$P9_RFSYNC(r6, &(0x7f0000000580)={0x7, 0x33, 0x4}, 0x7) bind$inet6(r5, &(0x7f00000001c0)={0xa, 0x4e20, 0x2, @dev={0xfe, 0x80, [], 0x41}, 0x7d}, 0x1c) [ 379.381590] buffer_io_error: 27 callbacks suppressed [ 379.381596] Buffer I/O error on dev loop0, logical block 0, async page read [ 379.395414] Buffer I/O error on dev loop0, logical block 0, async page read [ 379.402937] Buffer I/O error on dev loop0, logical block 0, async page read [ 379.410344] Buffer I/O error on dev loop0, logical block 0, async page read [ 379.422415] CPU: 0 PID: 32761 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 379.430318] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 379.439757] Call Trace: [ 379.442688] dump_stack+0x1b2/0x283 [ 379.446304] should_fail.cold+0x10a/0x154 [ 379.450440] should_failslab+0xd6/0x130 [ 379.454407] kmem_cache_alloc+0x28e/0x3c0 [ 379.458558] __d_alloc+0x2a/0xa20 [ 379.461991] ? d_lookup+0x172/0x220 [ 379.465627] d_alloc+0x46/0x240 [ 379.468977] __lookup_hash+0x101/0x270 [ 379.472858] filename_create+0x156/0x3f0 [ 379.477014] ? kern_path_mountpoint+0x40/0x40 [ 379.481492] SyS_mkdirat+0x95/0x270 [ 379.485107] ? SyS_mknod+0x30/0x30 [ 379.488628] ? do_syscall_64+0x4c/0x640 [ 379.492580] ? SyS_mkdirat+0x270/0x270 [ 379.496448] do_syscall_64+0x1d5/0x640 [ 379.500329] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 379.505502] RIP: 0033:0x45d637 [ 379.508672] RSP: 002b:00007fe27cb4fa78 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 379.516361] RAX: ffffffffffffffda RBX: 00007fe27cb4fb10 RCX: 000000000045d637 [ 379.523611] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000040 [ 379.530861] RBP: 00007fe27cb4fad0 R08: 0000000020000218 R09: 0000000000000000 [ 379.538112] R10: 0000000000010000 R11: 0000000000000213 R12: 0000000020000000 [ 379.545367] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 13:15:53 executing program 4: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_int(r0, 0x0, 0x12, &(0x7f0000000040)=0x9, 0x4) 13:15:53 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff}) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r2 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r2, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r2, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r2, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) 13:15:53 executing program 3: r0 = open(&(0x7f0000000400)='./bus\x00', 0x14103e, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, r0, 0x0) r1 = open(&(0x7f0000000400)='./bus\x00', 0x14103e, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, r1, 0x0) read(r1, &(0x7f0000000180)=""/19, 0xfffffe47) ioctl$BTRFS_IOC_LOGICAL_INO_V2(r1, 0xc038943b, &(0x7f0000000380)={0x5, 0x20, [], 0x0, &(0x7f0000000340)=[0x0, 0x0, 0x0, 0x0]}) read(r0, &(0x7f0000000180)=""/19, 0xfffffe47) r2 = accept4$rose(r0, &(0x7f00000002c0)=@short={0xb, @remote, @remote, 0x1, @netrom}, &(0x7f0000000300)=0x1c, 0x80000) fcntl$setsig(r2, 0xa, 0x8) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000240)="36267ebf66b813008ed08fc968997b00c4e3f1786200740f01c2b9820b00000f320f01c2660fd149efc744240005000000c74424025e709668c7442406000000000f011c24c4e2c197d0", 0x4a}], 0x1, 0x40, &(0x7f00000002c0), 0x0) r3 = syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x49, 0x0, &(0x7f0000000200), 0x28434aa, &(0x7f0000000140)=ANY=[@ANYBLOB="6cb72f5d0bd74cfcdeba87360f58d1c033c69507d824b40509ff2c52aac7b2689f5e4b3085201ce29d62a93f166e447bbccd1a6649f96c791855efc3dfbb9c0ca065316b52a8bda20d1ee9ff31c52b1a1538b982567b79592eb1aec1732340afb4d945bb39d72fcbca5e9cd93aac44c9107310a3a6c61150e366d0d3af5757f0b776adad05df71143e87133154397324b4308812f47d2e9074e9acb7f0bd7ecbe824a472478f2fa3fb66ec5286"]) pwrite64(r3, &(0x7f0000000080)="c0ab83bee021b063e73850be7554d5593bb5de5c6f578c886381780e5257666d2ea2ee36c29bab6bb01d62daf40604e6c8797af746324d667e98140cc218a6778ec48a57525519ea1b762c17abfaaaef7678630d478154b1116670768c708db37b88bbd0cea96fa4ea896afcb8713ddc5316a81d8197486db42d82d6f9aa", 0x7e, 0x2) creat(&(0x7f0000000040)='./file0/../file0\x00', 0x110) 13:15:53 executing program 5 (fault-call:0 fault-nth:48): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:15:53 executing program 4: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='bic\x00', 0x4) [ 379.923812] FAULT_INJECTION: forcing a failure. [ 379.923812] name failslab, interval 1, probability 0, space 0, times 0 [ 379.970932] CPU: 1 PID: 327 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 379.978766] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 379.988127] Call Trace: [ 379.990744] dump_stack+0x1b2/0x283 [ 379.994479] should_fail.cold+0x10a/0x154 [ 379.998630] should_failslab+0xd6/0x130 [ 380.002609] kmem_cache_alloc+0x28e/0x3c0 [ 380.006755] ? ext4_sync_fs+0x7e0/0x7e0 [ 380.010743] ext4_alloc_inode+0x1a/0x640 [ 380.014819] ? ext4_sync_fs+0x7e0/0x7e0 [ 380.018792] alloc_inode+0x5d/0x170 [ 380.022432] new_inode+0x1d/0xf0 [ 380.025782] __ext4_new_inode+0x360/0x4eb0 [ 380.029998] ? kmem_cache_free+0x7c/0x2b0 [ 380.034137] ? putname+0xcd/0x110 [ 380.037571] ? SyS_mkdirat+0x95/0x270 [ 380.041364] ? entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 380.046735] ? ext4_free_inode+0x1460/0x1460 [ 380.051125] ? lock_downgrade+0x740/0x740 [ 380.055316] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 380.060421] ? dquot_initialize_needed+0x240/0x240 [ 380.065348] ext4_mkdir+0x2e4/0xbd0 [ 380.068986] ? ext4_init_dot_dotdot+0x5a0/0x5a0 [ 380.073652] ? security_inode_mkdir+0xca/0x100 [ 380.078241] vfs_mkdir+0x463/0x6e0 [ 380.081766] SyS_mkdirat+0x1fd/0x270 [ 380.085478] ? SyS_mknod+0x30/0x30 [ 380.089001] ? do_syscall_64+0x4c/0x640 [ 380.092958] ? SyS_mkdirat+0x270/0x270 [ 380.096827] do_syscall_64+0x1d5/0x640 [ 380.100702] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 380.105870] RIP: 0033:0x45d637 [ 380.109040] RSP: 002b:00007fe27cb4fa78 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 380.117029] RAX: ffffffffffffffda RBX: 00007fe27cb4fb10 RCX: 000000000045d637 [ 380.124281] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000040 [ 380.131533] RBP: 00007fe27cb4fad0 R08: 0000000020000218 R09: 0000000000000000 [ 380.138786] R10: 0000000000010000 R11: 0000000000000213 R12: 0000000020000000 [ 380.146052] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 13:15:53 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:53 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) 13:15:53 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) r1 = dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r1, 0x0, 0x5f, 0x2401c046, &(0x7f0000000080)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(0xffffffffffffffff) 13:15:53 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_int(r0, 0x0, 0x2, &(0x7f0000000000)=0x3, 0x4) 13:15:53 executing program 5 (fault-call:0 fault-nth:49): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:15:53 executing program 3: ioctl$TCGETX(0xffffffffffffffff, 0x5432, &(0x7f0000000080)) r0 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000100)='/dev/btrfs-control\x00', 0x20000, 0x0) r1 = creat(&(0x7f0000000080)='./bus\x00', 0x0) ftruncate(r1, 0x208200) sendfile(r0, r1, &(0x7f0000000140)=0x9, 0xf07) r2 = socket$inet_udp(0x2, 0x2, 0x0) r3 = open(&(0x7f0000000400)='./bus\x00', 0x14103e, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8, 0x11, r3, 0x0) read(r3, &(0x7f0000000180)=""/19, 0xfffffe47) ioctl$PIO_UNIMAPCLR(r3, 0x4b68, &(0x7f0000000180)={0x4, 0x78, 0x7ff}) write$binfmt_elf64(r2, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"/1218], 0x4bf) r4 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000200)='/dev/dsp\x00', 0x882, 0x0) writev(r4, &(0x7f00000001c0)=[{&(0x7f00000002c0)='f', 0x1}], 0x1) r5 = dup3(r2, r4, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f00000007c0)=ANY=[]) getsockopt$inet_tcp_buf(r5, 0x6, 0x1c, &(0x7f0000000f40)=""/4096, &(0x7f0000000240)=0x1000) ioctl$TCSETXW(0xffffffffffffffff, 0x5435, &(0x7f00000000c0)={0x1ff, 0x0, [0xffff, 0x7, 0x9, 0x6, 0xffe0], 0x9}) ioctl$KDSKBSENT(r5, 0x4b49, &(0x7f0000000300)={0x7f, "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"}) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000280)=@assoc_value={0x0, 0x4}, &(0x7f0000000540)=0x8) [ 380.343298] FAULT_INJECTION: forcing a failure. [ 380.343298] name failslab, interval 1, probability 0, space 0, times 0 [ 380.355523] CPU: 0 PID: 353 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 380.363249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 380.372762] Call Trace: [ 380.375342] dump_stack+0x1b2/0x283 [ 380.378959] should_fail.cold+0x10a/0x154 [ 380.383112] should_failslab+0xd6/0x130 [ 380.387076] kmem_cache_alloc+0x40/0x3c0 [ 380.391210] __es_insert_extent+0x338/0x1360 [ 380.395771] ? __es_shrink+0x8c0/0x8c0 [ 380.399652] ? lock_acquire+0x170/0x3f0 [ 380.403622] ? ext4_es_insert_extent+0x11f/0x530 [ 380.408367] ext4_es_insert_extent+0x1b9/0x530 [ 380.412936] ? ext4_es_find_delayed_extent_range+0x930/0x930 [ 380.418717] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 380.424182] ? ext4_es_find_delayed_extent_range+0x646/0x930 [ 380.429987] ext4_ext_map_blocks+0x1e2c/0x6b10 [ 380.434559] ? __lock_acquire+0x5fc/0x3f20 [ 380.438838] ? __lock_acquire+0x5fc/0x3f20 [ 380.443061] ? mark_buffer_dirty+0x95/0x480 [ 380.447453] ? trace_hardirqs_on+0x10/0x10 [ 380.451673] ? __ext4_handle_dirty_metadata+0x120/0x480 [ 380.457020] ? ext4_find_delalloc_cluster+0x180/0x180 [ 380.462191] ? trace_hardirqs_on+0x10/0x10 [ 380.466411] ? ext4_mark_iloc_dirty+0x1815/0x2690 [ 380.471238] ? ext4_es_lookup_extent+0x321/0xac0 [ 380.475983] ? lock_acquire+0x170/0x3f0 [ 380.479940] ? lock_acquire+0x170/0x3f0 [ 380.483896] ? ext4_map_blocks+0x29f/0x1730 [ 380.488211] ext4_map_blocks+0xb19/0x1730 [ 380.492357] ? ext4_issue_zeroout+0x150/0x150 [ 380.496833] ? __ext4_new_inode+0x27c/0x4eb0 [ 380.501243] ext4_getblk+0x98/0x3f0 [ 380.504959] ? ext4_iomap_begin+0x7f0/0x7f0 [ 380.509268] ext4_bread+0x6c/0x1a0 [ 380.512819] ? ext4_getblk+0x3f0/0x3f0 [ 380.516694] ? dquot_initialize_needed+0x240/0x240 [ 380.521614] ext4_append+0x143/0x350 [ 380.525314] ext4_mkdir+0x4c9/0xbd0 [ 380.528932] ? ext4_init_dot_dotdot+0x5a0/0x5a0 [ 380.533583] ? security_inode_mkdir+0xca/0x100 [ 380.538170] vfs_mkdir+0x463/0x6e0 [ 380.542039] SyS_mkdirat+0x1fd/0x270 [ 380.545747] ? SyS_mknod+0x30/0x30 [ 380.549281] ? do_syscall_64+0x4c/0x640 [ 380.553323] ? SyS_mkdirat+0x270/0x270 [ 380.557213] do_syscall_64+0x1d5/0x640 [ 380.561090] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 380.566283] RIP: 0033:0x45d637 [ 380.569569] RSP: 002b:00007fe27cb4fa78 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 380.577275] RAX: ffffffffffffffda RBX: 00007fe27cb4fb10 RCX: 000000000045d637 [ 380.584532] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000040 13:15:54 executing program 4: r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2a0800, 0x0) getsockopt$ARPT_SO_GET_ENTRIES(r0, 0x0, 0x61, 0x0, 0x0) [ 380.591784] RBP: 00007fe27cb4fad0 R08: 0000000020000218 R09: 0000000000000000 [ 380.599035] R10: 0000000000010000 R11: 0000000000000213 R12: 0000000020000000 [ 380.606285] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 13:15:54 executing program 4: r0 = syz_open_dev$vim2m(&(0x7f0000000200)='/dev/video#\x00', 0x0, 0x2) ioctl$vim2m_VIDIOC_QUERYBUF(r0, 0xc0585609, &(0x7f0000000240)={0x0, 0x2, 0x4, 0x0, 0x0, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "9b61c580"}}) 13:15:54 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff}) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r2 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r2, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r2, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r2, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) 13:15:54 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000300)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0xe, &(0x7f0000000040)={&(0x7f0000000100)=@newlink={0x28, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r3}, [@IFLA_PROTO_DOWN={0x5, 0x27, 0x5}]}, 0x28}}, 0x0) 13:15:54 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x5e22, 0x0, @remote}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:54 executing program 5 (fault-call:0 fault-nth:50): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) [ 380.886961] FAULT_INJECTION: forcing a failure. [ 380.886961] name failslab, interval 1, probability 0, space 0, times 0 [ 380.899891] CPU: 1 PID: 393 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 380.907620] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 380.916980] Call Trace: [ 380.919571] dump_stack+0x1b2/0x283 [ 380.923189] should_fail.cold+0x10a/0x154 [ 380.927325] should_failslab+0xd6/0x130 [ 380.931319] __kmalloc+0x2c1/0x400 [ 380.934840] ? ext4_find_extent+0x879/0xbc0 [ 380.939234] ext4_find_extent+0x879/0xbc0 [ 380.943371] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 380.948906] ext4_ext_map_blocks+0x19a/0x6b10 [ 380.953393] ? __lock_acquire+0x5fc/0x3f20 [ 380.957652] ? mark_buffer_dirty+0x95/0x480 [ 380.961955] ? trace_hardirqs_on+0x10/0x10 [ 380.966171] ? __ext4_handle_dirty_metadata+0x120/0x480 [ 380.971516] ? ext4_find_delalloc_cluster+0x180/0x180 [ 380.976686] ? trace_hardirqs_on+0x10/0x10 [ 380.980900] ? ext4_mark_iloc_dirty+0x1815/0x2690 [ 380.985726] ? ext4_es_lookup_extent+0x321/0xac0 [ 380.990465] ? lock_acquire+0x170/0x3f0 [ 380.994423] ? lock_acquire+0x170/0x3f0 [ 380.998381] ? ext4_map_blocks+0x623/0x1730 [ 381.002700] ext4_map_blocks+0x675/0x1730 [ 381.006837] ? ext4_issue_zeroout+0x150/0x150 [ 381.011313] ? __ext4_new_inode+0x27c/0x4eb0 [ 381.015708] ext4_getblk+0x98/0x3f0 [ 381.019319] ? ext4_iomap_begin+0x7f0/0x7f0 [ 381.023638] ext4_bread+0x6c/0x1a0 [ 381.027163] ? ext4_getblk+0x3f0/0x3f0 [ 381.031119] ? dquot_initialize_needed+0x240/0x240 [ 381.036033] ext4_append+0x143/0x350 [ 381.039731] ext4_mkdir+0x4c9/0xbd0 [ 381.043690] ? ext4_init_dot_dotdot+0x5a0/0x5a0 [ 381.048341] ? security_inode_mkdir+0xca/0x100 [ 381.052906] vfs_mkdir+0x463/0x6e0 [ 381.056428] SyS_mkdirat+0x1fd/0x270 [ 381.060123] ? SyS_mknod+0x30/0x30 [ 381.063712] ? do_syscall_64+0x4c/0x640 [ 381.067668] ? SyS_mkdirat+0x270/0x270 [ 381.071542] do_syscall_64+0x1d5/0x640 [ 381.075473] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 381.080665] RIP: 0033:0x45d637 [ 381.083851] RSP: 002b:00007fe27cb4fa78 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 381.091548] RAX: ffffffffffffffda RBX: 00007fe27cb4fb10 RCX: 000000000045d637 [ 381.098895] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000040 [ 381.106249] RBP: 00007fe27cb4fad0 R08: 0000000020000218 R09: 0000000000000000 [ 381.113514] R10: 0000000000010000 R11: 0000000000000213 R12: 0000000020000000 [ 381.120787] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 13:15:54 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, 0x0, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:54 executing program 4: bpf$LINK_GET_NEXT_ID(0x2, &(0x7f0000000280)={0xc2}, 0x8) 13:15:54 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r0, 0x890b, &(0x7f0000000080)={'ip_vti0\x00', 0x0}) 13:15:54 executing program 3: r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000080)={[0x80000000]}, 0x8, 0x80000) r1 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000a00)='/dev/bsg\x00', 0x6b0082, 0x0) sendmsg$BATADV_CMD_GET_VLAN(r1, 0x0, 0x0) r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040)='ethtool\x00') r3 = socket$l2tp6(0xa, 0x2, 0x73) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'tunl0\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(r3, 0x8916, &(0x7f00000000c0)={@private2, 0x0, r4}) r5 = socket$l2tp6(0xa, 0x2, 0x73) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000080)={'batadv_slave_1\x00', 0x0}) openat$cgroup_devices(r0, &(0x7f00000015c0)='devices.deny\x00', 0x2, 0x0) ioctl$sock_inet6_SIOCSIFADDR(r5, 0x8916, &(0x7f00000000c0)={@private2, 0x0, r6}) r7 = socket$l2tp6(0xa, 0x2, 0x73) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000080)={'batadv_slave_1\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(r7, 0x8916, &(0x7f00000000c0)={@private2, 0x0, r8}) sendmsg$ETHTOOL_MSG_LINKINFO_SET(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c010000", @ANYRES16=r2, @ANYBLOB="000828bd7000ffdbdf25030000000c00018008000100", @ANYRES32=0x0, @ANYBLOB="050003000700000005000500020000007c0001800800030001000000140002006970766c616e310000000000000000001400020076657468305f746f5f626f6e640000001400020076657468315f766c616e00000000000008000100", @ANYRES32=r4, @ANYBLOB="08000100", @ANYRES32=r6, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="140002006d6163736563a5c6900a0000000000000500050000000000050003000600000060000180280003000200000008000100", @ANYRES32=r8, @ANYBLOB="14000200697036677265300000000000000000000800030001000000140002007767320000000000000000000000000008000100", @ANYRES32=0x0, @ANYBLOB="140002007465616d5f736c6176655f3100000000"], 0x11c}, 0x1, 0x0, 0x0, 0x8000001}, 0x20044040) sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r0, &(0x7f0000000140)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x24000}, 0xc, &(0x7f0000000100)={&(0x7f0000000240)={0x1350, r2, 0x0, 0x70bd2a, 0x25dfdbfd, {}, [@ETHTOOL_A_PRIVFLAGS_FLAGS={0x1324, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_MASK={0x1004, 0x5, "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"}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x814c}, @ETHTOOL_A_BITSET_BITS={0x170, 0x3, 0x0, 0x1, [{0x8, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, '\',\xe9\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7}, @ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, '\'(:\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '*\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'btrfs\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x19}]}, {0x50, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'btrfs\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x5}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xd, 0x2, '/[-&/#/{\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xeb3}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8}]}, {0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x3}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8000}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x10, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'btrfs\x00'}]}, {0x40, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x10000}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xa8}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x9d4}, @ETHTOOL_A_BITSET_BIT_NAME={0x11, 0x2, '\'].]\\\\^}@\']&\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'btrfs\x00'}]}, {0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'btrfs\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'btrfs\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x81}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x83a9}]}, {0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xfffffffc}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}]}, @ETHTOOL_A_BITSET_BITS={0x194, 0x3, 0x0, 0x1, [{0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x441}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xfd0}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7fffffff}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x6}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'btrfs\x00'}]}, {0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x7, 0x2, '{$\x00'}]}, {0x40, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'btrfs\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x25}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'btrfs\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'btrfs\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'btrfs\x00'}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, '-n/\x00'}]}, {0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x520}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xa7e7}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8001}]}, {0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'btrfs\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xf286}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xfff}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'btrfs\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1a9}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'btrfs\x00'}]}, {0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x400}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x295}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'btrfs\x00'}]}, {0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'btrfs\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'btrfs\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xe, 0x2, '][\xab}/-\\\'^\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'btrfs\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xbc}]}]}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x2}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x40}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv0\x00'}]}]}, 0x1350}, 0x1, 0x0, 0x0, 0x4000000}, 0x800) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) 13:15:54 executing program 5 (fault-call:0 fault-nth:51): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) [ 381.342568] FAULT_INJECTION: forcing a failure. [ 381.342568] name failslab, interval 1, probability 0, space 0, times 0 [ 381.355879] CPU: 0 PID: 416 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 381.363608] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 381.372958] Call Trace: [ 381.375639] dump_stack+0x1b2/0x283 [ 381.379275] should_fail.cold+0x10a/0x154 [ 381.383465] should_failslab+0xd6/0x130 [ 381.387464] __kmalloc+0x2c1/0x400 [ 381.391007] ? ext4_find_extent+0x879/0xbc0 [ 381.395392] ext4_find_extent+0x879/0xbc0 [ 381.399549] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 381.405009] ext4_ext_map_blocks+0x19a/0x6b10 [ 381.409516] ? __lock_acquire+0x5fc/0x3f20 [ 381.413776] ? mark_buffer_dirty+0x95/0x480 [ 381.418098] ? trace_hardirqs_on+0x10/0x10 [ 381.422337] ? __ext4_handle_dirty_metadata+0x120/0x480 [ 381.428137] ? ext4_find_delalloc_cluster+0x180/0x180 [ 381.433344] ? trace_hardirqs_on+0x10/0x10 [ 381.437581] ? ext4_mark_iloc_dirty+0x1815/0x2690 [ 381.442431] ? ext4_es_lookup_extent+0x321/0xac0 [ 381.447189] ? lock_acquire+0x170/0x3f0 [ 381.451258] ? lock_acquire+0x170/0x3f0 [ 381.455235] ? ext4_map_blocks+0x623/0x1730 [ 381.459568] ext4_map_blocks+0x675/0x1730 [ 381.463726] ? ext4_issue_zeroout+0x150/0x150 [ 381.468236] ? __ext4_new_inode+0x27c/0x4eb0 [ 381.472656] ext4_getblk+0x98/0x3f0 [ 381.476287] ? ext4_iomap_begin+0x7f0/0x7f0 [ 381.480620] ext4_bread+0x6c/0x1a0 [ 381.484162] ? ext4_getblk+0x3f0/0x3f0 [ 381.488057] ? dquot_initialize_needed+0x240/0x240 [ 381.493020] ext4_append+0x143/0x350 [ 381.496739] ext4_mkdir+0x4c9/0xbd0 [ 381.500381] ? ext4_init_dot_dotdot+0x5a0/0x5a0 [ 381.505055] ? security_inode_mkdir+0xca/0x100 [ 381.509641] vfs_mkdir+0x463/0x6e0 [ 381.513182] SyS_mkdirat+0x1fd/0x270 [ 381.516892] ? SyS_mknod+0x30/0x30 [ 381.520451] ? do_syscall_64+0x4c/0x640 [ 381.524425] ? SyS_mkdirat+0x270/0x270 [ 381.528321] do_syscall_64+0x1d5/0x640 [ 381.532217] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 381.537403] RIP: 0033:0x45d637 13:15:54 executing program 3: syz_mount_image$btrfs(&(0x7f0000000140)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x301057, &(0x7f00000007c0)=ANY=[]) r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0) ftruncate(r0, 0x208200) mmap$binder(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x1, 0x11, r0, 0x7) dup(r0) mmap$binder(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x8000) lsetxattr$trusted_overlay_origin(&(0x7f0000000080)='.\x00', &(0x7f00000000c0)='trusted.overlay.origin\x00', &(0x7f0000000100)='y\x00', 0x2, 0x2) 13:15:54 executing program 4: perf_event_open(&(0x7f0000001340)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$binderN(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000140)={0x34, 0x0, &(0x7f0000000080)=[@acquire_done, @increfs_done={0x40106308, 0x3}, @free_buffer], 0x0, 0x0, 0x0}) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0) 13:15:55 executing program 4: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7ffffffffffb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x0, &(0x7f0000000400)}, 0x10) socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0x3, &(0x7f0000000140)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x7fffffff, 0xb4, &(0x7f0000000340)=""/180, 0x0, 0x4, [], r2, 0x4, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000300)={0x0, 0x3}, 0x10}, 0x78) r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000100), 0x8) write$FUSE_DIRENTPLUS(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYRESDEC=r3, @ANYBLOB="90a3242d0531b1845dfb12fa2fe9ab6eb646d58d198c275ada135bc8e1e252545c122ffaef366cc05868e3", @ANYRES32, @ANYRES32=0x0, @ANYRESHEX, @ANYRES64, @ANYRES32=0x0, @ANYBLOB, @ANYRES32], 0x350) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='bbr\x00', 0x3) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xda9, 0x4) sendto$inet(r0, &(0x7f00000012c0)="20048a927f1f6588b927481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95c25a3a07e758044ab4ea6f7ae55d88fecf9221a750fbf746bec66ba", 0xfe6a, 0xe, 0x0, 0xfffffffffffffe2b) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x2, 0x10, 0xffffffffffffffff, 0x2050b000) [ 381.540612] RSP: 002b:00007fe27cb4fa78 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 381.548325] RAX: ffffffffffffffda RBX: 00007fe27cb4fb10 RCX: 000000000045d637 [ 381.555597] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000040 [ 381.562864] RBP: 00007fe27cb4fad0 R08: 0000000020000218 R09: 0000000000000000 [ 381.570133] R10: 0000000000010000 R11: 0000000000000213 R12: 0000000020000000 [ 381.577398] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 13:15:55 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, 0x0, 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) 13:15:55 executing program 3: ptrace$setopts(0x4200, 0x0, 0x80000001, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) 13:15:55 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000080)=""/34, 0x22) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:55 executing program 5 (fault-call:0 fault-nth:52): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) [ 381.781252] FAULT_INJECTION: forcing a failure. [ 381.781252] name failslab, interval 1, probability 0, space 0, times 0 [ 381.785768] IPVS: ftp: loaded support on port[0] = 21 [ 381.792755] CPU: 0 PID: 457 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 381.805376] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 381.814708] Call Trace: [ 381.817300] dump_stack+0x1b2/0x283 [ 381.820926] should_fail.cold+0x10a/0x154 [ 381.825054] should_failslab+0xd6/0x130 [ 381.829011] kmem_cache_alloc+0x40/0x3c0 [ 381.833059] __es_insert_extent+0x338/0x1360 [ 381.837463] ext4_es_insert_extent+0x1b9/0x530 [ 381.842050] ? ext4_es_find_delayed_extent_range+0x930/0x930 [ 381.847848] ext4_map_blocks+0x887/0x1730 [ 381.851994] ? ext4_issue_zeroout+0x150/0x150 [ 381.856571] ? __ext4_new_inode+0x27c/0x4eb0 [ 381.860961] ext4_getblk+0x98/0x3f0 [ 381.864567] ? ext4_iomap_begin+0x7f0/0x7f0 [ 381.868883] ext4_bread+0x6c/0x1a0 [ 381.872403] ? ext4_getblk+0x3f0/0x3f0 [ 381.876365] ? dquot_initialize_needed+0x240/0x240 [ 381.881290] ext4_append+0x143/0x350 [ 381.884995] ext4_mkdir+0x4c9/0xbd0 [ 381.888604] ? ext4_init_dot_dotdot+0x5a0/0x5a0 [ 381.893256] ? security_inode_mkdir+0xca/0x100 [ 381.897833] vfs_mkdir+0x463/0x6e0 [ 381.901356] SyS_mkdirat+0x1fd/0x270 [ 381.905050] ? SyS_mknod+0x30/0x30 [ 381.908571] ? do_syscall_64+0x4c/0x640 [ 381.912568] ? SyS_mkdirat+0x270/0x270 [ 381.916432] do_syscall_64+0x1d5/0x640 [ 381.920304] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 381.925475] RIP: 0033:0x45d637 [ 381.928644] RSP: 002b:00007fe27cb4fa78 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 381.936346] RAX: ffffffffffffffda RBX: 00007fe27cb4fb10 RCX: 000000000045d637 [ 381.943595] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000040 [ 381.950855] RBP: 00007fe27cb4fad0 R08: 0000000020000218 R09: 0000000000000000 [ 381.958101] R10: 0000000000010000 R11: 0000000000000213 R12: 0000000020000000 [ 381.965356] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 [ 382.053603] IPVS: ftp: loaded support on port[0] = 21 13:15:55 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, 0x0, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:55 executing program 4: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7ffffffffffb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x0, &(0x7f0000000400)}, 0x10) socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0x3, &(0x7f0000000140)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x7fffffff, 0xb4, &(0x7f0000000340)=""/180, 0x0, 0x4, [], r2, 0x4, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000300)={0x0, 0x3}, 0x10}, 0x78) r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000100), 0x8) write$FUSE_DIRENTPLUS(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYRESDEC=r3, @ANYBLOB="90a3242d0531b1845dfb12fa2fe9ab6eb646d58d198c275ada135bc8e1e252545c122ffaef366cc05868e3", @ANYRES32, @ANYRES32=0x0, @ANYRESHEX, @ANYRES64, @ANYRES32=0x0, @ANYBLOB, @ANYRES32], 0x350) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='bbr\x00', 0x3) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xda9, 0x4) sendto$inet(r0, &(0x7f00000012c0)="20048a927f1f6588b927481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95c25a3a07e758044ab4ea6f7ae55d88fecf9221a750fbf746bec66ba", 0xfe6a, 0xe, 0x0, 0xfffffffffffffe2b) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x2, 0x10, 0xffffffffffffffff, 0x2050b000) 13:15:55 executing program 3: r0 = getpid() ioprio_get$pid(0x2, r0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0, 0x0, 0x2}], 0x0, &(0x7f0000000240)=ANY=[@ANYRESDEC=r0, @ANYRES16=r0, @ANYBLOB="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", @ANYBLOB="163f5fad099096dadac418f967c99c59dbc7a9d086477ff15513c8ad3c23f7c91c1730b9e14407b7bf8676a5cdc7d516f2ee0b6eade249da8efdfa627450fee17ab0d5cfb75dd7415c5234a0bea789a70577ce9862dd8cad8549b496069719169336376f0e1be65301"]) 13:15:55 executing program 5 (fault-call:0 fault-nth:53): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:15:55 executing program 3: r0 = open(&(0x7f00000000c0)='./file0\x00', 0x80, 0x4) sendmsg$nl_route(r0, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x90000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)=@getrule={0x14, 0x22, 0x400, 0x70bd27, 0x25dfdbfb, {}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x40480a4) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x4000000000003, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0, 0x0, 0x3}], 0x2012, &(0x7f0000000080)=ANY=[@ANYRESOCT]) 13:15:55 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffff7, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0xfd, 0x60, 0x0, 0x906c109747511af3, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) [ 382.292137] FAULT_INJECTION: forcing a failure. [ 382.292137] name failslab, interval 1, probability 0, space 0, times 0 [ 382.320373] CPU: 1 PID: 526 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 382.328155] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 382.337529] Call Trace: [ 382.340125] dump_stack+0x1b2/0x283 [ 382.343850] should_fail.cold+0x10a/0x154 [ 382.348005] should_failslab+0xd6/0x130 [ 382.351997] __kmalloc_track_caller+0x2bc/0x400 [ 382.356918] ? strndup_user+0x5b/0xf0 [ 382.360848] memdup_user+0x22/0xa0 [ 382.364419] strndup_user+0x5b/0xf0 [ 382.368135] ? copy_mnt_ns+0xa30/0xa30 [ 382.372021] SyS_mount+0x39/0x120 [ 382.375459] ? copy_mnt_ns+0xa30/0xa30 [ 382.379331] do_syscall_64+0x1d5/0x640 [ 382.383222] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 382.388399] RIP: 0033:0x460c6a 13:15:55 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) sendmsg$AUDIT_MAKE_EQUIV(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x28, 0x3f7, 0x100, 0x70bd2b, 0x25dfdbfd, {0x7, 0x7, './file0', './file0'}, ["", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x800}, 0x10040040) [ 382.391586] RSP: 002b:00007fe27cb4fa78 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 382.399289] RAX: ffffffffffffffda RBX: 00007fe27cb4fb10 RCX: 0000000000460c6a [ 382.406575] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 00007fe27cb4fad0 [ 382.413831] RBP: 00007fe27cb4fad0 R08: 00007fe27cb4fb10 R09: 0000000020000000 [ 382.421101] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020000000 [ 382.428357] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 13:15:56 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair(0x8, 0xa, 0x7, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCSIFVLAN_DEL_VLAN_CMD(r0, 0x8983, &(0x7f0000001500)={0x1, 'vlan1\x00', {}, 0xd993}) sendmsg$unix(r1, &(0x7f00000001c0)={&(0x7f00000000c0)=@abs={0x1, 0x0, 0x4e21}, 0x6e, &(0x7f0000001440)=[{&(0x7f0000000140)="56ca27ef379328216aedb4ee512bbb15344f60d11014e73463911975f6d5eebc6c0f26", 0x23}, {&(0x7f00000015c0)="5c853b7db87c3ea2d2220f9b71c90e02d9f9ed41ec7d4f1a66110c6ff033b9cacc60bb7008f81b6895a259988597faf457dafdee61fcd2b08447dc9418a4c1b283", 0x41}, {&(0x7f0000000240)="fc5a6591415881e3a949592d496b2a26edeb407ea28782319ec18758c333f1c7bd3941819e37ff159f3c9d693d2ebba53a19af63f99d1162f33ea7504fd8744d67bb0a10c1638eac9f685ac96b7038407d845129d86a916057e12cd86b480b5db341568181b5912f3940fce5f76b70f976229f4adcd3541786f1f262eb571a60cb7b06426d64d5c81eb23dda56c9a59fbb886e264c5d48c91c49a7278682474ef149120650d2e133e5a6c4fa879762e28900d1099537681aad61eb85ecd2", 0xbe}, {&(0x7f0000000300)="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", 0x1000}, {&(0x7f0000001300)="991ca2de4bf1a42ac2ced7b2c832b5a111c18bee3e39e2562ffb6eaef506423c443ea8d8c0329dfb180d8eb8a99452e73e8b28a7d2d2e6b81833446081eb0d1676b200d826f89eb662a26fd4ea9f96f5408d46e88b15af2a12f4139fcdced75b956e5ec1455db34e75c15a2f448bcfc87f600d3baf5f6752bdc1", 0x7a}, {&(0x7f0000001380)="e2b6d5d55e53a88af99f31bea32b8e99e1dddabde3f21a23f6de7cedb1c4a87cb228c84e137fc5e2f6a92aac0d4fdc5bffea0a3c90d023f70cb480e5e5eb136b9b0c12e73862602e4058a126af2cd6344fcc4df2300a1dbde81bec6d3576225bab36770a9dd9d2c7f021958bcec345585fa054323ac1af1f1ede06f0cdf941ba4c2b92078ec0ba49b33a8e626fe0", 0x8e}], 0x6, 0x0, 0x0, 0x4000080}, 0x2000805) openat$zero(0xffffffffffffff9c, &(0x7f00000014c0)='/dev/zero\x00', 0x25a2c2, 0x0) 13:15:56 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, 0x0, 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) 13:15:56 executing program 4: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7ffffffffffb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x0, &(0x7f0000000400)}, 0x10) socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0x3, &(0x7f0000000140)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x7fffffff, 0xb4, &(0x7f0000000340)=""/180, 0x0, 0x4, [], r2, 0x4, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000300)={0x0, 0x3}, 0x10}, 0x78) r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000100), 0x8) write$FUSE_DIRENTPLUS(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYRESDEC=r3, @ANYBLOB="90a3242d0531b1845dfb12fa2fe9ab6eb646d58d198c275ada135bc8e1e252545c122ffaef366cc05868e3", @ANYRES32, @ANYRES32=0x0, @ANYRESHEX, @ANYRES64, @ANYRES32=0x0, @ANYBLOB, @ANYRES32], 0x350) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='bbr\x00', 0x3) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xda9, 0x4) sendto$inet(r0, &(0x7f00000012c0)="20048a927f1f6588b927481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95c25a3a07e758044ab4ea6f7ae55d88fecf9221a750fbf746bec66ba", 0xfe6a, 0xe, 0x0, 0xfffffffffffffe2b) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x2, 0x10, 0xffffffffffffffff, 0x2050b000) 13:15:56 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./bus\x00', 0x0, 0x2, &(0x7f0000001140)=[{&(0x7f0000000100)="5787d2c0522fce7ce03507fbc3bc4760282381035faa1c78280213ffe77e8f3fd0216633a8862a5c7b2d", 0xfffffffffffffe82, 0x10000000006}, {&(0x7f0000000140)="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", 0x1000, 0x776}], 0x0, &(0x7f0000001180)=ANY=[@ANYRES32]) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_RUN(r4, 0xae80, 0x0) r5 = creat(&(0x7f0000000080)='./bus\x00', 0x0) ftruncate(r5, 0x208200) ioctl$FS_IOC_GET_ENCRYPTION_KEY_STATUS(r5, 0xc080661a, &(0x7f0000000080)={@id={0x2, 0x0, @d='~\xb8\n\xf3\xf2N\xf0\x86rjL\xea:\x15L\xe0'}}) socket$key(0xf, 0x3, 0x2) 13:15:56 executing program 5 (fault-call:0 fault-nth:54): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) [ 382.781209] FAULT_INJECTION: forcing a failure. [ 382.781209] name failslab, interval 1, probability 0, space 0, times 0 [ 382.795237] CPU: 0 PID: 575 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 382.802973] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 382.812341] Call Trace: [ 382.814926] dump_stack+0x1b2/0x283 [ 382.818540] should_fail.cold+0x10a/0x154 [ 382.822678] should_failslab+0xd6/0x130 [ 382.826664] __kmalloc_track_caller+0x2bc/0x400 [ 382.831489] ? strndup_user+0x5b/0xf0 [ 382.835288] memdup_user+0x22/0xa0 [ 382.838810] strndup_user+0x5b/0xf0 [ 382.842419] ? copy_mnt_ns+0xa30/0xa30 [ 382.846301] SyS_mount+0x68/0x120 [ 382.849736] ? copy_mnt_ns+0xa30/0xa30 [ 382.853621] do_syscall_64+0x1d5/0x640 [ 382.857500] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 382.862696] RIP: 0033:0x460c6a [ 382.865869] RSP: 002b:00007fe27cb4fa78 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 382.873646] RAX: ffffffffffffffda RBX: 00007fe27cb4fb10 RCX: 0000000000460c6a [ 382.881180] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 00007fe27cb4fad0 [ 382.888431] RBP: 00007fe27cb4fad0 R08: 00007fe27cb4fb10 R09: 0000000020000000 [ 382.895784] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020000000 [ 382.903119] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 13:15:56 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, 0x0, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:56 executing program 4: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7ffffffffffb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x0, &(0x7f0000000400)}, 0x10) socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0x3, &(0x7f0000000140)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x7fffffff, 0xb4, &(0x7f0000000340)=""/180, 0x0, 0x4, [], r2, 0x4, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000300)={0x0, 0x3}, 0x10}, 0x78) r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000100), 0x8) write$FUSE_DIRENTPLUS(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYRESDEC=r3, @ANYBLOB="90a3242d0531b1845dfb12fa2fe9ab6eb646d58d198c275ada135bc8e1e252545c122ffaef366cc05868e3", @ANYRES32, @ANYRES32=0x0, @ANYRESHEX, @ANYRES64, @ANYRES32=0x0, @ANYBLOB, @ANYRES32], 0x350) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='bbr\x00', 0x3) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xda9, 0x4) sendto$inet(r0, &(0x7f00000012c0)="20048a927f1f6588b927481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95c25a3a07e758044ab4ea6f7ae55d88fecf9221a750fbf746bec66ba", 0xfe6a, 0xe, 0x0, 0xfffffffffffffe2b) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x2, 0x10, 0xffffffffffffffff, 0x2050b000) 13:15:56 executing program 3: r0 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-monitor\x00', 0x111800, 0x0) r1 = creat(&(0x7f0000000080)='./bus\x00', 0x0) ftruncate(r1, 0x208200) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000bc0)={0x0, ""/256, 0x0, 0x0, 0x0}) ioctl$BTRFS_IOC_START_SYNC(r0, 0x80089418, &(0x7f0000000dc0)=0x0) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r1, 0xc0c89425, &(0x7f0000000e00)={"1435d476a322836c96880e5735de853c", r2, r3, {0x40, 0x400}, {0x20, 0x2}, 0x1, [0x68b, 0x20, 0x7, 0x8, 0xfffffffffffffffd, 0x8, 0x1, 0x1000, 0x7, 0x100, 0x3, 0x9, 0x7, 0x80000000, 0xffff, 0x300000000]}) ioctl$IOCTL_STOP_ACCEL_DEV(r0, 0x40096101, &(0x7f0000000440)={{&(0x7f00000003c0)={'Accelerator1\x00', {&(0x7f0000000100)=@adf_str={@bank={'Bank', '5', 'InterruptCoalescingNumResponses\x00'}, {"4a65c2270eee20b7de6932eec942aa2cbbe4b9120b60c5735bd69ad0c276b62d178f658da8b76b6a498447d65f6f294d1c1dd56ffbac4c98475d339426d9cd3e"}, {&(0x7f0000000780)=@adf_str={@format={'Dc', '0', 'RingTx\x00'}, {"c3f98c571884e493e7f837b859208050392878626bb30650d1ea4baafb566b64effc5c1991343660b5ac747a5e9e6fbe271a33f2ee88280d4f62721fe229d3c2"}, {&(0x7f0000000480)=@adf_hex={@bank={'Bank', '0', 'InterruptCoalescingNumResponses\x00'}, {0x3}}}}}}}, {&(0x7f0000000340)={'GENERAL\x00', {&(0x7f0000000280)=@adf_dec={@bank={'Bank', '0', 'InterruptCoalescingEnabled\x00'}, {0x5}, {&(0x7f00000001c0)=@adf_str={@format={'Dc', '1', 'RingAsymTx\x00'}, {"35413c4b5581f4eb6857c1f98863f51ef3cadadc39176419b06be986c6f92103a54c0918ac5297d84eaaf2eaa95f942a89eff989cf7dc521cbc5f4fc7f195359"}, {&(0x7f0000000040)=@adf_hex={@normal='NumberDcInstances\x00', {0x800}, {&(0x7f00000006c0)=@adf_str={@format={'Cy', '0', 'RingRx\x00'}, {"b55c9f84c87bf7cdc071f6dead6507b52ed0673a29b4e05347a5d0060ef62c6a5e0ae36a62dd0aba6998f3bcd92a5a1c7b0bf937d1f17f64439777a027571b0a"}, {&(0x7f0000000600)=@adf_dec={@format={'Dc', '3', 'RingSymRx\x00'}, {0x6}}}}}}}}}}}}}}}, 0x4}) ioctl$IOCTL_STOP_ACCEL_DEV(r0, 0x40096101, &(0x7f0000000b80)={{&(0x7f0000000b00)={'KERNEL\x00', {&(0x7f0000000840)=@adf_dec={@bank={'Bank', '0', 'CoreAffinity\x00'}, {0xfffffffffffffff8}, {&(0x7f0000000540)=@adf_hex={@format={'Dc', '3', 'RingAsymTx\x00'}, {0xb839}}}}}, {&(0x7f0000000a80)={'Accelerator0\x00', {&(0x7f00000009c0)=@adf_dec={@bank={'Bank', '1', 'InterruptCoalescingTimerNs\x00'}, {0x2}, {&(0x7f0000000900)=@adf_str={@normal='NumberDcInstances\x00', {"f75acaf71ef7db11d1ab40aa730b8c253af886997cf59db7ed9e2c7d9775ef2f787ee918fc6a05c9ad3b31151b55949b0641417f43d7bb1afeb3a69d58e2354a"}}}}}}}}}, 0x1}) 13:15:56 executing program 5 (fault-call:0 fault-nth:55): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:15:56 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000004c0)={0x0, 0x0}, &(0x7f0000000500)=0xc) r1 = creat(&(0x7f0000000080)='./bus\x00', 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r3, &(0x7f00000002c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r4, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000700)=ANY=[@ANYBLOB="380000002496cec5d833288ce2862e793ea8e40f00ffffff03000100003c0005000000", @ANYRES32=r4, @ANYBLOB="00000000ffffffff00000000090001006866736300000000080002"], 0x38}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000005c0)=ANY=[@ANYBLOB="900000002c00270d00"/20, @ANYRES32=r4, @ANYBLOB="f7ff0000000000000e00000007000100667700005c00020058000400540001000b00010073696d706c650000280002800c0003007463696e6465780018000200"], 0x90}}, 0x0) setsockopt$inet6_IPV6_PKTINFO(r1, 0x29, 0x32, &(0x7f00000006c0)={@remote, r4}, 0x14) ftruncate(r1, 0x208200) dup(r1) r5 = syz_init_net_socket$rose(0xb, 0x5, 0x0) ioctl$sock_SIOCADDDLCI(r5, 0x8980, &(0x7f00000005c0)={'batadv0\x00', 0x1}) setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX(0xffffffffffffffff, 0x84, 0x6e, &(0x7f0000000600)=[@in={0x2, 0x4e24, @loopback}, @in={0x2, 0x4e22, @local}, @in={0x2, 0x4e23, @initdev={0xac, 0x1e, 0x1, 0x0}}, @in={0x2, 0x4e21, @remote}, @in6={0xa, 0x4e21, 0x7fff, @loopback}, @in6={0xa, 0x4e20, 0xfffffff8, @empty, 0x9}, @in6={0xa, 0x4e22, 0x3, @rand_addr=' \x01\x00', 0x9}, @in6={0xa, 0x4e24, 0x27800000, @ipv4={[], [], @private=0xa010100}, 0x4}, @in={0x2, 0x4e22, @private=0xa010100}], 0xc0) syz_mount_image$qnx6(&(0x7f0000000080)='qnx6\x00', &(0x7f00000000c0)='./file0\x00', 0x6, 0x4, &(0x7f0000000440)=[{&(0x7f0000000100)="2643d3dae589f6ba2c1841e8e17e268b673285167f3a4445fa97025e66dad8e898d32dd1c779c62f93a1c8c050f4315c0fa6340ad3e7c0329a1baac8ebecb34a1fba29a7aab0fa944646cbe14748efd4a93c1c0fb72c7768b10d66ed45b1a3d1da77f9430b4e040524fb", 0x6a, 0x6}, {&(0x7f0000000180)="edec34120ed3ad31f9acf47e89d0c79fcb245753b0e8fbdc042e632187ef748c96cef7db89d9f2991f37a54e7fe1524208724bdcc643c42b7c0b6e37dc274a8bd11f7a13319a95b0e4b9583fde1d292548e806db76757903e8d35bce5073aeace0cf307e861d68c36351199ea0", 0x6d, 0x1}, {&(0x7f0000000240)="6b5f5b53663aa60b71eacf72da5f9b65bb0571470da6aa034c9eba5d13df5cf7b5f4da4d96d6d756d7f4624e762791c863fba872d4560b5cf40e43748a2f5a48d1282324d89d5d703865b477a63e24deda707a4ffed46cf1c381da1840328dafe2b2f97ec639bb4e830b911c0b83f2dec7fb401be97952fbebdd0abb5f3642336c308c6808cef8feb84a09ee5ca595ff6252a216c6c7b96737333c363ac571885c8f08462a00ace4b528457b2f3f0c4082dc058be4fe7d80c06cae31ed026e47005973bd82112d2e89c0f687177e156d5f33d94d3ad3404cbc18be26e75b8badd6f678fc50ea38c0a0ebd32b96bf", 0xee, 0x249a}, {&(0x7f0000000340)="53bbfdc537508abb752409b9cd7a96a2c33932c20c75560ecf0809640bd45ea66f324e1185fe686e34f8e20adef37b645c20c3cbf2adf43d1843c204c1d877d063abd5c68c78f96a22ccfe5fc028b14af8e3316bf5fe2e11ee4f14ba6917d9407219042e4b676abd792f09adfb0d3793867d0b72143879adcc711818da022fc9ed32d5efe5687cd48127595cd15bd02177443c4075b57d78b22a246b6734d2d7a1e2dd1c2d6c0ec691e643df8617ad989342e26b459958488f2924f1f3eb9998004700a5d6e9bd3a17234c57c646c56f9416eb4dfdb99abe690b80236f57", 0xde, 0xff}], 0x200000, &(0x7f0000000540)=ANY=[@ANYBLOB="6274726673002c4f74726673002c6a74726673002c6274726673002cdd0a0000000000065f45584543af657569643e", @ANYRESDEC=r0, @ANYBLOB=',\x00']) 13:15:56 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) [ 383.199550] FAULT_INJECTION: forcing a failure. [ 383.199550] name failslab, interval 1, probability 0, space 0, times 0 [ 383.276183] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'. [ 383.312069] CPU: 1 PID: 593 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 383.319820] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 383.329605] Call Trace: [ 383.332188] dump_stack+0x1b2/0x283 [ 383.335805] should_fail.cold+0x10a/0x154 [ 383.339936] should_failslab+0xd6/0x130 [ 383.343979] kmem_cache_alloc_trace+0x29a/0x3d0 [ 383.348627] ? copy_mnt_ns+0xa30/0xa30 [ 383.352499] copy_mount_options+0x59/0x2f0 [ 383.356715] ? copy_mnt_ns+0xa30/0xa30 [ 383.360580] SyS_mount+0x84/0x120 [ 383.364040] ? copy_mnt_ns+0xa30/0xa30 [ 383.367911] do_syscall_64+0x1d5/0x640 [ 383.371794] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 383.377075] RIP: 0033:0x460c6a [ 383.380245] RSP: 002b:00007fe27cb4fa78 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 383.387934] RAX: ffffffffffffffda RBX: 00007fe27cb4fb10 RCX: 0000000000460c6a [ 383.395220] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 00007fe27cb4fad0 [ 383.402478] RBP: 00007fe27cb4fad0 R08: 00007fe27cb4fb10 R09: 0000000020000000 [ 383.409735] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020000000 [ 383.417028] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 13:15:56 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, 0x0, 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) 13:15:57 executing program 5 (fault-call:0 fault-nth:56): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:15:57 executing program 4: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89b1, &(0x7f0000000180)={'gre0\x00', 0x0}) [ 383.516886] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'. [ 383.538969] FAULT_INJECTION: forcing a failure. [ 383.538969] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 383.550892] CPU: 1 PID: 631 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 383.558602] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 383.567966] Call Trace: [ 383.570565] dump_stack+0x1b2/0x283 [ 383.574206] should_fail.cold+0x10a/0x154 [ 383.578380] __alloc_pages_nodemask+0x22c/0x2720 [ 383.583146] ? __lock_acquire+0x5fc/0x3f20 [ 383.587393] ? is_bpf_text_address+0xb8/0x150 [ 383.591892] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 383.596737] ? __kernel_text_address+0x9/0x30 [ 383.601236] ? trace_hardirqs_on+0x10/0x10 [ 383.605471] ? __save_stack_trace+0xa0/0x160 [ 383.609896] ? depot_save_stack+0x10d/0x3e3 13:15:57 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0, 0x0, 0x6}], 0x0, &(0x7f00000007c0)=ANY=[]) [ 383.614226] ? kasan_kmalloc+0x139/0x160 [ 383.618291] ? kasan_kmalloc+0xeb/0x160 [ 383.622271] cache_grow_begin+0x8f/0x420 [ 383.626378] cache_alloc_refill+0x273/0x350 [ 383.630706] kmem_cache_alloc+0x333/0x3c0 [ 383.634858] getname_flags+0xc8/0x550 [ 383.638665] user_path_at_empty+0x2a/0x50 [ 383.642814] do_mount+0x118/0x2a00 [ 383.646376] ? copy_mount_string+0x40/0x40 [ 383.650644] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 383.655670] ? kmem_cache_alloc_trace+0x36c/0x3d0 [ 383.660527] ? copy_mnt_ns+0xa30/0xa30 13:15:57 executing program 3: r0 = syz_mount_image$afs(&(0x7f0000000080)='afs\x00', &(0x7f00000000c0)='./file0\x00', 0x230, 0x0, &(0x7f0000000100), 0x402, &(0x7f0000000140)={[{@flock_strict='flock=strict'}], [{@obj_type={'obj_type', 0x3d, 'btrfs\x00'}}, {@subj_type={'subj_type'}}, {@smackfshat={'smackfshat', 0x3d, '-'}}, {@func={'func', 0x3d, 'FIRMWARE_CHECK'}}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@smackfsdef={'smackfsdef', 0x3d, '/'}}]}) ioctl$BTRFS_IOC_QUOTA_RESCAN(r0, 0x4040942c, &(0x7f00000001c0)={0x0, 0x5853, [0x1, 0xfffffffffffffeff, 0x0, 0x3, 0x9, 0x3bd]}) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) [ 383.664417] ? copy_mount_options+0x1fa/0x2f0 [ 383.668916] ? copy_mnt_ns+0xa30/0xa30 [ 383.672807] SyS_mount+0xa8/0x120 [ 383.676261] ? copy_mnt_ns+0xa30/0xa30 [ 383.680156] do_syscall_64+0x1d5/0x640 [ 383.684050] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 383.689237] RIP: 0033:0x460c6a [ 383.692425] RSP: 002b:00007fe27cb4fa78 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 383.700135] RAX: ffffffffffffffda RBX: 00007fe27cb4fb10 RCX: 0000000000460c6a [ 383.707404] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 00007fe27cb4fad0 13:15:57 executing program 4: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x4, &(0x7f0000000080)=@framed={{}, [@ldst={0x3, 0x3, 0x6}]}, &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) [ 383.714675] RBP: 00007fe27cb4fad0 R08: 00007fe27cb4fb10 R09: 0000000020000000 [ 383.721942] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020000000 [ 383.729214] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 13:15:57 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:57 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) 13:15:57 executing program 4: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f00000001c0)={'gre0\x00', &(0x7f0000000080)={'syztnl1\x00', 0x0, 0x0, 0x700, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @loopback, @dev}}}}) 13:15:57 executing program 5 (fault-call:0 fault-nth:57): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:15:57 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0xffffffffffffff5e, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x7, 0x0, 0x0, 0x1040811, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x2405c082, &(0x7f0000000380)={0xa, 0x4e20, 0xfffffffe, @mcast2}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:57 executing program 4: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8922, &(0x7f0000000180)={'gre0\x00', 0x0}) [ 384.245987] FAULT_INJECTION: forcing a failure. [ 384.245987] name failslab, interval 1, probability 0, space 0, times 0 [ 384.308832] CPU: 1 PID: 673 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 384.316582] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 384.325938] Call Trace: [ 384.328523] dump_stack+0x1b2/0x283 [ 384.332143] should_fail.cold+0x10a/0x154 [ 384.336300] should_failslab+0xd6/0x130 [ 384.340457] kmem_cache_alloc+0x28e/0x3c0 [ 384.344592] getname_flags+0xc8/0x550 [ 384.348375] user_path_at_empty+0x2a/0x50 [ 384.352512] do_mount+0x118/0x2a00 [ 384.356040] ? copy_mount_string+0x40/0x40 [ 384.360258] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 384.365254] ? kmem_cache_alloc_trace+0x36c/0x3d0 [ 384.370080] ? copy_mnt_ns+0xa30/0xa30 [ 384.373947] ? copy_mount_options+0x1fa/0x2f0 [ 384.378512] ? copy_mnt_ns+0xa30/0xa30 [ 384.382380] SyS_mount+0xa8/0x120 [ 384.385814] ? copy_mnt_ns+0xa30/0xa30 [ 384.389690] do_syscall_64+0x1d5/0x640 [ 384.393562] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 384.398827] RIP: 0033:0x460c6a 13:15:57 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(0xffffffffffffffff, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) 13:15:57 executing program 4: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x4, &(0x7f0000000080)=@framed={{}, [@ldst={0x5, 0x3, 0x6}]}, &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) 13:15:57 executing program 3: r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000080)='/dev/adsp1\x00', 0x40000, 0x0) ioctl$SNDCTL_DSP_SUBDIVIDE(r0, 0xc0045009, &(0x7f00000000c0)=0x1) r1 = open(&(0x7f0000000400)='./bus\x00', 0x14103e, 0x0) ioctl$SNAPSHOT_ATOMIC_RESTORE(r1, 0x3304) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, r1, 0x0) read(r1, &(0x7f0000000180)=""/19, 0xfffffe47) ioctl$SNDCTL_DSP_STEREO(r1, 0xc0045003, &(0x7f0000000000)=0x1) [ 384.401996] RSP: 002b:00007fe27cb4fa78 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 384.409682] RAX: ffffffffffffffda RBX: 00007fe27cb4fb10 RCX: 0000000000460c6a [ 384.417029] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 00007fe27cb4fad0 [ 384.424377] RBP: 00007fe27cb4fad0 R08: 00007fe27cb4fb10 R09: 0000000020000000 [ 384.431626] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020000000 [ 384.439054] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 13:15:58 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(0xffffffffffffffff, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0xfffe, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:58 executing program 4: r0 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$sock_timeval(r0, 0x1, 0x1, 0x0, &(0x7f0000000040)) 13:15:58 executing program 3: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000280)='/proc/timer_list\x00', 0x0, 0x0) ioctl$TIOCGSOFTCAR(r0, 0x5419, &(0x7f00000002c0)) r1 = syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x41, 0x95cb00000}, {0x0, 0xffffffffffffff8b}], 0xa4010, &(0x7f00000007c0)=ANY=[]) newfstatat(0xffffffffffffff9c, &(0x7f0000000440)='./file0\x00', &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x7000) chown(&(0x7f0000000400)='./file0\x00', r2, 0xffffffffffffffff) mount$9p_tcp(&(0x7f0000000080)='127.0.0.1\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='9p\x00', 0x4000, &(0x7f0000000140)={'trans=tcp,', {'port', 0x3d, 0x4e22}, 0x2c, {[], [{@euid_gt={'euid>', r2}}]}}) utimensat(r1, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000240)={{0x0, 0x2710}, {0x77359400}}, 0x100) newfstatat(0xffffffffffffff9c, &(0x7f0000001980)='./file0\x00', &(0x7f00000019c0)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x6000) chown(&(0x7f0000000400)='./file0\x00', r3, 0xffffffffffffffff) syz_mount_image$jffs2(&(0x7f0000000180)='jffs2\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x6, &(0x7f0000001780)=[{&(0x7f0000000480)="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", 0x1000, 0x6}, {&(0x7f0000000340)="e8598033c3236f3befb74d36312049e105991b8ba9510838", 0x18, 0xffffffff7fffffff}, {&(0x7f0000001480)="2de0f8bcc60309a49b2041d0e823c6e7f64a18899397e63c6b00b9aeb22c13196ae2224fddb92bafcb6a096d05131c1bb705c4e4f12216f15238b01c245d5d0a299b1e9f000beacbad11177d27d4d38ea4c1931f82a5dce08ddd3bd52707c3609fa708e77590b7ca4ad4af608e1ab7f6a2c2e4fbe5db1f673b0b6edc401d69de24726fd9af00b91d8734c3aba8", 0x8d, 0x2159}, {&(0x7f0000001540)="0d78c5542d4073457d73da5abe8f2df91e82c3d12087a6c18a", 0x19, 0x8991}, {&(0x7f0000001580)="136c5db0b26257f36fddaf54c67795ce925fa3184fea8dee046b05716e5ea857c5436910ff0b1ce3c052b4a2a68e961528ba022b91ee44e7a528d1e17050f414a25fd58aa3ee2cf2a4c9cfec2591fefa10ae8bff9c151cd1eeb361bf9d07ba4f39482021a95ae4612cc476f2daab7fb3379f227b85ad85323d7fdd9407eb71067e455fbd3e753878c0e5dccc1808ff6a29c4d203a3cbeadb339887a261dee2648b7c16c0fef00e02244da96b560001e1cc6f0e2f25e12c53a6e12bcb58491410c32acb44028a6965bfc8cbdec5dfe35f", 0xd0, 0xb7}, {&(0x7f0000001680)="24df803b28c1d9eb698f2ef6bd162573c6775b78e771d6f272c393e59528555a61ca149723520e0a82c17fe8d08ad64934fae6620a145e8f969c2e54330c1df6e812d5bd7920d56d3c58075de2f025c6a5af167db399525d13534e800d2fe61a1ed1a6f1a96f34d9db13fee8c275f930b6763851f44e3f709943a75ecd57e0983c00c9e2b3b4fd35db0702f8466fc29a626338a96ff15e2de81956d16a9530e772112bc5d5781fcb1ff9a3ae49d0f46d2d372bcb390bbae783df7b48e7c740b04151f85cc38a56ee625100e39b88b0df3d3c23c2a2aeca", 0xd7, 0x7}], 0x810, &(0x7f0000001840)={[{@compr_none='compr=none'}], [{@smackfstransmute={'smackfstransmute', 0x3d, 'port'}}, {@uid_gt={'uid>', r3}}, {@smackfsfloor={'smackfsfloor', 0x3d, 'btrfs\x00'}}, {@dont_hash='dont_hash'}, {@mask={'mask', 0x3d, 'MAY_WRITE'}}, {@smackfsdef={'smackfsdef', 0x3d, '9p\x00'}}, {@permit_directio='permit_directio'}, {@fowner_lt={'fowner<', r2}}]}) [ 384.908276] IPVS: ftp: loaded support on port[0] = 21 [ 384.954134] IPVS: ftp: loaded support on port[0] = 21 13:15:58 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:58 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$netlink(r0, &(0x7f0000001dc0)={0x0, 0x0, &(0x7f0000001c40)=[{0x0}, {0x0}, {&(0x7f0000001bc0)={0x10}, 0x10}], 0x3}, 0x0) 13:15:58 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000080)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0xe5}, {0x0}], 0x81b444, &(0x7f00000007c0)=ANY=[]) r0 = syz_mount_image$gfs2meta(&(0x7f00000000c0)='gfs2meta\x00', &(0x7f0000000100)='./file0\x00', 0x1, 0x0, &(0x7f0000000540), 0x114542e, &(0x7f0000000400)={[], [{@defcontext={'defcontext', 0x3d, 'staff_u'}}, {@func={'func', 0x3d, 'POLICY_CHECK'}}, {@smackfsroot={'smackfsroot', 0x3d, '('}}, {@obj_user={'obj_user', 0x3d, 'btrfs\x00'}}]}) openat(r0, &(0x7f0000000500)='./file0\x00', 0x111000, 0x20) 13:15:58 executing program 5 (fault-call:0 fault-nth:58): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) [ 385.054901] FAULT_INJECTION: forcing a failure. [ 385.054901] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 385.066748] CPU: 1 PID: 764 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 385.074460] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 385.083816] Call Trace: [ 385.086402] dump_stack+0x1b2/0x283 [ 385.090024] should_fail.cold+0x10a/0x154 [ 385.094176] __alloc_pages_nodemask+0x22c/0x2720 [ 385.098926] ? __lock_acquire+0x5fc/0x3f20 [ 385.103160] ? is_bpf_text_address+0xb8/0x150 [ 385.107780] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 385.112611] ? __kernel_text_address+0x9/0x30 [ 385.117099] ? trace_hardirqs_on+0x10/0x10 [ 385.121320] ? __save_stack_trace+0xa0/0x160 [ 385.125716] ? depot_save_stack+0x10d/0x3e3 [ 385.130122] ? kasan_kmalloc+0x139/0x160 [ 385.134184] ? kasan_kmalloc+0xeb/0x160 [ 385.138147] cache_grow_begin+0x8f/0x420 [ 385.142196] cache_alloc_refill+0x273/0x350 [ 385.146507] kmem_cache_alloc+0x333/0x3c0 [ 385.150657] getname_flags+0xc8/0x550 [ 385.154463] ? cache_alloc_refill+0x2fa/0x350 [ 385.158942] user_path_at_empty+0x2a/0x50 [ 385.163088] do_mount+0x118/0x2a00 [ 385.166615] ? do_raw_spin_unlock+0x164/0x220 [ 385.171107] ? copy_mount_string+0x40/0x40 [ 385.175339] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 385.180344] ? kmem_cache_alloc_trace+0x36c/0x3d0 [ 385.185177] ? copy_mnt_ns+0xa30/0xa30 [ 385.189056] ? copy_mount_options+0x1fa/0x2f0 [ 385.193586] ? copy_mnt_ns+0xa30/0xa30 [ 385.197457] SyS_mount+0xa8/0x120 [ 385.200894] ? copy_mnt_ns+0xa30/0xa30 [ 385.204775] do_syscall_64+0x1d5/0x640 [ 385.208651] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 385.213820] RIP: 0033:0x460c6a [ 385.216990] RSP: 002b:00007fe27cb4fa78 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 385.224678] RAX: ffffffffffffffda RBX: 00007fe27cb4fb10 RCX: 0000000000460c6a [ 385.231959] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 00007fe27cb4fad0 [ 385.239219] RBP: 00007fe27cb4fad0 R08: 00007fe27cb4fb10 R09: 0000000020000000 [ 385.246471] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020000000 13:15:58 executing program 4: syz_genetlink_get_family_id$team(&(0x7f0000000540)='team\x00') syz_open_dev$mouse(0x0, 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000001040)={0xe, 0x0, 0x0, 0x800, 0x0, 0x1}, 0x40) [ 385.253718] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 13:15:58 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000080)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) r0 = open(&(0x7f0000000400)='./bus\x00', 0x14103e, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, r0, 0x0) read(r0, &(0x7f0000000180)=""/19, 0xfffffe47) accept4(r0, 0x0, &(0x7f00000000c0), 0x800) 13:15:58 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(0xffffffffffffffff, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) 13:15:58 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) r1 = dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) openat$cgroup_procs(r1, &(0x7f0000000080)='cgroup.procs\x00', 0x2, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback, 0x4}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:58 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000340)={'gre0\x00', 0x0}) 13:15:58 executing program 3: r0 = bpf$ITER_CREATE(0x21, &(0x7f0000000200), 0x8) sendmsg$nl_route(r0, &(0x7f0000000d40)={&(0x7f0000000c00)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000d00)={&(0x7f0000000d80)=ANY=[@ANYBLOB="b4000000100000082dbd7000fedbdfd05e78f1722538604679d9402500000000", @ANYRES32=0x0, @ANYBLOB="00020200002000001400140076657468305f766c616e00000000000044001a8004001c002c000a80140007000000000000000000000000000000000014000700fc000000000000000000000000000000100002800c00018008001a0005000000180012800e00010077697265677561726400000004000280240012800b00010065727370616e00001400028008000600ac1414bb06000f0005000000"], 0xb4}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) syz_mount_image$nfs4(&(0x7f0000000080)='nfs4\x00', &(0x7f00000000c0)='./file0\x00', 0x96c, 0x5, &(0x7f00000004c0)=[{&(0x7f0000000100)="9f5fd5c75608a6a8557c105f17775afec7d62e9b9048218812abcbb2c12b7692705b5265bec08e1868af1d1ad8a3bc02df5e63cab268c337ce3bd4150fac01c3a3b7d985ccf45596fbe9590c352843c7c79123dce32e1933658333b05f6e79928e630b", 0x63}, {&(0x7f0000000240)="6a41ae5b2d7afe241d88235a201b6b956d283309251c589d0c009e9ce4a330f80ef8671fa88d7ce82a0df2e7f43bfb1be26210dfb966d01f1851ca6ca099c7435099b2ca3b1cf5104cb3d85a0ef1fe712bc53af24524fef4ff39b1bc6a7eaba196523e4de3d966938a04745c9f760ab7a442471c0aa0cc022ec5473063854a6e8bb01453011bb9ef45e5c1f097a5c4ef07a4342905835f5241748d0846c141912ee0", 0xa2, 0x55}, {&(0x7f0000000300)="4a0a7abf7a82b43a9a567a7cb4ca52cea3fb4ba8329926068fa26fae3e5794605f7855dc1722da667854a0b7f81036729d5c6014df2bae1e818a1db1555b62fae819fd0a0f10df6077b31f4d02e9e0735c088e09dd02bb3be4c731abce88775188635772d570e21e6f9a86c87551b047de09e20bc8dfb75103a494ed72a16cce69faa16c83789b54e3f5f66a67d56b7b2b87ae9cea3d4880455f0fe3982b1a1edbcf688801771712ed21193163b9", 0xae, 0xff}, {&(0x7f00000003c0)="e17a008c9ad140e9b8a7a4b31e0f71be98cf1b99f2bbe463cde8b5e3e377a7751999bdde4e1f9257705c850685565d8eaa45ff77a21922e266c2494549b5222982aad26489f6280a78613bd8d772aa29df5ee84c584f93c33fd6870e3c0afd241c38f53d18f1edce69dec41ce81005cf07e32e93d5655b5a99dc9e24b0858ec2617490d339fda91433ea6db14b2788c311bde15fe5075d010a50652a5c22876bde284de2badd4a0a688508d340cb08794eac401a976a8f178fb93781714a782ce5fdcdfe507bde14e7151adef71b75e17af5bb7d19ba67f702ca5253aea1abbb621b7418d24d95ee9ee1aebb5ffc58b7da0ea96b07718b0f", 0xf8, 0x9}, {&(0x7f0000000180)="25733f68203d4fecdd4f52b14ecc7192d0020796592aa7d2df869c4bd4ac2c08d8dd405c97821dc8d64bc224b1ffc6dab854d3008efd66715cc410f54c49d5ef0f59", 0x42, 0x28c}], 0xa2010, &(0x7f0000000540)={[{'y^'}], [{@hash='hash'}, {@defcontext={'defcontext', 0x3d, 'staff_u'}}, {@subj_type={'subj_type', 0x3d, '^#-'}}, {@audit='audit'}, {@subj_type={'subj_type', 0x3d, '\\\"&'}}, {@rootcontext={'rootcontext', 0x3d, 'staff_u'}}]}) r1 = open(&(0x7f0000000400)='./bus\x00', 0x14103e, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, r1, 0x0) read(r1, &(0x7f0000000180)=""/19, 0xfffffe47) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000c40)={0x6}) syz_mount_image$hfs(&(0x7f0000000000)='hfs\x00', &(0x7f0000000040)='./file0\x00', 0x400, 0x6, &(0x7f0000000a40)=[{&(0x7f00000005c0)="0b4b15ca24a4dfd6c10635a2ca97852f18ad64d1b006daf10e08f11bef59eefeef77080f14989325dfa5399d85f761b150b143762ebd23c9936305126cd2741c61df1cc75c63be810c33163bc11abb2d094ba76fb79862b7949ba24054398fe8dc97e307c3ce7ad561940dc531958fff33bb5934bd17ac29e4d4a69b84cccc13a048803db85725c75cbbd336c6ff57884301d370c09b3d0f5bfeb4e3e3262981903894787d4dc0ed02fd7afe945842e5fe901eabb7b2556d5cd71d5468a29972e7816b97fef7ea2b5cb8925b2a0ac34721f0d5c1310a6e5567deff0427e1d19e269184d3e864e8036b5f2280a001", 0xee, 0x7}, {&(0x7f00000006c0)="1836e1ac6cbfcb80e64e85ea9958528320eda2e737f6f47a995b8a2de2d323062fa203f3f9fb72babb855399f77280b9c10ca9f8f13784f154b44998cb152cbf9a26568753350dd783a075e53b1ff4c15646e6db514464f7732f7627b24446247fea2a5f3481f9f59f65c5968f547bb082a0db0640dcbdd7bfc8a77796ce65790e47a7ba5e620b16ac74a3e749d6382cd88c8da4d98f23b43f33c3166a9ad4eb5903e02a7830eb091495462725b08ed0bcf4f4e969a71fea55b2380140898d827090e56041669a3ce3441f", 0xcb, 0x1f}, {&(0x7f00000007c0)="636e777e107478f984cd40432bffc3099d152ade47d29a92e31486c1f7e527aa3ade8d018e532e633786d11cbd54f85c50c2160990cda13a2592dd2e419393fe743a90240a16284dcd793fcbf0e5d71aaa6f46d45ded63aa0b3066eae77de74419d2bdb20172ba53675a800b2e8225cc", 0x70, 0x100000001}, {&(0x7f0000000840)="4d784076c4e943ee4a263452f5d7925fe6ce373a5f1ff484738e2dbf613bc23c7c69ea0355ac3095d74b917acf7e73fa6005818a74afe3f75ccb16c5beb71e7fa5e3fe0d33264df4fce802785ec5552bc004f64fa220f1a9ebfbf6295c95a33232f738aadb0f1441b3f106c4429e91cf956727327488908ca9fc597a3d8fcfe4484c5cfd46f1796d079730cbe378db8e84ff84235129fb16fef3434a2415c07ac2859769f35c7edcd4dc2a35d0169c6554d421fe0640255e1ec1b42a0fe367f8af041fdcab56f6d74f", 0xc9, 0xfff}, {&(0x7f0000000940)="8f83aff06b1bc8a332be7dfeaab8647837b61c4290ad06995097a40f547fcd6170583ce4c5431ef99e84a0994bd83a43e5f431ee85ee829021ad0a4fb0293f19917658705603bacb0d", 0x49, 0x9}, {&(0x7f00000009c0)="ef25dd4757eb79ed28894a8e1d966083988d0648a62b08910716ce6975e67a1ac68d346ca11a7b4d20cb0e568334ac657d2464bb7a8302d46ba3ee43007420815a3c367e71360ee36f26a08347e879567623d43b44953ba9906b8ad82ee54a46eac80e7ac96c4981bb", 0x69, 0x9}], 0x19a0800, &(0x7f0000000b00)={[{@codepage={'codepage', 0x3d, 'cp865'}}], [{@rootcontext={'rootcontext', 0x3d, 'unconfined_u'}}, {@fowner_gt={'fowner>', 0xee01}}, {@rootcontext={'rootcontext', 0x3d, 'user_u'}}, {@pcr={'pcr', 0x3d, 0x3b}}, {@euid_gt={'euid>', 0xee00}}, {@uid_gt={'uid>', 0xffffffffffffffff}}, {@smackfsdef={'smackfsdef'}}, {@obj_role={'obj_role', 0x3d, 'defcontext'}}]}) syz_mount_image$romfs(&(0x7f0000000c80)='romfs\x00', 0xffffffffffffffff, 0x7, 0xa, &(0x7f0000001440)=[{&(0x7f0000000e40)="b0764c29b29b354694613af2c9e6ac048b520b7667a0de1d7b17c7f47b57d0930191c1399bfaf2fc3e7f4985243df9c6c12b1c71643eb054b8dc94a824c69a8077f4d7f4c6907f62f50bb1775d5f984303a404db823af51302588e83456e89fc26aa4a8a49ca", 0x66, 0xffff}, {&(0x7f0000000ec0)="4837fb2888e92b3902305d53bfddece17d86ecea596da386af7795f6b1361bcef9c6a643fafdfda5444f28def001a657856753cb4a878ffe18c2e21741e8531b6e3989218c1f5f644a7a83d6be694f9c", 0x50, 0x80}, {&(0x7f0000000f40)="66d714621ea521e807c6e0d74993dc1a1ba61c496efe74586d8d434752fe2c59a249e89c345f207d158fedde95d1a88e03adbc80fcd4ad53b230c7241ffa5e1fde9c77182885817ca2bcd335ecd8a722ba5c", 0x52, 0x3f}, {&(0x7f0000000fc0)="144cc6d8b1258bd9a198843808babeef3f633c3373dae83d2b568bc86f77b6accaa528f119f0f17fc713bbcbb3e749089aff546045086ba132f90073ca743a4d4c09e8a8", 0x44, 0x10000}, {&(0x7f0000001040)="870b982dd3def09d01ade4ed4002928c285974b8e3d0be23399af3b90d3913a28016c44c177b7c868ce36c7de5929d4acdac78414e495666f930a059cce1761eb9bc50d1555f467587b9fe186e3aa1ed4cd97a0064c4f9e1b5a417eb3e782f89100ab9f12efa45a22f747827a2959ee00ef01f80ecc4ba38f3285acc2556ec6021940c918dd75a", 0x87, 0x8}, {&(0x7f0000001100)="3dac2933608a68e77c084ca62bd8dcc1d3ea048272b9a702c23761c3df2bef816c5190091b6646e4af83d4ba1489a0e0d8c6c5b0736e74594cdd59286607d3d4624da0f7fc7adfd66908ea5775acb2e9e1a19f0908f18a72f6502f64de28c736227c293472bb36349bf4a7435e6a18a505ff1d80b0b4ede80623b5457dcf2b3171d71849443427c6db2e1c4b32092a39c854b844cbd8f7942477ffce431780a7ba8b97570b8bdd96dd71923e5bc9dd7dd5a0efd288fb7b435c59bf87b4e6c855de9dc904469a9cee7a0abfdd9915bdbf83d8e87462632c9ec62a3f0864f4d720f6b575fb63", 0xe5, 0x4}, {&(0x7f0000000cc0)="26ae43718f658651eb1d7e91080a60d1195c727cdc54b3eddf94208cef1c09b46891183054", 0x25, 0x7}, {&(0x7f0000001200)="32f78b2365942879e4fcca2e81d1107d54290e7625fdd1116a741771e065fa23ffca2af00382881439465409f8c56ca1b2ee2741c49b67f35177dd8dd6924c88656db5a6d87281603c93d1662d27ebe992d4eda77c07ae48b3c538fd695f94dd57555039fb32c92719fc526194fd7bc5992baf8ee61554633a2b950889a7715b39b6175a768994f2a9400a650f7100e8ad15687f9656d34b5ba1d49ff20ae03ddbe5dd337154ca50484ada3c1e92e423e2dae1135b14c49edd65a862311a798c8b7bb7a4cada17504cab325c", 0xcc}, {&(0x7f0000001300)="32c2712eebc276cb3a487aa2113c37a0a4a30c41e1bc5c11ff933966d4f7013b012be53ee99a951004be34f3670177d607cdd7ccba1da050af4c2544e3ade79ca20fa30d5702f406841fb0cc551f839e869ec89370f2796437f2cc29b55bf2f385bd28d974745bdb619a859dc7c84f15d006d981a49f7bab3d173e7ac990b214e07fb533544a41154420d52aae20f497ccd36c891a9944ce5464b04343612b1065c39c12a2eddeadc5cf0956c7a3f2531596b9eab6b1da239283687eda63240d8d062972", 0xc4, 0x1d0}, {&(0x7f0000001400)="dd7947a85d8df6c784d6475a283f7b3182293b9e8afacf5065ca8bf00b7aea47971f5ee286463675f6afec9659e055bba7c6eaadf514e0a404", 0x39, 0x1}], 0x30990b8, &(0x7f0000001540)={[{}, {}, {'--[\\'}, {'^#-'}, {}]}) 13:15:58 executing program 4: r0 = epoll_create(0x10000000) epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, 0xffffffffffffffff, &(0x7f0000000280)) 13:15:59 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) r0 = open(&(0x7f0000000400)='./bus\x00', 0x14103e, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, r0, 0x0) read(r0, &(0x7f0000000180)=""/19, 0xfffffe47) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmmsg(r0, &(0x7f0000007b40)=[{{0x0, 0x0, &(0x7f0000001280)=[{&(0x7f0000000080)="71a668e6b0565e0f1054ddd89767bf22cc6705be2dc7e65414b4e74d0f415279857f5e143a0270c2c2a27929a05fa046713eda44c8", 0x35}, {&(0x7f00000000c0)="1c26dfff098d4976e80bd2e504595493d304e6a725e1a6072e84ec295c9aad5850c106840806638d09ba5ada5a01280864ae9bc995963342dfb9327b5af408bca802791d43729e2634d7be4f52320b393d56a1ce8d52e38dcb11aaa36c86cb5f7eb11810a0a0d41671c585c29d3d6904d0", 0x71}, {&(0x7f0000000140)="11ff8d41abbc154f9c9ff1c97f4664b072fe80ab51b5947afa0f639aef150301a18f458a46f60499f1bfa8ad84e0d872fa1810ed479f53c86d343547db6dcee7b99d24e802bc983e8c084b0dde4996b75095073daabb9c37522ed39ed899395bb15c037b6ceb3802b244ed36f76a9354ff7bee49e4b7a0bf6716a7be4da0b81e7bf09afd8e2f18caf38d4e04d318a6c440", 0x91}, {&(0x7f0000000240)="690a9fd95cc0beb4969ed2e7c6d78784fa475c98e8", 0x15}, {&(0x7f0000000280)="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", 0x1000}], 0x5, &(0x7f0000001300)=[{0xc8, 0x1, 0x1, "727a43e81c85a88470b90e574e4c47f5eafa5d108371de820da38f62127ff4d12914a8efdde8e34a5087f485e9629a1021519e9e40ba4b8eee1b29c45a42fe7f640f9090aab3bee3fa03f12db41678aa87706f01f65c053b8205a7766440dc28bc39b6646a6b73177122100edbf71feab6e3d48dc402b6ccc7d87479f30869777b535e1413c1c7d92972161927f4c2f81225d4b220ea53c3ba290ccf7faa39cedcdaaf0938739c2305f6781e6d1e8b1f99"}, {0x80, 0x1e, 0x3f, "d933a4f00df6185b2b5ff09b71881aaaf48721ef87ffa15109a003c6400a40ba24bc02d5f05b004c03a57ebf5b4faf63b85b6b22d46990363af09d25714cf05a852ff56a79689b787abfa59e26ddefe67fb11b0d0feb4498300c4a0031915ff3b9e663d4c07471e22667"}, {0xd0, 0x107, 0x8, "469b1f822ee7e0bc9fd3f595ee60cd14992cf142b76c8feabe04b84e27a3693fdcb9e59a129cafd2734aceb2b6b084bfdc4f77650aa94bcf3c0bcb9a98ab186391657883d2815e9b117280c443908338142eb2f0f5d884d82c50f3832de53c3f40728b03e8e4ff79fbb8af0708a50516b415fc228db0dcba5bc94148f0a4ccf49a4504293e1f0fd0051aaae658770b2c599341d15449437ce168e984e58a9eba27e0bb3684373cdffee9c527c8bb47949f93d41f3ab3b07ca43472eb"}, {0x1010, 0x10b, 0x6d40, "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"}, {0xc8, 0x88, 0x8, "02472a996755b2533645365c44418d25e3f79bdd0c0213fa7092eae67986abc7e2e1c9a7ee8e51a337ee0f92bdb716a186eebb41c45a41d016dc82cda739d5212f9f5755c20948292c045b3c9e5edcc4c57a7f2e15e975edd4ddddaa780941d1f5721fce063da115de05c038194d1e793122dc422427c0170bc612087650083e2aed569715bc111e881e335513c19459a7c1b697e825938045f917dcf1cfd31292206eaeb4d910f592647eced080484d179e"}, {0x100, 0x118, 0x7, "b896348264d34e544f84c798588ce6b374feaa1d0b051fc278f90c5210a4cf59f69350166a1be0d6cb27adc544593b6ee9c363a3fa32a3e532f52b75a957de893fcbd90a211dfcf319f9f63b38e8ca7d234379ce807bee43db989b46d3a0f378bc946c4f043185f0b1f733a7c995d74127a15294861ab3193d0692f721142dd57ded3b0f7f920f40bf9c10f594573a2059e38eebedce86845fafa475c5cb265f3f34a277aea3efe10d86a9d9f0fdbb3565eb6b23a12943f4e6bdf99396364e485444a96974879dc06177491b5d76d8979bc49c009945f92fe9ca3040dd6b5ca43ca08b32782f505e74f9250e7fc3e078"}], 0x13f0}}, {{&(0x7f0000002700)=@nfc={0x27, 0x0, 0x0, 0x5}, 0x80, &(0x7f0000002ac0)=[{&(0x7f0000002780)="362babbba10511b9fd8c57bd479fb0cd50d95697ab62c4c98657226d0aa1747aed9c8d4a93026105a43bbdc8080fc62381488ec69bcccceffea32c1c3bbcea2c89c7c716d88db1ced6ecfd4f81a80f43b7778372078da35f1f09ccc337809055029e7dae009d915e17f77d61a20e37ecd0084a778debe619adc74017fd9417f91f6d47edbd3ad2a18da3f2be4fbdf4ce9e53691a916f5d9591331868", 0x9c}, {&(0x7f0000002840)="02dabbfb276ba1cc5a856e4981fce421801a", 0x12}, {&(0x7f0000002880)="34bc11b34e056bd0318237613082a5c90bff6be630582fc9621aa3475ff8e0447fd171e5cc9ff19abc3931f45c4538a8fa03186550acf75e6647eae7f9eb5d6d59810ea5dd395dfe8acf0a3ca6aad467821c205b95d4413b254d17b0a8fc3db331f10e50e3ebe3eed304b0ce556f0dacab6df71e71480db9563034f4c0e7b4693c63d57497c4a96c7ce120bbb6e6c75c961b1519079ddd2817f4e10deb478bb8cf6ec13433a93a519f066fa89c435e36e60638c06b24288f3b318de265a76ed6a493eea8c833d7542cc9bcfd302943b961514e8a13df6a254af3c08ca3774bd12d8814dc", 0xe4}, {&(0x7f0000002980)="e5d848b32f06861de63dd5e82c160d215b44857559d67bae73e3ff0d1c5fb7f43a33f417c94aaf441c0bd60ea53a68b8840d38152f8245b07a46f93b7a65c3686f89ff2b98dbb633009e62605dd39a2676fa6bdda7b9286c98e72fa59014f49cd86cedf0c3d8f7a693d344ed3246067d52e548c99ed2dcf81dbbc7c68acf1d72029c9c96330e1fd4d54ff68e0ee928e412d79e34f1abc1cbb2e84bf82996a199", 0xa0}, {&(0x7f0000002a40)="55437383c82d360f4b9db2c7483bd5a4a9c5d0e64f955f7980c77e009e037fb091173997032cbde028bfc08a6782f04fd3bf81f3db0999abcfbe178d913230afac7b7ef3f102d9069892e386fbe063f2", 0x50}], 0x5, &(0x7f0000002b40)=[{0x110, 0x0, 0x6, "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"}], 0x110}}, {{&(0x7f0000002c80)=@ll={0x11, 0x5, 0x0, 0x1, 0x3, 0x6, @random="139ac3420b91"}, 0x80, &(0x7f0000002d40)=[{&(0x7f0000002d00)="8a9402119a28fd9028af05c1de2aaca1a02b5d", 0x13}], 0x1, &(0x7f0000002d80)=[{0x30, 0x1, 0x5, "2658eb30445f05671011154d8823567c039bd8a0caa9d9b1d5ace89b60f6"}, {0xc0, 0x103, 0x0, "d44f092b0f9a58270efeb247479ac6664533112933d847d0e9e2f399a88cd457b8ba74d0e6b25d8b32a4f036e4e7ea4c2b3fd1f2ebfd58a212ba4b6e70d448d9c0ac5fee02b7071eaff5d550be0c29b04cb8a37d52f65b91c63d72666ceca4db1045d564c5669d76fb2f5462ab1bd57eb32b67c10999780aa4330fc2d960e6cb6e59e94c9a2badda1a348fb650d9ba91caeafb4187d26fba60e3a0917438b7a817f02a60933db14d2df89fc9c8"}, {0x90, 0x88, 0x9, "63c548880fe8c32bdb7ba2940ce13ebbe0d315fc8402eafcbd121b8a0f5b89fa6bb92dbd90a2ba36e53534116804d5db9302ac54cb94374c42adcf01f5d3b663a3aa44977e82ffc92305413b0cfa3f4db4bc1d6fe1cb428b4c555e472d9ff0d05f5cf0ce0b231b753f5e995dc03ba9366ce4c6fb89e2126cbc2a4c"}], 0x180}}, {{&(0x7f0000002f00)=@pppol2tp={0x18, 0x1, {0x0, r1, {0x2, 0x4e21, @loopback}, 0x1, 0x0, 0x2}}, 0x80, &(0x7f0000003400)=[{&(0x7f0000002f80)="b70680879025b20a23fa5aaf0cc321b1b3aa5fd9aead060337c8c4cf9f2cd16cde30476feca31be4df1944dcf75dbd3df35b070889f5f73002596b4ac8af55c1f78884b990eee3a0458c7006d7e8e24c0fd8f1da243dbe72d4a8fdbab822d74555fad5910085844c60802465eff2edc92aae6fc68b788d370aa20825", 0x7c}, {&(0x7f0000003000)="1086ec533c72de74a5f3085ea34768903fceb4500cea8f9fcd8c18e5ef66bbea88f06ffdab8db6adaa194642d4b5e465989f1b52d849bf2e090ac9d2b4fb5b2026574b91708bba62da958dd1b65fc4c42c033bc75dc5cff740e9e77a7dce409a6a692e55a6b4d04def5029b9eeccd291d33571f8f59680a796027d9c7560ce308dbfb625bdf761e240836732c015242b3c54ffd7696983be5b97f852126a819408631135917d9fe3eaea2214f00f711ebd6937d25a2938128cb8", 0xba}, {&(0x7f00000030c0)="89564bc0f5", 0x5}, {&(0x7f0000003100)="fd5e45b63d2c0ab8036c2ca7b852194af602544f8cea67804bad4da7b3ac4fed0a79a0698ea927b1e620e4e0dece0479c510475dac464b93bfd93f88f5d88989fa1a2fde11c434d310e7e241e3f6a6b31f1370e9deabb0769372c9247c80017e048a5868e9f7616379d95e64886bd3c2f416c5966d4521bd7649f147d75afc26ed454430f30687e5cf856a7cb052b64b9e494b0595cc7207ea702dc901dfcfc90a1a9b8b77352a284ccf356d20cdd200ea4b4fd0ee194c", 0xb7}, {&(0x7f00000031c0)="df8c138225b51206", 0x8}, {&(0x7f0000003200)="8ec9f1d4a8fbd07e8f1682aec66c065bf8a7915972e566e58b6bbb2f650da06e04b47c5f4cc76ce1052b2d3ea14533f20342fee682b0c6c1015993c4653aae7b5a38b70a077baabea4f32852f648e782b90d1dba0ce8e4ae38d9aa70a90c784ae79a74446d5e00511285fd9b107cd7315379c6ddb78cc311253df11ce0f42777f12342f07d1632e4fce0127ef24b31387c0ffd8265a9d9ca67af36a102b3b5754eb1885f76bed8fc6d5a26bcc3fd2d10e7b21986501eb45f5dfdd3487862251692ab11b063131cf54621879e7b7d4ed3fc2b73868996f06803", 0xd9}, {&(0x7f0000003300)="12ef3e0df36fba6f7baffb7d52ebb958a9e728a45c2591e3365825dd1e795fb698f6691730ed01a395", 0x29}, {&(0x7f0000003340)="655a6e75410f6c3cac42c54df5ce531c1000a23d11a002942daf06551e9ee8a1ade8318b26a5f688e88182bcf9b6319b37abe0fd8c90965cacf20fd07855e538baf7f0146cfc3c2c17cf99853a953b61e362ea8a3536cb4fb5792342e5483de386a2432d2e04a4709cfa04f5d875c11287a4039c7ffa67fa46448838fc75f5fbe47f67292e6dad4e69f6ad983c3d0c2d5db3dd71c4a8885d4235136aaf0d612ce4b2a638f65240a0", 0xa8}], 0x8, &(0x7f0000003480)=[{0x70, 0x101, 0x0, "2c8bd7389898396b31fd8263d7c3e490d60e6c61256beaefeb09f47ed01ca2cd598e1308cf3c5b68cb7ae70fb7ad3d99fccde9be6a032c399f2b7c7fd1f044b112d11f05bf9f6a429be191b0e06d767c2e64ae39ee644b94dd78d9a48c"}, {0x88, 0x100, 0x40, "7fa5d25b9eeb881635ce0634997783e7a0c87076f24b26b21c2cb311ce52f167d7ff6d37962c4d5d7fb0a86b2217af0468675d7009f676dfd5caf609a441810a13cb786611b0f63c92c4f646d395274b2ec84f41d2a83bce72a825185a51bc4456c73db4e2a4e2b2ed6b3c442b0ae8c336"}, {0x10, 0x6}, {0x1010, 0x6, 0x4, "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"}, {0x10, 0x10d, 0x6}, {0xe0, 0x10e, 0x1, "f063a95b69f418207b3c4bde940d2cb9da118c021efd0fd60b9a59b712269ffa7b156daefe15fe4657ca3fa94c60b4e375bdae3d0c0c9c73c50f670cbbc5d8ff380581bbc1e1b489c5072fe5c9fd540048ec453465606a85ec5574fd14082d861087974798afb3b76f2e01ca7091c90a0b55315e0784bcd54e91da90beb6005a2af6cb2f34b9b99f510b61d0da82f0324f7521131993af7dfd6f70aef709cb226283d296190635cf6abb584363b436c28b8b254d40951b6769650c135b721d41a36e8bef45abdb05a7fe6079"}, {0x1010, 0x10e, 0x7fffffff, "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"}, {0x20, 0x101, 0x3f, "62e03d9d453ae9cbe7"}], 0x2238}}, {{&(0x7f00000056c0)=@un=@abs={0x0, 0x0, 0x4e21}, 0x80, &(0x7f00000057c0)=[{&(0x7f0000005740)="dddaaef0b528238328f5e7623c8a49d8a6aec4463ed2f842b428a8353412314c2f1746f7d022ffdb788e388f69b4d2b947dc2c4ea9fd2c91dd5339a0c06f9e66b251fc880d1349e7d15f40d7d7e6da0ff5d1f73cf8fd6a5f4f638a80d00d38253baf3b7e616dd990ac", 0x69}], 0x1, &(0x7f0000005800)=[{0xf0, 0x104, 0x4000000, "650d48a61596acc4d3cb7fff42e68d791ef3446cdc54e9e8fc0990e9632a3db482626348b5ed06ac38e481d28e6741241de5e6a24eff3705b70ab49b138e5786ec740173b7ad1f8d73d712bd3c8aaf5e0e82377f5fa8240e0231cbcbf8709b59be6805271e6feb32e741d25e6a8f1dde1ba8dce23aed4e16f6b90c84921013bf2be4732798d1b7c6c005c297f940c70f36ced80733675024eea2645ec95f1e14ae08c412e1eaf91d85d1ad712b82af10a971725daddd6ad1f67fc097a5cb09125dbd56b66b5c052ecaeaae9014c013eb1af07ad11592bf35b255ddb1"}, {0x1010, 0x104, 0x8, "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"}], 0x1100}}, {{&(0x7f0000006900)=@ll={0x11, 0x16, 0x0, 0x1, 0x9, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}, 0x80, &(0x7f0000007b00)=[{&(0x7f0000006980)="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", 0xfe}, {&(0x7f0000006a80)="6665ab1976f170aa057586f3de7ed7bdd950b43ca72a76922025e2edfce104f69070eb04b4", 0x25}, {&(0x7f0000006ac0)="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", 0x1000}, {&(0x7f0000007ac0)="5f3349b10cdcfab5", 0x8}], 0x4}}], 0x6, 0x20004001) 13:15:59 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:59 executing program 4: r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r0, 0x84, 0x1e, &(0x7f0000000040)=0x9, 0x4) 13:15:59 executing program 3: r0 = syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) dup(r0) lseek(0xffffffffffffffff, 0x0, 0x4) 13:15:59 executing program 5 (fault-call:0 fault-nth:59): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:15:59 executing program 4: r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040)='nl80211\x00') r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000300)={0x1c, r0, 0x1, 0x0, 0x0, {{}, {@void, @void}}, [@NL80211_ATTR_NAN_MASTER_PREF={0x5, 0x117}]}, 0x1c}}, 0x0) 13:15:59 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(0xffffffffffffffff, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) [ 386.197632] FAULT_INJECTION: forcing a failure. [ 386.197632] name failslab, interval 1, probability 0, space 0, times 0 [ 386.212739] CPU: 0 PID: 825 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 386.220483] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 386.229836] Call Trace: [ 386.232422] dump_stack+0x1b2/0x283 [ 386.236043] should_fail.cold+0x10a/0x154 [ 386.240179] should_failslab+0xd6/0x130 [ 386.244223] kmem_cache_alloc+0x28e/0x3c0 [ 386.248361] alloc_vfsmnt+0x23/0x7f0 [ 386.252066] vfs_kern_mount.part.0+0x27/0x470 [ 386.256550] vfs_kern_mount+0x3c/0x60 [ 386.260339] btrfs_mount+0x42a/0x1fe0 [ 386.264146] ? lock_downgrade+0x740/0x740 [ 386.268288] ? _find_next_bit+0xdb/0x100 [ 386.272329] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 386.278298] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 386.283729] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 386.288727] ? __lockdep_init_map+0x100/0x560 [ 386.293203] ? __lockdep_init_map+0x100/0x560 [ 386.297736] mount_fs+0x92/0x2a0 [ 386.301092] vfs_kern_mount.part.0+0x5b/0x470 [ 386.305570] do_mount+0xe53/0x2a00 [ 386.309098] ? copy_mount_string+0x40/0x40 [ 386.313313] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 386.318309] ? copy_mnt_ns+0xa30/0xa30 [ 386.322181] ? copy_mount_options+0x1fa/0x2f0 [ 386.326655] ? copy_mnt_ns+0xa30/0xa30 [ 386.330523] SyS_mount+0xa8/0x120 [ 386.333953] ? copy_mnt_ns+0xa30/0xa30 [ 386.337821] do_syscall_64+0x1d5/0x640 [ 386.341703] entry_SYSCALL_64_after_hwframe+0x46/0xbb 13:15:59 executing program 3: ioctl$VIDIOC_G_TUNER(0xffffffffffffffff, 0xc054561d, &(0x7f0000000140)={0x90d4, "bae070cb99a3b34d4873d39660e7f2bae5ee33663afa9a88f0800a5d76b34004", 0x0, 0x40, 0x9, 0x63c3, 0x1, 0x1}) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) r0 = accept$ax25(0xffffffffffffffff, 0x0, &(0x7f0000000100)) r1 = accept(r0, &(0x7f0000000240)=@can, &(0x7f00000002c0)=0x80) accept4(r1, &(0x7f0000000080)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, &(0x7f00000001c0)=0x80, 0x800) [ 386.346895] RIP: 0033:0x460c6a [ 386.350062] RSP: 002b:00007fe27cb4fa78 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 386.357754] RAX: ffffffffffffffda RBX: 00007fe27cb4fb10 RCX: 0000000000460c6a [ 386.365004] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 00007fe27cb4fad0 [ 386.372253] RBP: 00007fe27cb4fad0 R08: 00007fe27cb4fb10 R09: 0000000020000000 [ 386.379505] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020000000 [ 386.386755] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 13:15:59 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @multicast1}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:15:59 executing program 4: r0 = creat(&(0x7f0000000380)='./file0\x00', 0x0) setsockopt$SO_VM_SOCKETS_BUFFER_SIZE(r0, 0x28, 0x0, 0x0, 0x0) 13:15:59 executing program 3: r0 = syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) dup(r0) getdents(r0, &(0x7f0000000080)=""/224, 0xe0) 13:16:00 executing program 4: unshare(0x20000400) r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000440)='/dev/sequencer2\x00', 0x0, 0x0) ioctl$SNDCTL_SYNTH_ID(r0, 0x4004510f, 0x0) 13:16:00 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) getxattr(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=@random={'osx.', 'btrfs\x00'}, &(0x7f0000000100)=""/29, 0x1d) [ 387.149972] IPVS: ftp: loaded support on port[0] = 21 [ 387.199417] IPVS: ftp: loaded support on port[0] = 21 13:16:00 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:16:00 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, 0x0, 0x0) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) 13:16:00 executing program 4: r0 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'syz_tun\x00', 0x0}) bind$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, r1}, 0x14) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket(0x1, 0x803, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB="5c0000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="ffffa888000000002c00128009000100766c616e000000001c00028006000100000000000c0002000e0000000a0000000400038008000500", @ANYRES32=r4, @ANYBLOB='\b\x00\n\x00', @ANYBLOB="3fdac566b8"], 0x5c}}, 0x8000) 13:16:00 executing program 3: sendmsg$SMC_PNETID_FLUSH(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x50, 0x0, 0x300, 0x70bd25, 0x25dfdbfc, {}, [@SMC_PNETID_IBPORT={0x5, 0x4, 0x1}, @SMC_PNETID_NAME={0x9, 0x1, 'syz1\x00'}, @SMC_PNETID_ETHNAME={0x14, 0x2, 'hsr0\x00'}, @SMC_PNETID_ETHNAME={0x14, 0x2, 'veth1_virt_wifi\x00'}]}, 0x50}, 0x1, 0x0, 0x0, 0x80}, 0x81) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) 13:16:00 executing program 5 (fault-call:0 fault-nth:60): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) [ 387.287852] device vlan2 entered promiscuous mode [ 387.292742] device syz_tun entered promiscuous mode [ 387.303513] FAULT_INJECTION: forcing a failure. [ 387.303513] name failslab, interval 1, probability 0, space 0, times 0 [ 387.315302] device syz_tun left promiscuous mode 13:16:00 executing program 3: r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcsa\x00', 0xc8100, 0x0) ioctl$KDGKBENT(r0, 0x4b46, &(0x7f00000000c0)={0xd1, 0x1f, 0x23}) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) [ 387.374361] device vlan2 entered promiscuous mode [ 387.376866] CPU: 1 PID: 921 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 387.379240] device syz_tun entered promiscuous mode [ 387.386942] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 387.386947] Call Trace: [ 387.386965] dump_stack+0x1b2/0x283 [ 387.386979] should_fail.cold+0x10a/0x154 [ 387.386994] should_failslab+0xd6/0x130 [ 387.387006] __kmalloc_track_caller+0x2bc/0x400 [ 387.387016] ? btrfs_parse_early_options.constprop.0+0x9b/0x2f0 [ 387.387028] kstrdup+0x36/0x70 [ 387.387038] btrfs_parse_early_options.constprop.0+0x9b/0x2f0 [ 387.387049] ? kstrdup_const+0x35/0x60 [ 387.387059] ? parse_security_options.constprop.0+0x90/0x90 [ 387.387070] ? lock_acquire+0x170/0x3f0 [ 387.387078] ? pcpu_alloc+0x8e8/0xf50 [ 387.387090] ? trace_hardirqs_on+0x10/0x10 [ 387.387098] ? pcpu_alloc+0x8e8/0xf50 [ 387.387109] btrfs_mount+0xfe/0x1fe0 [ 387.387118] ? lock_downgrade+0x740/0x740 [ 387.387127] ? _find_next_bit+0xdb/0x100 [ 387.387147] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 387.387165] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 387.387174] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 387.387185] ? __lockdep_init_map+0x100/0x560 [ 387.387194] ? __lockdep_init_map+0x100/0x560 [ 387.387204] mount_fs+0x92/0x2a0 [ 387.387217] vfs_kern_mount.part.0+0x5b/0x470 [ 387.387229] do_mount+0xe53/0x2a00 [ 387.387246] ? copy_mount_string+0x40/0x40 [ 387.387254] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 387.387263] ? copy_mnt_ns+0xa30/0xa30 13:16:01 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x4f, 0x0, 0x0, 0x90100a, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x5e20, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, 0x1c) sendto$inet6(r0, &(0x7f0000000080)="0069dc40f741f84cc1478b699d5cbf46106163c62286c660416eaf3b5131f4b1de2c06fac9a6414bac6e4d7f45a7bcad0eb99794d0a9b9e5c5c6b374acb686f3d158f93419c736465b6d5ac0d5457e", 0x4f, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) [ 387.387272] ? copy_mount_options+0x1fa/0x2f0 [ 387.387280] ? copy_mnt_ns+0xa30/0xa30 [ 387.387290] SyS_mount+0xa8/0x120 [ 387.387298] ? copy_mnt_ns+0xa30/0xa30 [ 387.387310] do_syscall_64+0x1d5/0x640 [ 387.387326] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 387.387333] RIP: 0033:0x460c6a [ 387.387338] RSP: 002b:00007fe27cb4fa78 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 387.387347] RAX: ffffffffffffffda RBX: 00007fe27cb4fb10 RCX: 0000000000460c6a [ 387.387352] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 00007fe27cb4fad0 13:16:01 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) [ 387.387358] RBP: 00007fe27cb4fad0 R08: 00007fe27cb4fb10 R09: 0000000020000000 [ 387.387363] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020000000 [ 387.387368] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 [ 387.599863] device syz_tun left promiscuous mode 13:16:01 executing program 5 (fault-call:0 fault-nth:61): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:16:01 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) newfstatat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x800) 13:16:01 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, &(0x7f0000000140)="b9800000c00f3235010000000f309a090000006500660f3882af724d00002ed8ddc74424008fc4bd87c7442402c43a727fc7442406000000000f011424f30f090f013a360f06c4c18d72d68366baa100ed", 0x51}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r3 = socket$inet_udplite(0x2, 0x2, 0x88) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffffff, 0xc0206434, &(0x7f0000000080)={0x4b057a73}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0)={[0xfffffffffffffffc, 0x6, 0x40000007, 0x0, 0x3, 0x0, 0x20000000004cb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 387.668108] print_req_error: 17 callbacks suppressed [ 387.668113] print_req_error: I/O error, dev loop0, sector 0 13:16:01 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) dup3(0xffffffffffffffff, r1, 0x80000) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22, 0xfffffbf9, @loopback, 0x2}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240148c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x4000000, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000080), 0x0, 0x7f7) close(r0) 13:16:01 executing program 3: r0 = open(&(0x7f00000002c0)='./bus\x00', 0x14103e, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, r0, 0x0) read(r0, &(0x7f0000000180)=""/19, 0xfffffe47) sendmsg$RDMA_NLDEV_CMD_RES_MR_GET(r0, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x20, 0x140d, 0x300, 0x70bd28, 0x25dfdbfe, "", [@RDMA_NLDEV_ATTR_RES_MRN={0x8, 0x3e, 0x3}, @RDMA_NLDEV_ATTR_PORT_INDEX={0x8, 0x3, 0x1}]}, 0x20}, 0x1, 0x0, 0x0, 0x8000}, 0x20040800) r1 = syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r1, 0x84009422, &(0x7f00000003c0)={0x0, 0x0, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @struct}}) ioctl$NS_GET_OWNER_UID(r0, 0xb704, &(0x7f00000014c0)=0x0) r3 = open(&(0x7f0000000400)='./bus\x00', 0x14103e, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, r3, 0x0) read(r3, &(0x7f0000000180)=""/19, 0xfffffe47) ioctl$BTRFS_IOC_START_SYNC(r3, 0x80089418, &(0x7f00000007c0)) r4 = syz_mount_image$udf(&(0x7f0000000300)='udf\x00', &(0x7f0000000380)='./bus\x00', 0x0, 0x0, &(0x7f0000001540), 0x100200, &(0x7f00000017c0)={[{@uid_ignore='uid=ignore'}], [{@fowner_eq={'fowner', 0x3d, r2}}, {@smackfsdef={'smackfsdef', 0x3d, '[?\x0e\x84\x88EPX\xa8\xa1f\x99\\\x03\xec\xc7\xe0\xbb\x13\xd1>I\x8cW\x9a*\xff\x90&&l9 \xfb\x16\xee\xd3>\xe5L`\xf8\x0f7\x81\aZ\xe1\x15\x88(\xff~\f\x00\x14\xd9\xd7n\n\x00q\xb4\x83\xe1\xf5\xb6Q\xe5\xf0\x7f\xb3F%\xde\r\xd5\xa0\x15V\xee\xfa1\x11`\f\xc0\xe5\xb8\xe7\xaa\x87O\xf7\x98I\xbfS\xddgT{\xe0\xc2\x95I&\",\\8\xf9\xdd\b9\xd5\xf4yp\xcf\xbc87sPT.Q\x8f\xc6v\x8c-+\xdc\x842\xf3`\xf9\xda\xd8\r\x06\x9b\x12\xbc\xfc\x14\xb4\xd48\x81]\xbc\xe29\xfe\xc3\ah\xfeE\x9d\x00\xbf\x03\xabD\xe6X\x80\xec\xc9\x9cDit\xf9\x82\xc4\xf6\x10\xc3\x12Rd\x04\x00\x00\x00\x00\x00\x00\x005\xe1\xf5?}\xfc\xf2m\x04s\xb1#\x9ba\xcey\xb4}\x8f'}}, {@subj_user={'subj_user', 0x3d, 'btrfs\x00'}}, {@hash='hash'}, {@mask={'mask', 0x3d, '^MAY_EXEC'}}]}) getdents(r4, &(0x7f00000015c0)=""/178, 0xb2) r5 = creat(&(0x7f0000000340)='./file0\x00', 0x0) ftruncate(r5, 0x208200) sendmsg$netlink(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f00000001c0)=ANY=[@ANYBLOB="1000000034000002d32128faffdbdf25"], 0x10}], 0x1, 0x0, 0x0, 0x2000}, 0x20000000) lsetxattr$trusted_overlay_origin(&(0x7f0000000800)='./file0\x00', &(0x7f0000000840)='trusted.overlay.origin\x00', &(0x7f0000000880)='y\x00', 0x2, 0x1) [ 387.740160] FAULT_INJECTION: forcing a failure. [ 387.740160] name failslab, interval 1, probability 0, space 0, times 0 [ 387.798843] CPU: 1 PID: 971 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 387.806596] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 387.815949] Call Trace: [ 387.818534] dump_stack+0x1b2/0x283 [ 387.822164] should_fail.cold+0x10a/0x154 [ 387.826302] should_failslab+0xd6/0x130 [ 387.830259] __kmalloc+0x2c1/0x400 [ 387.833783] ? btrfs_mount+0x2d5/0x1fe0 [ 387.837739] btrfs_mount+0x2d5/0x1fe0 [ 387.841521] ? lock_downgrade+0x740/0x740 [ 387.845650] ? _find_next_bit+0xdb/0x100 [ 387.849704] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 387.855658] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 387.861087] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 387.866086] ? __lockdep_init_map+0x100/0x560 [ 387.870561] ? __lockdep_init_map+0x100/0x560 [ 387.875041] mount_fs+0x92/0x2a0 [ 387.878399] vfs_kern_mount.part.0+0x5b/0x470 [ 387.882879] do_mount+0xe53/0x2a00 [ 387.886405] ? copy_mount_string+0x40/0x40 [ 387.890621] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 387.895624] ? copy_mnt_ns+0xa30/0xa30 [ 387.899500] ? copy_mount_options+0x1fa/0x2f0 [ 387.903983] ? copy_mnt_ns+0xa30/0xa30 [ 387.907857] SyS_mount+0xa8/0x120 [ 387.911314] ? copy_mnt_ns+0xa30/0xa30 [ 387.915195] do_syscall_64+0x1d5/0x640 [ 387.919076] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 387.924263] RIP: 0033:0x460c6a [ 387.927432] RSP: 002b:00007fe27cb4fa78 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 387.935124] RAX: ffffffffffffffda RBX: 00007fe27cb4fb10 RCX: 0000000000460c6a [ 387.942370] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 00007fe27cb4fad0 [ 387.949620] RBP: 00007fe27cb4fad0 R08: 00007fe27cb4fb10 R09: 0000000020000000 [ 387.956871] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020000000 [ 387.964128] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 13:16:01 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, 0x0, 0x0) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) 13:16:01 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:16:01 executing program 5 (fault-call:0 fault-nth:62): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:16:01 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, &(0x7f0000000140)="b9800000c00f3235010000000f309a090000006500660f3882af724d00002ed8ddc74424008fc4bd87c7442402c43a727fc7442406000000000f011424f30f090f013a360f06c4c18d72d68366baa100ed", 0x51}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r3 = socket$inet_udplite(0x2, 0x2, 0x88) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffffff, 0xc0206434, &(0x7f0000000080)={0x4b057a73}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0)={[0xfffffffffffffffc, 0x6, 0x40000007, 0x0, 0x3, 0x0, 0x20000000004cb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 13:16:01 executing program 3: write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)={{0x7f, 0x45, 0x4c, 0x46, 0x77, 0xd1, 0x7f, 0x63, 0x6, 0x2, 0x6, 0x6f29, 0x35d, 0x40, 0x2da, 0x1, 0x40, 0x38, 0x1, 0x17, 0x7, 0x4}, [{0x60000000, 0x9, 0x9, 0x2, 0x7, 0x4, 0xb7, 0x6}], "2d8c46471b99709fea7f109759475019c51d5c6acd69054c3cbec0382ea0", [[], [], [], []]}, 0x496) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x4, &(0x7f0000000140)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}, {&(0x7f0000000080)="ee64671a48528b3956b3e1d51992", 0xe, 0x8}, {&(0x7f00000000c0)="2f58ff099cdacb8c787354a7651988f8affa24116769dc538ac5b95b23bbac630b6f91148ceaa61b1d71524fd5bb9b2b82655879e25c5df5c0b22ddf9ed8703c0cf9d78b29d80985802c1705d6611d851def1f6f6b8bd63634b9fd4068c692540d90e133b3bd06cc6fa65c4217fa2b71cc628393e0", 0x75, 0x9}], 0x0, &(0x7f00000007c0)=ANY=[]) [ 388.192720] FAULT_INJECTION: forcing a failure. [ 388.192720] name failslab, interval 1, probability 0, space 0, times 0 [ 388.205400] CPU: 1 PID: 1015 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 388.213310] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 388.222665] Call Trace: [ 388.225245] dump_stack+0x1b2/0x283 [ 388.228861] should_fail.cold+0x10a/0x154 [ 388.233021] should_failslab+0xd6/0x130 [ 388.236980] kmem_cache_alloc+0x28e/0x3c0 [ 388.241129] alloc_vfsmnt+0x23/0x7f0 [ 388.245096] vfs_kern_mount.part.0+0x27/0x470 [ 388.249582] vfs_kern_mount+0x3c/0x60 [ 388.253371] btrfs_mount+0x42a/0x1fe0 [ 388.257160] ? lock_downgrade+0x740/0x740 [ 388.261291] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 388.267292] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 388.272721] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 388.277728] ? __lockdep_init_map+0x100/0x560 [ 388.282200] ? __lockdep_init_map+0x100/0x560 [ 388.286684] mount_fs+0x92/0x2a0 [ 388.290165] vfs_kern_mount.part.0+0x5b/0x470 [ 388.294648] do_mount+0xe53/0x2a00 [ 388.298176] ? copy_mount_string+0x40/0x40 [ 388.302389] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 388.307390] ? copy_mnt_ns+0xa30/0xa30 [ 388.311433] ? copy_mount_options+0x1fa/0x2f0 [ 388.315907] ? copy_mnt_ns+0xa30/0xa30 [ 388.319776] SyS_mount+0xa8/0x120 [ 388.323217] ? copy_mnt_ns+0xa30/0xa30 [ 388.327180] do_syscall_64+0x1d5/0x640 [ 388.331068] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 388.336236] RIP: 0033:0x460c6a 13:16:01 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0xaaaaaaaaaaaad4c, &(0x7f0000000200)=[{&(0x7f0000000140)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/schedule_icmp\x00', 0x2, 0x0) linkat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', r0, &(0x7f0000000100)='./file0\x00', 0x1000) 13:16:01 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, &(0x7f0000000140)="b9800000c00f3235010000000f309a090000006500660f3882af724d00002ed8ddc74424008fc4bd87c7442402c43a727fc7442406000000000f011424f30f090f013a360f06c4c18d72d68366baa100ed", 0x51}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r3 = socket$inet_udplite(0x2, 0x2, 0x88) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffffff, 0xc0206434, &(0x7f0000000080)={0x4b057a73}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0)={[0xfffffffffffffffc, 0x6, 0x40000007, 0x0, 0x3, 0x0, 0x20000000004cb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 388.339442] RSP: 002b:00007fe27cb4fa78 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 388.347130] RAX: ffffffffffffffda RBX: 00007fe27cb4fb10 RCX: 0000000000460c6a [ 388.354397] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 00007fe27cb4fad0 [ 388.361667] RBP: 00007fe27cb4fad0 R08: 00007fe27cb4fb10 R09: 0000000020000000 [ 388.368916] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020000000 [ 388.376268] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 13:16:01 executing program 5 (fault-call:0 fault-nth:63): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:16:02 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:16:02 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, &(0x7f0000000140)="b9800000c00f3235010000000f309a090000006500660f3882af724d00002ed8ddc74424008fc4bd87c7442402c43a727fc7442406000000000f011424f30f090f013a360f06c4c18d72d68366baa100ed", 0x51}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r3 = socket$inet_udplite(0x2, 0x2, 0x88) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffffff, 0xc0206434, &(0x7f0000000080)={0x4b057a73}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0)={[0xfffffffffffffffc, 0x6, 0x40000007, 0x0, 0x3, 0x0, 0x20000000004cb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 388.522286] FAULT_INJECTION: forcing a failure. [ 388.522286] name failslab, interval 1, probability 0, space 0, times 0 [ 388.536088] CPU: 1 PID: 1042 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 388.543912] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 388.553271] Call Trace: [ 388.555865] dump_stack+0x1b2/0x283 [ 388.559508] should_fail.cold+0x10a/0x154 [ 388.563685] should_failslab+0xd6/0x130 [ 388.567667] __kmalloc_track_caller+0x2bc/0x400 [ 388.572336] ? kstrdup_const+0x35/0x60 [ 388.576219] ? lock_downgrade+0x740/0x740 [ 388.580368] kstrdup+0x36/0x70 [ 388.583565] kstrdup_const+0x35/0x60 [ 388.587283] alloc_vfsmnt+0xe0/0x7f0 [ 388.591034] vfs_kern_mount.part.0+0x27/0x470 [ 388.595632] vfs_kern_mount+0x3c/0x60 [ 388.599437] btrfs_mount+0x42a/0x1fe0 [ 388.603239] ? lock_downgrade+0x740/0x740 [ 388.607393] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 388.613369] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 388.618819] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 388.623837] ? __lockdep_init_map+0x100/0x560 [ 388.628329] ? __lockdep_init_map+0x100/0x560 [ 388.632822] mount_fs+0x92/0x2a0 [ 388.636195] vfs_kern_mount.part.0+0x5b/0x470 [ 388.640691] do_mount+0xe53/0x2a00 [ 388.644233] ? do_raw_spin_unlock+0x164/0x220 [ 388.648736] ? copy_mount_string+0x40/0x40 [ 388.653025] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 388.658041] ? copy_mnt_ns+0xa30/0xa30 [ 388.661929] ? copy_mount_options+0x1fa/0x2f0 [ 388.666426] ? copy_mnt_ns+0xa30/0xa30 [ 388.670321] SyS_mount+0xa8/0x120 [ 388.673772] ? copy_mnt_ns+0xa30/0xa30 [ 388.677651] do_syscall_64+0x1d5/0x640 [ 388.681545] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 388.686805] RIP: 0033:0x460c6a [ 388.689989] RSP: 002b:00007fe27cb4fa78 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 388.697681] RAX: ffffffffffffffda RBX: 00007fe27cb4fb10 RCX: 0000000000460c6a [ 388.704933] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 00007fe27cb4fad0 [ 388.712208] RBP: 00007fe27cb4fad0 R08: 00007fe27cb4fb10 R09: 0000000020000000 [ 388.719462] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020000000 [ 388.726724] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 13:16:02 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback, 0xf802c658}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:16:02 executing program 5 (fault-call:0 fault-nth:64): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) [ 388.941198] FAULT_INJECTION: forcing a failure. [ 388.941198] name failslab, interval 1, probability 0, space 0, times 0 [ 388.955806] CPU: 1 PID: 1075 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 388.963803] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 388.973183] Call Trace: [ 388.975780] dump_stack+0x1b2/0x283 [ 388.979417] should_fail.cold+0x10a/0x154 [ 388.983588] should_failslab+0xd6/0x130 [ 388.987571] __kmalloc_track_caller+0x2bc/0x400 [ 388.992245] ? kstrdup_const+0x35/0x60 [ 388.996133] ? lock_downgrade+0x740/0x740 [ 389.000283] kstrdup+0x36/0x70 [ 389.003477] kstrdup_const+0x35/0x60 [ 389.007200] alloc_vfsmnt+0xe0/0x7f0 [ 389.011016] vfs_kern_mount.part.0+0x27/0x470 [ 389.016230] vfs_kern_mount+0x3c/0x60 [ 389.020045] btrfs_mount+0x42a/0x1fe0 [ 389.023869] ? lock_downgrade+0x740/0x740 [ 389.028053] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 389.034041] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 389.039501] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 389.044519] ? __lockdep_init_map+0x100/0x560 [ 389.049010] ? __lockdep_init_map+0x100/0x560 [ 389.053502] mount_fs+0x92/0x2a0 [ 389.056889] vfs_kern_mount.part.0+0x5b/0x470 [ 389.061386] do_mount+0xe53/0x2a00 [ 389.064929] ? copy_mount_string+0x40/0x40 [ 389.069160] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 389.074187] ? copy_mnt_ns+0xa30/0xa30 [ 389.078113] ? copy_mount_options+0x1fa/0x2f0 [ 389.082873] ? copy_mnt_ns+0xa30/0xa30 [ 389.086759] SyS_mount+0xa8/0x120 [ 389.090242] ? copy_mnt_ns+0xa30/0xa30 [ 389.094118] do_syscall_64+0x1d5/0x640 [ 389.097992] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 389.103159] RIP: 0033:0x460c6a [ 389.106328] RSP: 002b:00007fe27cb4fa78 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 389.114025] RAX: ffffffffffffffda RBX: 00007fe27cb4fb10 RCX: 0000000000460c6a [ 389.121277] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 00007fe27cb4fad0 [ 389.128535] RBP: 00007fe27cb4fad0 R08: 00007fe27cb4fb10 R09: 0000000020000000 13:16:02 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, 0x0, 0x0) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) 13:16:02 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:16:02 executing program 4: unshare(0x20000400) r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000440)='/dev/sequencer2\x00', 0x0, 0x0) ioctl$SNDCTL_SYNTH_ID(r0, 0x40045108, &(0x7f0000000240)={"a41db10c9a4c04fd0fa3cde9692efd80fac6d648c9583e633d4ae2e5b2b1"}) [ 389.135786] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020000000 [ 389.143037] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 13:16:02 executing program 4: socketpair(0x11, 0x0, 0x0, &(0x7f0000000240)) [ 389.208548] print_req_error: I/O error, dev loop5, sector 0 13:16:02 executing program 4: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000000000000400000008000000"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000040)='sys_enter\x00', r0}, 0x10) bpf$MAP_LOOKUP_BATCH(0x18, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000000200)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={0x0, 0x8}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r1) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) 13:16:02 executing program 3: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0xa000, 0x0) ioctl$BTRFS_IOC_ADD_DEV(r0, 0x5000940a, &(0x7f0000000240)={{r1}, "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"}) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) 13:16:02 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:16:02 executing program 5 (fault-call:0 fault-nth:65): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:16:02 executing program 4: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000000000000400000008000000"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000040)='sys_enter\x00', r0}, 0x10) bpf$MAP_LOOKUP_BATCH(0x18, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000000200)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={0x0, 0x8}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r1) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) 13:16:02 executing program 4: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000000000000400000008000000"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000040)='sys_enter\x00', r0}, 0x10) bpf$MAP_LOOKUP_BATCH(0x18, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000000200)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={0x0, 0x8}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r1) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 389.451830] FAULT_INJECTION: forcing a failure. [ 389.451830] name failslab, interval 1, probability 0, space 0, times 0 [ 389.505589] CPU: 0 PID: 1116 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 389.513422] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 389.522773] Call Trace: [ 389.525352] dump_stack+0x1b2/0x283 [ 389.528977] should_fail.cold+0x10a/0x154 [ 389.533110] should_failslab+0xd6/0x130 [ 389.537088] __kmalloc+0x2c1/0x400 [ 389.540618] ? match_strdup+0x58/0xa0 [ 389.544410] match_strdup+0x58/0xa0 [ 389.548018] btrfs_parse_early_options.constprop.0+0x232/0x2f0 [ 389.553972] ? parse_security_options.constprop.0+0x90/0x90 [ 389.559665] ? lock_acquire+0x170/0x3f0 [ 389.563622] ? pcpu_alloc+0x8e8/0xf50 [ 389.567404] ? trace_hardirqs_on+0x10/0x10 [ 389.571628] ? pcpu_alloc+0x8e8/0xf50 [ 389.575419] ? _find_next_bit+0xdb/0x100 [ 389.579460] btrfs_mount+0xfe/0x1fe0 [ 389.583163] ? lock_downgrade+0x740/0x740 [ 389.587295] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 389.593339] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 389.598864] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 389.603861] ? __lockdep_init_map+0x100/0x560 [ 389.608345] ? __lockdep_init_map+0x100/0x560 [ 389.612823] mount_fs+0x92/0x2a0 [ 389.616177] vfs_kern_mount.part.0+0x5b/0x470 [ 389.620655] vfs_kern_mount+0x3c/0x60 [ 389.624443] btrfs_mount+0x42a/0x1fe0 [ 389.628251] ? lock_downgrade+0x740/0x740 [ 389.632385] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 389.638338] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 389.643775] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 389.648771] ? __lockdep_init_map+0x100/0x560 [ 389.653279] ? __lockdep_init_map+0x100/0x560 [ 389.657768] mount_fs+0x92/0x2a0 [ 389.661118] vfs_kern_mount.part.0+0x5b/0x470 [ 389.665597] do_mount+0xe53/0x2a00 [ 389.669124] ? copy_mount_string+0x40/0x40 [ 389.673347] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 389.678345] ? copy_mnt_ns+0xa30/0xa30 [ 389.682215] ? copy_mount_options+0x1fa/0x2f0 [ 389.686699] ? copy_mnt_ns+0xa30/0xa30 [ 389.690568] SyS_mount+0xa8/0x120 [ 389.694002] ? copy_mnt_ns+0xa30/0xa30 [ 389.697870] do_syscall_64+0x1d5/0x640 [ 389.701760] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 389.706929] RIP: 0033:0x460c6a [ 389.710114] RSP: 002b:00007fe27cb4fa78 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 389.717903] RAX: ffffffffffffffda RBX: 00007fe27cb4fb10 RCX: 0000000000460c6a [ 389.725159] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 00007fe27cb4fad0 [ 389.732444] RBP: 00007fe27cb4fad0 R08: 00007fe27cb4fb10 R09: 0000000020000000 [ 389.739786] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020000000 [ 389.747039] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 13:16:03 executing program 1: unshare(0x68020180) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) sendmsg$nl_route(r1, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000100)={&(0x7f00000002c0)=ANY=[@ANYBLOB="280000001100100028bd7000fbdbdf2500000000036c9aac14ec74d0528965d0894bda49cc20144e0ce997cf2a875a09b41332930000ba555a5a16edaed8d401a11a95a5263171beb9ca353837ca2924d400bbab140981a3d9d9bc5640728e986a530a6f2ad6fe5300821b62fa27d958e86b05bd03fba004ca2a9ca886bef4e53cd1d920a2015e07ea1a7fb8033819843a886b6bbcf41f22bed03b15de4bb823e5a118bc25", @ANYRES32=0x0, @ANYBLOB="0c0100000820000008002c0020000000"], 0x28}, 0x1, 0x0, 0x0, 0x8804}, 0x40055) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @private2={0xfc, 0x2, [], 0x1}}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:16:03 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, 0x0, 0x0) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:16:03 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) 13:16:03 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x64, &(0x7f0000000200), 0x0, &(0x7f0000000080)=ANY=[@ANYRESOCT]) 13:16:03 executing program 4: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000000000000400000008000000"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000040)='sys_enter\x00', r0}, 0x10) bpf$MAP_LOOKUP_BATCH(0x18, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000000200)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={0x0, 0x8}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r1) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) 13:16:03 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4ea2, 0x0, @private0}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:16:03 executing program 5 (fault-call:0 fault-nth:66): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:16:03 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, 0x0, 0x0) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:16:03 executing program 4: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xd, 0xd, 0x2, [@datasec={0x0, 0x0, 0x0, 0xf, 0x1, [], '\f'}]}}, &(0x7f00000001c0)=""/167, 0x2a, 0xa7, 0x1}, 0x20) [ 390.100387] FAULT_INJECTION: forcing a failure. [ 390.100387] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 390.137340] CPU: 1 PID: 1160 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 390.145188] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 390.154562] Call Trace: [ 390.157163] dump_stack+0x1b2/0x283 [ 390.160815] should_fail.cold+0x10a/0x154 [ 390.165197] __alloc_pages_nodemask+0x22c/0x2720 [ 390.169942] ? blkdev_get+0x484/0x890 [ 390.173732] ? blkdev_get+0x484/0x890 [ 390.177517] ? blkdev_get+0x547/0x890 [ 390.181307] ? __radix_tree_lookup+0x1b5/0x2e0 [ 390.185879] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 390.190710] ? find_get_entry+0x339/0x630 [ 390.194985] alloc_pages_current+0x155/0x260 [ 390.199383] do_read_cache_page+0x442/0xc10 [ 390.203695] ? blkdev_writepages+0xd0/0xd0 [ 390.207921] btrfs_read_disk_super+0xd0/0x370 [ 390.212438] btrfs_scan_one_device+0xb5/0x330 [ 390.216914] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 390.222345] ? device_list_add+0x8f0/0x8f0 [ 390.226585] btrfs_mount+0x1fc/0x1fe0 [ 390.230382] ? lock_downgrade+0x740/0x740 [ 390.234616] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 390.240574] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 390.246004] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 390.251013] ? __lockdep_init_map+0x100/0x560 [ 390.255492] ? __lockdep_init_map+0x100/0x560 [ 390.259968] mount_fs+0x92/0x2a0 [ 390.263325] vfs_kern_mount.part.0+0x5b/0x470 [ 390.267810] vfs_kern_mount+0x3c/0x60 [ 390.271594] btrfs_mount+0x42a/0x1fe0 [ 390.275376] ? lock_downgrade+0x740/0x740 [ 390.279507] ? _find_next_bit+0xdb/0x100 [ 390.283552] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 390.289505] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 390.295067] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 390.300069] ? __lockdep_init_map+0x100/0x560 [ 390.304544] ? __lockdep_init_map+0x100/0x560 [ 390.309029] mount_fs+0x92/0x2a0 [ 390.312386] vfs_kern_mount.part.0+0x5b/0x470 [ 390.316881] do_mount+0xe53/0x2a00 [ 390.320409] ? copy_mount_string+0x40/0x40 [ 390.324624] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 390.329618] ? copy_mnt_ns+0xa30/0xa30 [ 390.333488] ? copy_mount_options+0x1fa/0x2f0 [ 390.337961] ? copy_mnt_ns+0xa30/0xa30 [ 390.341834] SyS_mount+0xa8/0x120 [ 390.345278] ? copy_mnt_ns+0xa30/0xa30 [ 390.349146] do_syscall_64+0x1d5/0x640 [ 390.353020] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 390.358213] RIP: 0033:0x460c6a [ 390.361387] RSP: 002b:00007fe27cb4fa78 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 390.369078] RAX: ffffffffffffffda RBX: 00007fe27cb4fb10 RCX: 0000000000460c6a [ 390.376349] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 00007fe27cb4fad0 [ 390.383860] RBP: 00007fe27cb4fad0 R08: 00007fe27cb4fb10 R09: 0000000020000000 [ 390.391128] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020000000 13:16:03 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x9, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="91e42e850000000000000000000000000000004000008c000200000000000000f90cac8b244b4fa88bee4b8d3da88dc2000001000080000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x20008, &(0x7f00000007c0)=ANY=[]) connect$unix(0xffffffffffffffff, &(0x7f0000000080)=@file={0x0, './file0\x00'}, 0x6e) llistxattr(&(0x7f0000002300)='./file0\x00', &(0x7f0000002340)=""/246, 0xf6) recvmmsg(0xffffffffffffffff, &(0x7f0000002180)=[{{&(0x7f0000000100)=@isdn, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000180)=""/56, 0x38}, {&(0x7f0000000240)=""/116, 0x74}], 0x2, &(0x7f00000002c0)=""/168, 0xa8}, 0x9}, {{0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000380)=""/11, 0xb}, {&(0x7f00000003c0)=""/73, 0x49}], 0x2}, 0x4}, {{0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000000480)=""/60, 0x3c}, {&(0x7f00000004c0)=""/205, 0xcd}, {&(0x7f00000005c0)=""/16, 0x10}, {&(0x7f0000000600)=""/89, 0x59}, {&(0x7f0000000680)=""/228, 0xe4}, {&(0x7f0000000780)=""/100, 0x64}, {&(0x7f0000000800)=""/69, 0x45}], 0x7, &(0x7f0000000900)=""/93, 0x5d}}, {{&(0x7f0000000980)=@alg, 0x80, &(0x7f0000001e80)=[{&(0x7f0000000a00)=""/188, 0xbc}, {&(0x7f0000000ac0)=""/129, 0x81}, {&(0x7f0000000b80)=""/82, 0x52}, {&(0x7f0000000c00)=""/86, 0x56}, {&(0x7f0000000c80)=""/4096, 0x1000}, {&(0x7f0000001c80)=""/233, 0xe9}, {&(0x7f0000001d80)=""/145, 0x91}, {&(0x7f0000001e40)=""/12, 0xc}], 0x8, &(0x7f0000001f00)=""/93, 0x5d}}, {{&(0x7f0000001f80)=@ax25={{0x3, @rose}, [@bcast, @remote, @remote, @remote, @rose, @null, @rose, @netrom]}, 0x80, &(0x7f0000002140)=[{&(0x7f0000002000)=""/110, 0x6e}, {&(0x7f0000002080)=""/157, 0x9d}], 0x2}, 0x3f}], 0x5, 0x21, 0x0) open(&(0x7f00000022c0)='./file0\x00', 0x680001, 0x3) [ 390.398374] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 13:16:03 executing program 4: r0 = perf_event_open(&(0x7f0000001840)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r0, 0x4008240b, &(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x520a4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0xff}) 13:16:04 executing program 3: r0 = syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) r1 = openat$apparmor_thread_exec(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/attr/exec\x00', 0x2, 0x0) sendfile(r1, r0, 0x0, 0x8) 13:16:04 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000880)=ANY=[@ANYBLOB="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"/579], &(0x7f0000000340)='syzkaller\x00'}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r0, 0x20e, 0x69, 0xfd000000, &(0x7f00000004c0)="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", 0x0, 0xfd, 0x6000000000000000, 0xfffffffffffffe7e, 0x1d4}, 0x28) 13:16:04 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x4000000, &(0x7f0000000240)={0xa, 0x4, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:16:04 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) 13:16:04 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, 0x0, 0x0) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:16:04 executing program 4: socket$kcm(0x2, 0x0, 0x84) bpf$BPF_RAW_TRACEPOINT_OPEN_UNNAMED(0x11, 0x0, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0xc020660b, 0x0) openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000740)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x222}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0xe80, 0x0, &(0x7f00000000c0)="b9ff03c6630d698cb89e0bf088ca1fffffff0e000000631177fbac141417ee", 0x0, 0x2f, 0x0, 0x0, 0xfffffffffffffe2a}, 0x28) 13:16:04 executing program 3: r0 = syz_open_dev$vivid(&(0x7f0000000080)='/dev/video#\x00', 0x0, 0x2) ioctl$VIDIOC_S_PARM(r0, 0xc0cc5616, &(0x7f00000000c0)={0x4, @output={0x0, 0x0, {0xec5, 0xfffffffd}, 0x800, 0x100}}) dup2(0xffffffffffffffff, r0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) 13:16:04 executing program 5 (fault-call:0 fault-nth:67): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:16:04 executing program 3: r0 = syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vcsa\x00', 0x600841, 0x0) statx(r0, &(0x7f0000000140)='./file0/file0\x00', 0x6000, 0x1, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0}) socketpair(0x29, 0xcadfd87a39eb0ae9, 0x9, &(0x7f0000000180)={0xffffffffffffffff}) ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r1, 0x89f2, &(0x7f00000001c0)={'syztnl0\x00', &(0x7f00000004c0)={'syztnl0\x00', 0x0, 0x10, 0x20, 0x3, 0x6289921b, {{0xd, 0x4, 0x0, 0x11, 0x34, 0x65, 0x0, 0x1, 0x4, 0x0, @dev={0xac, 0x14, 0x14, 0x37}, @rand_addr=0x64010102, {[@rr={0x7, 0x7, 0x13, [@multicast1]}, @ssrr={0x89, 0x7, 0x8b, [@multicast2]}, @timestamp={0x44, 0x10, 0xfd, 0x0, 0x4, [0xfff, 0x3, 0x7]}]}}}}}) r5 = syz_mount_image$udf(&(0x7f00000005c0)='udf\x00', &(0x7f0000000600)='./file0/file0\x00', 0xff, 0x0, &(0x7f0000002900), 0x28080, &(0x7f0000002f80)={[{@fileset={'fileset', 0x3d, 0xffffffffffff123a}}, {@nostrict='nostrict'}], [{@appraise='appraise'}, {@uid_eq={'uid', 0x3d, r2}}, {@mask={'mask', 0x3d, 'MAY_APPEND'}}]}) r6 = syz_mount_image$f2fs(&(0x7f0000002a80)='f2fs\x00', &(0x7f0000002ac0)='./file0\x00', 0x9140000000000000, 0x5, &(0x7f0000002e40)=[{&(0x7f0000002b00)="1f4ccc286e7b6adc2418c7164f32aed9c1a4fc39be7c6116fded80bca1a8868ca853c987ef3a070f67cab16f503109d9c0454ec6a1a47ad70dff3adf8763933730b9dc5896dfa468eb3d16f7245cf41105b7c066040b829e4923668ebe21a06503acc860ae82e1c546905407761348cc522fb9f074552ff554b20fd9a86d124eacbf9e7e0ca7ebf40dcfa1338d4c0276218bf1edffecf8c7d55668d05e59e4ac4aaeafa78c9c71e3553c199c6adf1fedfb6abc451fd3716578b5cce617", 0xbd, 0x6}, {&(0x7f0000002bc0)="b40b8b4af26ddfc53439d7606fa39ebeb008fbd9d0b5ed262d28895bf69f02e8216bd1176e0ba0bed2c03502b396001575e4e36c34d399a524a81c856813e1032e5f3f68fc260f6a2a32458f869c438c", 0x50, 0xfffffffffffeffff}, {&(0x7f0000002c40)="b7da7d99513399cd0ed66fb6f8a4c9d8e7773f97b1c20d532bd64eb1a113810fb4daeb2bbd936798ed20e10fc0a27025016037ce6e545da083d1341776e67c7d86ab6bceea672546ba4ec788117a2eca2496339691b4b45f7af7176f67948c99f5de8f29e734bed419f93377caebe416712a20911b06f190d47fbe553a6213ee9330a397c65bfd4000ae1aed83a262f59af118e0a73b7d162b0e74ed4da49204643e43a265ad41829c17b1093c1820e266760e741097735c0fa99b2ef559b63d0fa487095c85fabe537c013adcb6efbe35ca77b8cd204276f2b2ddc0be37e12e54826a3d", 0xe4, 0x401}, {&(0x7f0000002d40)="ee253188791a01", 0x7, 0x1}, {&(0x7f0000002d80)="04b45710f70ddd2f0571396c4ed8f42d94e0c306e170ed2930aa0d9515fc25e5ecba89cd4cf2e8e319d2dee9f4374215f0d84f471971749cd8e8e1c6be33d74d1519ac9a8be220ad04f6ddcfc87ca7e9fc2ec6192a57474f6708a9e4875cb83b4844b323b456cde9fd1e80eebb6ee1c2c9dfb7c59572b624def089d838ab26f96e5751", 0x83}], 0x102010, &(0x7f0000002ec0)={[], [{@uid_lt={'uid<', r2}}, {@appraise='appraise'}, {@seclabel='seclabel'}, {@obj_user={'obj_user', 0x3d, 'defcontext'}}, {@func={'func', 0x3d, 'FILE_MMAP'}}]}) renameat(r5, &(0x7f0000002a40)='./file0\x00', r6, &(0x7f0000002f40)='./file0/file0\x00') ioctl$sock_inet6_SIOCADDRT(r3, 0x890b, &(0x7f0000000540)={@dev={0xfe, 0x80, [], 0x27}, @mcast1, @private2={0xfc, 0x2, [], 0x1}, 0x6880, 0x1a2, 0x3, 0x400, 0x3, 0x80, r4}) getdents(r1, &(0x7f0000000640)=""/90, 0x5a) mount$fuse(0x0, &(0x7f0000000080)='./file0/file0\x00', &(0x7f00000000c0)='fuse\x00', 0x204c21, &(0x7f0000000340)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {'user_id', 0x3d, 0xee00}, 0x2c, {'group_id', 0x3d, 0xee01}, 0x2c, {[{@blksize={'blksize'}}, {@blksize={'blksize', 0x3d, 0x1000}}, {@default_permissions='default_permissions'}, {@default_permissions='default_permissions'}, {@max_read={'max_read', 0x3d, 0x2}}, {@allow_other='allow_other'}, {@default_permissions='default_permissions'}], [{@hash='hash'}, {@appraise='appraise'}, {@fowner_eq={'fowner', 0x3d, r2}}, {@defcontext={'defcontext', 0x3d, 'staff_u'}}, {@mask={'mask', 0x3d, '^MAY_EXEC'}}]}}) [ 390.965048] FAULT_INJECTION: forcing a failure. [ 390.965048] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 391.025540] CPU: 1 PID: 1221 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 391.033388] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 391.042929] Call Trace: [ 391.045525] dump_stack+0x1b2/0x283 [ 391.049174] should_fail.cold+0x10a/0x154 [ 391.053340] __alloc_pages_nodemask+0x22c/0x2720 [ 391.058110] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 391.063225] ? debug_check_no_obj_freed+0x2c0/0x674 [ 391.068253] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 391.073712] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 391.078545] ? kfree+0x14a/0x250 [ 391.081895] ? btrfs_parse_early_options.constprop.0+0x18e/0x2f0 [ 391.088039] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 391.093048] ? btrfs_parse_early_options.constprop.0+0x193/0x2f0 [ 391.099178] ? parse_security_options.constprop.0+0x90/0x90 [ 391.104869] ? lock_acquire+0x170/0x3f0 [ 391.108829] ? pcpu_alloc+0x8e8/0xf50 [ 391.112613] alloc_pages_current+0x155/0x260 [ 391.117007] get_zeroed_page+0x19/0x50 [ 391.120880] parse_security_options.constprop.0+0x1a/0x90 [ 391.126405] btrfs_mount+0x1d5/0x1fe0 [ 391.130191] ? lock_downgrade+0x740/0x740 [ 391.134319] ? _find_next_bit+0xdb/0x100 [ 391.138362] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 391.144319] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 391.149747] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 391.154742] ? __lockdep_init_map+0x100/0x560 [ 391.159218] ? __lockdep_init_map+0x100/0x560 [ 391.163703] mount_fs+0x92/0x2a0 [ 391.167052] vfs_kern_mount.part.0+0x5b/0x470 [ 391.171528] vfs_kern_mount+0x3c/0x60 [ 391.175310] btrfs_mount+0x42a/0x1fe0 [ 391.179091] ? lock_downgrade+0x740/0x740 [ 391.183229] ? _find_next_bit+0xdb/0x100 [ 391.187272] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 391.193230] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 391.198658] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 391.203657] ? __lockdep_init_map+0x100/0x560 [ 391.208133] ? __lockdep_init_map+0x100/0x560 [ 391.212616] mount_fs+0x92/0x2a0 [ 391.216000] vfs_kern_mount.part.0+0x5b/0x470 [ 391.220475] do_mount+0xe53/0x2a00 [ 391.223998] ? do_raw_spin_unlock+0x164/0x220 [ 391.228561] ? copy_mount_string+0x40/0x40 [ 391.232787] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 391.237782] ? copy_mnt_ns+0xa30/0xa30 [ 391.241649] ? copy_mount_options+0x1fa/0x2f0 [ 391.246124] ? copy_mnt_ns+0xa30/0xa30 [ 391.250007] SyS_mount+0xa8/0x120 [ 391.253445] ? copy_mnt_ns+0xa30/0xa30 [ 391.257326] do_syscall_64+0x1d5/0x640 [ 391.261205] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 391.266378] RIP: 0033:0x460c6a 13:16:04 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) [ 391.269556] RSP: 002b:00007fe27cb4fa78 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 391.277245] RAX: ffffffffffffffda RBX: 00007fe27cb4fb10 RCX: 0000000000460c6a [ 391.284495] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 00007fe27cb4fad0 [ 391.291745] RBP: 00007fe27cb4fad0 R08: 00007fe27cb4fb10 R09: 0000000020000000 [ 391.298994] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020000000 [ 391.306245] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 [ 391.357510] IPVS: ftp: loaded support on port[0] = 21 13:16:04 executing program 4: sendmsg(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)}, 0x0) socketpair(0x1, 0x1, 0x0, &(0x7f0000000740)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x89f0, &(0x7f0000000300)='gre0\x00') ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x89f3, &(0x7f0000000300)='gre0\x00') 13:16:04 executing program 3: flock(0xffffffffffffffff, 0xe) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000100)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x1010, &(0x7f00000007c0)=ANY=[]) r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0) ftruncate(r0, 0x208200) bind(r0, &(0x7f0000000080)=@sco={0x1f, @fixed={[], 0x12}}, 0x80) ioctl$USBDEVFS_DISCARDURB(r0, 0x550b, &(0x7f0000000180)=0x3) ioctl$SNDRV_RAWMIDI_IOCTL_STATUS64(r0, 0xc0385720, &(0x7f00000001c0)) [ 391.390409] print_req_error: I/O error, dev loop0, sector 0 13:16:04 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000008180)={0x0, 0x0, &(0x7f0000008140)={&(0x7f0000000080)=@newtaction={0xec4, 0x30, 0x0, 0x0, 0x0, {}, [{0x48, 0x1, [@m_skbedit={0x44, 0x0, 0x0, 0x0, {{0xc, 0x1, 'skbedit\x00'}, {0x14, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_PTYPE={0x6, 0x7, 0x2}, @TCA_SKBEDIT_MARK={0x8, 0x5, 0x6}]}, {0x5, 0x6, 'q'}, {0xc}, {0xc, 0x8, {0x4}}}}]}, {0xe68, 0x1, [@m_csum={0x16c, 0x20, 0x0, 0x0, {{0x9, 0x1, 'csum\x00'}, {0x74, 0x2, 0x0, 0x1, [@TCA_CSUM_PARMS={0x1c}, @TCA_CSUM_PARMS={0x1c}, @TCA_CSUM_PARMS={0x1c}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0x69, 0x56}}}]}, {0xcd, 0x6, "ec59c6be2139f09e0a829a651a016cbf9168bfbc2feddf4d570cf4c6c2cdc33fd71db37d97ce6d0e1ad762d13b4f929c6802dd2153e2ec4a856948f55a5f989f88494a7600294c56e35e7a763ee6c9b40a2f01870bf5d3b93dcfba3af90fb15cb41a61cb2a82a5353f2a69bb0ab4458d474ee11b7469d8c0ba6391d20f5b999f7525dfe4dbc3a50cbdfa36b715c378fd65ac5493b6b26f2c76d51a7628dbf4b459bfd6475608268326a93a4d03015338f4d4f652562a83f59006e50f15bf65aa7220bdf054098552e6"}, {0xc}, {0xc, 0x8, {0x0, 0x4}}}}, @m_gact={0x88, 0x0, 0x0, 0x0, {{0x9, 0x1, 'gact\x00'}, {0x10, 0x2, 0x0, 0x1, [@TCA_GACT_PROB={0xc}]}, {0x4d, 0x6, "c27f2ef3b02e2213e604c08a70b53024a98f7f22f17c8b3942b88b916214a708ecc071f2555d0b394c57879f9165328539b90765e95cef5a2fee0874a452910af8bbae834f09d1b0e2"}, {0xc}, {0xc}}}, @m_csum={0xc70, 0x0, 0x0, 0x0, {{0x9, 0x1, 'csum\x00'}, {0x58, 0x2, 0x0, 0x1, [@TCA_CSUM_PARMS={0x1c}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0x4, 0x8}}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0x0, 0x40, 0x8}}}]}, {0xbed, 0x6, "aecf4daed53b352481a295f0c13166f7302e8a11f278fda1f8db623a6373cbfa97c5311eb524d21da2213f30df242f2ab90c0d34a1031785c5cdc3a69c99b190f760a662de6abd79718c8a5ac7e7a1205248559f44d703692603e55bedf05ef81e7e2149a3d85d9f2a9a98bac3a14d1203999785743625e0620549b049b67757ebce740d90fced78a25667db72f60715da029a53b347863437b6e37920fbf1922a109bbe8668ad7221c7b1248b4bfc2c3de8cde6913087bd1f952573b204355e1ee9db5f10851dc6de7f1d48ce9c153504a113d36958aac259948012f444d4c70305cd9965554a3996022b00b13afdf2ee54327c0eb14b1842f36e0313e2f5adfbc8a77e7264236f26b87bd2dd66eb76bb90c7093880f0825ba82e243ae7c1a7bd23df1b5a93b4b3793deb3cc8ae364a298a755f41c90bd7dd2c91f56103cebea9dcfd89bfda46cf115730d84ea4867101eab6046d18b71401111ef08d4d205a28b732b18f9e07f2729aa837edf8e919a7a2ce2b1a53bbee769cbe8dfb0e0d03124374d8cf36bc1c8656244b936d9fbd26ebdba47b78d211001ffcfb99a7fec902315017f784ce02d0482dd4adccc38c55f93c35365cde3ddbda03487dca9558f4082209fcc036d8ec6e13b26864bac4a8c2becd9843992ddfd8d79fe60bb65d6cc6824cff04f0ea80f2d0a140e16226688ad420825f79ac3f67fabf4a6e4b6fe9ba6e3a28d71c867edf5e1c304b7db7df1f8b299be50badb87835c2bd8f74fc83a9e90bf4952f11e3afad1eee7c97dfadde08587f9210596c5b4eebdb08ccb6fc1063048f99e88758e9e8dfd38ceb8f2f8d10c6c05348b0dfa278d5519b6934414f998b40a33c39b79701df21f3445088b2c9252a8c40ffcdd4d50babb8f380ded8c1834fed715d10b5cc9db12a38c60f207715dce7bc82e949fdc0e545fd971ecc4dba0f38f1449e8a7ac3e33ac7501258d194effbeef506b5a41bc40cc4e20b7742df0d93fb09d87394c7e9cadc99f18b8d963f21a199dd361f5d68e0bba6921dcf4fca85bb3b8346b34a95ed21906006193593863828a1646cf09d32748c3604485b8930d19b73f18b850b479b8857b6a0ff6baf943b1ca452102065aa9ba0ba7e9caeb9ace92dd5c0045ed3c4799e977c53649e5889a664c2a262c3449ae47b776daecacba75b985cff25d8fbba0b2e8c72b6dbb22b7ac6ecfbc1c839e658d60c832ae3c26f695b75553b3c1125c50959d10c302597e1e6bb3bc6e39b017468ce23b8de40b93db8119dbae1031c0a5438024c5ac44e89a1aa2da180e9e2a20daa37ef22b6cdd91a214b656cb7ff82d5d0bbd2c74df355bc7b07100495ef0844096133f6ee618fafed9113ad256b85d9a25c33c88271a696008fd6f7ceefdc65645dcdfc3d27ef0182b3ca089ee2916ec14bc79c97bc5b80424df193b723c2b11e11b962880871ce3819bc61bfca86733a7eb7686ead7577390850a09f909079c09dc0a28781aa2f56ba75da2a525e5f8816e048e68cc20475a6101430313f20e37c575589d97c77050383c5e9ad25b99cfacd28760b0e5658a76e7047e5757a69b44ad262310ad8e21d473e7f1905e3ffa76935917ae79e1d33e4b03995ceaf154e673b4209478e04aab85ec249df7dc14eb5c938ad158ba4eda68798ff2c6e59c89b35e21d3871817dba8c10186fb3d46a8a38d3967052ef73e6cfa1f94e1b60105e0f00048b579c9dfb55551da2d16934ed73f6bb3665ba9949072d0444465df14aa42692267233b2ba0fbede0f547b41448a7e2771ecc268f8c7a0bcaedf29d083b9e03547d6442587b8e4ca7b94450e0ca7578fbe15e9fd258144ca41c8524712b2714721093f23d32c3a911b1e1000bf613b64b8c98cbf9a3080bc702dae529c9c846ad3754e0a9431a5913759557702907d2a3ee868a335f85120b16d14252a9fc4eafc9adc63ee09f99f9c167ad564de0e7ed65ce90383f1da20d38480ae60161fbe50a7a27c06a929d72d4b0279ecbfc4e86d0930676dfdf8a7c456eb701881709445728bc9c5a141a32eb9e00fa34e615ce3246d4246f47268ef7b37fe4d4da73cf2e5a82aaff8f46602a8ed6c4184a7e2ea469362809656c98670f521132e2d34744702757b4d2438587c48aa4c0ff3b034d1a0d532a3f161ebb98b6b63fb575841933827d4b0c622917f9afc98d1ad36f2c2dd54291da8ec0e85f57905fb08e73eaca6fdaa4becc9a3e3258610942417dd2299151aa11c17f7807bdefcfd892b663b7c56c83812122b317975ef3358dfea15c23f9e4c546842566a0fd98b99eff976022404f4c2d793ebeccb8d994c396236a32c048e9989195cb33a77eb60b8ae2c175edead44387f5c9b60f647a2e1c3c64eb29137da69f710c759ce7698415f730cb42c57aa1d616050b8988f8d7fea9e19f93a0d86b61e986e2ae2067f6b35c641b481c60d774cef23a034dec88fdb10198ddae98ec31617f654a8838dee70eff14bc143df354747bfabeb4bdc42c01834a8fc134c51a7b244e4df2e2c2b22b54f5b6142bc6114c02416a43791c8ab30061ff676a9153ef290f90b98d5388d8e5fd9a97e3a4abe78b9e2ecfcb63e4cf946f004d84f300f01d56f2a36274b8a11d45424d8802c6b72c1c0687b24fa1828a3751e68f5c1f15402fc2fcf699fb52e3b4af88216cffc886577b6311a5704e27427a648bf03a0e633ff7effe06e43a15977593e20b5a8295c729cb25018823aecb28f5f69b4662dae37fc7bb1765712d0e3e436c812c24d88c9e94ca1d629c71642ac7e785c8b75867b575d798919c601080233ad22cc986dd209f08455c81fcac5a65be6e1fccc9d84b7549d18367e8c1f3604c1bb0e1891e3146d6bfaf8a1565f49baeba48c32b8d72d5bdf22b54be2fa4a3eb77b0a88c1e832418b10508ff7954fd3aaabdd4cbe71644c7484ad535bb618ebdcabbd2c5fd17db27ac07f20f1e06f0048c1bbb39acc111a302b864f6fc13d2811a8ad57ab217e1de65b1c2be606f816396be6f7de25bbc0d4668d504f7825e58b87418c509acedc055b6293836467a06f2555f1016a72bf185804abe01e73921263e7c56c4493a217be90ddb77419755517352408596f26deb753ff91b5eba27195e5dfa39d6b545a9b8b1a526f2f389e0b692d5c6155833b9a4d2bec1b366f560b4778401414a496dcbfbdf305969cbdc67f80d3e5be69a93282e07da872ea93663d972c93cb593560de85301d57116eb9ccd6725f5aacaecb6d055583b6f3d84c04ddeb5067badac9c0ce451c08d0f5d51478b3a4eeb1acc0d69243795b5d4bf79a01ecf34f2cdb4f94c7e0359fa6aef2c3b48008550aa1ebaf706cb2234f358f097a5e8517ed5df044bbf86bd48a79b85af23b8b50aa4908106b874849b4784e2b0a0e825c4d887f97946f46eecffbca79d2855b33a31593eac16c2ce2a2eb2d9e0ed3ee6729fe65524a9ce4f7c2c32164bc35977abbeda2d06431dc4c99a2c18af7e470d49420f6dff775b01de16463e9e8dcd36dd4f410c9c7644af246089a94cea413936fda407dc2539264f573f6f27b77bf13f512da7e19344c44b65165f0dcf270980e822c6d6f920d07dc9efa94eccf290e7cd08d73af6814542023300654a05cabfb83d893844702022e4f63c18a5843ade043f490c1d6484fb5f3c26e814bbc95730774dfa157e9d4423e47c33885a347ec4511cd21e7173a6062bd0b54979475c105998c06cfb66c0ff3c2c2c1528be1f70f123c26b542aa8c0584401cda6eccdbba99980801d61bf460559bea7b72ced0d236d3f24a8832cb7ab8f6d9a3030ead6394b4dba2dc2c2b63a6e038dbe509985484b4c10bd90d086a70790fdeb3b5611609ceb76b29f2860588b8681da030a9faae462f709b95a968a5f03983aab0733056a44d2bcbeb616b5d8b953917d2acc8dfeb5de0c62576595bbc5fbf0b612bb3a2b8358d4ec299ce878af835629676c5d62cff247eb0797184d9388a3a7e69185ca7c51f984df32b8c5e62b6f5dfe696d103809f7e72583a97db029f6de844bd03b283c76de40d7c7242416709263fa68a555d49c9d468a87bdef0cc51fd7d4d2496fe3f3e28a81a2e937db4f141248d739fe28986a9455bf89fad12b945bcc0cfe08142be139f6219fdf3c0c920799b912bdc815d3366ebfb5787decb9fa92066fdb428ea2ee0be3e6c77e1f80eb0981305218ec62c62ba6d213fbef3d36688983fac2de06487c0c462b49b2e5efe6a267555ffb4de6bd53193c7ea7aeeb9299242b6765e6a9074e2777695b64ec5061a18"}, {0xc}, {0xc}}}]}]}, 0xec4}}, 0x0) 13:16:05 executing program 4: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x17, 0x3, &(0x7f0000000140)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) [ 391.491120] IPVS: ftp: loaded support on port[0] = 21 13:16:05 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) recvmsg(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000080)=@l2tp={0x2, 0x0, @remote}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000100)=""/193, 0xc1}, {&(0x7f0000000240)=""/203, 0xcb}, {&(0x7f0000000340)=""/182, 0xb6}, {&(0x7f0000000400)=""/103, 0x67}, {&(0x7f0000000480)=""/140, 0x8c}, {&(0x7f0000000540)=""/90, 0x5a}, {&(0x7f00000005c0)=""/201, 0xc9}, {&(0x7f00000006c0)=""/177, 0xb1}, {&(0x7f0000000780)=""/109, 0x6d}], 0x9, &(0x7f00000008c0)=""/241, 0xf1}, 0x1) 13:16:05 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) 13:16:05 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000040), 0x4) 13:16:05 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x7, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000080), 0x4) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x8, @initdev={0xfe, 0x88, [], 0x0, 0x0}}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback, 0x1}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)="f6", 0x1, 0x26048881, &(0x7f0000000240)={0xa, 0x0, 0x1, @dev={0xfe, 0x80, [], 0x14}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:16:05 executing program 5 (fault-call:0 fault-nth:68): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:16:05 executing program 3: r0 = bpf$OBJ_GET_PROG(0x7, &(0x7f00000000c0)={&(0x7f0000000080)='./file0\x00', 0x0, 0x8}, 0x10) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000340)={0xffffffffffffffff, 0xc0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)=0x1, 0x0, 0x0, 0x0, &(0x7f0000000140)={0x0, 0x3}, 0x0, 0x0, &(0x7f0000000180)={0x2, 0x9, 0x8, 0x1f}, &(0x7f00000001c0)=0x3, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)=0x8}}, 0x10) tee(0xffffffffffffffff, r0, 0x5, 0xa) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) 13:16:05 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) [ 391.767252] print_req_error: I/O error, dev loop0, sector 0 13:16:05 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040)='nl80211\x00') ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_AUTHENTICATE(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000003c0)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000002500000008000300", @ANYRES32=r2], 0x44}}, 0x0) 13:16:05 executing program 3: r0 = syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) recvfrom(0xffffffffffffffff, &(0x7f0000000080)=""/35, 0x23, 0x2, &(0x7f00000000c0)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x2, 0x0, 0x2, 0x2, {0xa, 0x4e23, 0x8e5, @private0, 0x97aa}}}, 0x80) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180)='nl80211\x00') sendmsg$NL80211_CMD_TESTMODE(0xffffffffffffffff, &(0x7f0000001480)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000001c0)={&(0x7f0000001240)={0x230, r1, 0x400, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x8, 0x3d}}}}, [@NL80211_ATTR_TESTDATA={0xf2, 0x45, "1dd65f48dd4a19662de2ca726ac2283b470726429f0d6a91213d3beaea87a777a7d1c17b240778f9e0a577b6d99fa418b06a20560c1c7329a7939d36a3928a428e34b056bdfb25a835393ce9438c9a52fa1655951b0b9ac8ef8061651cdf636d693cee26461abc187c8956e8a27fb80e482387c104c37b05f311da28be37dc6c7da97d7f08b035159c8bb3d26370ebcd736f9f08fd5f0dfc46019149feadc7cb302551bb9c53f1bed255745ce0e4ebb1f789357a8372778ac3c4414b56b805faadc9596d5108a403bd4af8d430517f0139b229141fd39f206ce7e508a58473b7dd8572c788f53e04e1c2e6645ea1"}, @NL80211_ATTR_TESTDATA={0xf4, 0x45, "21edf140e534c7358749e368b58d4a5fd8426f962f5b74704dff0554fd4e9975ea9f4fe33101c380bc84292c18d451e89d07f334114aeec5fd575978d8980babc8cdcfc33e5d50d80f55a5d7a2c59fa12a70024dbdc5dbc2f6e8ac818208395a9d93158feb7bd1fc552040971d931e7b881dd3be9b6321a8947146a752bebac46fa38904e26a3b80646066a70a8c0b43001907a9627aa99223ac6b38a642816e8077938617d33b9a2072327b049bfdefa4b2b0ffc42921ad975cd54ddcdf6fdc64fbfde7d2af030cb60306930fe5c875eb71ab9d829ceb850b802c35afb63c6384ffd50f44aa15512bd3e8c3d76f6c32"}, @NL80211_ATTR_TESTDATA={0x25, 0x45, "0ebe7581b07f866b49ef9c65e74a15f20dd7948f68513e3064eadffa48b0ae5376"}]}, 0x230}, 0x1, 0x0, 0x0, 0x8000}, 0x4811) read(r0, &(0x7f0000000240)=""/4096, 0x1000) [ 391.836621] FAULT_INJECTION: forcing a failure. [ 391.836621] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 391.872805] CPU: 0 PID: 1332 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 391.880647] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 391.890014] Call Trace: [ 391.892636] dump_stack+0x1b2/0x283 [ 391.896365] should_fail.cold+0x10a/0x154 [ 391.900529] __alloc_pages_nodemask+0x22c/0x2720 [ 391.905301] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 391.910417] ? debug_check_no_obj_freed+0x2c0/0x674 [ 391.915479] ? retint_kernel+0x2d/0x2d [ 391.919377] ? btrfs_parse_early_options.constprop.0+0x25b/0x2f0 [ 391.925713] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 391.930895] ? kfree+0x14a/0x250 [ 391.934267] ? btrfs_parse_early_options.constprop.0+0x18e/0x2f0 [ 391.940415] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 391.945420] ? btrfs_parse_early_options.constprop.0+0x193/0x2f0 [ 391.951565] ? parse_security_options.constprop.0+0x90/0x90 [ 391.957257] ? lock_acquire+0x170/0x3f0 [ 391.961214] ? pcpu_alloc+0x8e8/0xf50 [ 391.964999] alloc_pages_current+0x155/0x260 [ 391.969392] get_zeroed_page+0x19/0x50 [ 391.973365] parse_security_options.constprop.0+0x1a/0x90 [ 391.978901] btrfs_mount+0x1d5/0x1fe0 [ 391.982731] ? lock_downgrade+0x740/0x740 [ 391.986867] ? _find_next_bit+0xdb/0x100 [ 391.990920] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 391.997060] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 392.002490] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 392.007502] ? __lockdep_init_map+0x100/0x560 [ 392.011989] ? __lockdep_init_map+0x100/0x560 [ 392.016468] mount_fs+0x92/0x2a0 [ 392.019831] vfs_kern_mount.part.0+0x5b/0x470 [ 392.024342] vfs_kern_mount+0x3c/0x60 [ 392.028135] btrfs_mount+0x42a/0x1fe0 [ 392.031958] ? lock_downgrade+0x740/0x740 [ 392.036097] ? _find_next_bit+0xdb/0x100 [ 392.040146] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 392.046196] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 392.051625] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 392.056619] ? __lockdep_init_map+0x100/0x560 [ 392.061181] ? __lockdep_init_map+0x100/0x560 [ 392.065721] mount_fs+0x92/0x2a0 [ 392.069072] vfs_kern_mount.part.0+0x5b/0x470 [ 392.073637] do_mount+0xe53/0x2a00 [ 392.077162] ? do_raw_spin_unlock+0x164/0x220 [ 392.081815] ? copy_mount_string+0x40/0x40 [ 392.086060] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 392.091084] ? copy_mnt_ns+0xa30/0xa30 [ 392.094959] ? copy_mount_options+0x1fa/0x2f0 [ 392.099782] ? copy_mnt_ns+0xa30/0xa30 [ 392.103665] SyS_mount+0xa8/0x120 [ 392.107107] ? copy_mnt_ns+0xa30/0xa30 [ 392.110977] do_syscall_64+0x1d5/0x640 [ 392.114942] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 392.120114] RIP: 0033:0x460c6a [ 392.123340] RSP: 002b:00007fe27cb4fa78 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 392.131033] RAX: ffffffffffffffda RBX: 00007fe27cb4fb10 RCX: 0000000000460c6a [ 392.138286] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 00007fe27cb4fad0 [ 392.145538] RBP: 00007fe27cb4fad0 R08: 00007fe27cb4fb10 R09: 0000000020000000 [ 392.152808] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020000000 [ 392.160060] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 13:16:05 executing program 3: r0 = syz_mount_image$befs(&(0x7f0000000000)='befs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000001140)=[{&(0x7f0000000080)="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", 0x1000, 0x80}, {&(0x7f0000001080)="20d9600e05242713c53f81c988a68577ac71f9f0a8f908a65cc820382888dce8d606b6429a2848d4e36dff44d1cdc2e13cba5cf31129d0c85aa67200e33423c1952d131a25cc052351d60147202eb6448f94144bb6e9b997460bd9ad4ee0607fda0b8b8258d7c9be05ad34194fbe5fadb60bf7865973824be8718fc1522e3cb19d9a43ac9962aa", 0x87, 0xfffffffffffffffb}], 0x8400, &(0x7f0000001180)={[{'(!'}, {'}.'}]}) lsetxattr$security_evm(&(0x7f0000001500)='./file0\x00', &(0x7f0000001540)='security.evm\x00', &(0x7f0000001580)=@md5={0x1, "fb763d5570c01a0c2d71d8ab0ef609a6"}, 0x11, 0x0) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r0) preadv2(r0, &(0x7f0000001480)=[{&(0x7f00000011c0)=""/19, 0x13}, {&(0x7f0000001200)=""/231, 0xe7}, {&(0x7f0000001300)=""/178, 0xb2}, {&(0x7f00000013c0)=""/113, 0x71}, {&(0x7f0000001440)=""/58, 0x3a}], 0x5, 0x11, 0x7, 0x1d) [ 392.185057] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.4'. 13:16:05 executing program 4: r0 = socket$l2tp6(0xa, 0x2, 0x73) sendto$l2tp6(r0, 0x0, 0x0, 0x20008000, &(0x7f0000000040)={0xa, 0x0, 0x0, @private0, 0xe3}, 0x20) 13:16:05 executing program 3: r0 = open(&(0x7f0000000400)='./bus\x00', 0x14103e, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, r0, 0x0) read(r0, &(0x7f0000000180)=""/19, 0xfffffe47) sendmsg$L2TP_CMD_SESSION_GET(r0, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB='H\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000208000000fedbdf2508000000050021000000000005002200000000000c000f00ff7f00000000000008001700", @ANYRES32, @ANYBLOB="08001800ac1414000400000000000001"], 0x48}, 0x1, 0x0, 0x0, 0x801}, 0x4040084) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f00000002c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r1, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=ANY=[@ANYBLOB="380000002400ffffff7f000000003c0005000000", @ANYRES32=r1, @ANYBLOB="00000000ffffffff00000000090001006866736300000000080002"], 0x38}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000005c0)=ANY=[@ANYBLOB="900000002c00270d00"/20, @ANYRES32=r1, @ANYBLOB="f7ff0000000000000e00000007000100667700005c00020058000400540001000b00010073696d706c650000280002800c0003007463696e6465780018000200"], 0x90}}, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r3, &(0x7f00000002c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r4, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=ANY=[@ANYBLOB="380000002400ffffff7f000000003c0005000000", @ANYRES32=r4, @ANYBLOB="00000000ffffffff00000000090001006866736300000000080002"], 0x38}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000005c0)=ANY=[@ANYBLOB="900000002c00270d00"/20, @ANYRES32=r4, @ANYBLOB="f7ff0000000000000e00000007000100667700005c00020058000400540001000b00010073696d706c650000280002800c0003007463696e6465780018000200"], 0x90}}, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f00000003c0)={'team0\x00', 0x0}) getsockname$packet(r0, &(0x7f0000004ac0)={0x11, 0x0, 0x0}, &(0x7f0000004b00)=0x14) sendmsg$TEAM_CMD_NOOP(0xffffffffffffffff, &(0x7f0000004e40)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000004e00)={&(0x7f0000004b40)={0x2ac, 0x0, 0x200, 0x70bd2a, 0x25dfdbfc, {}, [{{0x8}, {0x3c, 0x2, 0x0, 0x1, [{0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x5}, {0x8, 0x4, 0x7}}}]}}, {{0x8}, {0xc0, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x5}, {0x8}}, {0x8}}}, {0x3c, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x5}, {0xb, 0x4, 'random\x00'}}}, {0x40, 0x1, @priority={{{0x24, 0x1, 'priority\x00'}, {0x5}, {0x8}}, {0x8}}}]}}, {{0x8, 0x1, r1}, {0x12c, 0x2, 0x0, 0x1, [{0x3c, 0x1, @user_linkup={{{0x24, 0x1, 'user_linkup\x00'}, {0x5}, {0x4}}, {0x8, 0x6, r4}}}, {0x3c, 0x1, @lb_tx_method={{0x24, 0x1, 'lb_tx_method\x00'}, {0x5}, {0x9, 0x4, 'hash\x00'}}}, {0x40, 0x1, @lb_port_stats={{{0x24, 0x1, 'lb_port_stats\x00'}, {0x5}, {0x8, 0x4, 0x6}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x5}, {0x8, 0x4, 0x7f}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x5}, {0x8, 0x4, 0x6}}}]}}, {{0x8}, {0x4}}, {{0x8, 0x1, r5}, {0x44, 0x2, 0x0, 0x1, [{0x40, 0x1, @queue_id={{{0x24, 0x1, 'queue_id\x00'}, {0x5}, {0x8, 0x4, 0x20}}, {0x8, 0x6, r6}}}]}}]}, 0x2ac}, 0x1, 0x0, 0x0, 0x1000}, 0x24010) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) 13:16:05 executing program 5 (fault-call:0 fault-nth:69): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) [ 392.335457] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'. [ 392.356183] FAULT_INJECTION: forcing a failure. [ 392.356183] name failslab, interval 1, probability 0, space 0, times 0 [ 392.367745] CPU: 0 PID: 1374 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 392.375641] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 392.385025] Call Trace: [ 392.388053] dump_stack+0x1b2/0x283 [ 392.391781] should_fail.cold+0x10a/0x154 [ 392.395913] should_failslab+0xd6/0x130 [ 392.399870] kmem_cache_alloc+0x40/0x3c0 [ 392.403913] radix_tree_node_alloc.constprop.0+0x1b0/0x2f0 [ 392.409682] __radix_tree_create+0x323/0x4b0 [ 392.414115] page_cache_tree_insert+0x98/0x2a0 [ 392.418705] ? file_check_and_advance_wb_err+0x370/0x370 [ 392.424150] ? __add_to_page_cache_locked+0x1ed/0x840 [ 392.429328] __add_to_page_cache_locked+0x1fd/0x840 [ 392.434387] ? page_cache_tree_insert+0x2a0/0x2a0 [ 392.439380] ? find_get_entry+0x339/0x630 [ 392.443511] add_to_page_cache_lru+0xcf/0x2b0 [ 392.448002] ? add_to_page_cache_locked+0x40/0x40 [ 392.452826] ? alloc_pages_current+0x15d/0x260 [ 392.457477] do_read_cache_page+0x36f/0xc10 [ 392.461802] ? blkdev_writepages+0xd0/0xd0 [ 392.466021] btrfs_read_disk_super+0xd0/0x370 [ 392.470509] btrfs_scan_one_device+0xb5/0x330 [ 392.474986] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 392.479980] ? device_list_add+0x8f0/0x8f0 [ 392.484193] btrfs_mount+0x1fc/0x1fe0 [ 392.487976] ? lock_downgrade+0x740/0x740 [ 392.492110] ? _find_next_bit+0xdb/0x100 [ 392.496161] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 392.502120] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 392.507556] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 392.512558] ? __lockdep_init_map+0x100/0x560 [ 392.517033] ? __lockdep_init_map+0x100/0x560 [ 392.521521] mount_fs+0x92/0x2a0 [ 392.524879] vfs_kern_mount.part.0+0x5b/0x470 [ 392.529442] vfs_kern_mount+0x3c/0x60 [ 392.533238] btrfs_mount+0x42a/0x1fe0 [ 392.537019] ? lock_downgrade+0x740/0x740 [ 392.541148] ? _find_next_bit+0xdb/0x100 [ 392.545214] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 392.551167] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 392.556607] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 392.561636] ? __lockdep_init_map+0x100/0x560 [ 392.566208] ? __lockdep_init_map+0x100/0x560 [ 392.570862] mount_fs+0x92/0x2a0 [ 392.574218] vfs_kern_mount.part.0+0x5b/0x470 [ 392.578703] do_mount+0xe53/0x2a00 [ 392.582267] ? copy_mount_string+0x40/0x40 [ 392.586502] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 392.591515] ? copy_mnt_ns+0xa30/0xa30 [ 392.595402] ? copy_mount_options+0x1fa/0x2f0 [ 392.599913] ? copy_mnt_ns+0xa30/0xa30 [ 392.603794] SyS_mount+0xa8/0x120 [ 392.607243] ? copy_mnt_ns+0xa30/0xa30 [ 392.611112] do_syscall_64+0x1d5/0x640 [ 392.614985] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 392.620154] RIP: 0033:0x460c6a [ 392.623319] RSP: 002b:00007fe27cb4fa78 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 392.631003] RAX: ffffffffffffffda RBX: 00007fe27cb4fb10 RCX: 0000000000460c6a [ 392.638254] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 00007fe27cb4fad0 [ 392.645522] RBP: 00007fe27cb4fad0 R08: 00007fe27cb4fb10 R09: 0000000020000000 [ 392.652769] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020000000 [ 392.660495] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 13:16:06 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, 0x0, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) 13:16:06 executing program 4: r0 = socket$l2tp6(0xa, 0x2, 0x73) setsockopt$inet6_IPV6_PKTINFO(r0, 0x29, 0x4d, 0x0, 0x0) [ 392.694398] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'. 13:16:06 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:16:06 executing program 4: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$PIO_SCRNMAP(r0, 0x4bfa, 0x0) 13:16:06 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) newfstatat(0xffffffffffffff9c, &(0x7f0000000440)='./file0\x00', &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x7000) chown(&(0x7f0000000300)='./file0\x00', r0, 0xffffffffffffffff) syz_mount_image$gfs2meta(&(0x7f0000000080)='gfs2meta\x00', &(0x7f00000000c0)='./file0\x00', 0x8, 0x1, &(0x7f0000000340)=[{&(0x7f0000000100)="53ccce62291a4158a7445eebfa2d954a46de77d276bd089eea1f3581f528a850481c7fb41fb6ead1f126f692339261f990169eb73dfe6a0c56025cb898068ad9117a1ee6da686c6e438e14a2f229777440cd830670cb9c88bab1756e6e3cb62f8ddcf5f118ff2f0a37482ce15a04c8a247791e4652cb461c1ace58bf54e7c9a509fae5ac4e2c830e59c8636fc7d513f3e9d004a81f189797d8343e0ff36d", 0x9e, 0x7}], 0x84000, &(0x7f0000000240)=ANY=[@ANYBLOB='btrfs\x00,:^*$.,btrfs\x00,m](,,,btrfs\x00,,,appraise_type=imasig,subj_role=btrfs\x00,obj_type=btrfs\x00,smackfsroot=,subj_type=btrfs\x00,uid<', @ANYRES32=r0, @ANYBLOB=',mas\x00\x00^MAY_AP>\x00\x00\x00\x00\x00']) 13:16:06 executing program 1: unshare(0x40000000) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x17ffff0, 0x810, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) ppoll(&(0x7f00000000c0)=[{0xffffffffffffffff, 0x280}, {0xffffffffffffffff, 0x2108}, {0xffffffffffffffff, 0x5005}, {0xffffffffffffffff, 0x400}, {0xffffffffffffffff, 0x10}], 0x5, &(0x7f0000000100), &(0x7f0000000140)={[0x3]}, 0x8) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x54, 0x0) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) r0 = dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(0xffffffffffffffff, &(0x7f00000002c0)="fd", 0x1, 0x4008000, &(0x7f0000000080)={0xa, 0x0, 0x0, @mcast1, 0x1}, 0x1c) poll(&(0x7f0000000000)=[{}], 0x1, 0xef) close(0xffffffffffffffff) 13:16:06 executing program 5 (fault-call:0 fault-nth:70): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:16:06 executing program 4: bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x16, 0x0, 0x400000, 0x8001, 0x0, 0x1}, 0x40) 13:16:06 executing program 3: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0) ftruncate(r0, 0x208200) name_to_handle_at(r0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)={0x3f, 0x101, "add3550d09e7acf5455bbac439f489ad51ac810844f3512d25628eb8110c15b80e30fbb2e0f9fdccbf7439942465988740370d17ac77aa"}, &(0x7f0000000100), 0x0) [ 392.848641] FAULT_INJECTION: forcing a failure. [ 392.848641] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 392.865536] CPU: 1 PID: 1409 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 392.873391] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 392.882923] Call Trace: [ 392.885521] dump_stack+0x1b2/0x283 [ 392.889180] should_fail.cold+0x10a/0x154 [ 392.893343] __alloc_pages_nodemask+0x22c/0x2720 [ 392.898114] ? blkdev_get+0x484/0x890 [ 392.901949] ? blkdev_get+0x484/0x890 [ 392.905761] ? blkdev_get+0x547/0x890 [ 392.909571] ? __radix_tree_lookup+0x1b5/0x2e0 [ 392.914419] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 392.919278] ? find_get_entry+0x339/0x630 [ 392.923439] alloc_pages_current+0x155/0x260 [ 392.927879] do_read_cache_page+0x442/0xc10 [ 392.932202] ? blkdev_writepages+0xd0/0xd0 [ 392.936425] btrfs_read_disk_super+0xd0/0x370 [ 392.940998] btrfs_scan_one_device+0xb5/0x330 [ 392.945473] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 392.950470] ? device_list_add+0x8f0/0x8f0 [ 392.954689] btrfs_mount+0x1fc/0x1fe0 [ 392.958469] ? lock_downgrade+0x740/0x740 [ 392.962598] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 392.968557] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 392.973985] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 392.978978] ? __lockdep_init_map+0x100/0x560 [ 392.983452] ? __lockdep_init_map+0x100/0x560 [ 392.987930] mount_fs+0x92/0x2a0 [ 392.991291] vfs_kern_mount.part.0+0x5b/0x470 [ 392.995769] vfs_kern_mount+0x3c/0x60 [ 392.999553] btrfs_mount+0x42a/0x1fe0 [ 393.003332] ? lock_downgrade+0x740/0x740 [ 393.007482] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 393.013439] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 393.018869] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 393.023866] ? __lockdep_init_map+0x100/0x560 [ 393.028344] ? __lockdep_init_map+0x100/0x560 [ 393.032818] mount_fs+0x92/0x2a0 [ 393.036165] vfs_kern_mount.part.0+0x5b/0x470 [ 393.040641] do_mount+0xe53/0x2a00 [ 393.044163] ? copy_mount_string+0x40/0x40 [ 393.048377] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 393.053372] ? copy_mnt_ns+0xa30/0xa30 [ 393.057243] ? copy_mount_options+0x1fa/0x2f0 [ 393.061726] ? copy_mnt_ns+0xa30/0xa30 [ 393.065608] SyS_mount+0xa8/0x120 [ 393.069047] ? copy_mnt_ns+0xa30/0xa30 [ 393.072919] do_syscall_64+0x1d5/0x640 [ 393.076810] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 393.081979] RIP: 0033:0x460c6a [ 393.085415] RSP: 002b:00007fe27cb4fa78 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 13:16:06 executing program 4: perf_event_open(&(0x7f0000000080)={0x1, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) open(&(0x7f0000000100)='./bus\x00', 0x11250c2, 0x0) [ 393.093106] RAX: ffffffffffffffda RBX: 00007fe27cb4fb10 RCX: 0000000000460c6a [ 393.100443] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 00007fe27cb4fad0 [ 393.107706] RBP: 00007fe27cb4fad0 R08: 00007fe27cb4fb10 R09: 0000000020000000 [ 393.114963] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020000000 [ 393.122221] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 13:16:06 executing program 3: getsockname$packet(0xffffffffffffffff, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f00000001c0)=0x14) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x6de66d5d6991c206}, 0xc, &(0x7f0000000480)={&(0x7f0000000400)=@ipv4_delrule={0x48, 0x21, 0xc, 0x70bd26, 0x25dfdbfb, {0x2, 0x0, 0x10, 0x7, 0x39, 0x0, 0x0, 0x1, 0xd}, [@FRA_FLOW={0x8, 0xb, 0xa3d1}, @FRA_GENERIC_POLICY=@FRA_UID_RANGE={0xc, 0x14, {0xee01}}, @FRA_GENERIC_POLICY=@FRA_PRIORITY={0x8, 0x6, 0x5}, @FRA_DST={0x8, 0x1, @loopback}, @FRA_SRC={0x8, 0x2, @multicast1}]}, 0x48}, 0x1, 0x0, 0x0, 0x4081}, 0x20000050) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) getsockname$packet(r2, &(0x7f00000002c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r3, @ANYBLOB="00000000000000002800120009000100766574685297ee1a824765516cf6b774e3e69c7d17a816e947ab5fd23ac3daa62e0c75f95c1e336d27faecbd6bbe608c1d8973a8d03ec942d36815ee6adc42701612c1450f96cb335007a8865cc956cbb770962afb446d15cef51247c006700604be3a34ce59b86e40c21be9b92ba713eb2cf2ffc41332ef13de33a966d697f86f1cdeeb8ba49c46b09e7d466131d41cab6194b4852eef0c48b9f4548b34812052c271e06fbcbf6e6ca3a70a1071933ef90ccb1124431f2ca008eeb47c942fa049702410ae75d6ec3c53ba34be1f5ebf6c6f953c77e3db7a0f2826dcec9ba911e11b95892ce00ac1de"], 0x48}}, 0x0) r4 = getpid() ioprio_get$pid(0x2, r4) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x31, &(0x7f0000000140)={&(0x7f00000004c0)=ANY=[@ANYBLOB="380000002400ffffff7f000000003c0005000000", @ANYRES32=r3, @ANYRES16=r4], 0x38}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000005c0)=ANY=[@ANYBLOB="900000002c00270d00"/20, @ANYRES32=r3, @ANYBLOB="f7ff0000000000000e00000007000100667700005c00020058000400540001000b00010073696d706c650000280002800c0003007463696e6465780018000200"], 0x90}}, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000340)={&(0x7f0000000240)=@ipv4_newroute={0xd0, 0x18, 0x200, 0x70bd25, 0x25dfdbfc, {0x2, 0x80, 0x20, 0x5, 0x0, 0x3, 0x35, 0x5, 0x1200}, [@RTA_MARK={0x8, 0x10, 0x7}, @RTA_MULTIPATH={0xc, 0x9, {0x60a5, 0x0, 0x7}}, @RTA_SRC={0x8, 0x2, @local}, @RTA_IIF={0x8, 0x3, r0}, @RTA_GATEWAY={0x8, 0x5, @local}, @RTA_ENCAP={0x70, 0x16, 0x0, 0x1, @RPL_IPTUNNEL_SRH={0x6c, 0x1, {0x8, 0x68, 0x1, 0xc0, 0x28, [@remote, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @mcast2, @initdev={0xfe, 0x88, [], 0x1, 0x0}, @initdev={0xfe, 0x88, [], 0x1, 0x0}, @loopback]}}}, @RTA_MARK={0x8, 0x10, 0xeea}, @RTA_IIF={0x8, 0x3, r3}, @RTA_ENCAP_TYPE={0x6, 0x15, 0x5}]}, 0xd0}, 0x1, 0x0, 0x0, 0x8800}, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000080)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d2ad5f5c347ef19db55f474d133b60dff7d2f736b5ffa6f1cc5a4a9bf343187adcae6e94e80c14e68706156a47cb6613ddd568df9ff969d213a15b21fa6b072e436ca2146ff4717310a75ae65c6464c7c7622e557ad34e67d21872ebdb265e9064e08a04f1db27fe8dbeced2107986b6250234a1c55c2", 0xbe, 0x10000}, {0x0}], 0x0, &(0x7f00000007c0)=ANY=[]) ioctl$F2FS_IOC_MOVE_RANGE(r1, 0xc020f509, &(0x7f0000000540)={r2, 0x5, 0x5, 0x20}) sendmsg$nl_route_sched(r5, &(0x7f0000000800)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000007c0)={&(0x7f0000000780)=@newtclass={0x34, 0x28, 0x2, 0x70bd2b, 0x25dfdbff, {0x0, 0x0, 0x0, r0, {0xe, 0x8}, {0xfff1, 0x1c}, {0x4, 0x91678a649b63e6bc}}, [@tclass_kind_options=@c_sfb={0x8, 0x1, 'sfb\x00'}, @TCA_RATE={0x6, 0x5, {0x49, 0x44}}]}, 0x34}, 0x1, 0x0, 0x0, 0x4}, 0x48000) 13:16:06 executing program 5 (fault-call:0 fault-nth:71): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) [ 393.188132] audit: type=1800 audit(1609938966.707:47): pid=1431 uid=0 auid=0 ses=4 op="collect_data" cause="failed(directio)" comm="syz-executor.4" name="bus" dev="sda1" ino=15778 res=0 [ 393.241145] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'. [ 393.263427] FAULT_INJECTION: forcing a failure. [ 393.263427] name failslab, interval 1, probability 0, space 0, times 0 [ 393.276894] CPU: 0 PID: 1440 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 393.279404] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'. [ 393.284715] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 393.284719] Call Trace: [ 393.284736] dump_stack+0x1b2/0x283 [ 393.284752] should_fail.cold+0x10a/0x154 [ 393.284767] should_failslab+0xd6/0x130 [ 393.284778] kmem_cache_alloc+0x28e/0x3c0 [ 393.284794] alloc_buffer_head+0x20/0x110 [ 393.325404] alloc_page_buffers+0xb3/0x1f0 [ 393.329622] create_empty_buffers+0x36/0x450 [ 393.334023] ? mem_cgroup_commit_charge+0x17c/0x3b0 [ 393.339056] create_page_buffers+0x14d/0x1c0 [ 393.343443] block_read_full_page+0xb9/0x870 [ 393.347833] ? __add_to_page_cache_locked+0x2ea/0x840 [ 393.353149] ? check_preemption_disabled+0x35/0x240 [ 393.358156] ? set_init_blocksize+0x210/0x210 [ 393.362655] ? __lru_cache_add+0x178/0x250 [ 393.367130] ? __bread_gfp+0x2e0/0x2e0 [ 393.371022] ? add_to_page_cache_lru+0x136/0x2b0 [ 393.375780] ? add_to_page_cache_locked+0x40/0x40 [ 393.380606] ? alloc_pages_current+0x15d/0x260 [ 393.385171] do_read_cache_page+0x38e/0xc10 [ 393.389478] ? blkdev_writepages+0xd0/0xd0 [ 393.393969] btrfs_read_disk_super+0xd0/0x370 [ 393.398483] btrfs_scan_one_device+0xb5/0x330 [ 393.402961] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 393.407966] ? device_list_add+0x8f0/0x8f0 [ 393.412186] btrfs_mount+0x1fc/0x1fe0 [ 393.415970] ? lock_downgrade+0x740/0x740 [ 393.420109] ? _find_next_bit+0xdb/0x100 [ 393.424264] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 393.430238] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 393.435678] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 393.440696] ? __lockdep_init_map+0x100/0x560 [ 393.445181] ? __lockdep_init_map+0x100/0x560 [ 393.449672] mount_fs+0x92/0x2a0 [ 393.453028] vfs_kern_mount.part.0+0x5b/0x470 [ 393.457508] vfs_kern_mount+0x3c/0x60 [ 393.461303] btrfs_mount+0x42a/0x1fe0 [ 393.465090] ? lock_downgrade+0x740/0x740 [ 393.469232] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 393.475204] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 393.480636] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 393.485638] ? __lockdep_init_map+0x100/0x560 [ 393.490206] ? __lockdep_init_map+0x100/0x560 [ 393.494682] mount_fs+0x92/0x2a0 [ 393.498033] vfs_kern_mount.part.0+0x5b/0x470 [ 393.502525] do_mount+0xe53/0x2a00 [ 393.506063] ? copy_mount_string+0x40/0x40 [ 393.510277] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 393.515457] ? copy_mnt_ns+0xa30/0xa30 [ 393.519333] ? copy_mount_options+0x1fa/0x2f0 [ 393.523817] ? copy_mnt_ns+0xa30/0xa30 [ 393.527688] SyS_mount+0xa8/0x120 [ 393.531121] ? copy_mnt_ns+0xa30/0xa30 [ 393.534993] do_syscall_64+0x1d5/0x640 [ 393.538866] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 393.544035] RIP: 0033:0x460c6a [ 393.547216] RSP: 002b:00007fe27cb4fa78 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 393.554992] RAX: ffffffffffffffda RBX: 00007fe27cb4fb10 RCX: 0000000000460c6a [ 393.562244] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 00007fe27cb4fad0 [ 393.569496] RBP: 00007fe27cb4fad0 R08: 00007fe27cb4fb10 R09: 0000000020000000 [ 393.576756] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020000000 [ 393.584007] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 13:16:07 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, 0x0, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) 13:16:07 executing program 4: syz_mount_image$tmpfs(&(0x7f0000001240)='tmpfs\x00', &(0x7f0000001280)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'interleave', '=static', @val={0x3a, [0x36, 0x37]}}}}]}) 13:16:07 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000140)={'batadv0\x00', 0x0}) setsockopt$inet_mreqn(r0, 0x0, 0x24, &(0x7f0000000500)={@broadcast, @empty, r2}, 0xc) 13:16:07 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(0xffffffffffffffff, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:16:07 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mkdir(&(0x7f0000000300)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='ramfs\x00', 0x50, 0x0) r0 = creat(&(0x7f00000001c0)='./file0/bus\x00', 0x6857b21ff1155d90) fcntl$lock(r0, 0x7, &(0x7f0000027000)={0x1}) chdir(&(0x7f0000000040)='./bus\x00') r1 = open(&(0x7f0000021000)='./file0\x00', 0x0, 0x0) fchdir(r1) r2 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) write$P9_RREADLINK(r2, &(0x7f0000000100)=ANY=[], 0x1c) sendfile(r2, r2, &(0x7f0000000240), 0x7fff) [ 393.653652] tmpfs: Bad value 'interleave=static:67' for mount option 'mpol' [ 393.662922] tmpfs: Bad value 'interleave=static:67' for mount option 'mpol' 13:16:07 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f000043f000/0x1000)=nil, 0x1000, 0x7ffffc, 0x110, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @private0, 0x200}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f0000000080)="e4ffcac50d8b87f529fc0704e5104840fc9a4e849bc8ca4663c500e729c93befae8990f86039eac548d51ca0b9b418ca3a14ee27f0cbc9161edab52ff3a937c428c30ed97402b9cd7f663ea60f56da35476fe00946ce517f5b81d16d48c5a6732b4f2d3b", 0x64, 0x40, &(0x7f0000000240)={0xa, 0x0, 0x3, @private1}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:16:07 executing program 3: socketpair(0x1e, 0x2, 0x0, &(0x7f0000003b00)={0xffffffffffffffff}) sendmmsg$nfc_llcp(r0, &(0x7f00000037c0)=[{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000140)='F', 0x1}, {&(0x7f0000000180)="be", 0x1}], 0x2, &(0x7f0000000240)={0x28, 0x0, 0x0, "85202e95def17bcb310f4fe5deb900b060"}, 0x28}], 0x1, 0x0) [ 393.727945] print_req_error: I/O error, dev loop0, sector 0 13:16:07 executing program 5 (fault-call:0 fault-nth:72): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:16:07 executing program 3: socket$isdn(0x22, 0x3, 0x34) 13:16:07 executing program 3: r0 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, &(0x7f0000000040)=0xc) [ 393.872223] FAULT_INJECTION: forcing a failure. [ 393.872223] name failslab, interval 1, probability 0, space 0, times 0 [ 393.902654] CPU: 0 PID: 1482 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 393.910495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 393.920158] Call Trace: [ 393.922752] dump_stack+0x1b2/0x283 [ 393.926387] should_fail.cold+0x10a/0x154 [ 393.930577] ? mempool_free+0x1d0/0x1d0 [ 393.934551] should_failslab+0xd6/0x130 [ 393.938527] kmem_cache_alloc+0x40/0x3c0 [ 393.942618] ? mempool_free+0x1d0/0x1d0 [ 393.946593] mempool_alloc+0x10e/0x2d0 [ 393.950595] ? remove_element.isra.0+0x1b0/0x1b0 [ 393.955447] ? alloc_buffer_head+0x20/0x110 [ 393.959770] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 393.965222] bio_alloc_bioset+0x41b/0x830 [ 393.969373] ? bvec_alloc+0x2d0/0x2d0 [ 393.973171] ? lock_downgrade+0x740/0x740 [ 393.977318] submit_bh_wbc+0xf5/0x6f0 [ 393.981191] block_read_full_page+0x6ce/0x870 [ 393.985671] ? set_init_blocksize+0x210/0x210 [ 393.990167] ? __lru_cache_add+0x178/0x250 [ 393.994382] ? __bread_gfp+0x2e0/0x2e0 [ 393.998255] ? add_to_page_cache_lru+0x136/0x2b0 [ 394.002992] ? add_to_page_cache_locked+0x40/0x40 [ 394.007817] ? alloc_pages_current+0x15d/0x260 [ 394.012490] do_read_cache_page+0x38e/0xc10 [ 394.016799] ? blkdev_writepages+0xd0/0xd0 [ 394.021056] btrfs_read_disk_super+0xd0/0x370 [ 394.025650] btrfs_scan_one_device+0xb5/0x330 [ 394.030149] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 394.035146] ? device_list_add+0x8f0/0x8f0 [ 394.039454] btrfs_mount+0x1fc/0x1fe0 [ 394.043239] ? lock_downgrade+0x740/0x740 [ 394.047374] ? _find_next_bit+0xdb/0x100 [ 394.051443] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 394.057420] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 394.062876] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 394.067995] ? __lockdep_init_map+0x100/0x560 [ 394.072479] ? __lockdep_init_map+0x100/0x560 [ 394.076978] mount_fs+0x92/0x2a0 [ 394.080338] vfs_kern_mount.part.0+0x5b/0x470 [ 394.084825] vfs_kern_mount+0x3c/0x60 [ 394.088620] btrfs_mount+0x42a/0x1fe0 [ 394.092422] ? lock_downgrade+0x740/0x740 [ 394.096579] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 394.102542] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 394.107976] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 394.112979] ? __lockdep_init_map+0x100/0x560 [ 394.117457] ? __lockdep_init_map+0x100/0x560 [ 394.121934] mount_fs+0x92/0x2a0 [ 394.125287] vfs_kern_mount.part.0+0x5b/0x470 [ 394.129791] do_mount+0xe53/0x2a00 [ 394.133357] ? copy_mount_string+0x40/0x40 [ 394.137687] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 394.142693] ? copy_mnt_ns+0xa30/0xa30 [ 394.146569] ? copy_mount_options+0x1fa/0x2f0 [ 394.151065] ? copy_mnt_ns+0xa30/0xa30 [ 394.154937] SyS_mount+0xa8/0x120 [ 394.158371] ? copy_mnt_ns+0xa30/0xa30 [ 394.162243] do_syscall_64+0x1d5/0x640 [ 394.166123] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 394.171294] RIP: 0033:0x460c6a [ 394.174468] RSP: 002b:00007fe27cb4fa78 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 394.182179] RAX: ffffffffffffffda RBX: 00007fe27cb4fb10 RCX: 0000000000460c6a [ 394.189518] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 00007fe27cb4fad0 [ 394.196771] RBP: 00007fe27cb4fad0 R08: 00007fe27cb4fb10 R09: 0000000020000000 [ 394.204037] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020000000 [ 394.211288] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 13:16:07 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x25, &(0x7f0000000000), 0x4) 13:16:07 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mkdir(&(0x7f0000000300)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='ramfs\x00', 0x50, 0x0) r0 = creat(&(0x7f00000001c0)='./file0/bus\x00', 0x6857b21ff1155d90) fcntl$lock(r0, 0x7, &(0x7f0000027000)={0x1}) chdir(&(0x7f0000000040)='./bus\x00') r1 = open(&(0x7f0000021000)='./file0\x00', 0x0, 0x0) fchdir(r1) r2 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) write$P9_RREADLINK(r2, &(0x7f0000000100)=ANY=[], 0x1c) sendfile(r2, r2, &(0x7f0000000240), 0x7fff) 13:16:08 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, 0x0, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) 13:16:08 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080)='nl80211\x00') r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000040)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000005c0)={0x2c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_REKEY_DATA={0x10, 0x7a, 0x0, 0x1, [@NL80211_REKEY_DATA_REPLAY_CTR={0xc, 0x3, "1b0e33f7f50d17cb"}]}]}, 0x2c}}, 0x0) 13:16:08 executing program 4: socketpair(0xa, 0x2, 0x0, &(0x7f0000003b00)) 13:16:08 executing program 5 (fault-call:0 fault-nth:73): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:16:08 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(0xffffffffffffffff, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) [ 394.667901] FAULT_INJECTION: forcing a failure. [ 394.667901] name failslab, interval 1, probability 0, space 0, times 0 [ 394.680571] print_req_error: I/O error, dev loop0, sector 0 [ 394.695076] CPU: 0 PID: 1518 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 394.702893] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 394.712241] Call Trace: [ 394.714835] dump_stack+0x1b2/0x283 [ 394.718449] should_fail.cold+0x10a/0x154 [ 394.722578] ? kasan_kmalloc+0xeb/0x160 [ 394.726553] should_failslab+0xd6/0x130 [ 394.730525] kmem_cache_alloc_node+0x54/0x410 [ 394.735113] create_task_io_context+0x2a/0x3c0 [ 394.739698] generic_make_request_checks+0x1350/0x19f0 [ 394.744987] ? mempool_alloc+0x10e/0x2d0 [ 394.749129] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 394.754579] ? blk_rq_prep_clone+0x6c0/0x6c0 [ 394.758971] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 394.763971] ? trace_hardirqs_on+0x10/0x10 [ 394.768245] generic_make_request+0x67/0x850 [ 394.772636] ? remove_element.isra.0+0x1b0/0x1b0 [ 394.777475] ? blk_queue_exit+0x1d0/0x1d0 [ 394.781606] ? alloc_buffer_head+0x20/0x110 [ 394.785923] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 394.791368] ? guard_bio_eod+0x15c/0x520 [ 394.795426] submit_bio+0x234/0x390 [ 394.799035] ? generic_make_request+0x850/0x850 [ 394.803731] ? guard_bio_eod+0x1ba/0x520 [ 394.807770] ? bio_add_page+0x96/0xe0 [ 394.811553] submit_bh_wbc+0x526/0x6f0 [ 394.815438] block_read_full_page+0x6ce/0x870 [ 394.819913] ? set_init_blocksize+0x210/0x210 [ 394.824388] ? __lru_cache_add+0x178/0x250 [ 394.828605] ? __bread_gfp+0x2e0/0x2e0 [ 394.832491] ? add_to_page_cache_lru+0x136/0x2b0 [ 394.837238] ? add_to_page_cache_locked+0x40/0x40 [ 394.842062] ? alloc_pages_current+0x15d/0x260 [ 394.846625] do_read_cache_page+0x38e/0xc10 [ 394.850940] ? blkdev_writepages+0xd0/0xd0 [ 394.855162] btrfs_read_disk_super+0xd0/0x370 [ 394.859636] btrfs_scan_one_device+0xb5/0x330 [ 394.864116] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 394.869111] ? device_list_add+0x8f0/0x8f0 [ 394.873330] btrfs_mount+0x1fc/0x1fe0 [ 394.877134] ? lock_downgrade+0x740/0x740 [ 394.881294] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 394.887250] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 394.892687] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 394.897808] ? __lockdep_init_map+0x100/0x560 [ 394.902295] ? __lockdep_init_map+0x100/0x560 [ 394.906776] mount_fs+0x92/0x2a0 [ 394.910138] vfs_kern_mount.part.0+0x5b/0x470 [ 394.914617] vfs_kern_mount+0x3c/0x60 [ 394.918431] btrfs_mount+0x42a/0x1fe0 [ 394.922212] ? lock_downgrade+0x740/0x740 [ 394.926344] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 394.932446] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 394.937886] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 394.942888] ? __lockdep_init_map+0x100/0x560 [ 394.947365] ? __lockdep_init_map+0x100/0x560 [ 394.951843] mount_fs+0x92/0x2a0 [ 394.955198] vfs_kern_mount.part.0+0x5b/0x470 [ 394.959674] do_mount+0xe53/0x2a00 [ 394.963229] ? copy_mount_string+0x40/0x40 [ 394.967447] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 394.972446] ? copy_mnt_ns+0xa30/0xa30 [ 394.976318] ? copy_mount_options+0x1fa/0x2f0 [ 394.980796] ? copy_mnt_ns+0xa30/0xa30 [ 394.984668] SyS_mount+0xa8/0x120 [ 394.988100] ? copy_mnt_ns+0xa30/0xa30 [ 394.991971] do_syscall_64+0x1d5/0x640 [ 394.995859] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 395.001029] RIP: 0033:0x460c6a [ 395.004199] RSP: 002b:00007fe27cb4fa78 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 395.011886] RAX: ffffffffffffffda RBX: 00007fe27cb4fb10 RCX: 0000000000460c6a 13:16:08 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffffe, 0x810, r0, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:16:08 executing program 4: prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f00000000c0)={&(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0}, 0x68) 13:16:08 executing program 3: r0 = syz_open_dev$binderN(&(0x7f0000000040)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0x40046205, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) [ 395.019138] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 00007fe27cb4fad0 [ 395.026389] RBP: 00007fe27cb4fad0 R08: 00007fe27cb4fb10 R09: 0000000020000000 [ 395.033645] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020000000 [ 395.040899] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 13:16:08 executing program 4: r0 = socket$l2tp6(0xa, 0x2, 0x73) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x13, &(0x7f0000000080)={@private2}, 0x20) 13:16:08 executing program 3: r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/seq\x00', 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000000100)={{0x80}, 'port1\x00'}) 13:16:08 executing program 4: r0 = syz_open_dev$binderN(&(0x7f0000000040)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0189436, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) 13:16:08 executing program 3: r0 = socket$nl_audit(0x10, 0x3, 0x9) ioctl$sock_ifreq(r0, 0x0, &(0x7f0000000000)={'nr0\x00', @ifru_hwaddr=@dev}) 13:16:08 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) 13:16:08 executing program 4: socket$packet(0x11, 0x3, 0x300) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_UNLABEL_C_STATICADD(r0, &(0x7f0000000700)={0x0, 0x0, 0x0}, 0x0) sendmsg$ETHTOOL_MSG_LINKINFO_GET(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCBRADDBR(r0, 0x89a0, &(0x7f0000000040)='xfrm0\x00') 13:16:08 executing program 3: select(0x0, 0x0, 0x0, &(0x7f0000000180), &(0x7f00000001c0)={0x0, 0xea60}) 13:16:09 executing program 5 (fault-call:0 fault-nth:74): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) [ 395.513287] FAULT_INJECTION: forcing a failure. [ 395.513287] name failslab, interval 1, probability 0, space 0, times 0 [ 395.537179] CPU: 1 PID: 1587 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 395.545010] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 395.554398] Call Trace: [ 395.557031] dump_stack+0x1b2/0x283 [ 395.560662] should_fail.cold+0x10a/0x154 [ 395.564815] should_failslab+0xd6/0x130 [ 395.568789] kmem_cache_alloc_node_trace+0x25a/0x400 [ 395.573981] __kmalloc_node+0x38/0x70 [ 395.577777] kvmalloc_node+0x88/0xd0 [ 395.581484] btrfs_mount+0x911/0x1fe0 [ 395.585285] ? lock_downgrade+0x740/0x740 [ 395.589445] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 395.595416] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 395.600860] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 395.605864] ? __lockdep_init_map+0x100/0x560 [ 395.610343] ? __lockdep_init_map+0x100/0x560 [ 395.614819] mount_fs+0x92/0x2a0 [ 395.618169] vfs_kern_mount.part.0+0x5b/0x470 [ 395.622650] vfs_kern_mount+0x3c/0x60 [ 395.626436] btrfs_mount+0x42a/0x1fe0 [ 395.630220] ? lock_downgrade+0x740/0x740 [ 395.634364] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 395.640321] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 395.645840] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 395.650849] ? __lockdep_init_map+0x100/0x560 [ 395.655326] ? __lockdep_init_map+0x100/0x560 [ 395.659801] mount_fs+0x92/0x2a0 [ 395.663152] vfs_kern_mount.part.0+0x5b/0x470 [ 395.667628] do_mount+0xe53/0x2a00 [ 395.671154] ? retint_kernel+0x2d/0x2d [ 395.675036] ? copy_mount_string+0x40/0x40 [ 395.679255] ? __sanitizer_cov_trace_pc+0x46/0x50 [ 395.684087] ? copy_mount_options+0x1fa/0x2f0 [ 395.688579] ? copy_mnt_ns+0xa30/0xa30 [ 395.692452] SyS_mount+0xa8/0x120 [ 395.695897] ? copy_mnt_ns+0xa30/0xa30 [ 395.699764] do_syscall_64+0x1d5/0x640 [ 395.703635] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 395.708804] RIP: 0033:0x460c6a [ 395.711976] RSP: 002b:00007fe27cb4fa78 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 395.719663] RAX: ffffffffffffffda RBX: 00007fe27cb4fb10 RCX: 0000000000460c6a [ 395.726924] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 00007fe27cb4fad0 [ 395.734173] RBP: 00007fe27cb4fad0 R08: 00007fe27cb4fb10 R09: 0000000020000000 [ 395.741425] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020000000 [ 395.748688] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 [ 395.886236] IPVS: ftp: loaded support on port[0] = 21 13:16:09 executing program 4: pipe(&(0x7f0000000380)) syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000440)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_bp={0x0}, 0x2, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) eventfd(0x0) fanotify_init(0x0, 0x0) clock_gettime(0x0, &(0x7f0000000080)={0x0, 0x0}) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0) [ 395.950402] IPVS: ftp: loaded support on port[0] = 21 13:16:09 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x200048d4, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @remote}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:16:09 executing program 3: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000034c0)={0x0, 0x0, 0x0, &(0x7f0000003400)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) 13:16:09 executing program 5 (fault-call:0 fault-nth:75): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:16:09 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(0xffffffffffffffff, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) [ 396.017943] print_req_error: I/O error, dev loop0, sector 0 13:16:09 executing program 3: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) syz_emit_ethernet(0x66, &(0x7f0000000080)={@broadcast=[0xff, 0xff, 0xff, 0x0], @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "a4f008", 0x30, 0x3a, 0x0, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @mcast2, {[], @pkt_toobig={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, '\x00', 0x0, 0x0, 0x0, @remote, @remote}}}}}}}, 0x0) [ 396.069703] FAULT_INJECTION: forcing a failure. [ 396.069703] name failslab, interval 1, probability 0, space 0, times 0 [ 396.095842] CPU: 1 PID: 1658 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 396.103683] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 396.113045] Call Trace: [ 396.115644] dump_stack+0x1b2/0x283 [ 396.119256] should_fail.cold+0x10a/0x154 [ 396.123401] should_failslab+0xd6/0x130 [ 396.127358] kmem_cache_alloc_node_trace+0x25a/0x400 [ 396.132446] __kmalloc_node+0x38/0x70 [ 396.136229] kvmalloc_node+0x88/0xd0 [ 396.139924] btrfs_mount+0x911/0x1fe0 [ 396.143704] ? lock_downgrade+0x740/0x740 [ 396.147840] ? _find_next_bit+0xdb/0x100 [ 396.151895] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 396.157988] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 396.163417] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 396.168424] ? __lockdep_init_map+0x100/0x560 [ 396.172897] ? __lockdep_init_map+0x100/0x560 [ 396.177388] mount_fs+0x92/0x2a0 [ 396.180738] vfs_kern_mount.part.0+0x5b/0x470 [ 396.185213] vfs_kern_mount+0x3c/0x60 [ 396.188992] btrfs_mount+0x42a/0x1fe0 [ 396.192779] ? lock_downgrade+0x740/0x740 [ 396.196993] ? _find_next_bit+0xdb/0x100 [ 396.201118] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 396.207372] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 396.212801] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 396.217796] ? __lockdep_init_map+0x100/0x560 [ 396.222271] ? __lockdep_init_map+0x100/0x560 [ 396.226774] mount_fs+0x92/0x2a0 [ 396.230124] vfs_kern_mount.part.0+0x5b/0x470 [ 396.234602] do_mount+0xe53/0x2a00 [ 396.238135] ? do_raw_spin_unlock+0x164/0x220 [ 396.242633] ? copy_mount_string+0x40/0x40 [ 396.246856] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 396.251862] ? copy_mnt_ns+0xa30/0xa30 [ 396.255744] ? copy_mount_options+0x1fa/0x2f0 [ 396.260223] ? copy_mnt_ns+0xa30/0xa30 [ 396.264099] SyS_mount+0xa8/0x120 [ 396.267538] ? copy_mnt_ns+0xa30/0xa30 [ 396.271412] do_syscall_64+0x1d5/0x640 [ 396.275294] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 396.280554] RIP: 0033:0x460c6a [ 396.283917] RSP: 002b:00007fe27cb4fa78 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 396.291695] RAX: ffffffffffffffda RBX: 00007fe27cb4fb10 RCX: 0000000000460c6a [ 396.298952] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 00007fe27cb4fad0 [ 396.306589] RBP: 00007fe27cb4fad0 R08: 00007fe27cb4fb10 R09: 0000000020000000 [ 396.313863] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020000000 13:16:09 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) 13:16:09 executing program 3: r0 = socket$vsock_stream(0x28, 0x1, 0x0) setsockopt$SO_VM_SOCKETS_BUFFER_SIZE(r0, 0x28, 0x0, &(0x7f0000000140)=0xdfbe, 0x8) [ 396.321132] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 13:16:09 executing program 3: r0 = socket$inet_udp(0x2, 0x2, 0x0) getsockname$inet(r0, 0x0, &(0x7f00000000c0)=0xfffffffffffffe40) 13:16:09 executing program 3: syz_emit_ethernet(0x86, &(0x7f00000000c0)={@local, @dev, @val={@void, {0x8100, 0x0, 0x1}}, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "2516da", 0x4c, 0x2f, 0x0, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', {[@dstopts]}}}}}, 0x0) 13:16:10 executing program 3: syz_emit_ethernet(0x86, &(0x7f0000000580)=ANY=[@ANYBLOB="aaaaaaaaaaaa0000000000008100000086dd602516da004c2f00fe800000000000000000000000000012fe88"], 0x0) sendmsg$NFNL_MSG_ACCT_DEL(0xffffffffffffffff, 0x0, 0x91) sendmsg$NFT_MSG_GETSETELEM(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000540)={0x2c, 0xd, 0xa, 0x0, 0x0, 0x0, {0x0, 0x0, 0x5}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz0\x00'}]}, 0x2c}}, 0x0) 13:16:10 executing program 5 (fault-call:0 fault-nth:76): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) [ 396.526809] FAULT_INJECTION: forcing a failure. [ 396.526809] name failslab, interval 1, probability 0, space 0, times 0 [ 396.556389] CPU: 1 PID: 1707 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 396.564388] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 396.573746] Call Trace: 13:16:10 executing program 4: pipe(&(0x7f0000000380)) syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000440)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_bp={0x0}, 0x2, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) eventfd(0x0) fanotify_init(0x0, 0x0) clock_gettime(0x0, &(0x7f0000000080)={0x0, 0x0}) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0) [ 396.576459] dump_stack+0x1b2/0x283 [ 396.580202] should_fail.cold+0x10a/0x154 [ 396.584360] should_failslab+0xd6/0x130 [ 396.588356] kmem_cache_alloc+0x28e/0x3c0 [ 396.592502] alloc_buffer_head+0x20/0x110 [ 396.596661] alloc_page_buffers+0xb3/0x1f0 [ 396.600899] __getblk_slow+0x2d6/0x7a0 [ 396.604790] __bread_gfp+0x206/0x2e0 [ 396.608512] btrfs_read_dev_super+0x79/0x1f0 [ 396.612942] btrfs_get_bdev_and_sb+0xd3/0x2c0 [ 396.617441] __btrfs_open_devices+0x172/0xa30 [ 396.621946] ? find_device+0xf0/0xf0 [ 396.625685] ? btrfs_mount+0x9ee/0x1fe0 [ 396.629655] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 396.635138] btrfs_open_devices+0x98/0xb0 [ 396.639431] btrfs_mount+0xb24/0x1fe0 [ 396.643230] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 396.649210] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 396.654645] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 396.659663] ? __lockdep_init_map+0x100/0x560 [ 396.664140] ? __lockdep_init_map+0x100/0x560 [ 396.668622] mount_fs+0x92/0x2a0 [ 396.671971] vfs_kern_mount.part.0+0x5b/0x470 [ 396.676476] vfs_kern_mount+0x3c/0x60 [ 396.680319] btrfs_mount+0x42a/0x1fe0 [ 396.684115] ? lock_downgrade+0x740/0x740 [ 396.688289] ? _find_next_bit+0xdb/0x100 [ 396.692360] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 396.698320] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 396.703760] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 396.708807] ? __lockdep_init_map+0x100/0x560 [ 396.713395] ? __lockdep_init_map+0x100/0x560 [ 396.718019] mount_fs+0x92/0x2a0 [ 396.721379] vfs_kern_mount.part.0+0x5b/0x470 [ 396.725884] do_mount+0xe53/0x2a00 [ 396.729417] ? copy_mount_string+0x40/0x40 [ 396.733643] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 396.738645] ? copy_mnt_ns+0xa30/0xa30 [ 396.742534] ? copy_mount_options+0x1fa/0x2f0 [ 396.747029] ? copy_mnt_ns+0xa30/0xa30 [ 396.750900] SyS_mount+0xa8/0x120 [ 396.754350] ? copy_mnt_ns+0xa30/0xa30 [ 396.758240] do_syscall_64+0x1d5/0x640 [ 396.762151] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 396.767355] RIP: 0033:0x460c6a [ 396.770543] RSP: 002b:00007fe27cb4fa78 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 396.778517] RAX: ffffffffffffffda RBX: 00007fe27cb4fb10 RCX: 0000000000460c6a [ 396.785791] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 00007fe27cb4fad0 [ 396.793066] RBP: 00007fe27cb4fad0 R08: 00007fe27cb4fb10 R09: 0000000020000000 [ 396.800326] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020000000 [ 396.807581] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 13:16:10 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:16:10 executing program 3: shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x6000) shmat(0x0, &(0x7f0000ffd000/0x2000)=nil, 0x5000) 13:16:10 executing program 4: pipe(&(0x7f0000000380)) syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000440)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_bp={0x0}, 0x2, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) eventfd(0x0) fanotify_init(0x0, 0x0) clock_gettime(0x0, &(0x7f0000000080)={0x0, 0x0}) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0) 13:16:10 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:16:10 executing program 5 (fault-call:0 fault-nth:77): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) [ 397.008931] FAULT_INJECTION: forcing a failure. [ 397.008931] name failslab, interval 1, probability 0, space 0, times 0 [ 397.020835] CPU: 1 PID: 1731 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 397.028652] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 397.038001] Call Trace: [ 397.040601] dump_stack+0x1b2/0x283 [ 397.044227] should_fail.cold+0x10a/0x154 [ 397.048370] should_failslab+0xd6/0x130 [ 397.052334] kmem_cache_alloc_node_trace+0x25a/0x400 [ 397.057420] __kmalloc_node+0x38/0x70 [ 397.061203] kvmalloc_node+0x88/0xd0 [ 397.064908] btrfs_mount+0x911/0x1fe0 [ 397.068703] ? lock_downgrade+0x740/0x740 [ 397.072842] ? _find_next_bit+0xdb/0x100 [ 397.076885] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 397.082855] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 397.088290] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 397.093300] ? __lockdep_init_map+0x100/0x560 [ 397.097775] ? __lockdep_init_map+0x100/0x560 [ 397.102257] mount_fs+0x92/0x2a0 [ 397.105612] vfs_kern_mount.part.0+0x5b/0x470 [ 397.110090] vfs_kern_mount+0x3c/0x60 [ 397.113872] btrfs_mount+0x42a/0x1fe0 [ 397.117756] ? lock_downgrade+0x740/0x740 [ 397.122066] ? _find_next_bit+0xdb/0x100 [ 397.126120] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 397.132077] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 397.137508] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 397.142505] ? __lockdep_init_map+0x100/0x560 [ 397.146980] ? __lockdep_init_map+0x100/0x560 [ 397.151540] mount_fs+0x92/0x2a0 [ 397.154888] vfs_kern_mount.part.0+0x5b/0x470 [ 397.159364] do_mount+0xe53/0x2a00 [ 397.162886] ? do_raw_spin_unlock+0x164/0x220 [ 397.167368] ? copy_mount_string+0x40/0x40 [ 397.171587] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 397.176588] ? copy_mnt_ns+0xa30/0xa30 [ 397.180590] ? copy_mount_options+0x1fa/0x2f0 [ 397.185065] ? copy_mnt_ns+0xa30/0xa30 [ 397.188935] SyS_mount+0xa8/0x120 [ 397.192370] ? copy_mnt_ns+0xa30/0xa30 [ 397.196265] do_syscall_64+0x1d5/0x640 [ 397.200143] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 397.205330] RIP: 0033:0x460c6a [ 397.208511] RSP: 002b:00007fe27cb4fa78 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 397.216207] RAX: ffffffffffffffda RBX: 00007fe27cb4fb10 RCX: 0000000000460c6a [ 397.223460] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 00007fe27cb4fad0 [ 397.230722] RBP: 00007fe27cb4fad0 R08: 00007fe27cb4fb10 R09: 0000000020000000 [ 397.237982] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020000000 [ 397.245330] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 13:16:10 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) 13:16:10 executing program 3: socketpair(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) bind$bt_hci(r0, &(0x7f00000001c0), 0x6) 13:16:10 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(r0, &(0x7f0000000180)=""/12, 0xc) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) [ 397.266677] print_req_error: I/O error, dev loop0, sector 0 13:16:10 executing program 3: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x400448e6, &(0x7f0000000300)) 13:16:10 executing program 3: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x400448e6, &(0x7f0000000300)) 13:16:10 executing program 5 (fault-call:0 fault-nth:78): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:16:10 executing program 3: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x400448e6, &(0x7f0000000300)) [ 397.477774] FAULT_INJECTION: forcing a failure. [ 397.477774] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 397.490570] CPU: 1 PID: 1770 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 397.498477] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 397.507971] Call Trace: [ 397.510572] dump_stack+0x1b2/0x283 [ 397.514221] should_fail.cold+0x10a/0x154 [ 397.518397] ? deref_stack_reg+0x124/0x1a0 [ 397.522650] __alloc_pages_nodemask+0x22c/0x2720 13:16:11 executing program 4: pipe(&(0x7f0000000380)) syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000440)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_bp={0x0}, 0x2, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) eventfd(0x0) fanotify_init(0x0, 0x0) clock_gettime(0x0, &(0x7f0000000080)={0x0, 0x0}) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200)={0x0, r0+30000000}, 0x0) [ 397.527473] ? deref_stack_reg+0x124/0x1a0 [ 397.531744] ? __lock_acquire+0x5fc/0x3f20 [ 397.536022] ? unwind_next_frame+0xe54/0x17d0 [ 397.540533] ? __save_stack_trace+0x63/0x160 [ 397.544949] ? deref_stack_reg+0x124/0x1a0 [ 397.549192] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 397.554037] ? trace_hardirqs_on+0x10/0x10 [ 397.558299] ? __lock_acquire+0x5fc/0x3f20 [ 397.562540] ? kernel_text_address+0xbd/0xf0 [ 397.566953] ? __kernel_text_address+0x9/0x30 [ 397.571447] ? __kernel_text_address+0x9/0x30 [ 397.575960] ? unwind_get_return_address+0x51/0x90 [ 397.580897] ? entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 397.586283] cache_grow_begin+0x8f/0x420 [ 397.590335] cache_alloc_refill+0x273/0x350 [ 397.594647] kmem_cache_alloc+0x333/0x3c0 [ 397.598785] getname_kernel+0x4e/0x340 [ 397.602683] kern_path+0x1b/0x40 [ 397.606033] lookup_bdev+0xc6/0x1c0 [ 397.609656] ? bd_acquire+0x440/0x440 [ 397.613572] blkdev_get_by_path+0x1b/0xa0 [ 397.617730] btrfs_get_bdev_and_sb+0x2f/0x2c0 [ 397.622233] __btrfs_open_devices+0x172/0xa30 [ 397.626880] ? find_device+0xf0/0xf0 [ 397.630767] ? btrfs_mount+0x9ee/0x1fe0 [ 397.634910] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 397.640574] btrfs_open_devices+0x98/0xb0 [ 397.644720] btrfs_mount+0xb24/0x1fe0 [ 397.648526] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 397.654590] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 397.660028] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 397.665057] ? __lockdep_init_map+0x100/0x560 [ 397.669536] ? __lockdep_init_map+0x100/0x560 [ 397.674972] mount_fs+0x92/0x2a0 13:16:11 executing program 4: syz_emit_ethernet(0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="000000264156edaaaaaaaaaa080045"], 0x0) [ 397.678333] vfs_kern_mount.part.0+0x5b/0x470 [ 397.682811] vfs_kern_mount+0x3c/0x60 [ 397.686610] btrfs_mount+0x42a/0x1fe0 [ 397.690415] ? lock_downgrade+0x740/0x740 [ 397.694571] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 397.700545] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 397.705995] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 397.711018] ? __lockdep_init_map+0x100/0x560 [ 397.715523] ? __lockdep_init_map+0x100/0x560 [ 397.720022] mount_fs+0x92/0x2a0 [ 397.723398] vfs_kern_mount.part.0+0x5b/0x470 13:16:11 executing program 4: syz_emit_ethernet(0x62, &(0x7f0000000240)={@empty, @local, @void, {@ipv4={0x800, @tcp={{0x10, 0x4, 0x0, 0x0, 0x54, 0x0, 0x0, 0x0, 0x6, 0x0, @local, @multicast2, {[@lsrr={0x83, 0xf, 0x0, [@loopback, @multicast2, @rand_addr]}, @rr={0x7, 0x1b, 0x0, [@empty, @remote, @loopback, @local, @local, @private]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) [ 397.727904] do_mount+0xe53/0x2a00 [ 397.731464] ? copy_mount_string+0x40/0x40 [ 397.735704] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 397.740721] ? copy_mnt_ns+0xa30/0xa30 [ 397.744617] ? copy_mount_options+0x1fa/0x2f0 [ 397.749117] ? copy_mnt_ns+0xa30/0xa30 [ 397.753013] SyS_mount+0xa8/0x120 [ 397.756467] ? copy_mnt_ns+0xa30/0xa30 [ 397.760355] do_syscall_64+0x1d5/0x640 [ 397.764260] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 397.769453] RIP: 0033:0x460c6a [ 397.772639] RSP: 002b:00007fe27cb4fa78 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 397.780365] RAX: ffffffffffffffda RBX: 00007fe27cb4fb10 RCX: 0000000000460c6a [ 397.787678] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 00007fe27cb4fad0 [ 397.794944] RBP: 00007fe27cb4fad0 R08: 00007fe27cb4fb10 R09: 0000000020000000 [ 397.802214] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020000000 [ 397.809480] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 13:16:11 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:16:11 executing program 4: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000005c0)={0x50, 0x0, 0x9, 0x801, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x24, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @local}, {0x8, 0x2, @empty}}}]}]}, 0x50}}, 0x0) 13:16:11 executing program 3: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000), 0x6) ioctl$sock_bt_hci(r0, 0x400448e6, &(0x7f0000000300)) 13:16:11 executing program 5 (fault-call:0 fault-nth:79): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) [ 398.208757] FAULT_INJECTION: forcing a failure. [ 398.208757] name failslab, interval 1, probability 0, space 0, times 0 [ 398.219985] CPU: 1 PID: 1801 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 398.227913] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 398.237267] Call Trace: [ 398.239861] dump_stack+0x1b2/0x283 [ 398.243498] should_fail.cold+0x10a/0x154 [ 398.247659] should_failslab+0xd6/0x130 [ 398.251639] kmem_cache_alloc+0x40/0x3c0 [ 398.255799] radix_tree_node_alloc.constprop.0+0x1b0/0x2f0 [ 398.261432] __radix_tree_create+0x323/0x4b0 [ 398.265850] page_cache_tree_insert+0x98/0x2a0 [ 398.270733] ? file_check_and_advance_wb_err+0x370/0x370 [ 398.276415] ? __add_to_page_cache_locked+0x1ed/0x840 [ 398.281688] __add_to_page_cache_locked+0x1fd/0x840 [ 398.286684] ? page_cache_tree_insert+0x2a0/0x2a0 [ 398.291503] ? lock_downgrade+0x740/0x740 [ 398.295626] add_to_page_cache_lru+0xcf/0x2b0 [ 398.300098] ? add_to_page_cache_locked+0x40/0x40 [ 398.305164] ? alloc_pages_current+0x15d/0x260 [ 398.309817] pagecache_get_page+0x300/0xab0 [ 398.314195] __getblk_slow+0x1dd/0x7a0 [ 398.318074] __bread_gfp+0x206/0x2e0 [ 398.321900] btrfs_read_dev_super+0x79/0x1f0 [ 398.326374] btrfs_get_bdev_and_sb+0xd3/0x2c0 [ 398.330897] __btrfs_open_devices+0x172/0xa30 [ 398.335476] ? find_device+0xf0/0xf0 [ 398.339170] ? btrfs_mount+0x9ee/0x1fe0 [ 398.343232] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 398.348695] btrfs_open_devices+0x98/0xb0 [ 398.352836] btrfs_mount+0xb24/0x1fe0 [ 398.356616] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 398.362578] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 398.368024] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 398.373106] ? __lockdep_init_map+0x100/0x560 [ 398.377584] ? __lockdep_init_map+0x100/0x560 [ 398.382156] mount_fs+0x92/0x2a0 [ 398.385502] vfs_kern_mount.part.0+0x5b/0x470 [ 398.389988] vfs_kern_mount+0x3c/0x60 [ 398.393782] btrfs_mount+0x42a/0x1fe0 [ 398.397562] ? lock_downgrade+0x740/0x740 [ 398.401689] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 398.407653] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 398.413081] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 398.418074] ? __lockdep_init_map+0x100/0x560 [ 398.422584] ? __lockdep_init_map+0x100/0x560 [ 398.427059] mount_fs+0x92/0x2a0 [ 398.430418] vfs_kern_mount.part.0+0x5b/0x470 [ 398.434891] do_mount+0xe53/0x2a00 [ 398.438412] ? copy_mount_string+0x40/0x40 [ 398.442625] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 398.447625] ? copy_mnt_ns+0xa30/0xa30 [ 398.451593] ? copy_mount_options+0x1fa/0x2f0 [ 398.456065] ? copy_mnt_ns+0xa30/0xa30 [ 398.459929] SyS_mount+0xa8/0x120 [ 398.463359] ? copy_mnt_ns+0xa30/0xa30 [ 398.467230] do_syscall_64+0x1d5/0x640 [ 398.471101] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 398.476267] RIP: 0033:0x460c6a [ 398.479458] RSP: 002b:00007fe27cb4fa78 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 398.487144] RAX: ffffffffffffffda RBX: 00007fe27cb4fb10 RCX: 0000000000460c6a [ 398.494405] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 00007fe27cb4fad0 [ 398.501750] RBP: 00007fe27cb4fad0 R08: 00007fe27cb4fb10 R09: 0000000020000000 13:16:12 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0, 0x100}], 0x1, 0xef) close(r0) 13:16:12 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) 13:16:12 executing program 4: syz_emit_ethernet(0x62, &(0x7f00000000c0)={@local, @broadcast, @void, {@ipv4={0x800, @generic={{0x15, 0x4, 0x0, 0x0, 0x54, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast1, @private, {[@end, @timestamp_addr={0x44, 0x3c, 0x0, 0x1, 0x0, [{@empty}, {@broadcast}, {@broadcast}, {@empty}, {@remote}, {@remote}, {@initdev={0xac, 0x1e, 0x0, 0x0}}]}]}}}}}}, 0x0) 13:16:12 executing program 3: syz_emit_ethernet(0x2a, &(0x7f0000000040)={@local, @link_local, @void, {@arp={0x806, @generic={0x0, 0x0, 0x6, 0x0, 0x0, @link_local, "", @empty, "2ab5a2715418d122"}}}}, 0x0) [ 398.508997] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020000000 [ 398.516257] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 13:16:12 executing program 3: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_inet_SIOCDELRT(r0, 0x890c, &(0x7f0000000040)={0x0, {0x2, 0x0, @local}, {0x2, 0x0, @broadcast}, {0x2, 0x0, @multicast2}, 0x306, 0x0, 0x0, 0x0, 0x80, &(0x7f0000000000)='bond0\x00', 0x1, 0x100, 0xffe3}) [ 398.570022] print_req_error: I/O error, dev loop0, sector 0 13:16:12 executing program 4: syz_emit_ethernet(0x52, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaa008100000086dd6054862c00181100fc020000000000000000000000000000fe80000000000000ed"], 0x0) 13:16:12 executing program 4: r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/pfkey\x00', 0x0, 0x0) preadv(r0, &(0x7f0000003d80), 0x1, 0x0, 0x0) 13:16:12 executing program 3: syz_emit_ethernet(0x4a, &(0x7f0000000000)={@link_local, @broadcast, @val={@void}, {@ipv6={0x86dd, @generic={0x0, 0x6, "6e62e6", 0x10, 0x0, 0x0, @local, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', {[@hopopts={0x0, 0x1, [], [@padn={0x1, 0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}]}]}}}}}, 0x0) [ 399.268939] IPVS: ftp: loaded support on port[0] = 21 13:16:12 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:16:12 executing program 3: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={&(0x7f0000000a00)={0x1c, 0x2, 0x1, 0x201, 0x0, 0x0, {}, [@CTA_MARK={0x8}]}, 0x1c}}, 0x0) 13:16:12 executing program 4: syz_emit_ethernet(0x4a, &(0x7f0000000140)={@local, @dev, @val={@void}, {@ipv6={0x86dd, @udp={0x0, 0x6, "54862c", 0x10, 0x11, 0x0, @private2, @remote, {[], {0x0, 0x0, 0x10, 0x0, @gue={{0x2}}}}}}}}, 0x0) 13:16:12 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) r1 = creat(&(0x7f0000000080)='./bus\x00', 0x0) read(r1, &(0x7f0000000040)=""/27, 0xfffffffffffffdaa) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:16:12 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) 13:16:12 executing program 5 (fault-call:0 fault-nth:80): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:16:13 executing program 4: r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000800)='nl80211\x00') r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_GET_WOWLAN(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)={0x28, r0, 0x1, 0x0, 0x0, {{}, {@void, @val={0x8}, @val={0xc}}}}, 0x28}}, 0x0) 13:16:13 executing program 4: syz_emit_ethernet(0x7e, &(0x7f00000000c0)={@local, @dev, @val={@void}, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "2516da", 0x44, 0x2f, 0x0, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', {[], {{0x0, 0x0, 0x1, 0x0, 0x0, 0x1}}}}}}}, 0x0) 13:16:13 executing program 3: syz_emit_ethernet(0x4a, &(0x7f00000001c0)={@local, @broadcast, @val={@void}, {@ipv6={0x86dd, @generic={0x0, 0x6, "a1381a", 0x10, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @mcast2, {[@dstopts={0x0, 0x0, [], [@enc_lim]}]}}}}}, 0x0) [ 399.508043] FAULT_INJECTION: forcing a failure. [ 399.508043] name failslab, interval 1, probability 0, space 0, times 0 [ 399.551669] CPU: 0 PID: 1882 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 399.559600] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 399.568976] Call Trace: [ 399.571597] dump_stack+0x1b2/0x283 [ 399.575236] should_fail.cold+0x10a/0x154 [ 399.579405] should_failslab+0xd6/0x130 [ 399.583388] kmem_cache_alloc+0x28e/0x3c0 [ 399.587542] getname_kernel+0x4e/0x340 [ 399.591434] kern_path+0x1b/0x40 [ 399.594806] lookup_bdev+0xc6/0x1c0 [ 399.598427] ? bd_acquire+0x440/0x440 [ 399.602212] blkdev_get_by_path+0x1b/0xa0 [ 399.606343] btrfs_get_bdev_and_sb+0x2f/0x2c0 [ 399.610823] __btrfs_open_devices+0x172/0xa30 [ 399.615302] ? find_device+0xf0/0xf0 [ 399.618997] ? btrfs_mount+0x9ee/0x1fe0 [ 399.622958] btrfs_open_devices+0x98/0xb0 [ 399.627085] btrfs_mount+0xb24/0x1fe0 [ 399.630881] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 399.636947] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 399.642380] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 399.647379] ? __lockdep_init_map+0x100/0x560 [ 399.651854] ? __lockdep_init_map+0x100/0x560 [ 399.656417] mount_fs+0x92/0x2a0 [ 399.659768] vfs_kern_mount.part.0+0x5b/0x470 [ 399.664686] vfs_kern_mount+0x3c/0x60 [ 399.668470] btrfs_mount+0x42a/0x1fe0 [ 399.672297] ? lock_downgrade+0x740/0x740 [ 399.676425] ? _find_next_bit+0xdb/0x100 [ 399.680467] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 399.686616] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 399.692049] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 399.697056] ? __lockdep_init_map+0x100/0x560 [ 399.701794] ? __lockdep_init_map+0x100/0x560 [ 399.706272] mount_fs+0x92/0x2a0 [ 399.709622] vfs_kern_mount.part.0+0x5b/0x470 [ 399.714100] do_mount+0xe53/0x2a00 [ 399.717974] ? copy_mount_string+0x40/0x40 [ 399.722190] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 399.727187] ? copy_mnt_ns+0xa30/0xa30 [ 399.731054] ? copy_mount_options+0x1fa/0x2f0 [ 399.735528] ? copy_mnt_ns+0xa30/0xa30 [ 399.739391] SyS_mount+0xa8/0x120 [ 399.742820] ? copy_mnt_ns+0xa30/0xa30 [ 399.746685] do_syscall_64+0x1d5/0x640 13:16:13 executing program 4: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) setsockopt$inet6_tcp_TLS_TX(r0, 0x6, 0x1, 0x0, 0x0) 13:16:13 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x5e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) [ 399.750570] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 399.755755] RIP: 0033:0x460c6a [ 399.758956] RSP: 002b:00007fe27cb4fa78 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 399.766646] RAX: ffffffffffffffda RBX: 00007fe27cb4fb10 RCX: 0000000000460c6a [ 399.773895] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 00007fe27cb4fad0 [ 399.781155] RBP: 00007fe27cb4fad0 R08: 00007fe27cb4fb10 R09: 0000000020000000 [ 399.788403] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020000000 [ 399.795655] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 13:16:13 executing program 3: syz_emit_ethernet(0x4a, &(0x7f0000000340)={@local, @broadcast, @val={@void}, {@ipv6={0x86dd, @udp={0x0, 0x6, "54862c", 0x10, 0x11, 0x0, @private2, @local, {[@fragment={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x65}], {0x0, 0x0, 0x8}}}}}}, 0x0) 13:16:13 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0), 0x0, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:16:13 executing program 4: syz_emit_ethernet(0x196, &(0x7f0000000400)=ANY=[@ANYBLOB="aaaaaaaaaaaabbbbbbbbbbbb86dd6b25d39a016011fffc000100000000000000000000000000ff02"], 0x0) 13:16:13 executing program 3: syz_emit_ethernet(0x27b, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa0000000000008100000086dd602516da02412f00fe880000000000000000000000000001fe88000000000000000000000000000132"], 0x0) 13:16:13 executing program 5 (fault-call:0 fault-nth:81): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:16:13 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) 13:16:13 executing program 3: syz_emit_ethernet(0x27b, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa0000000000008100000086dd602516da02412f00fe880000000000000000000000000001fe88000000000000000000000000000132"], 0x0) [ 400.450555] FAULT_INJECTION: forcing a failure. [ 400.450555] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 400.462478] CPU: 1 PID: 1934 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 400.470277] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 400.479723] Call Trace: [ 400.482319] dump_stack+0x1b2/0x283 [ 400.485960] should_fail.cold+0x10a/0x154 [ 400.490215] __alloc_pages_nodemask+0x22c/0x2720 [ 400.494982] ? __lock_acquire+0x5fc/0x3f20 [ 400.499263] ? io_schedule_timeout+0x140/0x140 [ 400.503864] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 400.508802] ? trace_hardirqs_on+0x10/0x10 [ 400.513030] ? lo_release+0x1b/0x190 [ 400.516725] ? __mutex_lock+0x360/0x1310 [ 400.520769] ? __blkdev_put+0x4ef/0x800 [ 400.524761] cache_grow_begin+0x8f/0x420 [ 400.528843] cache_alloc_refill+0x273/0x350 [ 400.533147] kmem_cache_alloc+0x333/0x3c0 [ 400.537273] getname_kernel+0x4e/0x340 [ 400.541138] kern_path+0x1b/0x40 [ 400.544489] lookup_bdev+0xc6/0x1c0 [ 400.548119] ? bd_acquire+0x440/0x440 [ 400.551918] blkdev_get_by_path+0x1b/0xa0 [ 400.556056] btrfs_get_bdev_and_sb+0x2f/0x2c0 [ 400.560548] __btrfs_open_devices+0x172/0xa30 [ 400.565026] ? find_device+0xf0/0xf0 [ 400.568720] ? btrfs_mount+0x9ee/0x1fe0 [ 400.572680] btrfs_open_devices+0x98/0xb0 [ 400.576808] btrfs_mount+0xb24/0x1fe0 [ 400.580611] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 400.586573] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 400.592023] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 400.597119] ? __lockdep_init_map+0x100/0x560 [ 400.601591] ? __lockdep_init_map+0x100/0x560 [ 400.606067] mount_fs+0x92/0x2a0 [ 400.609422] vfs_kern_mount.part.0+0x5b/0x470 [ 400.613901] vfs_kern_mount+0x3c/0x60 [ 400.617682] btrfs_mount+0x42a/0x1fe0 [ 400.621474] ? lock_downgrade+0x740/0x740 [ 400.625604] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 400.631574] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 400.637550] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 400.642550] ? __lockdep_init_map+0x100/0x560 [ 400.647024] ? __lockdep_init_map+0x100/0x560 [ 400.651504] mount_fs+0x92/0x2a0 [ 400.654866] vfs_kern_mount.part.0+0x5b/0x470 [ 400.659360] do_mount+0xe53/0x2a00 [ 400.662904] ? copy_mount_string+0x40/0x40 [ 400.667122] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 400.672125] ? copy_mnt_ns+0xa30/0xa30 [ 400.675994] ? copy_mount_options+0x1fa/0x2f0 [ 400.680471] ? copy_mnt_ns+0xa30/0xa30 [ 400.684370] SyS_mount+0xa8/0x120 [ 400.687986] ? copy_mnt_ns+0xa30/0xa30 [ 400.691854] do_syscall_64+0x1d5/0x640 [ 400.695743] entry_SYSCALL_64_after_hwframe+0x46/0xbb 13:16:14 executing program 4: socket$inet6_tcp(0xa, 0x1, 0x0) pselect6(0x58, &(0x7f0000000140)={0x9}, 0x0, 0x0, 0x0, 0x0) 13:16:14 executing program 3: syz_emit_ethernet(0x27b, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa0000000000008100000086dd602516da02412f00fe880000000000000000000000000001fe88000000000000000000000000000132"], 0x0) [ 400.700913] RIP: 0033:0x460c6a [ 400.704083] RSP: 002b:00007fe27cb4fa78 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 400.711772] RAX: ffffffffffffffda RBX: 00007fe27cb4fb10 RCX: 0000000000460c6a [ 400.719030] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 00007fe27cb4fad0 [ 400.726280] RBP: 00007fe27cb4fad0 R08: 00007fe27cb4fb10 R09: 0000000020000000 [ 400.733532] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020000000 [ 400.740790] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 [ 400.766409] print_req_error: I/O error, dev loop0, sector 0 13:16:14 executing program 5 (fault-call:0 fault-nth:82): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:16:14 executing program 1: unshare(0x60000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:16:14 executing program 3: syz_emit_ethernet(0x27b, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa0000000000008100000086dd602516da02412f00fe880000000000000000000000000001fe88000000000000000000000000000132"], 0x0) 13:16:14 executing program 4: syz_emit_ethernet(0x52, &(0x7f0000000900)={@local, @broadcast, @val={@void}, {@ipv6={0x86dd, @generic={0x0, 0x6, "6e62e6", 0x18, 0x0, 0x0, @local, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', {[@hopopts={0x0, 0x1, [], [@jumbo, @ra]}]}}}}}, 0x0) [ 400.910328] FAULT_INJECTION: forcing a failure. [ 400.910328] name failslab, interval 1, probability 0, space 0, times 0 [ 400.921756] CPU: 1 PID: 1983 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 400.929538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 400.938979] Call Trace: [ 400.941566] dump_stack+0x1b2/0x283 [ 400.945185] should_fail.cold+0x10a/0x154 [ 400.949318] should_failslab+0xd6/0x130 [ 400.953272] kmem_cache_alloc+0x40/0x3c0 [ 400.957315] radix_tree_node_alloc.constprop.0+0x1b0/0x2f0 [ 400.962936] __radix_tree_create+0x323/0x4b0 [ 400.967341] page_cache_tree_insert+0x98/0x2a0 [ 400.971913] ? file_check_and_advance_wb_err+0x370/0x370 [ 400.977348] ? __add_to_page_cache_locked+0x1ed/0x840 [ 400.982516] __add_to_page_cache_locked+0x1fd/0x840 [ 400.987510] ? page_cache_tree_insert+0x2a0/0x2a0 [ 400.992435] ? lock_downgrade+0x740/0x740 [ 400.996560] add_to_page_cache_lru+0xcf/0x2b0 [ 401.001032] ? add_to_page_cache_locked+0x40/0x40 [ 401.005869] ? alloc_pages_current+0x15d/0x260 [ 401.010441] pagecache_get_page+0x300/0xab0 [ 401.014775] __getblk_slow+0x1dd/0x7a0 [ 401.018646] __bread_gfp+0x206/0x2e0 [ 401.022339] btrfs_read_dev_super+0x79/0x1f0 [ 401.026721] btrfs_get_bdev_and_sb+0xd3/0x2c0 [ 401.031196] __btrfs_open_devices+0x172/0xa30 [ 401.035673] ? find_device+0xf0/0xf0 [ 401.039365] ? btrfs_mount+0x9ee/0x1fe0 [ 401.043320] btrfs_open_devices+0x98/0xb0 [ 401.047458] btrfs_mount+0xb24/0x1fe0 [ 401.051252] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 401.057218] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 401.062645] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 401.067640] ? __lockdep_init_map+0x100/0x560 [ 401.072149] ? __lockdep_init_map+0x100/0x560 [ 401.076622] mount_fs+0x92/0x2a0 [ 401.079967] vfs_kern_mount.part.0+0x5b/0x470 [ 401.084442] vfs_kern_mount+0x3c/0x60 [ 401.088229] btrfs_mount+0x42a/0x1fe0 [ 401.092007] ? lock_downgrade+0x740/0x740 [ 401.096130] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 401.102083] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 401.107509] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 401.112502] ? __lockdep_init_map+0x100/0x560 [ 401.116974] ? __lockdep_init_map+0x100/0x560 [ 401.121458] mount_fs+0x92/0x2a0 [ 401.124805] vfs_kern_mount.part.0+0x5b/0x470 [ 401.129312] do_mount+0xe53/0x2a00 [ 401.132836] ? copy_mount_string+0x40/0x40 [ 401.137064] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 401.142145] ? copy_mnt_ns+0xa30/0xa30 [ 401.146014] ? copy_mount_options+0x1fa/0x2f0 [ 401.150486] ? copy_mnt_ns+0xa30/0xa30 [ 401.154361] SyS_mount+0xa8/0x120 [ 401.157791] ? copy_mnt_ns+0xa30/0xa30 [ 401.161847] do_syscall_64+0x1d5/0x640 [ 401.165714] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 401.170891] RIP: 0033:0x460c6a [ 401.174101] RSP: 002b:00007fe27cb4fa78 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 401.181797] RAX: ffffffffffffffda RBX: 00007fe27cb4fb10 RCX: 0000000000460c6a [ 401.189070] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 00007fe27cb4fad0 [ 401.196327] RBP: 00007fe27cb4fad0 R08: 00007fe27cb4fb10 R09: 0000000020000000 [ 401.203572] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020000000 [ 401.210915] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 13:16:15 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0), 0x0, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:16:15 executing program 3: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000005c0)={0x44, 0x0, 0x9, 0x801, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x24, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @local}, {0x8, 0x2, @empty}}}]}]}, 0x44}}, 0x0) 13:16:15 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) 13:16:15 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0xa0013, 0xffffffffffffffff, 0x14380000) read(r0, &(0x7f00000000c0)=""/13, 0xd) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) r1 = dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r1, &(0x7f00000002c0)='\x00', 0x1, 0x45, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x3, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:16:15 executing program 4: syz_emit_ethernet(0x84, &(0x7f00000002c0)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaa008100000086dd60"], 0x0) 13:16:15 executing program 5 (fault-call:0 fault-nth:83): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) [ 401.753240] FAULT_INJECTION: forcing a failure. [ 401.753240] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 401.765078] CPU: 0 PID: 2011 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 401.772920] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 401.782279] Call Trace: [ 401.784894] dump_stack+0x1b2/0x283 [ 401.788534] should_fail.cold+0x10a/0x154 [ 401.792693] __alloc_pages_nodemask+0x22c/0x2720 [ 401.797476] ? __lock_acquire+0x5fc/0x3f20 [ 401.801711] ? __lock_acquire+0x5fc/0x3f20 [ 401.805948] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 401.810782] ? lock_acquire+0x170/0x3f0 [ 401.814789] ? trace_hardirqs_on+0x10/0x10 [ 401.819145] ? lo_release+0x7f/0x190 [ 401.822868] ? lo_release+0xed/0x190 [ 401.826566] ? __blkdev_put+0x640/0x800 [ 401.830542] cache_grow_begin+0x8f/0x420 [ 401.834601] cache_alloc_refill+0x273/0x350 [ 401.838915] kmem_cache_alloc+0x333/0x3c0 [ 401.843046] getname_kernel+0x4e/0x340 [ 401.847009] kern_path+0x1b/0x40 [ 401.850364] lookup_bdev+0xc6/0x1c0 [ 401.853985] ? bd_acquire+0x440/0x440 [ 401.857788] blkdev_get_by_path+0x1b/0xa0 [ 401.861937] btrfs_get_bdev_and_sb+0x2f/0x2c0 [ 401.866535] __btrfs_open_devices+0x172/0xa30 [ 401.871016] ? find_device+0xf0/0xf0 [ 401.874722] ? btrfs_mount+0x9ee/0x1fe0 [ 401.878699] btrfs_open_devices+0x98/0xb0 [ 401.882832] btrfs_mount+0xb24/0x1fe0 [ 401.886724] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 401.892678] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 401.898109] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 401.903109] ? __lockdep_init_map+0x100/0x560 [ 401.907583] ? __lockdep_init_map+0x100/0x560 [ 401.912173] mount_fs+0x92/0x2a0 [ 401.915531] vfs_kern_mount.part.0+0x5b/0x470 [ 401.920016] vfs_kern_mount+0x3c/0x60 [ 401.923799] btrfs_mount+0x42a/0x1fe0 [ 401.927583] ? lock_downgrade+0x740/0x740 [ 401.931736] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 401.937694] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 401.943123] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 401.948282] ? __lockdep_init_map+0x100/0x560 [ 401.952759] ? __lockdep_init_map+0x100/0x560 [ 401.957307] mount_fs+0x92/0x2a0 [ 401.960667] vfs_kern_mount.part.0+0x5b/0x470 [ 401.965145] do_mount+0xe53/0x2a00 [ 401.968668] ? copy_mount_string+0x40/0x40 [ 401.972881] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 401.978056] ? copy_mnt_ns+0xa30/0xa30 [ 401.981931] ? copy_mount_options+0x1fa/0x2f0 [ 401.986407] ? copy_mnt_ns+0xa30/0xa30 [ 401.990272] SyS_mount+0xa8/0x120 [ 401.993707] ? copy_mnt_ns+0xa30/0xa30 [ 401.997583] do_syscall_64+0x1d5/0x640 13:16:15 executing program 3: socketpair(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0) 13:16:15 executing program 4: socketpair(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000140)={&(0x7f0000000040), 0xffffffffffffff63, &(0x7f0000000100)={0x0}}, 0x0) [ 402.001599] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 402.006771] RIP: 0033:0x460c6a [ 402.009956] RSP: 002b:00007fe27cb4fa78 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 402.017736] RAX: ffffffffffffffda RBX: 00007fe27cb4fb10 RCX: 0000000000460c6a [ 402.025076] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 00007fe27cb4fad0 [ 402.032325] RBP: 00007fe27cb4fad0 R08: 00007fe27cb4fb10 R09: 0000000020000000 [ 402.039593] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020000000 [ 402.046842] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 13:16:15 executing program 3: syz_emit_ethernet(0x3e, &(0x7f0000000000)={@multicast, @random="e30f1b7b8ba3", @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "ae35ae", 0x8, 0x2f, 0x0, @mcast2, @ipv4={[], [], @multicast2}, {[@fragment={0x2b}]}}}}}, 0x0) 13:16:15 executing program 4: r0 = socket$inet(0x2, 0x3, 0x1) getsockopt$inet_int(r0, 0x0, 0xd, 0x0, &(0x7f0000000040)) [ 402.100800] print_req_error: I/O error, dev loop0, sector 0 13:16:15 executing program 5 (fault-call:0 fault-nth:84): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:16:15 executing program 3: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) sendmsg$NL80211_CMD_GET_WOWLAN(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={0x0}}, 0xc001) [ 402.235812] FAULT_INJECTION: forcing a failure. [ 402.235812] name failslab, interval 1, probability 0, space 0, times 0 [ 402.250957] CPU: 0 PID: 2044 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 402.258794] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 402.268414] Call Trace: [ 402.271025] dump_stack+0x1b2/0x283 [ 402.274658] should_fail.cold+0x10a/0x154 [ 402.278814] ? mempool_free+0x1d0/0x1d0 [ 402.282789] should_failslab+0xd6/0x130 [ 402.286807] kmem_cache_alloc+0x40/0x3c0 [ 402.290873] ? mempool_free+0x1d0/0x1d0 [ 402.294851] mempool_alloc+0x10e/0x2d0 [ 402.298749] ? remove_element.isra.0+0x1b0/0x1b0 [ 402.303511] ? mark_held_locks+0xa6/0xf0 [ 402.307668] ? __find_get_block+0x817/0xc40 [ 402.311998] bio_alloc_bioset+0x41b/0x830 [ 402.316141] ? bvec_alloc+0x2d0/0x2d0 [ 402.320026] ? __getblk_slow+0x57f/0x7a0 [ 402.324086] submit_bh_wbc+0xf5/0x6f0 [ 402.327883] __bread_gfp+0x11c/0x2e0 [ 402.331585] btrfs_read_dev_super+0x79/0x1f0 [ 402.335977] btrfs_get_bdev_and_sb+0xd3/0x2c0 [ 402.340466] __btrfs_open_devices+0x172/0xa30 [ 402.344957] ? find_device+0xf0/0xf0 [ 402.348650] ? btrfs_mount+0x9ee/0x1fe0 [ 402.352605] btrfs_open_devices+0x98/0xb0 [ 402.356730] btrfs_mount+0xb24/0x1fe0 [ 402.360513] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 402.366472] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 402.371910] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 402.376918] ? __lockdep_init_map+0x100/0x560 [ 402.381393] ? __lockdep_init_map+0x100/0x560 [ 402.385884] mount_fs+0x92/0x2a0 [ 402.389236] vfs_kern_mount.part.0+0x5b/0x470 [ 402.393715] vfs_kern_mount+0x3c/0x60 [ 402.397508] btrfs_mount+0x42a/0x1fe0 [ 402.401306] ? lock_downgrade+0x740/0x740 [ 402.405434] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 402.411391] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 402.416819] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 402.421815] ? __lockdep_init_map+0x100/0x560 [ 402.426302] ? __lockdep_init_map+0x100/0x560 [ 402.430777] mount_fs+0x92/0x2a0 [ 402.434139] vfs_kern_mount.part.0+0x5b/0x470 [ 402.438625] do_mount+0xe53/0x2a00 [ 402.442151] ? do_raw_spin_unlock+0x164/0x220 [ 402.446661] ? copy_mount_string+0x40/0x40 [ 402.450883] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 402.455879] ? copy_mnt_ns+0xa30/0xa30 [ 402.459747] ? copy_mount_options+0x1fa/0x2f0 [ 402.464236] ? copy_mnt_ns+0xa30/0xa30 [ 402.468103] SyS_mount+0xa8/0x120 [ 402.471564] ? copy_mnt_ns+0xa30/0xa30 [ 402.475456] do_syscall_64+0x1d5/0x640 [ 402.479332] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 402.484502] RIP: 0033:0x460c6a [ 402.487671] RSP: 002b:00007fe27cb4fa78 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 402.495360] RAX: ffffffffffffffda RBX: 00007fe27cb4fb10 RCX: 0000000000460c6a [ 402.502616] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 00007fe27cb4fad0 [ 402.509867] RBP: 00007fe27cb4fad0 R08: 00007fe27cb4fb10 R09: 0000000020000000 [ 402.517118] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020000000 [ 402.524374] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 [ 402.751244] IPVS: ftp: loaded support on port[0] = 21 13:16:16 executing program 4: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000380)={0x1f, 0xffffffffffffffff, 0x3}, 0x6) setsockopt$bt_hci_HCI_FILTER(r0, 0x0, 0x2, 0x0, 0x0) 13:16:16 executing program 5 (fault-call:0 fault-nth:85): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:16:16 executing program 3: syz_emit_ethernet(0x7e, &(0x7f00000000c0)={@local, @dev, @val={@void}, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "171000", 0x44, 0x2f, 0x0, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}}}}, 0x0) 13:16:16 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) 13:16:16 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0), 0x0, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:16:16 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x1, @ipv4={[], [], @initdev={0xac, 0x1e, 0x1, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:16:16 executing program 4: pipe2(&(0x7f0000000e80)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$cgroup_netprio_ifpriomap(r0, &(0x7f0000000ec0)={'team_slave_0'}, 0xf) write$tun(r0, &(0x7f0000000f00)={@val, @void, @eth={@multicast, @link_local, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "c51e1c", 0x18, 0x11, 0x0, @dev, @loopback, {[], {0x0, 0x0, 0x18, 0x0, @wg=@data}}}}}}}, 0x52) [ 402.903226] FAULT_INJECTION: forcing a failure. [ 402.903226] name failslab, interval 1, probability 0, space 0, times 0 [ 402.922363] CPU: 0 PID: 2097 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 402.930195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 402.939640] Call Trace: [ 402.942236] dump_stack+0x1b2/0x283 [ 402.945887] should_fail.cold+0x10a/0x154 [ 402.950072] should_failslab+0xd6/0x130 [ 402.954056] kmem_cache_alloc+0x28e/0x3c0 [ 402.958242] getname_kernel+0x4e/0x340 [ 402.962134] kern_path+0x1b/0x40 [ 402.965565] lookup_bdev+0xc6/0x1c0 [ 402.969200] ? bd_acquire+0x440/0x440 [ 402.973006] blkdev_get_by_path+0x1b/0xa0 [ 402.977174] btrfs_get_bdev_and_sb+0x2f/0x2c0 [ 402.981681] __btrfs_open_devices+0x172/0xa30 [ 402.986205] ? find_device+0xf0/0xf0 [ 402.989984] ? btrfs_mount+0x9ee/0x1fe0 [ 402.993975] btrfs_open_devices+0x98/0xb0 [ 402.998136] btrfs_mount+0xb24/0x1fe0 [ 403.002000] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 403.007985] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 403.013443] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 403.018720] ? __lockdep_init_map+0x100/0x560 [ 403.023201] ? __lockdep_init_map+0x100/0x560 [ 403.027695] mount_fs+0x92/0x2a0 [ 403.031058] vfs_kern_mount.part.0+0x5b/0x470 [ 403.035550] vfs_kern_mount+0x3c/0x60 [ 403.039353] btrfs_mount+0x42a/0x1fe0 [ 403.043151] ? lock_downgrade+0x740/0x740 [ 403.047291] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 403.053260] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 403.058697] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 403.063712] ? __lockdep_init_map+0x100/0x560 [ 403.068192] ? __lockdep_init_map+0x100/0x560 [ 403.072680] mount_fs+0x92/0x2a0 [ 403.076033] vfs_kern_mount.part.0+0x5b/0x470 [ 403.080523] do_mount+0xe53/0x2a00 [ 403.084052] ? copy_mount_string+0x40/0x40 [ 403.088290] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 403.093410] ? copy_mnt_ns+0xa30/0xa30 [ 403.097291] ? copy_mount_options+0x1fa/0x2f0 [ 403.101766] ? copy_mnt_ns+0xa30/0xa30 [ 403.105659] SyS_mount+0xa8/0x120 [ 403.109099] ? copy_mnt_ns+0xa30/0xa30 [ 403.112984] do_syscall_64+0x1d5/0x640 [ 403.116868] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 403.122041] RIP: 0033:0x460c6a [ 403.125212] RSP: 002b:00007fe27cb4fa78 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 403.133023] RAX: ffffffffffffffda RBX: 00007fe27cb4fb10 RCX: 0000000000460c6a [ 403.140276] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 00007fe27cb4fad0 13:16:16 executing program 4: r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/pfkey\x00', 0x0, 0x0) preadv(r0, &(0x7f0000003d80)=[{&(0x7f00000019c0)=""/4096, 0x1000}], 0x1, 0x0, 0x0) 13:16:16 executing program 3: clock_gettime(0x3cd8c27856c65df2, 0x0) [ 403.147528] RBP: 00007fe27cb4fad0 R08: 00007fe27cb4fb10 R09: 0000000020000000 [ 403.154782] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020000000 [ 403.162034] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 13:16:16 executing program 4: socket$inet6_tcp(0xa, 0x1, 0x0) pselect6(0x40, &(0x7f0000000000)={0x9}, 0x0, 0x0, 0x0, 0x0) 13:16:16 executing program 3: syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @dev, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x11, 0x0, @dev, @dev}, {0x4e24, 0x0, 0x18, 0x0, @wg=@data}}}}}, 0x0) 13:16:16 executing program 4: r0 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$inet_int(r0, 0x0, 0x17, 0x0, &(0x7f0000000040)=0x43) 13:16:17 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, 0x0, 0x0) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:16:17 executing program 3: syz_emit_ethernet(0x72, &(0x7f00000016c0)={@local, @broadcast, @val={@void}, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "62117f", 0x38, 0x3a, 0x0, @loopback, @ipv4={[], [], @private}, {[], @pkt_toobig={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, "9838f5", 0x0, 0x0, 0x0, @private0, @dev, [@hopopts={0x3b}]}}}}}}}, 0x0) 13:16:17 executing program 5 (fault-call:0 fault-nth:86): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:16:17 executing program 4: pipe2(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}, 0x4000) write$bt_hci(r0, &(0x7f0000000000)=ANY=[], 0x6) 13:16:17 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x57473, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) 13:16:17 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x3, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x8000000006}, {0x9, 0x6, 0x20, 0x9}, {0xe734, 0x0, 0x8, 0x400}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:16:17 executing program 3: socketpair(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$NL80211_CMD_SET_BEACON(r0, &(0x7f00000005c0)={&(0x7f00000003c0), 0xc, &(0x7f0000000480)={0x0}}, 0x0) [ 403.870266] FAULT_INJECTION: forcing a failure. [ 403.870266] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 403.882107] CPU: 1 PID: 2155 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 403.889908] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 403.899367] Call Trace: [ 403.901977] dump_stack+0x1b2/0x283 [ 403.905616] should_fail.cold+0x10a/0x154 [ 403.909862] __alloc_pages_nodemask+0x22c/0x2720 [ 403.914630] ? __lock_acquire+0x5fc/0x3f20 [ 403.918872] ? __lock_acquire+0x5fc/0x3f20 [ 403.923117] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 403.927963] ? lock_acquire+0x170/0x3f0 [ 403.931942] ? trace_hardirqs_on+0x10/0x10 [ 403.936187] ? lo_release+0x7f/0x190 [ 403.939907] ? lo_release+0xed/0x190 [ 403.943627] ? __blkdev_put+0x640/0x800 [ 403.947619] cache_grow_begin+0x8f/0x420 [ 403.951698] cache_alloc_refill+0x273/0x350 [ 403.956037] kmem_cache_alloc+0x333/0x3c0 [ 403.960288] getname_kernel+0x4e/0x340 [ 403.964189] kern_path+0x1b/0x40 [ 403.967562] lookup_bdev+0xc6/0x1c0 [ 403.971200] ? bd_acquire+0x440/0x440 [ 403.975008] blkdev_get_by_path+0x1b/0xa0 [ 403.979161] btrfs_get_bdev_and_sb+0x2f/0x2c0 [ 403.983655] __btrfs_open_devices+0x172/0xa30 [ 403.988147] ? find_device+0xf0/0xf0 [ 403.991848] ? btrfs_mount+0x9ee/0x1fe0 [ 403.995810] btrfs_open_devices+0x98/0xb0 [ 403.999947] btrfs_mount+0xb24/0x1fe0 [ 404.003821] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 404.009783] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 404.015217] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 404.020218] ? __lockdep_init_map+0x100/0x560 [ 404.024744] ? __lockdep_init_map+0x100/0x560 [ 404.029224] mount_fs+0x92/0x2a0 [ 404.032603] vfs_kern_mount.part.0+0x5b/0x470 [ 404.037085] vfs_kern_mount+0x3c/0x60 [ 404.040867] btrfs_mount+0x42a/0x1fe0 [ 404.044667] ? lock_downgrade+0x740/0x740 [ 404.048798] ? _find_next_bit+0xdb/0x100 [ 404.052863] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 404.058830] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 404.064291] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 404.069296] ? __lockdep_init_map+0x100/0x560 [ 404.073781] ? __lockdep_init_map+0x100/0x560 [ 404.078263] mount_fs+0x92/0x2a0 [ 404.081618] vfs_kern_mount.part.0+0x5b/0x470 [ 404.086102] do_mount+0xe53/0x2a00 [ 404.089641] ? copy_mount_string+0x40/0x40 [ 404.093869] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 404.099064] ? copy_mnt_ns+0xa30/0xa30 [ 404.102935] ? copy_mount_options+0x1fa/0x2f0 [ 404.107412] ? copy_mnt_ns+0xa30/0xa30 [ 404.111284] SyS_mount+0xa8/0x120 [ 404.114842] ? copy_mnt_ns+0xa30/0xa30 [ 404.118722] do_syscall_64+0x1d5/0x640 [ 404.122619] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 404.127805] RIP: 0033:0x460c6a [ 404.130978] RSP: 002b:00007fe27cb4fa78 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 404.138711] RAX: ffffffffffffffda RBX: 00007fe27cb4fb10 RCX: 0000000000460c6a [ 404.145965] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 00007fe27cb4fad0 [ 404.153229] RBP: 00007fe27cb4fad0 R08: 00007fe27cb4fb10 R09: 0000000020000000 [ 404.160494] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020000000 [ 404.167745] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 13:16:17 executing program 3: r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f00000000c0)={0x2, 0x4e24, @empty}, 0x10) r1 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r1, &(0x7f00000013c0)={0x2, 0x4e24, @remote}, 0x10) 13:16:17 executing program 4: syz_emit_ethernet(0x42, &(0x7f0000000900)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff8100000086dd606e62e600080000fe800000000000000000000000000000000001"], 0x0) signalfd(0xffffffffffffffff, 0x0, 0x0) shmdt(0x0) 13:16:17 executing program 3: syz_emit_ethernet(0x52, &(0x7f0000000140)={@local, @dev, @val={@void}, {@ipv6={0x86dd, @udp={0x0, 0x6, "54862c", 0xda, 0x11, 0x0, @private2, @remote, {[@srh], {0x0, 0x0, 0x10, 0x0, @gue={{0x2}}}}}}}}, 0x0) 13:16:17 executing program 5 (fault-call:0 fault-nth:87): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:16:17 executing program 4: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000005c0)={0x24, 0x0, 0x9, 0x801, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x4}]}, 0x24}}, 0x0) [ 404.407940] FAULT_INJECTION: forcing a failure. [ 404.407940] name failslab, interval 1, probability 0, space 0, times 0 [ 404.432114] CPU: 1 PID: 2198 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 404.439950] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 404.449334] Call Trace: [ 404.451928] dump_stack+0x1b2/0x283 [ 404.455664] should_fail.cold+0x10a/0x154 [ 404.459825] should_failslab+0xd6/0x130 [ 404.463879] kmem_cache_alloc+0x28e/0x3c0 [ 404.468053] alloc_buffer_head+0x20/0x110 [ 404.472321] alloc_page_buffers+0xb3/0x1f0 [ 404.476653] __getblk_slow+0x2d6/0x7a0 [ 404.480557] __bread_gfp+0x206/0x2e0 [ 404.484484] btrfs_read_dev_super+0x79/0x1f0 [ 404.488881] btrfs_get_bdev_and_sb+0xd3/0x2c0 [ 404.493372] __btrfs_open_devices+0x172/0xa30 [ 404.497885] ? find_device+0xf0/0xf0 [ 404.501605] ? btrfs_mount+0x9ee/0x1fe0 [ 404.505569] btrfs_open_devices+0x98/0xb0 [ 404.509703] btrfs_mount+0xb24/0x1fe0 [ 404.513493] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 404.519451] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 404.524907] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 404.529909] ? __lockdep_init_map+0x100/0x560 [ 404.534438] ? __lockdep_init_map+0x100/0x560 [ 404.538934] mount_fs+0x92/0x2a0 [ 404.542302] vfs_kern_mount.part.0+0x5b/0x470 [ 404.546785] vfs_kern_mount+0x3c/0x60 [ 404.550572] btrfs_mount+0x42a/0x1fe0 [ 404.554359] ? lock_downgrade+0x740/0x740 [ 404.558504] ? _find_next_bit+0xdb/0x100 [ 404.562552] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 404.568511] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 404.573944] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 404.579048] ? __lockdep_init_map+0x100/0x560 [ 404.583550] ? __lockdep_init_map+0x100/0x560 [ 404.588037] mount_fs+0x92/0x2a0 [ 404.591401] vfs_kern_mount.part.0+0x5b/0x470 [ 404.596164] do_mount+0xe53/0x2a00 [ 404.600113] ? copy_mount_string+0x40/0x40 [ 404.604439] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 404.609444] ? copy_mnt_ns+0xa30/0xa30 [ 404.613318] ? copy_mount_options+0x1fa/0x2f0 [ 404.617798] ? copy_mnt_ns+0xa30/0xa30 [ 404.621770] SyS_mount+0xa8/0x120 [ 404.625206] ? copy_mnt_ns+0xa30/0xa30 [ 404.629078] do_syscall_64+0x1d5/0x640 [ 404.632953] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 404.638122] RIP: 0033:0x460c6a [ 404.641298] RSP: 002b:00007fe27cb4fa78 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 404.648986] RAX: ffffffffffffffda RBX: 00007fe27cb4fb10 RCX: 0000000000460c6a [ 404.656237] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 00007fe27cb4fad0 [ 404.663573] RBP: 00007fe27cb4fad0 R08: 00007fe27cb4fb10 R09: 0000000020000000 [ 404.670824] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020000000 [ 404.678072] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 [ 404.884794] IPVS: ftp: loaded support on port[0] = 21 13:16:18 executing program 4: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000005c0)={0x58, 0x0, 0x9, 0x801, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8}}, @NFCTH_TUPLE={0x24, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @local}, {0x8, 0x2, @empty}}}]}, @NFCTH_PRIV_DATA_LEN={0x8}]}, 0x58}}, 0x0) 13:16:18 executing program 3: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) preadv(r0, &(0x7f0000000240)=[{&(0x7f0000000800)=""/4096}, {&(0x7f0000000640)=""/109}, {&(0x7f0000000580)=""/133}], 0x100000000000007e, 0x0, 0x0) 13:16:18 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) 13:16:18 executing program 5 (fault-call:0 fault-nth:88): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:16:18 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0xa, 0x0, 0x0, 0xe}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:16:18 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, 0x0, 0x0) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:16:18 executing program 3: syz_emit_ethernet(0x7e, &(0x7f00000000c0)={@local, @empty, @val={@void}, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "2516da", 0x44, 0x2f, 0x0, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @initdev={0xfe, 0x88, [], 0x0, 0x0}}}}}, 0x0) r0 = signalfd(0xffffffffffffffff, &(0x7f00000007c0), 0x8) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0) sendmsg$IPSET_CMD_LIST(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x28, 0x7, 0x6, 0x3, 0x0, 0x0, {0x1, 0x0, 0x5}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_FLAGS={0x8, 0x6, 0x1, 0x0, 0x6529}]}, 0x28}, 0x1, 0x0, 0x0, 0x801}, 0x20000804) 13:16:18 executing program 4: socketpair(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$NL80211_CMD_SET_BEACON(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) sendmsg$NL80211_CMD_STOP_NAN(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) [ 405.044397] FAULT_INJECTION: forcing a failure. [ 405.044397] name failslab, interval 1, probability 0, space 0, times 0 [ 405.062575] CPU: 1 PID: 2247 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 405.070408] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 405.079773] Call Trace: [ 405.082373] dump_stack+0x1b2/0x283 [ 405.086018] should_fail.cold+0x10a/0x154 [ 405.090179] ? mempool_free+0x1d0/0x1d0 [ 405.094161] should_failslab+0xd6/0x130 [ 405.098148] kmem_cache_alloc+0x40/0x3c0 [ 405.102219] ? mempool_free+0x1d0/0x1d0 [ 405.106197] mempool_alloc+0x10e/0x2d0 [ 405.110115] ? remove_element.isra.0+0x1b0/0x1b0 [ 405.114875] ? mark_held_locks+0xa6/0xf0 [ 405.118945] ? __find_get_block+0x817/0xc40 [ 405.123271] bio_alloc_bioset+0x41b/0x830 [ 405.127407] ? bvec_alloc+0x2d0/0x2d0 [ 405.131191] ? __getblk_slow+0x57f/0x7a0 [ 405.135236] submit_bh_wbc+0xf5/0x6f0 [ 405.139034] __bread_gfp+0x11c/0x2e0 [ 405.142832] btrfs_read_dev_super+0x79/0x1f0 [ 405.147228] btrfs_get_bdev_and_sb+0xd3/0x2c0 [ 405.151800] __btrfs_open_devices+0x172/0xa30 [ 405.156391] ? find_device+0xf0/0xf0 [ 405.160091] ? btrfs_mount+0x9ee/0x1fe0 [ 405.164052] btrfs_open_devices+0x98/0xb0 [ 405.168201] btrfs_mount+0xb24/0x1fe0 [ 405.171988] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 405.177959] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 405.183392] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 405.188394] ? __lockdep_init_map+0x100/0x560 [ 405.192874] ? __lockdep_init_map+0x100/0x560 [ 405.197355] mount_fs+0x92/0x2a0 [ 405.200847] vfs_kern_mount.part.0+0x5b/0x470 [ 405.205343] vfs_kern_mount+0x3c/0x60 [ 405.209139] btrfs_mount+0x42a/0x1fe0 [ 405.212933] ? lock_downgrade+0x740/0x740 [ 405.217153] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 405.223124] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 405.228556] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 405.233557] ? __lockdep_init_map+0x100/0x560 [ 405.238034] ? __lockdep_init_map+0x100/0x560 [ 405.242766] mount_fs+0x92/0x2a0 [ 405.246124] vfs_kern_mount.part.0+0x5b/0x470 [ 405.250612] do_mount+0xe53/0x2a00 [ 405.254133] ? assoc_array_gc+0x1091/0x1110 [ 405.258435] ? retint_kernel+0x2d/0x2d [ 405.262302] ? copy_mount_string+0x40/0x40 [ 405.266551] ? __sanitizer_cov_trace_pc+0x4a/0x50 [ 405.271519] ? copy_mount_options+0x1fa/0x2f0 [ 405.276011] ? copy_mnt_ns+0xa30/0xa30 [ 405.279901] SyS_mount+0xa8/0x120 [ 405.283341] ? copy_mnt_ns+0xa30/0xa30 [ 405.287219] do_syscall_64+0x1d5/0x640 13:16:18 executing program 3: syz_emit_ethernet(0x52, &(0x7f0000000440)={@local, @local, @val={@void}, {@ipv6={0x86dd, @tipc_packet={0x0, 0x6, "a116b7", 0x18, 0x6, 0x0, @empty, @private0, {[], @payload_conn={{{0x18, 0x0, 0x0, 0x0, 0x0, 0x6}}}}}}}}, 0x0) [ 405.291110] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 405.296391] RIP: 0033:0x460c6a [ 405.299576] RSP: 002b:00007fe27cb4fa78 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 405.307266] RAX: ffffffffffffffda RBX: 00007fe27cb4fb10 RCX: 0000000000460c6a [ 405.314519] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 00007fe27cb4fad0 [ 405.321769] RBP: 00007fe27cb4fad0 R08: 00007fe27cb4fb10 R09: 0000000020000000 [ 405.329032] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020000000 [ 405.336458] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 13:16:18 executing program 4: socket$inet_udp(0x2, 0x2, 0x0) pselect6(0x40, &(0x7f0000000040)={0x3}, 0x0, &(0x7f00000000c0)={0x9}, 0x0, 0x0) 13:16:18 executing program 3: prlimit64(0x0, 0x0, &(0x7f0000000040), &(0x7f0000000080)) 13:16:18 executing program 3: openat$null(0xffffffffffffff9c, &(0x7f00000068c0)='/dev/null\x00', 0x0, 0x0) 13:16:19 executing program 5 (fault-call:0 fault-nth:89): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:16:19 executing program 4: socket(0x30, 0x0, 0x0) [ 405.516912] FAULT_INJECTION: forcing a failure. [ 405.516912] name failslab, interval 1, probability 0, space 0, times 0 [ 405.529099] CPU: 1 PID: 2291 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 405.536919] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 405.546280] Call Trace: [ 405.548902] dump_stack+0x1b2/0x283 [ 405.552544] should_fail.cold+0x10a/0x154 [ 405.556699] ? mempool_free+0x1d0/0x1d0 [ 405.560678] should_failslab+0xd6/0x130 [ 405.564751] kmem_cache_alloc+0x40/0x3c0 [ 405.568906] ? mempool_free+0x1d0/0x1d0 [ 405.572884] mempool_alloc+0x10e/0x2d0 [ 405.576786] ? remove_element.isra.0+0x1b0/0x1b0 [ 405.581547] ? mark_held_locks+0xa6/0xf0 [ 405.585612] ? __find_get_block+0x817/0xc40 [ 405.589945] bio_alloc_bioset+0x41b/0x830 [ 405.594305] ? bvec_alloc+0x2d0/0x2d0 [ 405.598100] ? __getblk_slow+0x57f/0x7a0 [ 405.602363] submit_bh_wbc+0xf5/0x6f0 [ 405.606624] __bread_gfp+0x11c/0x2e0 [ 405.610328] btrfs_read_dev_super+0x79/0x1f0 [ 405.614907] btrfs_get_bdev_and_sb+0xd3/0x2c0 [ 405.619651] __btrfs_open_devices+0x172/0xa30 [ 405.624141] ? find_device+0xf0/0xf0 [ 405.627942] ? btrfs_mount+0x9ee/0x1fe0 [ 405.631978] btrfs_open_devices+0x98/0xb0 [ 405.636121] btrfs_mount+0xb24/0x1fe0 [ 405.640124] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 405.646133] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 405.651574] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 405.656584] ? __lockdep_init_map+0x100/0x560 [ 405.661085] ? __lockdep_init_map+0x100/0x560 [ 405.665574] mount_fs+0x92/0x2a0 [ 405.668939] vfs_kern_mount.part.0+0x5b/0x470 [ 405.673430] vfs_kern_mount+0x3c/0x60 [ 405.677229] btrfs_mount+0x42a/0x1fe0 [ 405.681020] ? lock_downgrade+0x740/0x740 [ 405.685168] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 405.691126] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 405.696568] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 405.701595] ? __lockdep_init_map+0x100/0x560 [ 405.706079] ? __lockdep_init_map+0x100/0x560 [ 405.710668] mount_fs+0x92/0x2a0 [ 405.714037] vfs_kern_mount.part.0+0x5b/0x470 [ 405.718528] do_mount+0xe53/0x2a00 [ 405.722067] ? copy_mount_string+0x40/0x40 [ 405.726281] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 405.731274] ? copy_mnt_ns+0xa30/0xa30 [ 405.735147] ? copy_mount_options+0x1fa/0x2f0 [ 405.739642] ? copy_mnt_ns+0xa30/0xa30 [ 405.743512] SyS_mount+0xa8/0x120 [ 405.747000] ? copy_mnt_ns+0xa30/0xa30 [ 405.750878] do_syscall_64+0x1d5/0x640 [ 405.754765] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 405.759943] RIP: 0033:0x460c6a [ 405.763111] RSP: 002b:00007fe27cb4fa78 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 405.770810] RAX: ffffffffffffffda RBX: 00007fe27cb4fb10 RCX: 0000000000460c6a [ 405.778236] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 00007fe27cb4fad0 [ 405.785490] RBP: 00007fe27cb4fad0 R08: 00007fe27cb4fb10 R09: 0000000020000000 [ 405.792755] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020000000 [ 405.800015] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 13:16:19 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) 13:16:19 executing program 3: semctl$IPC_SET(0x0, 0x0, 0x1, &(0x7f0000000000)={{0x3, 0xffffffffffffffff, 0xee01, 0xee00}}) 13:16:19 executing program 4: r0 = gettid() prlimit64(r0, 0x0, 0x0, &(0x7f0000000000)) 13:16:19 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x100, 0x0) ioctl$DRM_IOCTL_GET_CLIENT(r0, 0xc0286405, 0x0) 13:16:19 executing program 0: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(0xffffffffffffffff, &(0x7f0000000180)=""/19, 0xfffffe47) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x550, 0x1, &(0x7f0000000100)=[{0x0}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, 0x0, 0x0) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:16:19 executing program 1: unshare(0x40000000) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, 0xffffffffffffffff, 0x0) read(r0, &(0x7f0000000180)=""/5, 0x5) clock_gettime(0x0, 0x0) mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) dup(0xffffffffffffffff) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c) poll(&(0x7f0000000000)=[{r0}], 0x1, 0xef) close(r0) 13:16:19 executing program 5 (fault-call:0 fault-nth:90): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="90e42e8500000000000000000000000000000000000000000000000000000000f90cac8b044b4fa88bee4b8d3da88dc2000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f00000007c0)=ANY=[]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 13:16:19 executing program 3: bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x1418}, 0x40) 13:16:19 executing program 4: perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x7e, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$rfkill(0xffffffffffffff9c, &(0x7f0000000480)='/dev/rfkill\x00', 0x4000, 0x0) 13:16:19 executing program 3: syz_emit_ethernet(0x42, &(0x7f0000000040)={@broadcast, @local, @val={@void, {0x8100, 0x5}}, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @local}, @redirect={0x5, 0x0, 0x0, @empty, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @dev, @private}}}}}}, 0x0) [ 405.990673] FAULT_INJECTION: forcing a failure. [ 405.990673] name failslab, interval 1, probability 0, space 0, times 0 [ 406.046843] CPU: 0 PID: 2318 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 406.054737] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 406.064175] Call Trace: [ 406.066761] dump_stack+0x1b2/0x283 [ 406.070384] should_fail.cold+0x10a/0x154 [ 406.074522] should_failslab+0xd6/0x130 [ 406.078482] kmem_cache_alloc_trace+0x29a/0x3d0 [ 406.083140] btrfs_alloc_device+0x9d/0x580 [ 406.087365] ? btrfs_finish_sprout+0x5e0/0x5e0 [ 406.091930] ? __kmalloc+0x3a4/0x400 [ 406.095629] ? __btrfs_close_devices+0x2f9/0xb20 [ 406.100529] __btrfs_close_devices+0x29f/0xb20 [ 406.105106] ? find_device+0xf0/0xf0 [ 406.108809] ? btrfs_alloc_device+0x580/0x580 [ 406.113378] btrfs_close_devices+0x24/0x140 [ 406.117698] btrfs_mount+0x1686/0x1fe0 [ 406.121569] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 406.127533] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 406.132981] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 406.138067] ? __lockdep_init_map+0x100/0x560 [ 406.142542] ? __lockdep_init_map+0x100/0x560 [ 406.147051] mount_fs+0x92/0x2a0 [ 406.150419] vfs_kern_mount.part.0+0x5b/0x470 [ 406.154900] vfs_kern_mount+0x3c/0x60 [ 406.158720] btrfs_mount+0x42a/0x1fe0 [ 406.162529] ? lock_downgrade+0x740/0x740 [ 406.166686] ? _find_next_bit+0xdb/0x100 [ 406.170774] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 406.176747] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 406.182183] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 406.187183] ? __lockdep_init_map+0x100/0x560 [ 406.191658] ? __lockdep_init_map+0x100/0x560 [ 406.196165] mount_fs+0x92/0x2a0 [ 406.199518] vfs_kern_mount.part.0+0x5b/0x470 [ 406.203997] do_mount+0xe53/0x2a00 [ 406.207532] ? copy_mount_string+0x40/0x40 [ 406.211748] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 406.216764] ? copy_mnt_ns+0xa30/0xa30 [ 406.220637] ? copy_mount_options+0x1fa/0x2f0 [ 406.225142] ? copy_mnt_ns+0xa30/0xa30 [ 406.229014] SyS_mount+0xa8/0x120 [ 406.232463] ? copy_mnt_ns+0xa30/0xa30 [ 406.236347] do_syscall_64+0x1d5/0x640 [ 406.240221] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 406.245392] RIP: 0033:0x460c6a [ 406.248564] RSP: 002b:00007fe27cb4fa78 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 406.256257] RAX: ffffffffffffffda RBX: 00007fe27cb4fb10 RCX: 0000000000460c6a [ 406.263510] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 00007fe27cb4fad0 [ 406.270759] RBP: 00007fe27cb4fad0 R08: 00007fe27cb4fb10 R09: 0000000020000000 [ 406.278010] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020000000 [ 406.285349] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 13:16:19 executing program 3: syz_mount_image$iso9660(&(0x7f0000000000)='iso9660\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x3, &(0x7f0000000080)=[{&(0x7f0000010000)="01434430303101004c494e55582020202020202020202020202020202020202020202020202020204344524f4d2020202020202020202020202020202020202020202020202020200000000000000000bf000000000000bf000000000000000000000000000000000000000000000000000000000000000001000001010000010008080018000000000000181400000000000000000000160000000022001c", 0x9f, 0x8000}, {&(0x7f0000010600)="0243443030310100004c0049004e0055005800200020002000200020002000200020002000200020004300440052004f004d002000200020002000200020002000200020002000200000000000000000bf000000000000bf252f", 0x5a, 0x8800}, {&(0x7f0000001280)="88001c0000000000001c00080000000008007809140b2a3a0802", 0x1a, 0xe000}], 0x0, &(0x7f00000002c0)=ANY=[]) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0) open_by_handle_at(0xffffffffffffffff, 0x0, 0x0) add_key(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0xc75e43cfae22dd4, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 13:16:19 executing program 4: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_GET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x4, 0x8, 0x5, 0x0, 0x0, {}, [@CTA_TIMEOUT_L3PROTO={0x6}]}, 0x1c}}, 0x0) [ 406.447777] ------------[ cut here ]------------ [ 406.452573] kernel BUG at fs/btrfs/volumes.c:891! [ 406.476345] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 406.481836] Modules linked in: [ 406.485050] CPU: 1 PID: 2318 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0 [ 406.492844] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 406.502235] task: ffff88809c82c1c0 task.stack: ffff88805a158000 [ 406.508297] RIP: 0010:__btrfs_close_devices+0x86d/0xb20 [ 406.513734] RSP: 0018:ffff88805a15f820 EFLAGS: 00010246 [ 406.519087] RAX: 0000000000040000 RBX: ffff8880a622fb40 RCX: ffffc900132ed000 [ 406.526350] RDX: 0000000000040000 RSI: ffffffff82ad702d RDI: 0000000000000286 [ 406.533609] RBP: dffffc0000000000 R08: 0000000000000000 R09: 0000000000000000 [ 406.540867] R10: 0000000000000000 R11: 0000000000000000 R12: ffff888099b9ac80 [ 406.548150] R13: ffff8880a622fc08 R14: fffffffffffffff4 R15: ffff88809b286d80 [ 406.555412] FS: 00007fe27cb50700(0000) GS:ffff8880ba500000(0000) knlGS:0000000000000000 [ 406.563626] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 406.569511] CR2: 0000561d45421000 CR3: 0000000065d09000 CR4: 00000000001406e0 [ 406.576794] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 406.584062] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 406.591317] Call Trace: [ 406.593908] ? find_device+0xf0/0xf0 [ 406.597613] ? btrfs_alloc_device+0x580/0x580 [ 406.602112] btrfs_close_devices+0x24/0x140 [ 406.606427] btrfs_mount+0x1686/0x1fe0 [ 406.610313] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 406.616279] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 406.621804] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 406.626812] ? __lockdep_init_map+0x100/0x560 [ 406.631303] ? __lockdep_init_map+0x100/0x560 [ 406.635792] mount_fs+0x92/0x2a0 [ 406.639154] vfs_kern_mount.part.0+0x5b/0x470 [ 406.643642] vfs_kern_mount+0x3c/0x60 [ 406.647440] btrfs_mount+0x42a/0x1fe0 [ 406.651234] ? lock_downgrade+0x740/0x740 [ 406.655367] ? _find_next_bit+0xdb/0x100 [ 406.659446] ? btrfs_get_subvol_name_from_objectid+0x8b0/0x8b0 [ 406.665431] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 406.670872] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 406.675868] ? __lockdep_init_map+0x100/0x560 [ 406.680362] ? __lockdep_init_map+0x100/0x560 [ 406.684962] mount_fs+0x92/0x2a0 [ 406.688310] vfs_kern_mount.part.0+0x5b/0x470 [ 406.693014] do_mount+0xe53/0x2a00 [ 406.696855] ? copy_mount_string+0x40/0x40 [ 406.701067] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 406.706103] ? copy_mnt_ns+0xa30/0xa30 [ 406.710010] ? copy_mount_options+0x1fa/0x2f0 [ 406.714531] ? copy_mnt_ns+0xa30/0xa30 [ 406.718411] SyS_mount+0xa8/0x120 [ 406.721867] ? copy_mnt_ns+0xa30/0xa30 [ 406.725732] do_syscall_64+0x1d5/0x640 [ 406.729621] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 406.734787] RIP: 0033:0x460c6a [ 406.737958] RSP: 002b:00007fe27cb4fa78 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 406.745724] RAX: ffffffffffffffda RBX: 00007fe27cb4fb10 RCX: 0000000000460c6a [ 406.752980] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 00007fe27cb4fad0 [ 406.760228] RBP: 00007fe27cb4fad0 R08: 00007fe27cb4fb10 R09: 0000000020000000 [ 406.767485] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000020000000 [ 406.774742] R13: 0000000020000040 R14: 0000000020000200 R15: 00000000200007c0 13:16:20 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r0, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) bind$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) perf_event_open(&(0x7f0000000100)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x2ffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) 13:16:20 executing program 4: r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000000)=@req={0x0, 0x0, 0x0, 0xfa1}, 0x10) [ 406.781993] Code: ea 03 0f b6 04 02 84 c0 74 08 3c 03 0f 8e f0 01 00 00 48 8b 44 24 08 c7 80 10 01 00 00 00 00 00 00 e9 4f f8 ff ff e8 73 cf a9 fe <0f> 0b e8 6c cf a9 fe 0f 0b 48 89 cf e8 52 9f d3 fe e9 19 f8 ff [ 406.801179] RIP: __btrfs_close_devices+0x86d/0xb20 RSP: ffff88805a15f820 [ 406.821316] ---[ end trace d3fbe2c492f13e48 ]--- [ 406.826659] Kernel panic - not syncing: Fatal exception [ 406.833150] Kernel Offset: disabled [ 406.836775] Rebooting in 86400 seconds..